VIRY.CZ

Můj malý brácha dostal nový PC a už mu tam zase po pár dnech běhají reklamy. Některé jsem odstranil, ale některé se pořád znovu po restartu objevují. Co by se s tím dalo dělat?

Logfile of random's system information tool 1.10 (written by random/random)
Run by Admin at 2014-07-05 13:33:29
Microsoft Windows 8.1
System drive C: has 381 GB (84%) free of 454 GB
Total RAM: 6109 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:33:43, on 5. 7. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Admin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://localoem.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://localoem.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: CrossriderApp0048292 - {11111111-1111-1111-1111-110411821192} - C:\Program Files (x86)\Sense\Sense-bho.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: YTAHelperBHO - {FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} - C:\ProgramData\YTAHelper\YTAHelper.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-21-987214395-1790064606-4071519516-1005\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" (User 'simulatory')
O4 - HKUS\S-1-5-21-987214395-1790064606-4071519516-1005\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun (User 'simulatory')
O4 - HKUS\S-1-5-21-987214395-1790064606-4071519516-1005\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User 'simulatory')
O4 - HKUS\S-1-5-21-987214395-1790064606-4071519516-1005\..\Run: [cz.seznam.software.autoupdate] "C:\Users\simulatory\AppData\Roaming\Seznam.cz\szninstall.exe" -c (User 'simulatory')
O4 - HKUS\S-1-5-21-987214395-1790064606-4071519516-1005\..\Run: [cz.seznam.software.szndesktop] "C:\Users\simulatory\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q (User 'simulatory')
O4 - HKUS\S-1-5-21-987214395-1790064606-4071519516-1005\..\Run: [SPDriver] .\JSDriver\1.37.1.189\jsdrv.exe (User 'simulatory')
O4 - HKUS\S-1-5-21-987214395-1790064606-4071519516-1005\..\Run: [GoobzoYouTubeAccelerator] "C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe" /startup (User 'simulatory')
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\youtube accelerator\ytalsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @oem4.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: YouTubeAcceleratorService - GOOBZO - C:\PROGRA~2\YOUTUB~1\YouTubeAcceleratorService.exe

--
End of file - 10228 bytes

======Listing Processes======





wininit.exe


winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
dashost.exe {3ff36349-0e51-4726-aaf5f3594b7c342a}
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
C:\Windows\system32\viakaraokesrv.exe

C:\PROGRA~2\YOUTUB~1\YouTubeAcceleratorService.exe -start -scm

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-32eafa6d-e8ad-443a-9565-95a78bd0e77a -SystemEventPortName:HostProcess-6a821f54-2822-460a-8d04-c564f763d8b8 -IoCancelEventPortName:HostProcess-3079529a-75b7-407f-925b-0afcf64ce16b -NonStateChangingEventPortName:HostProcess-09ecf6a8-1960-4130-b774-c64f6d15622b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2fa39de5-cff3-4062-ade2-d3e6874e99ab -DeviceGroupId:WpdFsGroup
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:1784
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:131642 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
szndesktop.exe default start
"C:\Users\simulatory\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe" /startup
"C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe" -nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0

"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\WWAHost.exe" -ServerName:Windows.Store
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2648.0.1474336019\1480447392" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15 --gpu-vendor-id=0x1002 --gpu-device-id=0x6658 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.9001.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.1.1241488402\247623974" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.2.1202064468\1613496247" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.3.1383643214\2111773412" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.4.1850733244\1602246824" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.5.516792420\1245565214" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.7.2105052754\694553666" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.8.340774573\1465020235" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.9.147131345\356654131" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.10.351307697\686000961" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="2648.11.1700085933\1388646688" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.13.687594785\682546794" /prefetch:673131151

winlogon.exe
"dwm.exe"
atieclxx
taskhostex.exe
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:1784
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:131634 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
"C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe" -nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/cd=2b:SkipWhitelist=Enabled:LocalPredictor=Enabled:SideEffectFreeWhitelist=Enabled:MaxConcurrentPrerenders=3:PrerenderPriorityHalfLifeTimeSeconds=30:PrerenderQueryPrerenderService=Enabled:PrerenderServiceFetchTimeoutMs=5000:SkipPrerenderLocalCandidates=Enabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="2648.17.1412478907\1749839998" /prefetch:673131151
"D:\OMSI\Omsi.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="7520.0.533429890\785011504" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15 --gpu-vendor-id=0x1002 --gpu-device-id=0x6658 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.9001.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/None/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/cd=3:LocalPredictor=Disabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="7520.2.1169423238\1949132212" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="7520.4.1022022072\1696560688" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/None/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/cd=3:LocalPredictor=Disabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="7520.15.805732895\49082222" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/None/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/cd=3:LocalPredictor=Disabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="7520.17.1196639470\1115060543" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/None/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/cd=3:LocalPredictor=Disabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="7520.18.115991134\563830397" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/None/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/cd=3:LocalPredictor=Disabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="7520.19.90926488\360098347" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/None/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/cd=3:LocalPredictor=Disabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="7520.21.1852372473\856254974" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/None/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/cd=3:LocalPredictor=Disabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="7520.23.1901440146\92135880" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/None/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/cd=3:LocalPredictor=Disabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="7520.26.1281930896\1969925194" /prefetch:673131151
C:\Windows\system32\DllHost.exe /Processid:{3AD05575-8857-4850-9277-11B85BDB8E09}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Disabled/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/ML Kodachrome dev/EnhancedBookmarks/Default/ExtensionInstallVerification/None/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/cd=3:LocalPredictor=Disabled/SPDY/SpdyEnabled/SettingsEnforcement/enforce_always_with_extensions/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="7520.28.1959605385\991179521" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe12_ Global\UsGthrCtrlFltPipeMssGthrPipe12 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 572 576 584 65536 580
"C:\Users\Admin\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-1.job - C:\Program Files (x86)\Sense\Sense-codedownloader.exe /zigXwvlU /ueHWb=task /HrAWZn='Sense' /uvJwwahMe=48292 /TwVjm='000805' /ppUWRx='0' /OcZPIqwe='eyJkYXRhIjp7ImRhdGUiOiJFNzJ3c210eWNqMQ==PIXGUID(aff=smtycj&sub=1&product=yta)%%,' /AmnRAmQwp=5CC8AF6117D642F1AFEAD8C492215830IE /smfAocSr=8022cbdce1dbb7899006fd1cf9456101 /QMRjhLBG=1_34_07_01 /vTKDBU=1.34.7.1 /KFNlIRBW=1404315659 /rdQgp=http://stats.democlientnet.com /pHNcin=http://errors.democlientnet.com /fvKPgdm=http://js.democlientnet.com /hwrOTohn=ch /uIzbGn='Sense' /HUmUMbf=http://js.clientdemocloud.com /SdwxUC /IghQfo='{"asw":[0, 8388609, 8192]}' /hpnvwI='http://update.democlientnet.com/ie_code ... pdate.json' /ueHWb='task' /XEzpmOQW=''
C:\Windows\tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-11.job - C:\Program Files (x86)\Sense\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-11.exe /ZxVCZJ=EbsG0uYvsrHOqe17Ze5knNcDQ6KLFQzCRMtfYGyOCE3XtOJm5DBvEAjVjULtRxN4DeaQp6c7HUcB16VI8zvAoiAbVXZNsJGUiFfHZRJKrXEB0bLop4sMNc2PeYCSlWYNUNy5ZBAAA9NVpLQVBGVlaRihNdQvztK+owR4gykS4RCmhUfk0UlkQWVTQ3M4zdtD2lCIof98H5QqFTYvZ4Dvjp+6cdEX8rza0FgESoyuHpL/sNdY2u4tlHeHgyM/muR+/i0/6NKhCKoSd1kxl6umhGHOTs5oej0k+fbYqv8RgrGPm3AS/lqYfG87UesXwWQwzfxIKv27JxQDler/w27WbImnrr0SjT6XaA9ogLNFtHpmrI53nK6Z8nMBkWY7eGEd/sz8aujzLnI7ZDoKJLs/blhppLn0Ya3HnIzbCgyVLpTNbxJViGZrP36Fi9GaXtLvZwQ/DT3BwDsqXYrgEjkLKljEPuVGK/mKj8uxrlIvlmbNfGCR5BUIxWTcKMykBXRbJNVRJ0/y43sDz35LGFj5PyezgBg3kHwm9cvSaBCPicb1eHGxuNgUeoyxs7grtqf9fhOFuvM9OT5kVUGbhtDYwXuvffmPAHws6FKHDt16jxp8JfGnR9rDYke4P/DYez0nLK9YNH59XofyiKCMzWzaAf3bDQ50WSC6z19qIOOt1RS/qlUXIgd892v7QXj7iGv1WsbUFN5ElHRicMXSi0K2gD2zuietRkIb3BqyhHWybjcMehtZf58YVsrpP8dYv3OCqsOkxD4yPGtrxGl44FLSRJhg8+zu4rNMIEOpdH0j5/VZ97VZ1Jje2cbarYRwbeKl/Nt1UQlzwcBGr2zghEda2XJ8yIUpf3AntBLMaQTf3vxFhpd+q6sVcSB94ZG+PSJpucf3r4s7vqwIi3Yh+hf1ee3OaC70fqWFMYobztVnzoc7EsCxm49BLolLs0kJ+r1aReScLhjaE/b/oNS7rvza0F9rqyRO7kq5taoZxGu6cpUL3SqKgxOJOXi+d+3KfcH9tE6nGMRIDNGYnozOpsuRyGYv1ssCxaohlHsbX93RsmbSuW2tGLs+BsQ9u/qNh4Dw8aSyhldq8+HIcx0Xh8dq2MEgYLrXl7swfFk6mkaxufezh5Acja0ThuCbZCcsLwKCTUTxNb2PUQA9XHL4D2KP2c77NPOmz0ex+Orc/cIFzNQB4zez6TqNlIjM3J2PsjjztQK8HkpVIdTQGK90ofsA10/SNsUPQ8QxPtR27EGh3QYdVjU/Ynmp+iCFGU2Gph5HHSbnOguERtp5e5f3fUbAXV4At7rulIZo3xc41uScbn7rfifU2Te9ObC8qqURdiz6lt4vq2uBiWbGmnw2cP/EaqJQOhXIFQUveFvHPcAfba7xQsV+8WI+MrEzW1AxkM76FWVUXCwRdCHAmylhhncV20BTyaiHec3lpBVtl0S//jCUBVOwh3egiBqhCi5S47GiBHPIM/re93F53bp/pxXeHZd4bE+OpCVVvZIwrlfVwVYGGLFjTvuEZPTqFO9rRew6QKi1caXP3AtuuBBJthKWFTdQt4zQtrC4l50EeW75qScidXLuOAToPjNFEH7KKpoqcNQtN8+QyddjUvmn1M2JG2UouR3kXYRhYs0S+ppXeG0tGtf/wGE05dsLhYai4t8ALTGi6jVnHoOQLcnBvtxDxwEeqClfYA5NY3M/SPHgj6M=
C:\Windows\tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-2.job - C:\Program Files (x86)\Sense\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-2.exe /DyZIFsY /HrAWZn='Sense' /uvJwwahMe=48292 /TwVjm='000805' /ppUWRx='0' /OcZPIqwe='eyJkYXRhIjp7ImRhdGUiOiJFNzJ3c210eWNqMQ==PIXGUID(aff=smtycj&sub=1&product=yta)%%,' /AmnRAmQwp=5CC8AF6117D642F1AFEAD8C492215830IE /smfAocSr=8022cbdce1dbb7899006fd1cf9456101 /QMRjhLBG=1_34_07_01 /KFNlIRBW=1404315659 /rdQgp=http://stats.democlientnet.com /pHNcin=http://errors.democlientnet.com /RAVNSFSVX=11111111-1111-1111-1111-110411821192 /hwrOTohn=ch /SdwxUC /hpnvwI='http://update.democlientnet.com/ie_enab ... pdate.json' /ueHWb='task' /XEzpmOQW=''
C:\Windows\tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-4.job - C:\Program Files (x86)\Sense\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-4.exe /OeylnCz /HrAWZn='Sense' /XNKaQah='C:\Program Files (x86)\Sense\48292.xpi' /uvJwwahMe=48292 /TwVjm='000805' /ppUWRx='0' /OcZPIqwe='eyJkYXRhIjp7ImRhdGUiOiJFNzJ3c210eWNqMQ==PIXGUID(aff=smtycj&sub=1&product=yta)%%,' /AmnRAmQwp=5CC8AF6117D642F1AFEAD8C492215830IE /smfAocSr=8022cbdce1dbb7899006fd1cf9456101 /QMRjhLBG=1_34_07_01 /vTKDBU=1.34.7.1 /KFNlIRBW=1404315659 /rdQgp=http://stats.democlientnet.com /pHNcin=http://errors.democlientnet.com /AtASe=300 /tmDVVvTR=143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com /TgbRDhpDG=0.94 /ogbHecbjv=a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292 /tfUuUrB=https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /48292.rdf /uwHbIW='Sense' /SNhnToP='.' /iyvRcbHwP='Object Browser' /hwrOTohn=ch /IghQfo='{"asw":[0, 8388609, 8192]}' /SdwxUC /MDpWmdncI /OJPwHTgS /hpnvwI='http://update.democlientnet.com/ff_agen ... pdate.json' /ueHWb='task' /XEzpmOQW=''
C:\Windows\tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-5.job - C:\Program Files (x86)\Sense\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-5.exe /DsGWxDC /HrAWZn='Sense' /uvJwwahMe=48292 /TwVjm='000805' /ppUWRx='0' /OcZPIqwe='eyJkYXRhIjp7ImRhdGUiOiJFNzJ3c210eWNqMQ==PIXGUID(aff=smtycj&sub=1&product=yta)%%,' /AmnRAmQwp=5CC8AF6117D642F1AFEAD8C492215830IE /smfAocSr=8022cbdce1dbb7899006fd1cf9456101 /QMRjhLBG=1_34_07_01 /KFNlIRBW=1404315659 /rdQgp=http://stats.democlientnet.com /pHNcin=http://errors.democlientnet.com /kKikSDII=http://ipgeoapi.com/ /QlvlLa=http://update.democlientnet.com /BjJhTe=2 /AJrBaXO=http://logs.democlientnet.com /hpnvwI='http://update.democlientnet.com/updater ... pdate.json' /ueHWb='task' /XEzpmOQW=''
C:\Windows\tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-5_user.job - C:\Program Files (x86)\Sense\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-5.exe /DsGWxDC /HrAWZn='Sense' /uvJwwahMe=48292 /TwVjm='000805' /ppUWRx='0' /OcZPIqwe='eyJkYXRhIjp7ImRhdGUiOiJFNzJ3c210eWNqMQ==PIXGUID(aff=smtycj&sub=1&product=yta)%%,' /AmnRAmQwp=5CC8AF6117D642F1AFEAD8C492215830IE /smfAocSr=8022cbdce1dbb7899006fd1cf9456101 /QMRjhLBG=1_34_07_01 /KFNlIRBW=1404315659 /rdQgp=http://stats.democlientnet.com /pHNcin=http://errors.democlientnet.com /kKikSDII=http://ipgeoapi.com/ /QlvlLa=http://update.democlientnet.com /BjJhTe=2 /AJrBaXO=http://logs.democlientnet.com /hpnvwI='http://update.democlientnet.com/updater ... pdate.json' /mWjUXdNvj /ueHWb='task' /XEzpmOQW=''
C:\Windows\tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-6.job - C:\Program Files (x86)\Sense\Sense-novainstaller.exe /cHsTSwO /HrAWZn='Sense' /uvJwwahMe=48292 /TwVjm='000805' /ppUWRx='0' /OcZPIqwe='eyJkYXRhIjp7ImRhdGUiOiJFNzJ3c210eWNqMQ==PIXGUID(aff=smtycj&sub=1&product=yta)%%,' /AmnRAmQwp=5CC8AF6117D642F1AFEAD8C492215830IE /smfAocSr=8022cbdce1dbb7899006fd1cf9456101 /QMRjhLBG=1_34_07_01 /vTKDBU=1.34.7.1 /KFNlIRBW=1404315659 /rdQgp=http://stats.democlientnet.com /pHNcin=http://errors.democlientnet.com /fvKPgdm=http://js.democlientnet.com /hwrOTohn=ch /YPOgrxFtO /uIzbGn=Sense /jETuHOGYQ='nova' /HUmUMbf=http://js.clientdemocloud.com /IghQfo='{"asw":[0, 8388609, 8192]}' /ueHWb=task /hpnvwI='http://update.democlientnet.com/novacod ... pdate.json' /ueHWb='task' /XEzpmOQW=''
C:\Windows\tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-7.job - C:\Program Files (x86)\Sense\Sense-nova.exe /HrAWZn='Sense' /uvJwwahMe=48292 /TwVjm='000805' /ppUWRx='0' /OcZPIqwe='eyJkYXRhIjp7ImRhdGUiOiJFNzJ3c210eWNqMQ==PIXGUID(aff=smtycj&sub=1&product=yta)%%,' /AmnRAmQwp=5CC8AF6117D642F1AFEAD8C492215830IE /smfAocSr=8022cbdce1dbb7899006fd1cf9456101 /QMRjhLBG=1_34_07_01 /vTKDBU=1.34.7.1 /KFNlIRBW=1404315659 /rdQgp=http://stats.democlientnet.com /pHNcin=http://errors.democlientnet.com /fvKPgdm=http://js.democlientnet.com /hwrOTohn=ch /YPOgrxFtO /uIzbGn=Sense /jETuHOGYQ='nova' /HUmUMbf=http://js.clientdemocloud.com /IghQfo='{"asw":[0, 8388609, 8192]}' /hpnvwI='http://update.democlientnet.com/novarun ... pdate.json' /ueHWb='task' /XEzpmOQW=''
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}]
Sense - C:\Program Files (x86)\Sense\Sense-bho64.dll [2014-07-02 869888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-03-21 6270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}]
YTAHelper - C:\ProgramData\YTAHelper\YTAHelper64.dll [2014-06-15 522600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}]
Sense - C:\Program Files (x86)\Sense\Sense-bho.dll [2014-07-02 639488]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-03-21 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}]
YTAHelper - C:\ProgramData\YTAHelper\YTAHelper.dll [2014-06-15 434024]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-12-20 389120]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2014-07-01 3595608]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-06-08 5123216]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-23 766688]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-07-05 439296]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-07-05 13:33:29 ----D---- C:\rsit
2014-07-05 13:33:29 ----D---- C:\Program Files\trend micro
2014-07-05 13:27:21 ----D---- C:\Program Files (x86)\Electronic Arts
2014-07-05 13:27:19 ----D---- C:\Users\Admin\AppData\Roaming\Macromedia
2014-07-05 13:24:39 ----D---- C:\Users\Admin\AppData\Roaming\DAEMON Tools Lite
2014-07-05 13:18:41 ----D---- C:\Users\Admin\AppData\Roaming\WinRAR
2014-07-05 13:18:24 ----D---- C:\Program Files\WinRAR
2014-07-04 20:31:27 ----D---- C:\Users\Admin\AppData\Roaming\uTorrent
2014-07-04 20:31:11 ----D---- C:\ProgramData\RogueKiller
2014-07-04 20:28:09 ----D---- C:\Users\Admin\AppData\Roaming\Seznam.cz
2014-07-04 20:28:06 ----D---- C:\Users\Admin\AppData\Roaming\TP-LINK
2014-07-02 18:41:38 ----A---- C:\Windows\system32\drivers\{5906ab0f-5417-45a6-a4f5-8bc38ae936d5}Gw64.sys
2014-07-02 17:41:29 ----D---- C:\Program Files (x86)\trolatunt
2014-07-02 17:41:08 ----D---- C:\Program Files (x86)\Sense
2014-07-02 17:40:17 ----D---- C:\ProgramData\8f7c0396b1bb2d9a
2014-07-02 17:40:16 ----D---- C:\ProgramData\CostMin
2014-07-02 17:40:15 ----D---- C:\Program Files (x86)\CostMin
2014-07-02 17:39:09 ----D---- C:\ProgramData\YTAHelper
2014-07-02 17:39:08 ----D---- C:\Program Files (x86)\YTAHelper
2014-07-02 17:39:05 ----AD---- C:\ProgramData\TEMP
2014-07-02 17:38:50 ----D---- C:\Program Files (x86)\globalUpdate
2014-07-02 17:38:49 ----D---- C:\Program Files (x86)\YouTube Accelerator
2014-07-02 17:38:18 ----D---- C:\Program Files (x86)\Seznam.cz
2014-07-02 17:37:53 ----A---- C:\Windows\unins000.exe
2014-07-02 17:37:53 ----A---- C:\Windows\unins000.dat
2014-07-01 22:03:51 ----RD---- C:\Program Files (x86)\Skype
2014-07-01 22:03:49 ----D---- C:\ProgramData\Skype
2014-07-01 22:03:08 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-07-01 22:03:08 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-07-01 22:03:08 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-07-01 22:03:08 ----A---- C:\Windows\system32\iertutil.dll
2014-07-01 22:03:07 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-07-01 22:03:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-07-01 22:03:07 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-07-01 22:03:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-07-01 22:03:06 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-07-01 22:03:06 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-07-01 22:03:06 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-07-01 22:03:06 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-07-01 22:03:05 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-07-01 22:03:05 ----A---- C:\Windows\system32\iernonce.dll
2014-07-01 22:03:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-07-01 22:03:04 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-07-01 22:03:04 ----A---- C:\Windows\system32\urlmon.dll
2014-07-01 22:03:04 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-07-01 22:03:04 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-01 22:03:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-07-01 22:03:03 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-01 22:03:02 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-07-01 22:03:02 ----A---- C:\Windows\system32\iesetup.dll
2014-07-01 22:03:02 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-01 22:03:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-07-01 22:03:01 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-07-01 22:03:01 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-07-01 22:03:01 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-07-01 22:03:00 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-01 22:03:00 ----A---- C:\Windows\system32\ieUnatt.exe
2014-07-01 22:03:00 ----A---- C:\Windows\system32\ieframe.dll
2014-07-01 22:03:00 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-01 22:02:59 ----A---- C:\Windows\system32\jscript9diag.dll
2014-07-01 22:02:59 ----A---- C:\Windows\system32\jscript9.dll
2014-07-01 22:02:59 ----A---- C:\Windows\system32\ieapfltr.dll
2014-07-01 22:02:58 ----A---- C:\Windows\system32\wininet.dll
2014-07-01 22:02:58 ----A---- C:\Windows\system32\msrating.dll
2014-07-01 22:02:58 ----A---- C:\Windows\system32\jsproxy.dll
2014-07-01 22:02:57 ----A---- C:\Windows\system32\mshtml.dll
2014-07-01 22:02:13 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-07-01 22:02:13 ----A---- C:\Windows\system32\msxml3.dll
2014-07-01 22:02:09 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-07-01 22:02:08 ----A---- C:\Windows\SYSWOW64\wusa.exe
2014-07-01 22:02:08 ----A---- C:\Windows\system32\wusa.exe
2014-07-01 22:02:08 ----A---- C:\Windows\system32\drivers\ks.sys
2014-07-01 22:02:08 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-07-01 22:02:07 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2014-07-01 22:02:07 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-01 22:02:07 ----A---- C:\Windows\system32\WSShared.dll
2014-07-01 22:02:07 ----A---- C:\Windows\system32\WSReset.exe
2014-07-01 22:02:07 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-01 22:02:03 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-07-01 22:02:02 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2014-07-01 22:02:00 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-07-01 22:01:55 ----A---- C:\Windows\system32\wuaueng.dll
2014-07-01 22:01:54 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-07-01 22:01:54 ----A---- C:\Windows\system32\wuapi.dll
2014-07-01 22:01:54 ----A---- C:\Windows\system32\ubpm.dll
2014-07-01 22:01:54 ----A---- C:\Windows\system32\twinapi.appcore.dll
2014-07-01 22:01:53 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-07-01 22:01:53 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-07-01 22:01:53 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-07-01 22:01:53 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-07-01 22:01:53 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2014-07-01 22:01:53 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2014-07-01 22:01:53 ----A---- C:\Windows\system32\wuwebv.dll
2014-07-01 22:01:53 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-07-01 22:01:53 ----A---- C:\Windows\system32\wups.dll
2014-07-01 22:01:53 ----A---- C:\Windows\system32\wudriver.dll
2014-07-01 22:01:53 ----A---- C:\Windows\system32\wucltux.dll
2014-07-01 22:01:53 ----A---- C:\Windows\system32\wuauclt.exe
2014-07-01 22:01:53 ----A---- C:\Windows\system32\wuapp.exe
2014-07-01 22:01:53 ----A---- C:\Windows\system32\twinui.appcore.dll
2014-07-01 22:01:53 ----A---- C:\Windows\system32\storewuauth.dll
2014-07-01 22:01:48 ----A---- C:\Windows\SYSWOW64\mrt100.dll
2014-07-01 22:01:48 ----A---- C:\Windows\SYSWOW64\mrt_map.dll
2014-07-01 22:01:48 ----A---- C:\Windows\system32\rdpcorets.dll
2014-07-01 22:01:48 ----A---- C:\Windows\system32\mrt100.dll
2014-07-01 22:01:48 ----A---- C:\Windows\system32\mrt_map.dll
2014-07-01 22:01:44 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2014-07-01 22:01:44 ----A---- C:\Windows\system32\shell32.dll
2014-07-01 22:01:43 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2014-07-01 22:01:40 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2014-07-01 22:01:39 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2014-07-01 22:01:37 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2014-07-01 22:01:35 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-07-01 22:01:34 ----A---- C:\Windows\system32\SyncEngine.dll
2014-07-01 22:01:33 ----A---- C:\Windows\system32\twinui.dll
2014-07-01 22:01:33 ----A---- C:\Windows\system32\gpsvc.dll
2014-07-01 22:01:32 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2014-07-01 22:01:32 ----A---- C:\Windows\system32\win32k.sys
2014-07-01 22:01:32 ----A---- C:\Windows\system32\mfcore.dll
2014-07-01 22:01:32 ----A---- C:\Windows\system32\d3d9.dll
2014-07-01 22:01:31 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-07-01 22:01:31 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2014-07-01 22:01:31 ----A---- C:\Windows\system32\SettingsHandlers.dll
2014-07-01 22:01:31 ----A---- C:\Windows\system32\mstscax.dll
2014-07-01 22:01:31 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2014-07-01 22:01:30 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2014-07-01 22:01:30 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2014-07-01 22:01:30 ----A---- C:\Windows\system32\workfolderssvc.dll
2014-07-01 22:01:30 ----A---- C:\Windows\system32\wmpmde.dll
2014-07-01 22:01:30 ----A---- C:\Windows\system32\winmde.dll
2014-07-01 22:01:29 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-07-01 22:01:29 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2014-07-01 22:01:29 ----A---- C:\Windows\system32\services.exe
2014-07-01 22:01:29 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-01 22:01:28 ----A---- C:\Windows\system32\SearchFolder.dll
2014-07-01 22:01:28 ----A---- C:\Windows\system32\MFMediaEngine.dll
2014-07-01 22:01:28 ----A---- C:\Windows\system32\localspl.dll
2014-07-01 22:01:28 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-07-01 22:01:27 ----A---- C:\Windows\SYSWOW64\winmde.dll
2014-07-01 22:01:27 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2014-07-01 22:01:27 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-07-01 22:01:27 ----A---- C:\Windows\system32\srvsvc.dll
2014-07-01 22:01:27 ----A---- C:\Windows\system32\mfsvr.dll
2014-07-01 22:01:27 ----A---- C:\Windows\system32\lsasrv.dll
2014-07-01 22:01:27 ----A---- C:\Windows\system32\drivers\volsnap.sys
2014-07-01 22:01:27 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-07-01 22:01:27 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-07-01 22:01:26 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2014-07-01 22:01:26 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2014-07-01 22:01:26 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-07-01 22:01:26 ----A---- C:\Windows\system32\Windows.Media.dll
2014-07-01 22:01:26 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-07-01 22:01:25 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2014-07-01 22:01:25 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2014-07-01 22:01:25 ----A---- C:\Windows\system32\win32spl.dll
2014-07-01 22:01:25 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-07-01 22:01:25 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2014-07-01 22:01:25 ----A---- C:\Windows\system32\dwmapi.dll
2014-07-01 22:01:25 ----A---- C:\Windows\system32\drivers\nwifi.sys
2014-07-01 22:01:25 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-07-01 22:01:25 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2014-07-01 22:01:25 ----A---- C:\Windows\system32\defragsvc.dll
2014-07-01 22:01:25 ----A---- C:\Windows\system32\audiosrv.dll
2014-07-01 22:01:24 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-07-01 22:01:24 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2014-07-01 22:01:24 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2014-07-01 22:01:24 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2014-07-01 22:01:24 ----A---- C:\Windows\system32\swprv.dll
2014-07-01 22:01:24 ----A---- C:\Windows\system32\resutils.dll
2014-07-01 22:01:24 ----A---- C:\Windows\system32\ploptin.dll
2014-07-01 22:01:24 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2014-07-01 22:01:24 ----A---- C:\Windows\system32\MDEServer.exe
2014-07-01 22:01:24 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-07-01 22:01:24 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-07-01 22:01:24 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2014-07-01 22:01:23 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2014-07-01 22:01:23 ----A---- C:\Windows\SYSWOW64\MSVideoDSP.dll
2014-07-01 22:01:23 ----A---- C:\Windows\SYSWOW64\gpapi.dll
2014-07-01 22:01:23 ----A---- C:\Windows\system32\wscsvc.dll
2014-07-01 22:01:23 ----A---- C:\Windows\system32\VSSVC.exe
2014-07-01 22:01:23 ----A---- C:\Windows\system32\rpchttp.dll
2014-07-01 22:01:23 ----A---- C:\Windows\system32\rdpencom.dll
2014-07-01 22:01:23 ----A---- C:\Windows\system32\MSVideoDSP.dll
2014-07-01 22:01:23 ----A---- C:\Windows\system32\gpapi.dll
2014-07-01 22:01:23 ----A---- C:\Windows\system32\drivers\storport.sys
2014-07-01 22:01:23 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-07-01 22:01:22 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-07-01 22:01:22 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2014-07-01 22:01:22 ----A---- C:\Windows\SYSWOW64\propsys.dll
2014-07-01 22:01:22 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-07-01 22:01:22 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-07-01 22:01:22 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-07-01 22:01:22 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\wintrust.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\propsys.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\mfps.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\mfplat.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\mf.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\energyprov.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\drivers\spaceport.sys
2014-07-01 22:01:22 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2014-07-01 22:01:22 ----A---- C:\Windows\system32\clusapi.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\AudioSes.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\AudioEng.dll
2014-07-01 22:01:22 ----A---- C:\Windows\system32\audiodg.exe
2014-07-01 22:01:21 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2014-07-01 22:01:21 ----A---- C:\Windows\SYSWOW64\resutils.dll
2014-07-01 22:01:21 ----A---- C:\Windows\SYSWOW64\mispace.dll
2014-07-01 22:01:21 ----A---- C:\Windows\SYSWOW64\d3d8thk.dll
2014-07-01 22:01:21 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2014-07-01 22:01:21 ----A---- C:\Windows\system32\WorkFoldersShell.dll
2014-07-01 22:01:21 ----A---- C:\Windows\system32\WorkfoldersControl.dll
2014-07-01 22:01:21 ----A---- C:\Windows\system32\wlansvc.dll
2014-07-01 22:01:21 ----A---- C:\Windows\system32\tlscsp.dll
2014-07-01 22:01:21 ----A---- C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-07-01 22:01:21 ----A---- C:\Windows\system32\srcore.dll
2014-07-01 22:01:21 ----A---- C:\Windows\system32\SkyDriveTelemetry.dll
2014-07-01 22:01:21 ----A---- C:\Windows\system32\mispace.dll
2014-07-01 22:01:21 ----A---- C:\Windows\system32\mfpmp.exe
2014-07-01 22:01:21 ----A---- C:\Windows\system32\BootMenuUX.dll
2014-07-01 22:01:20 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2014-07-01 22:01:20 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2014-07-01 22:01:20 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2014-07-01 22:01:20 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-07-01 22:01:20 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-07-01 22:01:20 ----A---- C:\Windows\system32\wlansec.dll
2014-07-01 22:01:20 ----A---- C:\Windows\system32\wlanmsm.dll
2014-07-01 22:01:20 ----A---- C:\Windows\system32\wlanhlp.dll
2014-07-01 22:01:20 ----A---- C:\Windows\system32\wlanapi.dll
2014-07-01 22:01:20 ----A---- C:\Windows\system32\tsgqec.dll
2014-07-01 22:01:20 ----A---- C:\Windows\system32\srclient.dll
2014-07-01 22:01:20 ----A---- C:\Windows\system32\SkyDrive.exe
2014-07-01 22:01:20 ----A---- C:\Windows\system32\rstrui.exe
2014-07-01 22:01:20 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-07-01 22:01:20 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2014-07-01 22:01:14 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-07-01 22:01:14 ----A---- C:\Windows\system32\gdi32.dll
2014-07-01 22:01:09 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-07-01 22:01:09 ----A---- C:\Windows\system32\DWrite.dll
2014-07-01 22:01:09 ----A---- C:\Windows\system32\drvinst.exe
2014-07-01 22:01:09 ----A---- C:\Windows\system32\drvcfg.exe
2014-07-01 22:01:08 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-07-01 22:01:08 ----A---- C:\Windows\system32\FntCache.dll
2014-07-01 22:00:38 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2014-07-01 22:00:38 ----A---- C:\Windows\system32\WpcWebSync.dll
2014-07-01 22:00:38 ----A---- C:\Windows\system32\WpcMon.exe
2014-07-01 22:00:38 ----A---- C:\Windows\system32\Wpc.dll
2014-07-01 22:00:37 ----A---- C:\Windows\system32\wpccpl.dll
2014-07-01 22:00:37 ----A---- C:\Windows\system32\drivers\wpcfltr.sys
2014-07-01 21:58:02 ----D---- C:\Program Files (x86)\TP-LINK
2014-07-01 21:57:50 ----A---- C:\Windows\system32\drivers\athw8x.sys
2014-07-01 21:57:50 ----A---- C:\Windows\system32\athw8x.sys
2014-07-01 21:57:11 ----D---- C:\ProgramData\TP-LINK
2014-07-01 21:55:00 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-07-01 21:50:47 ----RD---- C:\Windows\BrowserChoice
2014-07-01 18:05:11 ----A---- C:\Windows\system32\WSService.dll
2014-07-01 18:05:04 ----A---- C:\Windows\system32\glcndFilter.dll
2014-07-01 18:04:56 ----A---- C:\Windows\system32\OobeFldr.dll
2014-07-01 18:04:55 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2014-07-01 18:04:41 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2014-07-01 18:04:15 ----A---- C:\Windows\system32\wmp.dll
2014-07-01 18:04:14 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-07-01 18:04:13 ----A---- C:\Windows\system32\sppobjs.dll
2014-07-01 18:04:12 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-07-01 18:04:12 ----A---- C:\Windows\system32\tquery.dll
2014-07-01 18:04:11 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-07-01 18:04:10 ----A---- C:\Windows\system32\sysmain.dll
2014-07-01 18:04:08 ----A---- C:\Windows\system32\mssrch.dll
2014-07-01 18:04:05 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-07-01 18:04:03 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-07-01 18:04:03 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-07-01 18:04:02 ----A---- C:\Windows\system32\combase.dll
2014-07-01 18:03:59 ----A---- C:\Windows\system32\webservices.dll
2014-07-01 18:03:59 ----A---- C:\Windows\system32\actxprxy.dll
2014-07-01 18:03:58 ----A---- C:\Windows\system32\wlidsvc.dll
2014-07-01 18:03:57 ----A---- C:\Windows\system32\dui70.dll
2014-07-01 18:03:56 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2014-07-01 18:03:56 ----A---- C:\Windows\system32\schedsvc.dll
2014-07-01 18:03:56 ----A---- C:\Windows\system32\msTextPrediction.dll
2014-07-01 18:03:53 ----A---- C:\Windows\system32\mfnetsrc.dll
2014-07-01 18:03:52 ----A---- C:\Windows\system32\UIAutomationCore.dll
2014-07-01 18:03:51 ----A---- C:\Windows\system32\Windows.Globalization.dll
2014-07-01 18:03:51 ----A---- C:\Windows\system32\SRH.dll
2014-07-01 18:03:50 ----A---- C:\Windows\SYSWOW64\combase.dll
2014-07-01 18:03:49 ----A---- C:\Windows\SYSWOW64\webservices.dll
2014-07-01 18:03:48 ----A---- C:\Windows\system32\mfnetcore.dll
2014-07-01 18:03:47 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-07-01 18:03:47 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2014-07-01 18:03:47 ----A---- C:\Windows\system32\ExplorerFrame.dll
2014-07-01 18:03:46 ----A---- C:\Windows\system32\WofTasks.dll
2014-07-01 18:03:46 ----A---- C:\Windows\system32\uDWM.dll
2014-07-01 18:03:46 ----A---- C:\Windows\system32\StructuredQuery.dll
2014-07-01 18:03:46 ----A---- C:\Windows\system32\mfsrcsnk.dll
2014-07-01 18:03:46 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2014-07-01 18:03:46 ----A---- C:\Windows\system32\DfpCommon.dll
2014-07-01 18:03:45 ----A---- C:\Windows\system32\setupapi.dll
2014-07-01 18:03:45 ----A---- C:\Windows\system32\rpcss.dll
2014-07-01 18:03:44 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2014-07-01 18:03:44 ----A---- C:\Windows\system32\SettingSyncHost.exe
2014-07-01 18:03:43 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2014-07-01 18:03:43 ----A---- C:\Windows\SYSWOW64\dui70.dll
2014-07-01 18:03:43 ----A---- C:\Windows\system32\RacEngn.dll
2014-07-01 18:03:43 ----A---- C:\Windows\system32\ntdll.dll
2014-07-01 18:03:41 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-07-01 18:03:41 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2014-07-01 18:03:41 ----A---- C:\Windows\system32\drivers\acpi.sys
2014-07-01 18:03:40 ----A---- C:\Windows\SYSWOW64\SRH.dll
2014-07-01 18:03:40 ----A---- C:\Windows\system32\msctf.dll
2014-07-01 18:03:39 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2014-07-01 18:03:39 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-07-01 18:03:39 ----A---- C:\Windows\system32\SHCore.dll
2014-07-01 18:03:39 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-07-01 18:03:38 ----A---- C:\Windows\system32\SettingSyncCore.dll
2014-07-01 18:03:37 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2014-07-01 18:03:37 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-07-01 18:03:36 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2014-07-01 18:03:36 ----A---- C:\Windows\system32\wer.dll
2014-07-01 18:03:35 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2014-07-01 18:03:34 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2014-07-01 18:03:34 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2014-07-01 18:03:33 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2014-07-01 18:03:33 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-07-01 18:03:33 ----A---- C:\Windows\system32\uxtheme.dll
2014-07-01 18:03:33 ----A---- C:\Windows\system32\samsrv.dll
2014-07-01 18:03:32 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-07-01 18:03:32 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-07-01 18:03:32 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2014-07-01 18:03:32 ----A---- C:\Windows\system32\vpnike.dll
2014-07-01 18:03:32 ----A---- C:\Windows\system32\user32.dll
2014-07-01 18:03:31 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2014-07-01 18:03:31 ----A---- C:\Windows\system32\WebcamUi.dll
2014-07-01 18:03:31 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-07-01 18:03:31 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2014-07-01 18:03:30 ----A---- C:\Windows\system32\msdrm.dll
2014-07-01 18:03:30 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2014-07-01 18:03:29 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-07-01 18:03:29 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-07-01 18:03:29 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2014-07-01 18:03:29 ----A---- C:\Windows\system32\storagewmi.dll
2014-07-01 18:03:28 ----A---- C:\Windows\system32\MMDevAPI.dll
2014-07-01 18:03:27 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2014-07-01 18:03:27 ----A---- C:\Windows\system32\twinapi.dll
2014-07-01 18:03:27 ----A---- C:\Windows\system32\Taskmgr.exe
2014-07-01 18:03:27 ----A---- C:\Windows\system32\d3d10level9.dll
2014-07-01 18:03:26 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2014-07-01 18:03:26 ----A---- C:\Windows\system32\WinTypes.dll
2014-07-01 18:03:26 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2014-07-01 18:03:26 ----A---- C:\Windows\system32\reseteng.dll
2014-07-01 18:03:25 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2014-07-01 18:03:25 ----A---- C:\Windows\system32\schannel.dll
2014-07-01 18:03:25 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2014-07-01 18:03:24 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2014-07-01 18:03:24 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2014-07-01 18:03:24 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2014-07-01 18:03:23 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2014-07-01 18:03:23 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2014-07-01 18:03:23 ----A---- C:\Windows\system32\wpncore.dll
2014-07-01 18:03:23 ----A---- C:\Windows\system32\perftrack.dll
2014-07-01 18:03:22 ----A---- C:\Windows\SYSWOW64\msctf.dll
2014-07-01 18:03:22 ----A---- C:\Windows\system32\mfds.dll
2014-07-01 18:03:21 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-07-01 18:03:21 ----A---- C:\Windows\system32\WWAHost.exe
2014-07-01 18:03:21 ----A---- C:\Windows\system32\tpmvsc.dll
2014-07-01 18:03:21 ----A---- C:\Windows\system32\drivers\srv.sys
2014-07-01 18:03:21 ----A---- C:\Windows\system32\dfpinc.dat
2014-07-01 18:03:21 ----A---- C:\Windows\system32\advapi32.dll
2014-07-01 18:03:20 ----A---- C:\Windows\system32\lsm.dll
2014-07-01 18:03:20 ----A---- C:\Windows\system32\hal.dll
2014-07-01 18:03:19 ----A---- C:\Windows\system32\RecoveryDrive.exe
2014-07-01 18:03:19 ----A---- C:\Windows\system32\energy.dll
2014-07-01 18:03:18 ----A---- C:\Windows\SYSWOW64\mfds.dll
2014-07-01 18:03:18 ----A---- C:\Windows\system32\wcmsvc.dll
2014-07-01 18:03:17 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2014-07-01 18:03:17 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2014-07-01 18:03:17 ----A---- C:\Windows\system32\mssvp.dll
2014-07-01 18:03:17 ----A---- C:\Windows\system32\apphelp.dll
2014-07-01 18:03:16 ----A---- C:\Windows\system32\tdh.dll
2014-07-01 18:03:16 ----A---- C:\Windows\system32\iuilp.dll
2014-07-01 18:03:15 ----A---- C:\Windows\system32\winload.exe
2014-07-01 18:03:15 ----A---- C:\Windows\system32\pnrpsvc.dll
2014-07-01 18:03:15 ----A---- C:\Windows\system32\eapphost.dll
2014-07-01 18:03:15 ----A---- C:\Windows\system32\drivers\pci.sys
2014-07-01 18:03:14 ----A---- C:\Windows\system32\livessp.dll
2014-07-01 18:03:13 ----A---- C:\Windows\system32\wcncsvc.dll
2014-07-01 18:03:12 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2014-07-01 18:03:12 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-07-01 18:03:12 ----A---- C:\Windows\system32\winresume.exe
2014-07-01 18:03:12 ----A---- C:\Windows\system32\winlogon.exe
2014-07-01 18:03:12 ----A---- C:\Windows\system32\DismApi.dll
2014-07-01 18:03:11 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2014-07-01 18:03:11 ----A---- C:\Windows\system32\riched20.dll
2014-07-01 18:03:10 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2014-07-01 18:03:10 ----A---- C:\Windows\system32\mssph.dll
2014-07-01 18:03:09 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2014-07-01 18:03:09 ----A---- C:\Windows\system32\bcryptprimitives.dll
2014-07-01 18:03:08 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2014-07-01 18:03:08 ----A---- C:\Windows\system32\ActionCenter.dll
2014-07-01 18:03:07 ----A---- C:\Windows\system32\werconcpl.dll
2014-07-01 18:03:07 ----A---- C:\Windows\system32\TetheringMgr.dll
2014-07-01 18:03:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-07-01 18:03:06 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2014-07-01 18:03:06 ----A---- C:\Windows\system32\Windows.Graphics.dll
2014-07-01 18:03:06 ----A---- C:\Windows\system32\stobject.dll
2014-07-01 18:03:05 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-07-01 18:03:04 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-07-01 18:03:04 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2014-07-01 18:03:03 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-07-01 18:03:03 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-07-01 18:03:02 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2014-07-01 18:03:01 ----A---- C:\Windows\system32\sspicli.dll
2014-07-01 18:03:00 ----A---- C:\Windows\system32\tsmf.dll
2014-07-01 18:03:00 ----A---- C:\Windows\system32\SettingSync.dll
2014-07-01 18:02:59 ----A---- C:\Windows\system32\WofUtil.dll
2014-07-01 18:02:59 ----A---- C:\Windows\system32\wimgapi.dll
2014-07-01 18:02:59 ----A---- C:\Windows\system32\sppwinob.dll
2014-07-01 18:02:59 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-07-01 18:02:59 ----A---- C:\Windows\system32\dpapisrv.dll
2014-07-01 18:02:58 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2014-07-01 18:02:58 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-07-01 18:02:58 ----A---- C:\Windows\system32\wlidcli.dll
2014-07-01 18:02:58 ----A---- C:\Windows\system32\ntshrui.dll
2014-07-01 18:02:57 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2014-07-01 18:02:57 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2014-07-01 18:02:57 ----A---- C:\Windows\system32\thumbcache.dll
2014-07-01 18:02:57 ----A---- C:\Windows\system32\recimg.exe
2014-07-01 18:02:57 ----A---- C:\Windows\system32\dfp.exe
2014-07-01 18:02:56 ----A---- C:\Windows\SYSWOW64\slc.dll
2014-07-01 18:02:56 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2014-07-01 18:02:56 ----A---- C:\Windows\system32\aelupsvc.dll
2014-07-01 18:02:55 ----A---- C:\Windows\system32\Windows.Devices.Usb.dll
2014-07-01 18:02:55 ----A---- C:\Windows\system32\slc.dll
2014-07-01 18:02:55 ----A---- C:\Windows\system32\msra.exe
2014-07-01 18:02:55 ----A---- C:\Windows\system32\MrmIndexer.dll
2014-07-01 18:02:54 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2014-07-01 18:02:54 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-07-01 18:02:54 ----A---- C:\Windows\system32\Dism.exe
2014-07-01 18:02:54 ----A---- C:\Windows\system32\bisrv.dll
2014-07-01 18:02:54 ----A---- C:\Windows\system32\AppxPackaging.dll
2014-07-01 18:02:53 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2014-07-01 18:02:53 ----A---- C:\Windows\SYSWOW64\riched20.dll
2014-07-01 18:02:53 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-07-01 18:02:53 ----A---- C:\Windows\system32\nettrace.dll
2014-07-01 18:02:53 ----A---- C:\Windows\system32\AppReadiness.dll
2014-07-01 18:02:52 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2014-07-01 18:02:52 ----A---- C:\Windows\system32\pnidui.dll
2014-07-01 18:02:52 ----A---- C:\Windows\system32\dwmredir.dll
2014-07-01 18:02:52 ----A---- C:\Windows\system32\comdlg32.dll
2014-07-01 18:02:51 ----A---- C:\Windows\SYSWOW64\stobject.dll
2014-07-01 18:02:51 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2014-07-01 18:02:51 ----A---- C:\Windows\system32\WMPDMC.exe
2014-07-01 18:02:51 ----A---- C:\Windows\system32\WinSCard.dll
2014-07-01 18:02:50 ----A---- C:\Windows\system32\psmsrv.dll
2014-07-01 18:02:49 ----A---- C:\Windows\system32\mftranscode.dll
2014-07-01 18:02:48 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2014-07-01 18:02:48 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-07-01 18:02:48 ----A---- C:\Windows\system32\WlanMM.dll
2014-07-01 18:02:48 ----A---- C:\Windows\system32\osk.exe
2014-07-01 18:02:47 ----A---- C:\Windows\SYSWOW64\mftranscode.dll
2014-07-01 18:02:47 ----A---- C:\Windows\system32\VAN.dll
2014-07-01 18:02:47 ----A---- C:\Windows\system32\ninput.dll
2014-07-01 18:02:47 ----A---- C:\Windows\system32\msvproc.dll
2014-07-01 18:02:47 ----A---- C:\Windows\system32\InputSwitch.dll
2014-07-01 18:02:46 ----A---- C:\Windows\system32\authz.dll
2014-07-01 18:02:44 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Usb.dll
2014-07-01 18:02:44 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-07-01 18:02:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-07-01 18:02:43 ----A---- C:\Windows\system32\fdprint.dll
2014-07-01 18:02:42 ----A---- C:\Windows\system32\SyncCenter.dll
2014-07-01 18:02:42 ----A---- C:\Windows\system32\pcsvDevice.dll
2014-07-01 18:02:42 ----A---- C:\Windows\system32\conhost.exe
2014-07-01 18:02:41 ----A---- C:\Windows\system32\taskeng.exe
2014-07-01 18:02:41 ----A---- C:\Windows\system32\DscCore.dll
2014-07-01 18:02:40 ----A---- C:\Windows\SYSWOW64\fdprint.dll
2014-07-01 18:02:40 ----A---- C:\Windows\system32\vbscript.dll
2014-07-01 18:02:40 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2014-07-01 18:02:39 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2014-07-01 18:02:39 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2014-07-01 18:02:39 ----A---- C:\Windows\system32\wlidcredprov.dll
2014-07-01 18:02:39 ----A---- C:\Windows\system32\wersvc.dll
2014-07-01 18:02:39 ----A---- C:\Windows\system32\wbiosrvc.dll
2014-07-01 18:02:39 ----A---- C:\Windows\system32\themeui.dll
2014-07-01 18:02:39 ----A---- C:\Windows\system32\rdbui.dll
2014-07-01 18:02:38 ----A---- C:\Windows\system32\sqmapi.dll
2014-07-01 18:02:38 ----A---- C:\Windows\system32\mdmregistration.dll
2014-07-01 18:02:38 ----A---- C:\Windows\system32\drivers\agilevpn.sys
2014-07-01 18:02:37 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-07-01 18:02:37 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-07-01 18:02:37 ----A---- C:\Windows\SYSWOW64\DismApi.dll
2014-07-01 18:02:37 ----A---- C:\Windows\system32\wbengine.exe
2014-07-01 18:02:37 ----A---- C:\Windows\system32\rdpcore.dll
2014-07-01 18:02:36 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2014-07-01 18:02:36 ----A---- C:\Windows\SYSWOW64\themeui.dll
2014-07-01 18:02:36 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2014-07-01 18:02:36 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-07-01 18:02:35 ----A---- C:\Windows\system32\SndVol.exe
2014-07-01 18:02:34 ----A---- C:\Windows\SYSWOW64\Dism.exe
2014-07-01 18:02:34 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2014-07-01 18:02:34 ----A---- C:\Windows\system32\WerFault.exe
2014-07-01 18:02:34 ----A---- C:\Windows\system32\DscCoreConfProv.dll
2014-07-01 18:02:33 ----A---- C:\Windows\system32\sti.dll
2014-07-01 18:02:33 ----A---- C:\Windows\system32\SkyDriveShell.dll
2014-07-01 18:02:33 ----A---- C:\Windows\system32\oleaut32.dll
2014-07-01 18:02:32 ----A---- C:\Windows\system32\sppc.dll
2014-07-01 18:02:32 ----A---- C:\Windows\system32\eapp3hst.dll
2014-07-01 18:02:31 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-07-01 18:02:31 ----A---- C:\Windows\SYSWOW64\InputSwitch.dll
2014-07-01 18:02:31 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2014-07-01 18:02:31 ----A---- C:\Windows\system32\msieftp.dll
2014-07-01 18:02:31 ----A---- C:\Windows\system32\msctfuimanager.dll
2014-07-01 18:02:31 ----A---- C:\Windows\system32\drivers\SerCx2.sys
2014-07-01 18:02:31 ----A---- C:\Windows\system32\bcrypt.dll
2014-07-01 18:02:27 ----A---- C:\Windows\system32\pcasvc.dll
2014-07-01 18:02:27 ----A---- C:\Windows\system32\msched.dll
2014-07-01 18:02:27 ----A---- C:\Windows\system32\CryptoWinRT.dll
2014-07-01 18:02:27 ----A---- C:\Windows\system32\aepdu.dll
2014-07-01 18:02:26 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2014-07-01 18:02:26 ----A---- C:\Windows\system32\PkgMgr.exe
2014-07-01 18:02:26 ----A---- C:\Windows\system32\kd_02_8086.dll
2014-07-01 18:02:25 ----A---- C:\Windows\SYSWOW64\sppc.dll
2014-07-01 18:02:25 ----A---- C:\Windows\system32\wwanmm.dll
2014-07-01 18:02:25 ----A---- C:\Windows\system32\WSClient.dll
2014-07-01 18:02:25 ----A---- C:\Windows\system32\WLanConn.dll
2014-07-01 18:02:25 ----A---- C:\Windows\system32\wimserv.exe
2014-07-01 18:02:25 ----A---- C:\Windows\system32\drivers\rdbss.sys
2014-07-01 18:02:25 ----A---- C:\Windows\system32\dhcpcore.dll
2014-07-01 18:02:25 ----A---- C:\Windows\system32\ci.dll
2014-07-01 18:02:24 ----A---- C:\Windows\SYSWOW64\VAN.dll
2014-07-01 18:02:24 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2014-07-01 18:02:24 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-07-01 18:02:24 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-07-01 18:02:24 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2014-07-01 18:02:24 ----A---- C:\Windows\system32\wscinterop.dll
2014-07-01 18:02:24 ----A---- C:\Windows\system32\microsoft-windows-system-events.dll
2014-07-01 18:02:23 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2014-07-01 18:02:23 ----A---- C:\Windows\system32\PurchaseWindowsLicense.dll
2014-07-01 18:02:23 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-07-01 18:02:22 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2014-07-01 18:02:22 ----A---- C:\Windows\SYSWOW64\SkyDriveShell.dll
2014-07-01 18:02:22 ----A---- C:\Windows\system32\gameux.dll
2014-07-01 18:02:22 ----A---- C:\Windows\system32\DeviceCenter.dll
2014-07-01 18:02:21 ----A---- C:\Windows\SYSWOW64\WlanMM.dll
2014-07-01 18:02:21 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2014-07-01 18:02:21 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeui.exe
2014-07-01 18:02:21 ----A---- C:\Windows\system32\fhcfg.dll
2014-07-01 18:02:21 ----A---- C:\Windows\system32\dwm.exe
2014-07-01 18:02:20 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2014-07-01 18:02:20 ----A---- C:\Windows\SYSWOW64\msctfuimanager.dll
2014-07-01 18:02:20 ----A---- C:\Windows\system32\winsrv.dll
2014-07-01 18:02:20 ----A---- C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2014-07-01 18:02:20 ----A---- C:\Windows\system32\taskhost.exe
2014-07-01 18:02:19 ----A---- C:\Windows\SYSWOW64\CryptoWinRT.dll
2014-07-01 18:02:19 ----A---- C:\Windows\system32\rasgcw.dll
2014-07-01 18:02:19 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-07-01 18:02:19 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-07-01 18:02:19 ----A---- C:\Windows\system32\drivers\luafv.sys
2014-07-01 18:02:18 ----A---- C:\Windows\SYSWOW64\authz.dll
2014-07-01 18:02:18 ----A---- C:\Windows\system32\Faultrep.dll
2014-07-01 18:02:18 ----A---- C:\Windows\system32\dmdskmgr.dll
2014-07-01 18:02:17 ----A---- C:\Windows\system32\wscapi.dll
2014-07-01 18:02:17 ----A---- C:\Windows\system32\wermgr.exe
2014-07-01 18:02:16 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-07-01 18:02:16 ----A---- C:\Windows\system32\srchadmin.dll
2014-07-01 18:02:15 ----A---- C:\Windows\system32\usercpl.dll
2014-07-01 18:02:15 ----A---- C:\Windows\system32\drivers\sdbus.sys
2014-07-01 18:02:14 ----A---- C:\Windows\SYSWOW64\ninput.dll
2014-07-01 18:02:14 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2014-07-01 18:02:14 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2014-07-01 18:02:10 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-07-01 18:02:10 ----A---- C:\Windows\system32\wsqmcons.exe
2014-07-01 18:02:10 ----A---- C:\Windows\system32\smss.exe
2014-07-01 18:02:10 ----A---- C:\Windows\system32\BioCredProv.dll
2014-07-01 18:02:09 ----A---- C:\Windows\SYSWOW64\sti.dll
2014-07-01 18:02:09 ----A---- C:\Windows\system32\wwanconn.dll
2014-07-01 18:02:09 ----A---- C:\Windows\system32\vmrdvcore.dll
2014-07-01 18:02:09 ----A---- C:\Windows\system32\systemreset.exe
2014-07-01 18:02:09 ----A---- C:\Windows\system32\SndVolSSO.dll
2014-07-01 18:02:09 ----A---- C:\Windows\system32\RASMM.dll
2014-07-01 18:02:09 ----A---- C:\Windows\system32\ipnathlp.dll
2014-07-01 18:02:09 ----A---- C:\Windows\system32\imm32.dll
2014-07-01 18:02:09 ----A---- C:\Windows\system32\AltTab.dll
2014-07-01 18:02:08 ----A---- C:\Windows\system32\vdsbas.dll
2014-07-01 18:02:08 ----A---- C:\Windows\system32\rastls.dll
2014-07-01 18:02:08 ----A---- C:\Windows\system32\PlayToManager.dll
2014-07-01 18:02:08 ----A---- C:\Windows\system32\fhcpl.dll
2014-07-01 18:02:07 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2014-07-01 18:02:07 ----A---- C:\Windows\system32\miutils.dll
2014-07-01 18:02:06 ----A---- C:\Windows\system32\netid.dll
2014-07-01 18:02:06 ----A---- C:\Windows\system32\fsutil.exe
2014-07-01 18:02:05 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2014-07-01 18:02:05 ----A---- C:\Windows\system32\taskhostex.exe
2014-07-01 18:02:05 ----A---- C:\Windows\system32\sharemediacpl.dll
2014-07-01 18:02:05 ----A---- C:\Windows\system32\SensorsClassExtension.dll
2014-07-01 18:02:05 ----A---- C:\Windows\system32\drivers\msgpioclx.sys
2014-07-01 18:02:05 ----A---- C:\Windows\system32\das.dll
2014-07-01 18:02:04 ----A---- C:\Windows\system32\WSDApi.dll
2014-07-01 18:02:04 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-07-01 18:02:04 ----A---- C:\Windows\system32\sdclt.exe
2014-07-01 18:02:04 ----A---- C:\Windows\system32\printui.dll
2014-07-01 18:02:04 ----A---- C:\Windows\system32\CloudNotifications.exe
2014-07-01 18:02:03 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2014-07-01 18:02:03 ----A---- C:\Windows\SYSWOW64\CloudNotifications.exe
2014-07-01 18:02:03 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2014-07-01 18:02:03 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2014-07-01 18:02:03 ----A---- C:\Windows\system32\imagehlp.dll

2014-07-01 18:02:03 ----A---- C:\Windows\system32\drivers\ipnat.sys
2014-07-01 18:02:03 ----A---- C:\Windows\system32\drivers\fileinfo.sys
2014-07-01 18:02:02 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2014-07-01 18:02:02 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-07-01 18:02:02 ----A---- C:\Windows\system32\rdsdwmdr.dll
2014-07-01 18:02:02 ----A---- C:\Windows\system32\drivers\refs.sys
2014-07-01 18:02:01 ----A---- C:\Windows\SYSWOW64\imm32.dll
2014-07-01 18:02:01 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-07-01 18:02:01 ----A---- C:\Windows\system32\powrprof.dll
2014-07-01 18:02:01 ----A---- C:\Windows\system32\mssprxy.dll
2014-07-01 18:02:01 ----A---- C:\Windows\system32\drivers\intelpep.sys
2014-07-01 18:02:01 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2014-07-01 18:02:01 ----A---- C:\Windows\system32\drivers\BasicRender.sys
2014-07-01 18:02:00 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2014-07-01 18:02:00 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2014-07-01 18:02:00 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2014-07-01 18:02:00 ----A---- C:\Windows\system32\Utilman.exe
2014-07-01 18:02:00 ----A---- C:\Windows\system32\rascustom.dll
2014-07-01 18:02:00 ----A---- C:\Windows\system32\newdev.dll
2014-07-01 18:02:00 ----A---- C:\Windows\system32\drivers\pdc.sys
2014-07-01 18:01:59 ----A---- C:\Windows\SYSWOW64\gameux.dll
2014-07-01 18:01:59 ----A---- C:\Windows\system32\zipfldr.dll
2014-07-01 18:01:59 ----A---- C:\Windows\system32\BthRadioMedia.dll
2014-07-01 18:01:59 ----A---- C:\Windows\system32\aepic.dll
2014-07-01 18:01:58 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2014-07-01 18:01:58 ----A---- C:\Windows\system32\drivers\sdstor.sys
2014-07-01 18:01:58 ----A---- C:\Windows\system32\dmvdsitf.dll
2014-07-01 18:01:57 ----A---- C:\Windows\system32\RestoreOptIn.exe
2014-07-01 18:01:56 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-07-01 18:01:55 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2014-07-01 18:01:55 ----A---- C:\Windows\system32\wldp.dll
2014-07-01 18:01:55 ----A---- C:\Windows\system32\vds.exe
2014-07-01 18:01:55 ----A---- C:\Windows\system32\spwizeng.dll
2014-07-01 18:01:54 ----A---- C:\Windows\system32\wow64win.dll
2014-07-01 18:01:54 ----A---- C:\Windows\system32\UserAccountBroker.exe
2014-07-01 18:01:54 ----A---- C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2014-07-01 18:01:54 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2014-07-01 18:01:54 ----A---- C:\Windows\system32\LockScreenContent.dll
2014-07-01 18:01:54 ----A---- C:\Windows\system32\appinfo.dll
2014-07-01 18:01:53 ----A---- C:\Windows\SYSWOW64\powrprof.dll
2014-07-01 18:01:53 ----A---- C:\Windows\SYSWOW64\efswrt.dll
2014-07-01 18:01:53 ----A---- C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2014-07-01 18:01:53 ----A---- C:\Windows\system32\efswrt.dll
2014-07-01 18:01:52 ----A---- C:\Windows\SYSWOW64\WLanConn.dll
2014-07-01 18:01:52 ----A---- C:\Windows\SYSWOW64\rasgcw.dll
2014-07-01 18:01:52 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2014-07-01 18:01:52 ----A---- C:\Windows\system32\WorkFoldersGPExt.dll
2014-07-01 18:01:52 ----A---- C:\Windows\system32\pcaui.dll
2014-07-01 18:01:52 ----A---- C:\Windows\system32\easinvoker.exe
2014-07-01 18:01:51 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2014-07-01 18:01:51 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2014-07-01 18:01:51 ----A---- C:\Windows\system32\drivers\stornvme.sys
2014-07-01 18:01:50 ----A---- C:\Windows\SYSWOW64\RestoreOptIn.exe
2014-07-01 18:01:50 ----A---- C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-07-01 18:01:50 ----A---- C:\Windows\system32\dot3mm.dll
2014-07-01 18:01:50 ----A---- C:\Windows\system32\clrhost.dll
2014-07-01 18:01:50 ----A---- C:\Windows\system32\bcd.dll
2014-07-01 18:01:50 ----A---- C:\Windows\system32\AppxSysprep.dll
2014-07-01 18:01:49 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2014-07-01 18:01:49 ----A---- C:\Windows\SYSWOW64\UserAccountBroker.exe
2014-07-01 18:01:49 ----A---- C:\Windows\system32\drivers\VerifierExt.sys
2014-07-01 18:01:48 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2014-07-01 18:01:48 ----A---- C:\Windows\SYSWOW64\pcaui.dll
2014-07-01 18:01:48 ----A---- C:\Windows\SYSWOW64\newdev.dll
2014-07-01 18:01:48 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-01 18:01:47 ----A---- C:\Windows\SYSWOW64\wscinterop.dll
2014-07-01 18:01:47 ----A---- C:\Windows\system32\DAMM.dll
2014-07-01 18:01:47 ----A---- C:\Windows\system32\bootux.dll
2014-07-01 18:01:46 ----A---- C:\Windows\SYSWOW64\bcd.dll
2014-07-01 18:01:46 ----A---- C:\Windows\system32\WiFiDisplay.dll
2014-07-01 18:01:46 ----A---- C:\Windows\system32\drivers\dumpfve.sys
2014-07-01 18:01:45 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-07-01 18:01:44 ----A---- C:\Windows\system32\fontsub.dll
2014-07-01 18:01:43 ----A---- C:\Windows\SYSWOW64\cleanmgr.exe
2014-07-01 18:01:42 ----A---- C:\Windows\system32\samlib.dll
2014-07-01 18:01:42 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2014-07-01 18:01:42 ----A---- C:\Windows\system32\cleanmgr.exe
2014-07-01 18:01:41 ----A---- C:\Windows\SYSWOW64\Utilman.exe
2014-07-01 18:01:41 ----A---- C:\Windows\system32\provsvc.dll
2014-07-01 18:01:40 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2014-07-01 18:01:40 ----A---- C:\Windows\system32\AxInstSv.dll
2014-07-01 18:01:39 ----A---- C:\Windows\system32\rasmans.dll
2014-07-01 18:01:39 ----A---- C:\Windows\system32\drivers\appid.sys
2014-07-01 18:01:39 ----A---- C:\Windows\system32\dafBth.dll
2014-07-01 18:01:39 ----A---- C:\Windows\system32\AuthHost.exe
2014-07-01 18:01:38 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2014-07-01 18:01:38 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2014-07-01 18:01:38 ----A---- C:\Windows\system32\netiohlp.dll
2014-07-01 18:01:38 ----A---- C:\Windows\system32\drivers\UCX01000.SYS
2014-07-01 18:01:37 ----A---- C:\Windows\SYSWOW64\netid.dll
2014-07-01 18:01:37 ----A---- C:\Windows\system32\WerFaultSecure.exe
2014-07-01 18:01:37 ----A---- C:\Windows\system32\korwbrkr.dll
2014-07-01 18:01:37 ----A---- C:\Windows\system32\deviceaccess.dll
2014-07-01 18:01:36 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2014-07-01 18:01:36 ----A---- C:\Windows\SYSWOW64\dmvdsitf.dll
2014-07-01 18:01:36 ----A---- C:\Windows\SYSWOW64\BioCredProv.dll
2014-07-01 18:01:35 ----A---- C:\Windows\system32\scrrun.dll
2014-07-01 18:01:35 ----A---- C:\Windows\system32\drivers\http.sys
2014-07-01 18:01:34 ----A---- C:\Windows\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-07-01 18:01:34 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-07-01 18:01:34 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2014-07-01 18:01:34 ----A---- C:\Windows\SYSWOW64\clrhost.dll
2014-07-01 18:01:34 ----A---- C:\Windows\system32\PSHED.DLL
2014-07-01 18:01:34 ----A---- C:\Windows\system32\easwrt.dll
2014-07-01 18:01:34 ----A---- C:\Windows\system32\drivers\BtaMPM.sys
2014-07-01 18:01:33 ----A---- C:\Windows\system32\netplwiz.dll
2014-07-01 18:01:33 ----A---- C:\Windows\system32\CloudStorageWizard.exe
2014-07-01 18:01:33 ----A---- C:\Windows\system32\acppage.dll
2014-07-01 18:01:32 ----A---- C:\Windows\SYSWOW64\WorkFoldersRes.dll
2014-07-01 18:01:32 ----A---- C:\Windows\SYSWOW64\miutils.dll
2014-07-01 18:01:32 ----A---- C:\Windows\SYSWOW64\dmdskmgr.dll
2014-07-01 18:01:32 ----A---- C:\Windows\system32\WorkFoldersRes.dll
2014-07-01 18:01:32 ----A---- C:\Windows\system32\WorkFolders.exe
2014-07-01 18:01:32 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-01 18:01:31 ----A---- C:\Windows\SYSWOW64\printui.dll
2014-07-01 18:01:31 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2014-07-01 18:01:31 ----A---- C:\Windows\system32\wcmcsp.dll
2014-07-01 18:01:31 ----A---- C:\Windows\system32\scrobj.dll
2014-07-01 18:01:30 ----A---- C:\Windows\system32\LockScreenContentServer.exe
2014-07-01 18:01:30 ----A---- C:\Windows\system32\bi.dll
2014-07-01 18:01:30 ----A---- C:\Windows\system32\AuthBroker.dll
2014-07-01 18:01:29 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-07-01 18:01:29 ----A---- C:\Windows\system32\winbrand.dll
2014-07-01 18:01:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-07-01 18:01:28 ----A---- C:\Windows\SYSWOW64\samlib.dll
2014-07-01 18:01:28 ----A---- C:\Windows\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-07-01 18:01:28 ----A---- C:\Windows\SYSWOW64\deviceaccess.dll
2014-07-01 18:01:28 ----A---- C:\Windows\system32\slpts.dll
2014-07-01 18:01:28 ----A---- C:\Windows\system32\DWWIN.EXE
2014-07-01 18:01:27 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2014-07-01 18:01:27 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2014-07-01 18:01:27 ----A---- C:\Windows\SYSWOW64\easwrt.dll
2014-07-01 18:01:27 ----A---- C:\Windows\SYSWOW64\acppage.dll
2014-07-01 18:01:27 ----A---- C:\Windows\system32\wbadmin.exe
2014-07-01 18:01:27 ----A---- C:\Windows\system32\PrintDialogs.dll
2014-07-01 18:01:27 ----A---- C:\Windows\system32\bcdedit.exe
2014-07-01 18:01:26 ----A---- C:\Windows\SYSWOW64\wlidcli.dll
2014-07-01 18:01:26 ----A---- C:\Windows\system32\wpnprv.dll
2014-07-01 18:01:26 ----A---- C:\Windows\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-07-01 18:01:26 ----A---- C:\Windows\system32\shsetup.dll
2014-07-01 18:01:26 ----A---- C:\Windows\system32\autofmt.exe
2014-07-01 18:01:26 ----A---- C:\Windows\system32\autoconv.exe
2014-07-01 18:01:25 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2014-07-01 18:01:25 ----A---- C:\Windows\system32\Windows.Media.Renewal.dll
2014-07-01 18:01:25 ----A---- C:\Windows\system32\SysResetErr.exe
2014-07-01 18:01:25 ----A---- C:\Windows\system32\sud.dll
2014-07-01 18:01:25 ----A---- C:\Windows\system32\sppnp.dll
2014-07-01 18:01:24 ----A---- C:\Windows\SYSWOW64\wlidcredprov.dll
2014-07-01 18:01:24 ----A---- C:\Windows\SYSWOW64\scrobj.dll
2014-07-01 18:01:24 ----A---- C:\Windows\system32\untfs.dll
2014-07-01 18:01:24 ----A---- C:\Windows\system32\bcdboot.exe
2014-07-01 18:01:24 ----A---- C:\Windows\system32\autochk.exe
2014-07-01 18:01:23 ----A---- C:\Windows\SYSWOW64\slpts.dll
2014-07-01 18:01:23 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2014-07-01 18:01:23 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-07-01 18:01:23 ----A---- C:\Windows\system32\spbcd.dll
2014-07-01 18:01:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-07-01 18:01:23 ----A---- C:\Windows\system32\migisol.dll
2014-07-01 18:01:22 ----A---- C:\Windows\SYSWOW64\winbrand.dll
2014-07-01 18:01:22 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-07-01 18:01:22 ----A---- C:\Windows\SYSWOW64\autochk.exe
2014-07-01 18:01:22 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2014-07-01 18:01:22 ----A---- C:\Windows\system32\DAConn.dll
2014-07-01 18:01:21 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2014-07-01 18:01:21 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2014-07-01 18:01:21 ----A---- C:\Windows\system32\fhevents.dll
2014-07-01 18:01:20 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-07-01 18:01:20 ----A---- C:\Windows\SYSWOW64\AuthBroker.dll
2014-07-01 18:01:20 ----A---- C:\Windows\system32\UXInit.dll
2014-07-01 18:01:20 ----A---- C:\Windows\system32\IdCtrls.dll
2014-07-01 18:01:19 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-07-01 18:01:19 ----A---- C:\Windows\SYSWOW64\StorageContextHandler.dll
2014-07-01 18:01:19 ----A---- C:\Windows\SYSWOW64\DWWIN.EXE
2014-07-01 18:01:19 ----A---- C:\Windows\system32\vdsutil.dll
2014-07-01 18:01:19 ----A---- C:\Windows\system32\spcompat.dll
2014-07-01 18:01:19 ----A---- C:\Windows\system32\drivers\watchdog.sys
2014-07-01 18:01:18 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2014-07-01 18:01:18 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2014-07-01 18:01:18 ----A---- C:\Windows\system32\cscript.exe
2014-07-01 18:01:17 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2014-07-01 18:01:17 ----A---- C:\Windows\system32\energytask.dll
2014-07-01 18:01:17 ----A---- C:\Windows\system32\diskpart.exe
2014-07-01 18:01:16 ----A---- C:\Windows\SYSWOW64\WimBootCompress.ini
2014-07-01 18:01:16 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2014-07-01 18:01:16 ----A---- C:\Windows\system32\WimBootCompress.ini
2014-07-01 18:01:16 ----A---- C:\Windows\system32\eappcfg.dll
2014-07-01 18:01:14 ----A---- C:\Windows\system32\werui.dll
2014-07-01 18:01:14 ----A---- C:\Windows\system32\devinv.dll
2014-07-01 18:01:11 ----A---- C:\Windows\system32\powercfg.exe
2014-07-01 18:01:09 ----A---- C:\Windows\SYSWOW64\sud.dll
2014-07-01 18:01:09 ----A---- C:\Windows\system32\RelPost.exe
2014-07-01 18:01:08 ----A---- C:\Windows\system32\SettingMonitor.dll
2014-07-01 18:01:08 ----A---- C:\Windows\system32\pnpclean.dll
2014-07-01 18:01:08 ----A---- C:\Windows\system32\deviceassociation.dll
2014-07-01 18:01:07 ----A---- C:\Windows\SYSWOW64\ftp.exe
2014-07-01 18:01:06 ----A---- C:\Windows\SYSWOW64\SettingMonitor.dll
2014-07-01 18:01:06 ----A---- C:\Windows\system32\PlayToDevice.dll
2014-07-01 18:01:06 ----A---- C:\Windows\system32\dasHost.exe
2014-07-01 18:01:05 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-07-01 18:01:05 ----A---- C:\Windows\system32\srrstr.dll
2014-07-01 18:01:05 ----A---- C:\Windows\system32\qedit.dll
2014-07-01 18:01:04 ----A---- C:\Windows\SYSWOW64\offreg.dll
2014-07-01 18:01:04 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2014-07-01 18:01:04 ----A---- C:\Windows\system32\ReAgentc.exe
2014-07-01 18:01:04 ----A---- C:\Windows\system32\offreg.dll
2014-07-01 18:01:03 ----A---- C:\Windows\SYSWOW64\winsku.dll
2014-07-01 18:01:03 ----A---- C:\Windows\SYSWOW64\SSShim.dll
2014-07-01 18:01:03 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2014-07-01 18:01:03 ----A---- C:\Windows\SYSWOW64\IdCtrls.dll
2014-07-01 18:01:03 ----A---- C:\Windows\SYSWOW64\CloudStorageWizard.exe
2014-07-01 18:01:03 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-07-01 18:01:03 ----A---- C:\Windows\system32\ActionQueue.dll
2014-07-01 18:01:02 ----A---- C:\Windows\SYSWOW64\PlayToDevice.dll
2014-07-01 18:01:02 ----A---- C:\Windows\SYSWOW64\deviceassociation.dll
2014-07-01 18:01:02 ----A---- C:\Windows\system32\msshooks.dll
2014-07-01 18:01:02 ----A---- C:\Windows\system32\dfrgui.exe
2014-07-01 18:01:01 ----A---- C:\Windows\SYSWOW64\werui.dll
2014-07-01 18:01:01 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2014-07-01 18:01:01 ----A---- C:\Windows\SYSWOW64\powercfg.exe
2014-07-01 18:01:01 ----A---- C:\Windows\system32\SystemSettings.Handlers.dll
2014-07-01 18:01:01 ----A---- C:\Windows\system32\mf3216.dll
2014-07-01 18:01:00 ----A---- C:\Windows\SYSWOW64\migisol.dll
2014-07-01 18:01:00 ----A---- C:\Windows\system32\f3ahvoas.dll
2014-07-01 18:00:59 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2014-07-01 18:00:59 ----A---- C:\Windows\system32\SrTasks.exe
2014-07-01 18:00:59 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2014-07-01 18:00:58 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2014-07-01 18:00:58 ----A---- C:\Windows\system32\winsku.dll
2014-07-01 18:00:58 ----A---- C:\Windows\system32\wercplsupport.dll
2014-07-01 18:00:58 ----A---- C:\Windows\system32\vdsdyn.dll
2014-07-01 18:00:57 ----A---- C:\Windows\system32\themecpl.dll
2014-07-01 18:00:57 ----A---- C:\Windows\system32\LockScreenContentHost.dll
2014-07-01 18:00:57 ----A---- C:\Windows\system32\Defrag.exe
2014-07-01 18:00:57 ----A---- C:\Windows\system32\AepRoam.dll
2014-07-01 18:00:56 ----A---- C:\Windows\system32\DevicePairing.dll
2014-07-01 18:00:55 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2014-07-01 18:00:55 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-07-01 18:00:54 ----A---- C:\Windows\SYSWOW64\sxshared.dll
2014-07-01 18:00:54 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2014-07-01 18:00:54 ----A---- C:\Windows\system32\eappgnui.dll
2014-07-01 18:00:53 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-07-01 18:00:53 ----A---- C:\Windows\SYSWOW64\ConfigureExpandedStorage.dll
2014-07-01 18:00:53 ----A---- C:\Windows\system32\mcbuilder.exe
2014-07-01 18:00:53 ----A---- C:\Windows\system32\ConfigureExpandedStorage.dll
2014-07-01 18:00:52 ----A---- C:\Windows\system32\scavengeui.dll
2014-07-01 18:00:49 ----A---- C:\Windows\system32\wincorlib.dll
2014-07-01 18:00:48 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-07-01 18:00:47 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2014-07-01 18:00:46 ----A---- C:\Windows\SYSWOW64\wincorlib.dll
2014-07-01 18:00:43 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2014-07-01 18:00:43 ----A---- C:\Windows\system32\BulkOperationHost.exe
2014-07-01 18:00:42 ----A---- C:\Windows\system32\syncui.dll
2014-07-01 18:00:42 ----A---- C:\Windows\system32\SettingSyncPolicy.dll
2014-07-01 18:00:40 ----A---- C:\Windows\SYSWOW64\finger.exe
2014-07-01 18:00:40 ----A---- C:\Windows\system32\deviceregistration.dll
2014-07-01 18:00:39 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2014-07-01 18:00:39 ----A---- C:\Windows\SYSWOW64\SettingSyncPolicy.dll
2014-07-01 18:00:39 ----A---- C:\Windows\system32\wmpdxm.dll
2014-07-01 18:00:38 ----A---- C:\Windows\system32\ocsetapi.dll
2014-07-01 18:00:38 ----A---- C:\Windows\system32\GlobCollationHost.dll
2014-07-01 18:00:37 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2014-07-01 18:00:37 ----A---- C:\Windows\system32\StorageContextHandler.dll
2014-07-01 18:00:36 ----AH---- C:\Windows\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-07-01 18:00:36 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2014-07-01 18:00:36 ----A---- C:\Windows\system32\dataclen.dll
2014-07-01 18:00:36 ----A---- C:\Windows\system32\aitagent.exe
2014-07-01 18:00:35 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-07-01 18:00:35 ----AH---- C:\Windows\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-07-01 18:00:35 ----A---- C:\Windows\SYSWOW64\korwbrkr.dll
2014-07-01 18:00:33 ----A---- C:\Windows\SYSWOW64\dataclen.dll
2014-07-01 18:00:33 ----A---- C:\Windows\system32\fhsvcctl.dll
2014-07-01 18:00:32 ----AH---- C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-07-01 18:00:32 ----A---- C:\Windows\system32\shimeng.dll
2014-07-01 18:00:32 ----A---- C:\Windows\system32\lpksetupproxyserv.dll
2014-07-01 18:00:32 ----A---- C:\Windows\system32\aeinv.dll
2014-07-01 18:00:31 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-07-01 18:00:31 ----AH---- C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-07-01 18:00:31 ----A---- C:\Windows\system32\winbici.dll
2014-07-01 18:00:31 ----A---- C:\Windows\system32\dxmasf.dll
2014-07-01 18:00:30 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-07-01 18:00:30 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-07-01 18:00:30 ----A---- C:\Windows\system32\rdpclip.exe
2014-07-01 18:00:30 ----A---- C:\Windows\system32\occache.dll
2014-07-01 18:00:30 ----A---- C:\Windows\system32\fveskybackup.dll
2014-07-01 18:00:30 ----A---- C:\Windows\system32\ftp.exe
2014-07-01 18:00:29 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-07-01 18:00:29 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-07-01 18:00:29 ----A---- C:\Windows\SYSWOW64\f3ahvoas.dll
2014-07-01 18:00:29 ----A---- C:\Windows\system32\finger.exe
2014-07-01 18:00:28 ----A---- C:\Windows\SYSWOW64\OEMLicense.dll
2014-07-01 18:00:28 ----A---- C:\Windows\system32\OEMLicense.dll
2014-07-01 18:00:23 ----A---- C:\Windows\system32\srms.dat
2014-07-01 17:25:48 ----D---- C:\ProgramData\ATI
2014-07-01 17:24:30 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-07-01 17:24:26 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-07-01 17:24:24 ----A---- C:\Windows\system32\msxml6.dll
2014-07-01 17:24:24 ----A---- C:\Windows\system32\msftedit.dll
2014-07-01 17:24:23 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-07-01 17:24:23 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2014-07-01 17:24:23 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-07-01 17:24:23 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-07-01 17:24:23 ----A---- C:\Windows\system32\dwmcore.dll
2014-07-01 17:24:23 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-07-01 17:24:23 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2014-07-01 17:24:23 ----A---- C:\Windows\explorer.exe
2014-07-01 17:24:22 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2014-07-01 17:24:22 ----A---- C:\Windows\system32\ole32.dll
2014-07-01 17:24:22 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-07-01 17:24:22 ----A---- C:\Windows\system32\KernelBase.dll
2014-07-01 17:24:22 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-07-01 17:24:22 ----A---- C:\Windows\system32\d3d11.dll
2014-07-01 17:24:22 ----A---- C:\Windows\system32\authui.dll
2014-07-01 17:24:21 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-07-01 17:24:21 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-07-01 17:24:21 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-07-01 17:24:21 ----A---- C:\Windows\system32\wlidprov.dll
2014-07-01 17:24:21 ----A---- C:\Windows\system32\kernel32.dll
2014-07-01 17:24:21 ----A---- C:\Windows\system32\kerberos.dll
2014-07-01 17:24:21 ----A---- C:\Windows\system32\dnsapi.dll
2014-07-01 17:24:21 ----A---- C:\Windows\system32\dcomp.dll
2014-07-01 17:24:20 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-07-01 17:24:20 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-07-01 17:24:20 ----A---- C:\Windows\system32\rasapi32.dll
2014-07-01 17:24:20 ----A---- C:\Windows\system32\netlogon.dll
2014-07-01 17:24:19 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2014-07-01 17:24:19 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2014-07-01 17:24:19 ----A---- C:\Windows\SYSWOW64\ole32.dll
2014-07-01 17:24:19 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-07-01 17:24:19 ----A---- C:\Windows\system32\ReAgent.dll
2014-07-01 17:24:19 ----A---- C:\Windows\system32\GdiPlus.dll
2014-07-01 17:24:19 ----A---- C:\Windows\system32\fveapi.dll
2014-07-01 17:24:19 ----A---- C:\Windows\system32\dxgi.dll
2014-07-01 17:24:19 ----A---- C:\Windows\system32\drivers\wof.sys
2014-07-01 17:24:19 ----A---- C:\Windows\system32\BFE.DLL
2014-07-01 17:24:18 ----A---- C:\Windows\SYSWOW64\rasapi32.dll
2014-07-01 17:24:18 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2014-07-01 17:24:18 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-07-01 17:24:18 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2014-07-01 17:24:18 ----A---- C:\Windows\system32\SensorsApi.dll
2014-07-01 17:24:18 ----A---- C:\Windows\system32\netcfgx.dll
2014-07-01 17:24:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-07-01 17:24:18 ----A---- C:\Windows\system32\drivers\cng.sys
2014-07-01 17:24:18 ----A---- C:\Windows\system32\drivers\clfs.sys
2014-07-01 17:24:18 ----A---- C:\Windows\system32\bdesvc.dll
2014-07-01 17:24:17 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2014-07-01 17:24:17 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2014-07-01 17:24:17 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2014-07-01 17:24:17 ----A---- C:\Windows\system32\WsmSvc.dll
2014-07-01 17:24:17 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-07-01 17:24:17 ----A---- C:\Windows\system32\MDMAgent.exe
2014-07-01 17:24:17 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-07-01 17:24:16 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-07-01 17:24:16 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2014-07-01 17:24:16 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-07-01 17:24:16 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2014-07-01 17:24:16 ----A---- C:\Windows\SYSWOW64\AppxAllUserStore.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\wlangpui.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\userenv.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\SessEnv.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\profsvc.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\pdh.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\mfreadwrite.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-07-01 17:24:16 ----A---- C:\Windows\system32\davclnt.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\cdd.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2014-07-01 17:24:16 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2014-07-01 17:24:15 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2014-07-01 17:24:15 ----A---- C:\Windows\SYSWOW64\userenv.dll
2014-07-01 17:24:15 ----A---- C:\Windows\SYSWOW64\spp.dll
2014-07-01 17:24:15 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2014-07-01 17:24:15 ----A---- C:\Windows\SYSWOW64\pdh.dll
2014-07-01 17:24:15 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2014-07-01 17:24:15 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-07-01 17:24:15 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-07-01 17:24:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-07-01 17:24:15 ----A---- C:\Windows\system32\WSDMon.dll
2014-07-01 17:24:15 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2014-07-01 17:24:15 ----A---- C:\Windows\system32\w32tm.exe
2014-07-01 17:24:15 ----A---- C:\Windows\system32\spp.dll
2014-07-01 17:24:15 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-07-01 17:24:15 ----A---- C:\Windows\system32\drivers\wfplwfs.sys
2014-07-01 17:24:15 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2014-07-01 17:24:15 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2014-07-01 17:24:15 ----A---- C:\Windows\system32\drivers\hidusb.sys
2014-07-01 17:24:15 ----A---- C:\Windows\system32\drivers\dfsc.sys
2014-07-01 17:24:15 ----A---- C:\Windows\system32\Display.dll
2014-07-01 17:24:15 ----A---- C:\Windows\system32\dafWfdProvider.dll
2014-07-01 17:24:15 ----A---- C:\Windows\system32\AppxAllUserStore.dll
2014-07-01 17:24:15 ----A---- C:\Windows\system32\adtschema.dll
2014-07-01 17:24:15 ----A---- C:\Windows\system32\aclui.dll
2014-07-01 17:24:14 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2014-07-01 17:24:14 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Scanners.dll
2014-07-01 17:24:14 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2014-07-01 17:24:14 ----A---- C:\Windows\SYSWOW64\ReInfo.dll
2014-07-01 17:24:14 ----A---- C:\Windows\SYSWOW64\Display.dll
2014-07-01 17:24:14 ----A---- C:\Windows\SYSWOW64\CredentialMigrationHandler.dll
2014-07-01 17:24:14 ----A---- C:\Windows\SYSWOW64\aclui.dll
2014-07-01 17:24:14 ----A---- C:\Windows\system32\Windows.Devices.Scanners.dll
2014-07-01 17:24:14 ----A---- C:\Windows\system32\RMapi.dll
2014-07-01 17:24:14 ----A---- C:\Windows\system32\ReInfo.dll
2014-07-01 17:24:14 ----A---- C:\Windows\system32\nshwfp.dll
2014-07-01 17:24:14 ----A---- C:\Windows\system32\LocationApi.dll
2014-07-01 17:24:14 ----A---- C:\Windows\system32\fveapibase.dll
2014-07-01 17:24:14 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-07-01 17:24:14 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-07-01 17:24:14 ----A---- C:\Windows\system32\DevPropMgr.dll
2014-07-01 17:24:14 ----A---- C:\Windows\system32\CredentialMigrationHandler.dll
2014-07-01 17:24:14 ----A---- C:\Windows\system32\BitLockerDeviceEncryption.exe
2014-07-01 17:24:13 ----A---- C:\Windows\SYSWOW64\sxproxy.dll
2014-07-01 17:24:13 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-07-01 17:24:13 ----A---- C:\Windows\SYSWOW64\LocationApi.dll
2014-07-01 17:24:13 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-07-01 17:24:13 ----A---- C:\Windows\system32\sxproxy.dll
2014-07-01 17:24:13 ----A---- C:\Windows\system32\SetNetworkLocation.dll
2014-07-01 17:24:13 ----A---- C:\Windows\system32\l2gpstore.dll
2014-07-01 17:24:13 ----A---- C:\Windows\system32\fvewiz.dll
2014-07-01 17:24:13 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-07-01 17:24:13 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2014-07-01 17:24:12 ----A---- C:\Windows\SYSWOW64\l2gpstore.dll
2014-07-01 17:24:12 ----A---- C:\Windows\system32\BdeHdCfgLib.dll
2014-07-01 16:57:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-07-01 16:48:46 ----D---- C:\Program Files (x86)\Advanced Micro Devices, Inc
2014-07-01 16:48:32 ----D---- C:\Program Files\ATI Technologies
2014-07-01 16:46:27 ----D---- C:\AMD
2014-07-01 16:44:51 ----D---- C:\Windows\system32\MRT
2014-07-01 16:44:50 ----A---- C:\Windows\system32\MRT.exe
2014-07-01 16:28:21 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-07-01 16:28:21 ----A---- C:\Windows\system32\WMPhoto.dll
2014-07-01 16:27:30 ----A---- C:\Windows\system32\d2d1.dll
2014-07-01 16:27:29 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-07-01 16:27:29 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-07-01 16:27:29 ----A---- C:\Windows\system32\d3d10warp.dll
2014-07-01 16:27:25 ----A---- C:\Windows\system32\sppsvc.exe
2014-07-01 16:27:23 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2014-07-01 16:27:23 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2014-07-01 16:27:23 ----A---- C:\Windows\system32\dbghelp.dll
2014-07-01 16:27:23 ----A---- C:\Windows\system32\dbgeng.dll
2014-07-01 16:27:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-07-01 16:27:22 ----A---- C:\Windows\system32\sppcomapi.dll
2014-07-01 16:27:06 ----A---- C:\Windows\system32\WSCollect.exe
2014-07-01 16:23:43 ----A---- C:\Windows\SYSWOW64\pcaui.exe
2014-07-01 16:23:43 ----A---- C:\Windows\system32\pcaui.exe
2014-07-01 16:23:30 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-07-01 16:23:30 ----A---- C:\Windows\system32\poqexec.exe
2014-07-01 16:21:19 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-07-01 16:21:19 ----A---- C:\Windows\system32\crypt32.dll
2014-07-01 16:20:12 ----N---- C:\Windows\system32\MpSigStub.exe
2014-07-01 15:47:14 ----D---- C:\Users\Admin\AppData\Roaming\AVG
2014-07-01 09:25:08 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-07-01 09:25:08 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-07-01 09:25:08 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-07-01 09:25:08 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-07-01 09:25:08 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-07-01 09:19:07 ----D---- C:\Train Store
2014-07-01 09:17:01 ----A---- C:\Windows\system32\TURegOpt.exe
2014-07-01 09:17:00 ----A---- C:\Windows\SYSWOW64\authuitu.dll
2014-07-01 09:17:00 ----A---- C:\Windows\system32\authuitu.dll
2014-07-01 09:16:22 ----D---- C:\Program Files (x86)\AVG
2014-07-01 09:15:37 ----D---- C:\ProgramData\AVG
2014-07-01 09:15:31 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-07-01 09:15:31 ----HD---- C:\ProgramData\Common Files
2014-07-01 09:14:07 ----D---- C:\Program Files (x86)\Microsoft Games
2014-07-01 09:13:44 ----D---- C:\Windows\Profiles
2014-07-01 09:13:44 ----A---- C:\Windows\SYSWOW64\MSVCP50.DLL
2014-07-01 09:13:43 ----D---- C:\Program Files (x86)\Adobe
2014-07-01 09:13:38 ----A---- C:\Windows\IsUninst.exe
2014-07-01 09:12:31 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2014-07-01 09:12:24 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2014-07-01 09:12:09 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-07-01 09:02:26 ----D---- C:\Program Files (x86)\WinRAR
2014-07-01 08:46:41 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-07-01 08:17:06 ----D---- C:\Program Files (x86)\Origin Games
2014-07-01 08:16:38 ----D---- C:\Users\Admin\AppData\Roaming\Origin
2014-07-01 08:15:27 ----D---- C:\ProgramData\Origin
2014-07-01 08:15:26 ----D---- C:\ProgramData\Electronic Arts
2014-07-01 08:15:24 ----D---- C:\Program Files (x86)\Origin
2014-07-01 08:11:19 ----D---- C:\Program Files (x86)\Steam
2014-06-30 21:08:46 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-06-30 21:08:46 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-06-30 21:08:46 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-06-30 21:08:46 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-06-30 21:08:46 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-06-30 21:08:46 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-06-30 21:08:45 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-06-30 21:08:45 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-06-30 21:08:45 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-06-30 21:08:45 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-06-30 21:08:45 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-06-30 21:08:45 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-06-30 21:08:45 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-06-30 21:08:45 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-06-30 21:08:44 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-06-30 21:08:44 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-06-30 21:08:43 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-06-30 21:08:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-06-30 21:08:43 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-06-30 21:08:43 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-06-30 21:08:43 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-06-30 21:08:43 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-06-30 21:08:42 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-06-30 21:08:42 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-06-30 21:08:40 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-06-30 21:08:40 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-06-30 21:08:40 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-06-30 21:08:40 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-06-30 21:08:39 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-06-30 21:08:39 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-06-30 21:08:39 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-06-30 21:08:39 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-06-30 21:08:38 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-06-30 21:08:38 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-06-30 21:08:38 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-06-30 21:08:38 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-06-30 21:08:38 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-06-30 21:08:38 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-06-30 21:08:37 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-06-30 21:08:37 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-06-30 21:08:37 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-06-30 21:08:37 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-06-30 21:08:37 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-06-30 21:08:37 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-06-30 21:08:36 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-06-30 21:08:36 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-06-30 21:08:36 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-06-30 21:08:36 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-06-30 21:08:36 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-06-30 21:08:36 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-06-30 21:08:35 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-06-30 21:08:35 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-06-30 21:08:34 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-06-30 21:08:34 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-06-30 21:08:34 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-06-30 21:08:34 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-06-30 21:08:33 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-06-30 21:08:33 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-06-30 21:08:33 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-06-30 21:08:33 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-06-30 21:08:32 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-06-30 21:08:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-06-30 21:08:32 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-06-30 21:08:32 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-06-30 21:08:32 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-06-30 21:08:32 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-06-30 21:08:31 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-06-30 21:08:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-06-30 21:08:31 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-06-30 21:08:31 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-06-30 21:08:31 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-06-30 21:08:31 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-06-30 21:08:31 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-06-30 21:08:31 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-06-30 21:08:31 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-06-30 21:08:31 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-06-30 21:08:30 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-06-30 21:08:30 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-06-30 21:08:30 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-06-30 21:08:30 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-06-30 21:08:30 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-06-30 21:08:30 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-06-30 21:08:30 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-06-30 21:08:30 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-06-30 21:08:30 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-06-30 21:08:30 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-06-30 21:08:29 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-06-30 21:08:29 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-06-30 21:08:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-06-30 21:08:29 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-06-30 21:08:29 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-06-30 21:08:29 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-06-30 21:08:28 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-06-30 21:08:28 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-06-30 21:08:28 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-06-30 21:08:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-06-30 21:08:28 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-06-30 21:08:28 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-06-30 21:08:28 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-06-30 21:08:28 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-06-30 21:08:27 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-06-30 21:08:27 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-06-30 21:08:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-06-30 21:08:27 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-06-30 21:08:27 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-06-30 21:08:27 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-06-30 21:08:26 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-06-30 21:08:26 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-06-30 21:08:26 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-06-30 21:08:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-06-30 21:08:26 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-06-30 21:08:26 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-06-30 21:08:26 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-06-30 21:08:26 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-06-30 21:08:25 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-06-30 21:08:25 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-06-30 21:08:25 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-06-30 21:08:25 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-06-30 21:08:25 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-06-30 21:08:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-06-30 21:08:25 ----A---- C:\Windows\system32\xinput1_3.dll
2014-06-30 21:08:25 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-06-30 21:08:25 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-06-30 21:08:25 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-06-30 21:08:25 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-06-30 21:08:25 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-06-30 21:08:23 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-06-30 21:08:23 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-06-30 21:08:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-06-30 21:08:23 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-06-30 21:08:23 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-06-30 21:08:23 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-06-30 21:08:22 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-06-30 21:08:22 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-06-30 21:08:22 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-06-30 21:08:22 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-06-30 21:08:21 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-06-30 21:08:21 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-06-30 21:08:21 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-06-30 21:08:21 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-06-30 21:08:21 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-06-30 21:08:21 ----A---- C:\Windows\system32\d3dx10.dll
2014-06-30 21:08:20 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-06-30 21:08:20 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-06-30 21:08:20 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-06-30 21:08:20 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-06-30 21:08:20 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-06-30 21:08:20 ----A---- C:\Windows\system32\xinput1_2.dll
2014-06-30 21:08:20 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-06-30 21:08:20 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-06-30 21:08:20 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-06-30 21:08:20 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-06-30 21:08:19 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-06-30 21:08:19 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-06-30 21:08:19 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-06-30 21:08:19 ----A---- C:\Windows\system32\xinput1_1.dll
2014-06-30 21:08:19 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-06-30 21:08:19 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-06-30 21:08:17 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-06-30 21:08:17 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-06-30 21:08:16 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-06-30 21:08:16 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-06-30 21:08:16 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-06-30 21:08:16 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-06-30 21:08:16 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-06-30 21:08:16 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-06-30 21:08:15 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-06-30 21:08:15 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-06-30 21:08:15 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-06-30 21:08:15 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-06-30 21:08:15 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-06-30 21:08:15 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-06-30 21:08:14 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-06-30 21:08:14 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-06-30 21:08:14 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-06-30 21:08:14 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-06-30 21:05:50 ----D---- C:\Windows\SYSWOW64\directx
2014-06-30 20:55:29 ----D---- C:\Program Files (x86)\Aerosoft
2014-06-30 20:28:33 ----D---- C:\Program Files (x86)\Reference Assemblies
2014-06-30 20:28:33 ----D---- C:\Program Files (x86)\MSBuild
2014-06-30 20:28:30 ----D---- C:\Windows\SYSWOW64\XPSViewer
2014-06-30 20:28:30 ----D---- C:\Program Files\Reference Assemblies
2014-06-30 20:28:30 ----D---- C:\Program Files\MSBuild
2014-06-30 20:27:36 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-06-30 20:27:36 ----A---- C:\Windows\SYSWOW64\PresentationNative_v0300.dll
2014-06-30 20:27:36 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-06-30 20:27:36 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-06-30 20:27:36 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2014-06-30 20:27:36 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-30 20:25:17 ----D---- C:\Aerosoft
2014-06-30 19:18:31 ----D---- C:\Program Files (x86)\Google
2014-06-30 18:29:53 ----HD---- C:\GrandeDevice
2014-06-30 18:29:51 ----A---- C:\Windows\system32\xrhk2ausb.dll
2014-06-30 18:29:51 ----A---- C:\Windows\system32\xrhk2alm.dll
2014-06-30 17:28:37 ----D---- C:\Users\Admin\AppData\Roaming\ATI
2014-06-30 17:28:08 ----D---- C:\Users\Admin\AppData\Roaming\Adobe
2014-06-30 17:27:59 ----SD---- C:\Users\Admin\AppData\Roaming\Microsoft
2014-06-30 17:27:48 ----D---- C:\Windows\SoftwareDistribution
2014-06-10 00:52:46 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2014-06-10 00:52:46 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2014-06-10 00:52:46 ----A---- C:\Windows\system32\OVDecode64.dll
2014-06-10 00:52:46 ----A---- C:\Windows\system32\OpenVideo64.dll
2014-06-10 00:52:46 ----A---- C:\Windows\system32\coinst_13.251.9001.dll
2014-06-10 00:52:46 ----A---- C:\Windows\system32\clinfo.exe
2014-06-10 00:52:38 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2014-06-10 00:52:38 ----A---- C:\Windows\system32\ativvaxy_cik_nd.dat
2014-06-10 00:52:38 ----A---- C:\Windows\system32\ativvaxy_cik.dat
2014-06-10 00:52:38 ----A---- C:\Windows\system32\ativce02.dat
2014-06-10 00:52:36 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2014-06-10 00:52:34 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2014-06-10 00:52:34 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2014-06-10 00:52:34 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2014-06-10 00:52:34 ----A---- C:\Windows\system32\atitmm64.dll
2014-06-10 00:52:34 ----A---- C:\Windows\system32\atisamu64.dll
2014-06-10 00:52:32 ----A---- C:\Windows\system32\atio6axx.dll
2014-06-10 00:52:30 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2014-06-10 00:52:30 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2014-06-10 00:52:30 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2014-06-10 00:52:30 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2014-06-10 00:52:30 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2014-06-10 00:52:30 ----A---- C:\Windows\system32\atimuixx.dll
2014-06-10 00:52:30 ----A---- C:\Windows\system32\atimpc64.dll
2014-06-10 00:52:30 ----A---- C:\Windows\system32\atiicdxx.dat
2014-06-10 00:52:30 ----A---- C:\Windows\system32\atiglpxx.dll
2014-06-10 00:52:30 ----A---- C:\Windows\system32\atig6txx.dll
2014-06-10 00:52:30 ----A---- C:\Windows\system32\atig6pxx.dll
2014-06-10 00:52:28 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2014-06-10 00:52:28 ----A---- C:\Windows\system32\aticalrt64.dll
2014-06-10 00:52:26 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2014-06-10 00:52:26 ----A---- C:\Windows\system32\aticaldd64.dll
2014-06-10 00:52:24 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-06-10 00:52:24 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2014-06-10 00:52:24 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2014-06-10 00:52:24 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2014-06-10 00:52:24 ----A---- C:\Windows\system32\OpenCL.dll
2014-06-10 00:52:24 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2014-06-10 00:52:24 ----A---- C:\Windows\system32\aticalcl64.dll
2014-06-10 00:52:24 ----A---- C:\Windows\system32\atiapfxx.exe
2014-06-10 00:52:24 ----A---- C:\Windows\system32\amdpcom64.dll
2014-06-10 00:52:22 ----A---- C:\Windows\system32\amdocl64.dll
2014-06-10 00:52:20 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2014-06-10 00:52:18 ----A---- C:\Windows\SYSWOW64\amdhdl32.dll
2014-06-10 00:52:18 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2014-06-10 00:52:18 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2014-06-10 00:52:18 ----A---- C:\Windows\system32\amdmiracast.dll
2014-06-10 00:52:18 ----A---- C:\Windows\system32\amdhdl64.dll
2014-06-10 00:52:18 ----A---- C:\Windows\system32\amdhcp64.dll
2014-06-10 00:52:18 ----A---- C:\Windows\system32\amdave64.dll

======List of files/folders modified in the last 1 month======

2014-07-05 13:33:40 ----D---- C:\Windows\Prefetch
2014-07-05 13:33:29 ----RD---- C:\Program Files
2014-07-05 13:27:21 ----RD---- C:\Program Files (x86)
2014-07-05 13:27:02 ----D---- C:\Windows\Temp
2014-07-05 13:27:01 ----RSD---- C:\Windows\assembly
2014-07-05 13:26:30 ----SHD---- C:\System Volume Information
2014-07-05 13:02:00 ----D---- C:\Windows\system32\sru
2014-07-05 10:28:36 ----RD---- C:\Windows\System32
2014-07-05 10:28:36 ----D---- C:\Windows\Inf
2014-07-05 10:28:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-07-04 21:25:52 ----D---- C:\Windows\AppReadiness
2014-07-04 20:56:01 ----D---- C:\Windows\Microsoft.NET
2014-07-04 20:42:31 ----D---- C:\Windows\system32\Tasks
2014-07-04 20:42:25 ----HD---- C:\ProgramData
2014-07-04 20:42:22 ----D---- C:\Windows\SysWOW64
2014-07-04 20:42:22 ----D---- C:\Program Files\Common Files
2014-07-04 20:41:36 ----D---- C:\Windows\Tasks
2014-07-04 20:25:47 ----N---- C:\Windows\win.ini
2014-07-03 10:59:37 ----D---- C:\Windows\rescache
2014-07-03 10:58:21 ----D---- C:\Windows\Logs
2014-07-03 10:55:35 ----D---- C:\Windows\LiveKernelReports
2014-07-02 18:41:38 ----D---- C:\Windows\system32\drivers
2014-07-02 17:41:14 ----SHD---- C:\Windows\Installer
2014-07-02 17:40:15 ----HD---- C:\Windows\system32\GroupPolicy
2014-07-02 17:40:15 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2014-07-02 17:40:13 ----RD---- C:\Users
2014-07-02 17:37:53 ----D---- C:\Windows
2014-07-02 15:22:23 ----D---- C:\Windows\system32\config
2014-07-02 09:33:34 ----D---- C:\Windows\WinSxS
2014-07-02 09:31:54 ----D---- C:\Program Files\Internet Explorer
2014-07-02 09:31:54 ----D---- C:\Program Files (x86)\Internet Explorer
2014-07-02 09:31:52 ----D---- C:\Program Files\Windows Defender
2014-07-02 09:31:52 ----D---- C:\Program Files (x86)\Windows Defender
2014-07-02 09:31:51 ----RD---- C:\Windows\ToastData
2014-07-02 09:31:51 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-07-02 09:31:51 ----D---- C:\Windows\system32\cs-CZ
2014-07-02 09:31:50 ----RD---- C:\Windows\ImmersiveControlPanel
2014-07-02 09:31:49 ----D---- C:\Windows\system32\oobe
2014-07-02 09:31:49 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-07-02 09:31:47 ----D---- C:\Windows\system32\DriverStore
2014-07-02 09:19:09 ----D---- C:\Windows\CbsTemp
2014-07-02 09:18:44 ----D---- C:\Windows\WinStore
2014-07-02 09:18:25 ----D---- C:\Windows\apppatch
2014-07-02 09:17:27 ----D---- C:\Windows\SYSWOW64\migration
2014-07-02 09:17:27 ----D---- C:\Windows\system32\wbem
2014-07-02 09:17:27 ----D---- C:\Windows\system32\migration
2014-07-02 09:06:44 ----D---- C:\Windows\system32\wdi
2014-07-01 22:03:52 ----D---- C:\Program Files (x86)\Common Files
2014-07-01 21:59:47 ----D---- C:\Windows\system32\catroot2
2014-07-01 21:58:02 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-01 21:51:14 ----D---- C:\Windows\system32\setup
2014-07-01 21:51:12 ----D---- C:\Windows\SYSWOW64\en-US
2014-07-01 21:51:12 ----D---- C:\Windows\system32\en-US
2014-07-01 21:51:08 ----D---- C:\Program Files\Windows Portable Devices
2014-07-01 21:51:08 ----D---- C:\Program Files\Windows Multimedia Platform
2014-07-01 21:51:08 ----D---- C:\Program Files\Windows Media Player
2014-07-01 21:51:08 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2014-07-01 21:51:05 ----D---- C:\Windows\servicing
2014-07-01 21:51:05 ----D---- C:\Windows\MediaViewer
2014-07-01 21:51:05 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-07-01 21:51:05 ----D---- C:\Program Files (x86)\Windows Media Player
2014-07-01 21:51:03 ----D---- C:\Windows\SYSWOW64\wbem
2014-07-01 21:51:03 ----D---- C:\Windows\SYSWOW64\oobe
2014-07-01 21:51:03 ----D---- C:\Windows\SYSWOW64\Dism
2014-07-01 21:51:01 ----D---- C:\Windows\PolicyDefinitions
2014-07-01 21:51:01 ----D---- C:\Windows\cs-CZ
2014-07-01 21:51:00 ----D---- C:\Windows\system32\zh-TW
2014-07-01 21:51:00 ----D---- C:\Windows\system32\zh-CN
2014-07-01 21:51:00 ----D---- C:\Windows\system32\uk-UA
2014-07-01 21:51:00 ----D---- C:\Windows\system32\Sysprep
2014-07-01 21:51:00 ----D---- C:\Windows\system32\sv-SE
2014-07-01 21:51:00 ----D---- C:\Windows\system32\sr-Latn-RS
2014-07-01 21:51:00 ----D---- C:\Windows\system32\sr-Latn-CS
2014-07-01 21:51:00 ----D---- C:\Windows\system32\sl-SI
2014-07-01 21:51:00 ----D---- C:\Windows\system32\sk-SK
2014-07-01 21:51:00 ----D---- C:\Windows\system32\ru-RU
2014-07-01 21:51:00 ----D---- C:\Windows\system32\ro-RO
2014-07-01 21:51:00 ----D---- C:\Windows\system32\pt-PT
2014-07-01 21:51:00 ----D---- C:\Windows\system32\pl-PL
2014-07-01 21:51:00 ----D---- C:\Windows\system32\lv-LV
2014-07-01 21:51:00 ----D---- C:\Windows\system32\ko-KR
2014-07-01 21:51:00 ----D---- C:\Windows\system32\ja-JP
2014-07-01 21:51:00 ----D---- C:\Windows\system32\it-IT
2014-07-01 21:51:00 ----D---- C:\Windows\system32\hu-HU
2014-07-01 21:51:00 ----D---- C:\Windows\system32\hr-HR
2014-07-01 21:51:00 ----D---- C:\Windows\system32\he-IL
2014-07-01 21:51:00 ----D---- C:\Windows\system32\fr-FR
2014-07-01 21:51:00 ----D---- C:\Windows\system32\fi-FI
2014-07-01 21:51:00 ----D---- C:\Windows\system32\et-EE
2014-07-01 21:51:00 ----D---- C:\Windows\system32\es-ES
2014-07-01 21:51:00 ----D---- C:\Windows\system32\en-GB
2014-07-01 21:51:00 ----D---- C:\Windows\system32\el-GR
2014-07-01 21:51:00 ----D---- C:\Windows\system32\de-DE
2014-07-01 21:51:00 ----D---- C:\Windows\system32\da-DK
2014-07-01 21:51:00 ----D---- C:\Windows\system32\bg-BG
2014-07-01 21:50:59 ----D---- C:\Windows\system32\zh-HK
2014-07-01 21:50:59 ----D---- C:\Windows\system32\tr-TR
2014-07-01 21:50:59 ----D---- C:\Windows\system32\th-TH
2014-07-01 21:50:59 ----D---- C:\Windows\system32\drivers\en-US
2014-07-01 21:50:57 ----D---- C:\Windows\system32\SystemResetPlatform
2014-07-01 21:50:57 ----D---- C:\Windows\system32\pt-BR
2014-07-01 21:50:57 ----D---- C:\Windows\system32\nl-NL
2014-07-01 21:50:57 ----D---- C:\Windows\system32\nb-NO
2014-07-01 21:50:57 ----D---- C:\Windows\system32\migwiz
2014-07-01 21:50:57 ----D---- C:\Windows\system32\lt-LT
2014-07-01 21:50:57 ----D---- C:\Windows\system32\Dism
2014-07-01 21:50:57 ----D---- C:\Windows\system32\Boot
2014-07-01 21:50:57 ----D---- C:\Windows\system32\ar-SA
2014-07-01 21:50:54 ----RSD---- C:\Windows\Fonts
2014-07-01 21:50:54 ----D---- C:\Windows\FileManager
2014-07-01 21:50:54 ----D---- C:\Windows\Camera
2014-07-01 21:50:39 ----D---- C:\Windows\system32\drivers\UMDF
2014-07-01 21:38:19 ----SH---- C:\Windows\system32\desktop.ini
2014-07-01 18:49:36 ----HD---- C:\Program Files\WindowsApps
2014-07-01 16:48:31 ----D---- C:\Program Files (x86)\ATI Technologies
2014-07-01 16:48:18 ----D---- C:\ProgramData\AMD
2014-07-01 16:47:27 ----SHD---- C:\$Recycle.Bin
2014-07-01 16:46:12 ----D---- C:\Program Files\AMD
2014-07-01 16:45:57 ----D---- C:\Program Files\Common Files\microsoft shared
2014-07-01 16:45:46 ----D---- C:\Windows\system32\SecureBootUpdates
2014-07-01 15:50:58 ----D---- C:\Windows\system32\LogFiles
2014-07-01 09:12:32 ----D---- C:\Windows\system32\catroot
2014-06-30 20:28:30 ----D---- C:\Windows\SYSWOW64\MUI
2014-06-30 20:28:30 ----D---- C:\Windows\system32\MUI
2014-06-30 20:26:15 ----D---- C:\Windows\system32\restore
2014-06-30 18:42:07 ----D---- C:\Windows\Panther
2014-06-30 18:35:13 ----SD---- C:\ProgramData\Microsoft
2014-06-30 17:44:54 ----D---- C:\Windows\system32\NDF
2014-06-30 17:23:01 ----D---- C:\Windows\system32\Recovery
2014-06-10 00:52:38 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2014-06-10 00:52:38 ----A---- C:\Windows\system32\atiuxp64.dll
2014-06-10 00:52:36 ----A---- C:\Windows\system32\atiumd6a.dll
2014-06-10 00:52:34 ----A---- C:\Windows\system32\atiumd64.dll
2014-06-10 00:52:34 ----A---- C:\Windows\system32\atiu9p64.dll
2014-06-10 00:52:30 ----A---- C:\Windows\system32\atiesrxx.exe
2014-06-10 00:52:30 ----A---- C:\Windows\system32\atieclxx.exe
2014-06-10 00:52:28 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2014-06-10 00:52:28 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2014-06-10 00:52:28 ----A---- C:\Windows\system32\atidxx64.dll
2014-06-10 00:52:28 ----A---- C:\Windows\system32\atidemgy.dll
2014-06-10 00:52:28 ----A---- C:\Windows\system32\aticfx64.dll
2014-06-10 00:52:24 ----A---- C:\Windows\system32\atiadlxx.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-07-01 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-20 59648]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-06-10 13209088]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-06-10 626688]
R3 athr;@oem13.inf,%ATHR.Service.DispName%;Wireless PCI Adapter Driver Service; C:\Windows\system32\DRIVERS\athw8x.sys [2012-09-25 3653632]
R3 AtiHDAudioService;@oem2.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdWB6.sys [2013-12-19 222720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-19 4065296]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2014-02-10 14112]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-12-13 121088]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2013-03-08 58536]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
R3 WSDPrintDevice;@WSDPrint.Inf,%WSDPrintDevice.SVCDESC%;WSD Print Support; C:\Windows\System32\drivers\WSDPrint.sys [2013-08-22 20992]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-07-05 8934976]
S3 IntcDAud;@oem2.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
S3 L1C;@oem5.inf,%L1c.Service.DispName%;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\l1c51x64.sys [2012-04-25 96368]
S3 MEIx64;@oem8.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2013-03-12 64624]
S3 VIAHdAudAddService;@oem4.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-05-04 2196592]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-06-10 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-23 344064]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-04-11 1390720]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-04-11 1764992]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2014-03-22 2183992]
R2 VIAKaraokeService;@oem4.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-05-04 27760]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-02 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-02 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc []
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-05-29 543424]

-----------------EOF-----------------

a logy z frst v příloze

Zdravim

oflo píše:Co by se s tím dalo dělat?

Odpojit ho od netu?

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

# AdwCleaner v3.215 - Report created 14/07/2014 at 11:37:46
# Updated 09/07/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Admin - MISA
# Running from : C:\Users\Admin\Desktop\adwcleaner_3.215.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\CostMin
Folder Deleted : C:\ProgramData\Goobzo
Folder Deleted : C:\ProgramData\YTAHelper
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
Folder Deleted : C:\Program Files (x86)\CostMin
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Sense
Folder Deleted : C:\Program Files (x86)\trolatunt
Folder Deleted : C:\Program Files (x86)\YouTube Accelerator
Folder Deleted : C:\Program Files (x86)\YTAHelper
Folder Deleted : C:\Users\Admin\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Admin\AppData\Local\torch
Folder Deleted : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\oem\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\oem\AppData\Local\torch
[!] Folder Deleted : C:\Users\Public\Documents\Goobzo
Folder Deleted : C:\Users\Public\Documents\ShopperPro
Folder Deleted : C:\Users\Public\Documents\YTAHelper
Folder Deleted : C:\Users\simulatory\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\simulatory\AppData\Local\globalUpdate
Folder Deleted : C:\Users\simulatory\AppData\Local\torch
Folder Deleted : C:\Users\simulatory\AppData\LocalLow\Goobzo
Folder Deleted : C:\Users\simulatory\AppData\Roaming\OpenCandy
File Deleted : C:\Users\simulatory\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\simulatory\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
File Deleted : C:\Windows\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-1.job
File Deleted : C:\Windows\System32\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-1
File Deleted : C:\Windows\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-11.job
File Deleted : C:\Windows\System32\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-11
File Deleted : C:\Windows\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-2.job
File Deleted : C:\Windows\System32\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-2
File Deleted : C:\Windows\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-4.job
File Deleted : C:\Windows\System32\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-4
File Deleted : C:\Windows\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-5.job
File Deleted : C:\Windows\System32\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-5
File Deleted : C:\Windows\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-5_user.job
File Deleted : C:\Windows\System32\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-5_user
File Deleted : C:\Windows\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-6.job
File Deleted : C:\Windows\System32\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-6
File Deleted : C:\Windows\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-7.job
File Deleted : C:\Windows\System32\Tasks\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-7

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444824492}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Deleted : HKCU\Software\Goobzo
Key Deleted : HKCU\Software\powerpack
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\Software\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Deleted : HKLM\Software\Goobzo
Key Deleted : HKLM\Software\installedbrowserextensions
Key Deleted : HKLM\Software\Sense
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2F5F003B-C71B-72E3-42B4-DE51AB079EB2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sense
Key Deleted : [x64] HKLM\SOFTWARE\installedbrowserextensions

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17126


-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\simulatory\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [8644 octets] - [14/07/2014 11:20:52]
AdwCleaner[S0].txt - [7691 octets] - [14/07/2014 11:37:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7751 octets] ##########

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 16. 7. 2014
Scan Time: 16:47:55
Logfile: sex.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.07.16.04
Rootkit Database: v2014.07.14.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Admin

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 1039112
Time Elapsed: 2 hr, 12 min, 2 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 8
PUP.Optional.Norpalla.A, HKU\S-1-5-21-987214395-1790064606-4071519516-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{18B20944-F54E-4509-88FA-F0AD137BF8DE}, , [5adaf9a7c0bb2412c0a6bf98ac565ca4],
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{5906ab0f-5417-45a6-a4f5-8bc38ae936d5}Gw64, , [47ed2977275492a4e0eeee2c9d679a66],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE, , [bf75217f017afb3b42e1942920e26c94],
PUP.Optional.iWebar.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, , [2b09a000413aa98d81b76b75a45ee917],
PUP.Optional.Norpalla.A, HKU\S-1-5-21-987214395-1790064606-4071519516-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Norpalla, , [2410cad63d3e92a48f93f2e9d032e719],
PUP.Optional.iWebar.A, HKU\S-1-5-21-987214395-1790064606-4071519516-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, , [30046c34dc9fc175bc7c8b55de24bd43],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [45ef534d2853f343fdbc04b60df5e719],

Registry Values: 1
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE|path, C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe, , [bf75217f017afb3b42e1942920e26c94]

Registry Data: 0
(No malicious items detected)

Folders: 2
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229, , [57dd138db6c5f0462a8f6555a85ab54b],

Files: 49
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-11.exe.vir, , [5adaedb3710a0531eea03121976ab54b],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-2.exe.vir, , [1a1aaaf686f5270feca2ee645ba6f709],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-4.exe.vir, , [b77db2ee017a50e63a5478daf40d2cd4],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\1b0d6781-ba18-4f14-bfb0-5107d267b8fc-5.exe.vir, , [0232524e7ffc91a57519afa304fd49b7],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-bg.exe.vir, , [a193841ce398a591f49ac09256ab1be5],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-bho.dll.vir, , [7cb88a16e99276c03c52f959b74a7888],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-bho64.dll.vir, , [d163544c08737cba1d7184ce52af0ff1],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-buttonutil.exe.vir, , [1b191f81f487b086b8d6dc76639e3dc3],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-buttonutil64.exe.vir, , [88acf8a8f98290a6444a50022ed3728e],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-codedownloader.exe.vir, , [270d8d130873ca6c8e00430fec15ef11],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-nova.exe.vir, , [56de9808304b330399f539198c754ab6],
PUP.Optional.Sense.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\Sense-novainstaller.exe.vir, , [bf756c34215a52e491fd90c202ff9967],
PUP.Optional.crossRider.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Sense\utils.exe.vir, , [ed4729775724092d2ad32b1460a001ff],
PUP.Optional.Somoto, C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\HACXU5PI\BiTool[1].dll, , [58dc0898423952e451128ca3bc46c739],
PUP.Optional.Somoto, C:\Users\Admin\AppData\Local\Temp\bitool.dll, , [91a3ebb580fb0b2b0c57fa35837fc23e],
PUP.Optional.OpenCandy, C:\Users\Admin\AppData\Local\Temp\nsuFC94.tmp\DTLite.exe, , [81b3316f95e651e5386ab51259ab3ac6],
PUP.Optional.OpenCandy, C:\Users\Admin\Downloads\DTLite-setup.exe, , [60d47d2306756acc6e34e5e2689c38c8],
PUP.Optional.Trolatunt.A, C:\Users\simulatory\AppData\Local\Microsoft\Windows\INetCache\IE\E03M6J8S\Setup[1].exe, , [092b307077041323ec177c0fe61b56aa],
Trojan.SProtector, C:\Users\simulatory\AppData\Local\Temp\18be6784_.exe, , [ca6a68382c4f6bcb0ab3d681837e3cc4],
PUP.Optional.Multiplug, C:\Users\simulatory\AppData\Local\Temp\294823_.exe, , [6aca643ccbb0b68030edd5c469980df3],
PUP.Optional.Trolotunt.A, C:\Users\simulatory\AppData\Local\Temp\trolatuntSetup.exe, , [92a2b9e73e3d73c38d4cbbd7b74de020],
Trojan.SCTMP, C:\Users\simulatory\AppData\Local\Temp\UNT19C6.exe, , [92a28719a2d9d06679b81a779b6657a9],
PUP.Optional.OpenCandy, C:\Users\simulatory\AppData\Local\Temp\nse3122.tmp\DTLite.exe, , [60d40997700bae88f6ac12b5ee169967],
Heuristics.Shuriken, D:\$RECYCLE.BIN\S-1-5-21-987214395-1790064606-4071519516-1004\$R7WB92O.exe, , [ffffffffffffffffffffffffffffffff],
Heuristics.Shuriken, D:\$RECYCLE.BIN\S-1-5-21-987214395-1790064606-4071519516-1004\$RT6YC54.exe, , [ffffffffffffffffffffffffffffffff],
PUP.Optional.OpenCandy, D:\MSTS\msts instalace\MSTS instalace original\MSTS instalacni CD 1 a 2\DTLite-setup.exe, , [c272544ce19a7fb7534ff2d5996b4cb4],
Trojan.Agent, D:\OMSI 2\steam_api.dll, , [22122e729cdf5ed8c39c53fc3bc6d52b],
Trojan.Agent, D:\OMSI zaloha ze stareho pocitace\OMSI 2\steam_api.dll, , [0d27eeb29edd0e280659aca3c33ec43c],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{5906ab0f-5417-45a6-a4f5-8bc38ae936d5}Gw64.sys, , [47ed2977275492a4e0eeee2c9d679a66],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\GoogleCrashHandler.exe, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\GoogleUpdate.exe, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\GoogleUpdateBroker.exe, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\GoogleUpdateHelper.msi, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\GoogleUpdateOnDemand.exe, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\goopdate.dll, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\goopdateres_en.dll, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\npGoogleUpdate4.dll, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\psmachine.dll, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.253663\psuser.dll, , [45ef534d2853f343fdbc04b60df5e719],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\GoogleCrashHandler.exe, , [57dd138db6c5f0462a8f6555a85ab54b],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\GoogleUpdate.exe, , [57dd138db6c5f0462a8f6555a85ab54b],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\GoogleUpdateBroker.exe, , [57dd138db6c5f0462a8f6555a85ab54b],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\GoogleUpdateHelper.msi, , [57dd138db6c5f0462a8f6555a85ab54b],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\GoogleUpdateOnDemand.exe, , [57dd138db6c5f0462a8f6555a85ab54b],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\goopdate.dll, , [57dd138db6c5f0462a8f6555a85ab54b],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\goopdateres_en.dll, , [57dd138db6c5f0462a8f6555a85ab54b],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\npGoogleUpdate4.dll, , [57dd138db6c5f0462a8f6555a85ab54b],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\psmachine.dll, , [57dd138db6c5f0462a8f6555a85ab54b],
PUP.Optional.GlobalUpdate.A, C:\Users\simulatory\AppData\Local\Temp\comh.44229\psuser.dll, , [57dd138db6c5f0462a8f6555a85ab54b],

Physical Sectors: 0
(No malicious items detected)


(end)

Vsechny nalezy hodte do karanteny. Po odstraneni nalezu a restartu pc test s MBAM zopakujte, abychom vedeli, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.

Pořád se mi do prohlížeče vrací CostMin reklamy.

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 17. 7. 2014
Scan Time: 9:08:17
Logfile: sukat.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.07.17.04
Rootkit Database: v2014.07.14.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Admin

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 1039461
Time Elapsed: 2 hr, 16 min, 18 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 2
PUP.Optional.CrossRider.A, C:\Users\simulatory\AppData\Local\Temp\Install_10507\sense.exe, , [e0b8069a3e3d1f17e80dfe4e38c89f61],
PUP.Optional.Goobzo, C:\Users\simulatory\AppData\Local\Temp\Install_10507\shopperpro.exe, , [f4a44f51dba006309bac41588a7a728e],

Physical Sectors: 0
(No malicious items detected)


(end)

Postupujte presne v tomto poradi.
1) MBAM nezavirejte, jen minimalizujte.
2) Vymazte/Vypnete vytvareni bodu obnovy http://forum.viry.cz/viewtopic.php?f=46&t=47040 , ale nerestartujte pc.
3) Ted nechte nalezy MBAM odstranit a restartujte pc.
4) Znovu pouzijte ADWCleaner
5) Novy test s MBAM a dejte sem vysledky

Nic to nenachází, ale reklamy CostMin pořád v prohlížeči mám.

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 25. 7. 2014
Scan Time: 17:39:21
Logfile: pivas.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.07.25.04
Rootkit Database: v2014.07.17.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Admin

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 398090
Time Elapsed: 9 min, 0 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

Jenze tenhle sken nebyl nastaven tak, aby kontroloval cely pocitac, takze nevime, jestli se to vraci, nebo je to uplne nekde jinde. Zkuste test zopakovat a takovym nastavenim, jako prvne

Pustil jsem to, našlo to 2, tak jsem zase pustil ten Adware cleaner. Pak jsem pustil na test MBAM a už to nic nenašlo. Ale pořád mám v prohlížeči ten CostMin :-/

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 26. 7. 2014
Scan Time: 23:05:49
Logfile: temeraf.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.07.26.08
Rootkit Database: v2014.07.17.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Admin

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 1109727
Time Elapsed: 2 hr, 28 min, 31 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

Dejte novy log z RSIT




1.9. pro neaktivitu http://forum.viry.cz/viewtopic.php?f=12&t=123975