Problem s win 8.1
Napsal: 29 lis 2014 08:33
Caute... stahoval som jeden program a asi sa s nim stiahli aj nejake viry a zasrali mi PC... mam win 8.1, Avast mi hlasi furt nejake chyby, presunutia do karanteny, vytvorili sa mi nove subory vo windowse, chrome sa mi stale zatvara a ked otvorim novu kartu, vzdy sa mi otvori aj nejaka reklamna stranka... mohli by ste mi poradit??
Logfile of random's system information tool 1.10 (written by random/random)
Run by Murtagh at 2014-11-29 08:32:48
Microsoft Windows 8.1 Pro
System drive C: has 51 GB (45%) free of 114 GB
Total RAM: 8093 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:32:54, on 29.11.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\MSI\TotalMedia 3.5\TMMonitor.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Murtagh\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Murtagh.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1D6ZVJW
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... XXZ1D6ZVJW
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1D6ZVJW
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... XXZ1D6ZVJW
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: edccb4a004ec01329fbb0fbe6070a3f60063285 - {11111111-1111-1111-1111-110611321185} - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\TotalPlusHD-3.1V29.11-bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [IR_SERVER] C:\PROGRA~2\Realtek\REALTE~1\IR_SERVER.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [HDD Regenerator] "C:\Program Files (x86)\HDD Regenerator\Shell.exe" /1
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [RGSC] E:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - Global Startup: TMMonitor.lnk = C:\Program Files (x86)\MSI\TotalMedia 3.5\TMMonitor.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: hddrsrv - Unknown owner - C:\Program Files (x86)\HDD Regenerator\hrsrv.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Torntv Downloader (trntv) - Unknown owner - C:\Users\Murtagh\AppData\Roaming\TornTV.com\TornTVSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: wampapache64 - Apache Software Foundation - c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe
O23 - Service: wampmysqld64 - Unknown owner - c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Fuyu LIMITED - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11901 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe"
dashost.exe {af9b73c3-a411-4bf0-829c98cac1991111}
"C:\Program Files (x86)\HDD Regenerator\hrsrv.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5ae6816e-32e7-446f-8a27-b215ee2b7760 -SystemEventPortName:HostProcess-69803768-b08f-4c58-ba97-064c087eddf4 -IoCancelEventPortName:HostProcess-8dcc5ed7-6580-4e73-9768-bd5d5c50707e -NonStateChangingEventPortName:HostProcess-06a8fade-84fd-47d1-b571-04d2edaeb376 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:202786bc-364a-480e-9c80-bfde3bf3f06d -DeviceGroupId:WpdFsGroup
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
taskeng.exe {0FCD148B-7A96-47C4-95A9-2F7E468338FC}
taskhostex.exe
ngservice.exe pipeserver
"C:\Program Files (x86)\TotalPlusHD-3.1V29.11\37133fa4-a99c-4592-b3ac-b2c099629ff3.exe" /agentregpath='TotalPlusHD-3.1V29.11' /appid=63285 /srcid='002173' /subid='0' /zdata='0' /bic=731EE7529FD04C1F9F47799A1D7C9927IE /verifier=81355038cd62e5fdeb3de00be8e9412c /installerversion=1_35_11_26 /installationtime=1417245325 /statsdomain=http://stats.newstaticclientstack.com /errorsdomain=http://errors.newstaticclientstack.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newstaticclientstack.com /runfrom='task' /externallog=''
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DTSU2P
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\MSI\TotalMedia 3.5\TMMonitor.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
ArcCon.ac 66258 0
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"HDD Regenerator.exe"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan"
"HDD Regenerator.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\locales" --log-severity=disable --channel="5304.0.1724631830\1405654164" /prefetch:673131151
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\locales" --log-severity=disable --channel="5304.1.1037254458\128946327" /prefetch:673131151
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=gpu-process --channel="5304.2.992060695\1495668603" --no-sandbox --lang=en-US --locales-dir-path="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\locales" --log-severity=disable --supports-dual-gpus=false --gpu-vendor-id=0x10de --gpu-device-id=0x1184 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --lang=en-US --locales-dir-path="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\locales" --log-severity=disable /prefetch:822062411
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&t ... XXZ1D6ZVJW
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="508.0.148913685\643769393" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38,46 --gpu-vendor-id=0x10de --gpu-device-id=0x1184 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.1.196613328\140635049" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.2.442812800\160616080" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.4.1120166181\1296799283" /prefetch:673131151
"C:\Users\Murtagh\AppData\Roaming\uTorrent\utorrent.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.9.1168373110\1585399162" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="508.10.20992235\605203871" --ppapi-flash-args=enable_hw_video_decode=1 --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.11.718707109\1393418969" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.12.1642823028\1996512858" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.14.936749123\337543174" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.15.1319096361\2047057198" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.17.1022138477\1646445336" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.19.675181746\315872093" /prefetch:673131151
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.20.1726901184\168896981" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\Users\Murtagh\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\37133fa4-a99c-4592-b3ac-b2c099629ff3.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\37133fa4-a99c-4592-b3ac-b2c099629ff3.exe /agentregpath='TotalPlusHD-3.1V29.11' /appid=63285 /srcid='002173' /subid='0' /zdata='0' /bic=731EE7529FD04C1F9F47799A1D7C9927IE /verifier=81355038cd62e5fdeb3de00be8e9412c /installerversion=1_35_11_26 /installationtime=1417245325 /statsdomain=http://stats.newstaticclientstack.com /errorsdomain=http://errors.newstaticclientstack.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newstaticclientstack.com /runfrom='task' /externallog=''
C:\WINDOWS\tasks\cefb22c8-e565-4d64-bff1-e4b9e39b7399.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\cefb22c8-e565-4d64-bff1-e4b9e39b7399.exe 002173 731EE7529FD04C1F9F47799A1D7C9927IE 63285 1417245325 93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 TotalPlusHD-3.1V29.11
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-1.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\TotalPlusHD-3.1V29.11-codedownloader.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-11.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-11.exe /rawdata=Q7qyQ9GZhmvMeBzN85MSkGeCFoHo0BVaDVJmBBUnGsxAHaEqgr2r14dNKqwnufgkksAsgFwCN4jUB+O8YOf7yuN+qWcgFb83pmm1Z6N8qcquuPoCqeR7NHd81cTRoNEeRjVIl8j/8SyKgXQ5dXeGlk4wobOnSvciufIdIF2Q1CWNCbyu+TGEfMXta1FB+u+zWE18ykSWB+24GX4EI3Wj9hPjoEbjhnHu9AdzAKEfuWWB8Knr6PUMm3TQX7ePeRuBEXk7+YCqs4rVfj0fZevYPMHT+2eC7FKKsR5NtrmYuIWvM1OYM7U7d/bgY2NzRFZs+HkwSuvx5Vzx++UpmYALpVMqCICBTk7dvwyoXT1rF6sEC6gkjPGhenrB0Yf7lPxEyaoPpVPB4GR66ZZZq4l0PSVsHnSqTiwjyQXottlPRna5exkTQFPoDGmn0KaPPpDFNJsuz+Npwu1ZYl0TSMPQVW8iOn5VoSiJcmdx9fe743dfmh88BnKVP0IRPUk253VHF59PONuogd6sODeQEt2e8r0MR8LSC0imUMep2afzmhtLmvtmkEEX2BP886LH+UqiRxHxwhNoV1CgM3olLimUZt4sMJ36vzi+1rXvknM9Fk2717Y2lQEREF7OT/q3p+ShUMfX24fm/icaZiAncpx+Qnz06cy6udIwMugr2PqelkWz4QNCfa9n/m6yYZnXe7IN/rgichL36Crj0ZnuGhipDwh/bOuLJ2jeIC40vyMIJJt4MZuG3Sx3L0ZWA+qainbKkA2J6oryn/Mj2ACgHO1y3KU7qcj1lmtimWukNU6xzlikW6LbjK15F+C2LVbNWCXdA/fXsZF16tz0yIRhlkJP8aL/7fTKM8TvbE7ca8KDWI1WD9OpHozlx1k3pV4uqwBZyis4uOyzbwHzl+OLB1aELnmGV/guINJmrIIRyPwuYRHgNXYjUMog7l5sj52s7V92ZhBDNZGljn9gY+X36841uAb8/9qpjtbdz2GvCAisffbELNrMBMYF4fDXvS1Sq+MyP3uDGgAcVYHki8Bt7zc5Bu5OgNd/EmhToIQ7hXiFtCm0fXffGlxOHeWVfyk6nhh7yhUTcy619s+o79ev3BMwmF/fZFa370qh/mlrA78VtBhHCgPIVRqirWbDB2t3codxp+79EvOLs5LWdD+45Vn8aHtISptDd2SkRDNfmWaTG6EUc9Pz32Db4tme0PfVileJqfpy4KGQgX/gGocDLhVfJYNBegS4a9X3hRzYpWpmhmuVQ61HkUYGsDF3BVrd+C7e8DKbqqsigV7W2CxIrLUsGZFVVYNRU094vqCJeAsJ7gDcd/NZrn/Xx6Cn4JePOCRU4/h9+UzXosc4NiKdJh2KEW3/RWzh7mQJ91dNeO7ikFMR7k2LVlRJl8fYcWQBzFMjKRV7KuK1UQtjBpFgalSzZoE1lMsymzPAQ+XgzguOOy/Ye+5ue87YsYURTqpH9OmIL3T+1S0oxBil3liD9uIARobCBXYTn6jkpP9vBC4id5BQlPj58Eoi4yS6dZ8Q+nFtcPbzQwuQbA1DSUtkbCK+48NcIGKIhuotu6bx5aBJU+CaFTNgb+yiM7JNGU3MRRAZmbndsMJ2a6DSca/VG04YsizkFme7gT0KG3LIr3GTyTghIZV2r6ibFYKYPadxqXzl/7/CFE0DnHGsdKGCdH934b9SFnzbW+syajf3BLSO5bVkEXFC6qT3PB/IiOj1bNZvaBd0m5XzGAdOkR7tT791RkSRNW+Miyww8aAcyg49n/hNgFjD6Nio0KzqvcgxMug+kvLgeTBoMmPKothF6oTfKkB7NaMHWsPoCNPiq2fZJHstGpNSMEEAtjyofGDFllANWyv3smtLQlS7ZXNbEv5uy7G91+DGMiP7pYqRzgR5bc2mUa3Jr1GBbijLH4JkouCf65bQtZ0hMtFZBx3kUneaPRmyqVLJEjjfMCE3/Y4m/QtY9evYjD1hvvNnUWZGlaGashFwKVj5N6Youhb3y95EB4ywAq5UlHnYIK2Jzs/k+GllxElKFBeiOLKm/B70HQdCsCBN85rGBCU7Y+l53ihwxIyc0CtgW4cp/3G1JASdRXns+j50+eSsZOOOasMACsPoVByAznELyZwAGTVnry6/jn2gXVGXA0HWo5/tiT7jpYc7EF+vTeN9xtiq6khIOf6jJPBdIDP4gyaxB7zl+QmIy2p8U0yqn4uyg+Esl8heZ4St+HUSIOFANp5xXTY7iue9d/MQpNFZ6wZ6hLDC6saldcmLBtYgp41MUGseE1mX/TwqYWP95PGQ1U3N0AasXmYm85NGJ26QocfTdYZ6fxzrF7geM6OqcvkFtJOOWs6+EyHs93CM9ho7d0zVOE677PZ6noSSrqSJ9+L/pT/jg2veHg==
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-2.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-2.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-3.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-3.exe /rawdata=hIylXR8kAQBpjIhxhB+zjKyKGwTXtI7hChC+QLyEX+jiOb5dAGpbY7uasGBKVElNxysxvkCs/yX8whmfVD7clv32ca5ue6lJUdS7uNp2+Wnifunsuekl4o70BgsOD+lvqkSwgiRX8yGx1qpsADdPTYZPmU34fSKFyc2U7Vq5m9C0oTg22yj2Q0SGWzcNabBmBzjbOfoGe3zPr7e21HffHd9XnQ+PQ0CXrd/vPDRWGwu5AsaFOWwjfgvAvYLyDmELAcUB3jtAqBVA66yR7JJHL5Il6gIIzwaBTyepXAVR+rdIj8Tw9WTLNOVaJ3XHEPkULvSQdX50LIooIV/LGjKxqp6hc7rh/hPQhB6fp2UEOryoS8O4SyCiasANjXuWzPF4VgxQL5qg6mm4TCM0rWmuotWLS1DV2sl1ZB4OpAa+qwVNtP8NaQ5hCoB2UZKjAkvGuIc3F3fq6tA3gp+srQRCrd8MXk2IBMugOEe5KkIGuuv4kwR2yMMnQXl1F2IIEn19SZQlFPm+46Cbon6CMnrqetRnlpunrNJXXLhOAjx8P51OhsBW6PttReoVJUwPgwvg9z4zl4O8MZ4+NK1yYN0SXjwt7F6LQlWu1xjxAch0mf/0hM5Z/pFwv15TAPpEnKF8lJcicYUQXZKIhYPc9/LAmfNgsdcrIPiYSFpa509qIm08B8gNPGWeNCtercCjDrQgB4O2p1eCFfmxsVSW9+cvQbeAMmJnkTMO97n83VpEXBk3NpQMaUMDfRxe2N9gwaAmm09+PNLIdQLye1jcKJ575UHuOx48Gs3Zl9wTR0BdIy+6j+ZL2KDH9qAg5Wh+kp85QaxDWHKgIuusCoHcV01o/n+8afCKv1V5B3IUmvRrpmnf6WOuvL9QGbShVoCjcvaTmR4jiEbnLvDTvVNzIC65BDtFfmEgdmTF2kCtMt9NWLSfkW2c5Zd4Q2c1DODqTQhrurOsz9h/kWmnuGD7bL9WjvBaRiJ/2udfBgb9UTokcOcHa7ggTXWW+SxEiuyISqUneHskDm9qfvz8XBdAaP4a+nG2k87qfd2SZhO8UVSR40iV0cgFBPt6AtXYgLsGL6HxIB0HWIIDkWab4bKgfxIB3+xCa6BEIwMgfZvpWrYkHJxj7LZah34SLOJbKf85dBaWTVaC9kQ1bbLieHQK1DxamQztdW1ZbAQye9sMHA3rzZVoSxQttyA+qRtT0xaG4ey2YvhEttbYaMThAx0oB5m426SE27gYg73iPia53Ax6HHN/vb08Dl9pv3QYjckU0ByE4K8r0HfGaysSWYtFR6mMz+34AZPSV7rIDlF+KlzFcVGnQ6WUU4D/4tmKZSWrRGdj9KEttAA6yfKLDPx8Bs2dqLVADd37qkwW5L7Hmk9hMsz0GQiKLDE/g875k9rJELEEUXl9gPEblLd4Fo6tkyFaEVV1QVgyZ/tznETGIQN4NeT5zQr+Fs6PhMheIhZplJ2/ZKncnT4r5e7Ny2pNUjdd4u+PvooOu8GSe/abVwKsdJxtAo/gZ0rDhyJzf3eQ/Bf/UQVBn6GhgxQMGKMpZ10piplhUdtAqaQnsdL+x5R6zhLPSpWzddQEuKQBa8+jgRkWdlVAK8/KbybqpZE/qi6mIWTp3PaxiL+nbZVhzb6wVCKX0SvXBeHZQhbhTXEATMcmcxFlVwEl3Xu8bJM5EBbuibkJRxYZI2BwIYSXqwZgzPMogYb9R6zmb9lzD0ZX3lU3lFyWhgZcoXecxem1bFGF8kOM888ZCGJ/AZUGzgsLyoGBQ/t+AbXYQoTu7jU6qzP3LmtMWxmzJ6L9UE6Iz/eSiT4EsL2F1d7OuLomKEC2658jiL17I5Vqe89RoAwJ3ou1OYBt38AN1AzEnZThDFZLX7kMroA7nsWzVRKKTwcpReYcG8uy1VeUumS9gQMyTOc7ReAwfWRUmjEBJtdzbS9T/J9hKrJku9u9APBbnMvVr7BB31hvoWIJSZ8icuNVm4RtEOnHKk/vdH6ROIhakY4spu8y+WAiDrzz6ebT++PK0jr4wleo5cFsHkk/7oKTv2Gg
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-4.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-4.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-5.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-5.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-5_user.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-5.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-6.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-6.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-7.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-7.exe /rawdata=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
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\NNZAKKJ.job - C:\Users\Murtagh\AppData\Roaming\NNZAKKJ.exe /infocmdline=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
C:\WINDOWS\tasks\RPWFJSMA.job - C:\Users\Murtagh\AppData\Roaming\RPWFJSMA.exe /infocmdline=yAxR33hVUtUSfcDbxBCLoE+/lfLI9ELfxo/FL87+DCAXqR+v4IWQUAF+IJknt+faARDkSFiPAM7MZjV10926rsdWJ1iZGhu3lEVbUanqOwffrf2F82+z4sAU1e05uzK9EAr5aTpoPotvt6jmH2EFD48KqV6qaognoZAhEn3QGdp3CSGfLroAxpqzuYllEPdQzCA6oRdGzWvfimX1PvGWT/m4F5jz8v/A8jRxJqHMeQSj6OONIJARXfVbTkOm+LbvKqJBUgiLw4CdNkg68WTfEItn9BV7+Fbf7xwD1FzjLGw1ISzedeWZ4qG0S/WfDPbQlbgFCcivlC6yQrdskuY+qDSEULmRLgcHoDR7IWJHMdcAadFLDeXeNBCDecF7O66+HuLH2sPLjhHp9DsmQQ6YOv8Vfe6h8gtr59rSMy24aE8gTNF0TsCddO7r5NWC9ZJ/64/SLuvWpSWKRS84Zj/3LSAvGAhuZeW0sCOQaFhvgqja0jYdHcEfFiFWb3SeTFKSsZkLutK+wRg09MBTdV6esMVJAnVrHQ18v7KwLAnjHLQ6qygpZwcc4FRKmt288xLM80NNLghoNjL7A5LleUPNwEK91s0rHvKmd83SdnKb64/+DklNpVBvfiP1S7ufH9ZR3T06y0c1dfgiSyZsKto8dEXbr5D/fQu+D2xz3adWKyg=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611321185}]
TotalPlusHD-3.1V29.11 - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\TotalPlusHD-3.1V29.11-bho64.dll [2014-11-29 965592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-10-22 218776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-14 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 2334928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611321185}]
TotalPlusHD-3.1V29.11 - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\TotalPlusHD-3.1V29.11-bho.dll [2014-11-29 631256]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-10-22 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-14 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 1729752]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3933496]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-10-14 557768]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-08-07 6827664]
"RtHDVBg_DTS"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-08-06 1215632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"RGSC"=E:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-20 5226600]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2014-10-15 2694320]
"IR_SERVER"=C:\PROGRA~2\Realtek\REALTE~1\IR_SERVER.exe []
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27 207424]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-10-15 157480]
"HDD Regenerator"=C:\Program Files (x86)\HDD Regenerator\Shell.exe [2013-05-08 90336]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TMMonitor.lnk - C:\Program Files (x86)\MSI\TotalMedia 3.5\TMMonitor.exe
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-29 08:32:48 ----D---- C:\rsit
2014-11-29 08:32:48 ----D---- C:\Program Files\trend micro
2014-11-29 08:16:03 ----A---- C:\Users\Murtagh\AppData\Roaming\NNZAKKJ.exe
2014-11-29 08:15:49 ----D---- C:\Program Files (x86)\3ed0d997-e9f3-46a5-9dd0-994a206e6088
2014-11-29 08:15:32 ----A---- C:\Users\Murtagh\AppData\Roaming\RPWFJSMA.exe
2014-11-29 08:15:30 ----D---- C:\Program Files (x86)\globalUpdate
2014-11-29 08:15:29 ----D---- C:\Program Files (x86)\TotalPlusHD-3.1V29.11
2014-11-29 08:14:26 ----D---- C:\ProgramData\WindowsMangerProtect
2014-11-29 08:13:48 ----D---- C:\Users\Murtagh\AppData\Roaming\TornTV.com
2014-11-18 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2014-11-18 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-11-18 20:36:45 ----A---- C:\WINDOWS\system32\pku2u.dll
2014-11-18 20:36:45 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-11-15 23:41:02 ----D---- C:\WINDOWS\SYSWOW64\vbox
2014-11-15 23:41:02 ----D---- C:\WINDOWS\system32\vbox
2014-11-14 06:41:31 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-11-14 06:40:24 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-11-14 06:40:22 ----A---- C:\WINDOWS\avastSS.scr
2014-11-12 08:33:21 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 08:33:21 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 08:33:20 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 08:33:20 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 08:33:20 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 08:33:00 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 08:33:00 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 08:32:16 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 08:32:16 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 08:32:15 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-12 08:32:15 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-12 08:32:15 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-12 08:32:14 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-12 08:32:14 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-12 08:32:14 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-12 08:32:14 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-12 08:32:14 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-12 08:32:11 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-12 08:31:34 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-12 08:31:33 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-12 08:31:33 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-12 08:31:32 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-12 08:31:32 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-12 08:31:31 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-12 08:31:30 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-12 08:31:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 08:31:01 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 08:30:30 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 08:30:26 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 08:30:22 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 08:30:20 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 08:30:19 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 08:30:19 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 08:30:19 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 08:30:05 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 08:30:05 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-01 18:16:18 ----A---- C:\WINDOWS\SYSWOW64\vp6vfw.dll
2014-11-01 15:26:58 ----AD---- C:\ProgramData\TEMP
2014-11-01 15:26:56 ----D---- C:\Program Files (x86)\HDD Regenerator
2014-10-31 15:04:20 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2014-10-31 15:04:16 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2014-10-31 15:04:16 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2014-10-31 15:04:16 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2014-10-31 15:04:16 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2014-10-31 15:04:09 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2014-10-31 15:04:09 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2014-10-31 15:04:09 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2014-10-31 15:04:09 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\system32\d3dx10.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-10-31 15:03:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-10-31 15:03:57 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2014-10-31 15:03:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2014-10-31 15:03:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2014-10-31 15:03:55 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2014-10-31 15:03:55 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2014-10-31 15:03:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2014-10-31 15:03:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2014-10-31 15:03:54 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2014-10-31 15:03:54 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2014-10-31 15:03:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2014-10-31 15:03:53 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
======List of files/folders modified in the last 1 month======
2014-11-29 08:32:54 ----D---- C:\WINDOWS\Prefetch
2014-11-29 08:32:48 ----RD---- C:\Program Files
2014-11-29 08:31:31 ----D---- C:\WINDOWS\Temp
2014-11-29 08:27:33 ----D---- C:\Users\Murtagh\AppData\Roaming\uTorrent
2014-11-29 08:23:15 ----D---- C:\WINDOWS\system32\config
2014-11-29 08:22:36 ----RD---- C:\WINDOWS\System32
2014-11-29 08:22:36 ----D---- C:\WINDOWS\Inf
2014-11-29 08:22:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-29 08:18:25 ----D---- C:\WINDOWS\WinSxS
2014-11-29 08:18:23 ----D---- C:\ProgramData\NVIDIA
2014-11-29 08:18:17 ----D---- C:\WINDOWS\system32\drivers
2014-11-29 08:17:28 ----D---- C:\WINDOWS\SysWOW64
2014-11-29 08:16:21 ----D---- C:\WINDOWS\Tasks
2014-11-29 08:16:21 ----D---- C:\WINDOWS\system32\Tasks
2014-11-29 08:15:53 ----D---- C:\Program Files (x86)\AMD APP
2014-11-29 08:15:49 ----RD---- C:\Program Files (x86)
2014-11-29 08:15:31 ----SHD---- C:\WINDOWS\Installer
2014-11-29 08:14:26 ----HD---- C:\ProgramData
2014-11-29 08:00:00 ----D---- C:\WINDOWS\system32\sru
2014-11-29 02:50:19 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-28 15:39:50 ----D---- C:\WINDOWS\AppReadiness
2014-11-28 05:34:27 ----SHD---- C:\System Volume Information
2014-11-27 17:15:13 ----D---- C:\Users\Murtagh\AppData\Roaming\vlc
2014-11-27 02:14:10 ----D---- C:\WINDOWS\CbsTemp
2014-11-26 14:38:09 ----D---- C:\Program Files (x86)\Steam
2014-11-25 15:51:41 ----HD---- C:\Program Files\WindowsApps
2014-11-24 23:43:17 ----D---- C:\Program Files\Common Files\Adobe
2014-11-24 20:16:26 ----D---- C:\Users\Murtagh\AppData\Roaming\Mumble
2014-11-20 21:51:37 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-11-16 12:56:31 ----RSD---- C:\WINDOWS\assembly
2014-11-16 03:11:49 ----D---- C:\WINDOWS\rescache
2014-11-16 02:57:21 ----D---- C:\ProgramData\Microsoft Help
2014-11-16 00:17:26 ----D---- C:\WINDOWS\Logs
2014-11-15 23:33:00 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-15 23:33:00 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-11-15 23:33:00 ----D---- C:\WINDOWS\system32\sk-SK
2014-11-15 23:33:00 ----D---- C:\WINDOWS\system32\migration
2014-11-15 23:33:00 ----D---- C:\WINDOWS\system32\en-US
2014-11-15 23:33:00 ----D---- C:\Program Files\Internet Explorer
2014-11-15 23:33:00 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-15 23:32:59 ----D---- C:\Program Files\Windows Defender
2014-11-15 23:32:59 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-14 06:40:28 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-14 06:40:23 ----D---- C:\Windows
2014-11-13 11:26:45 ----D---- C:\WINDOWS\system32\wbem
2014-11-13 11:25:14 ----A---- C:\WINDOWS\win.ini
2014-11-13 11:22:05 ----D---- C:\WINDOWS\system32\MRT
2014-11-13 11:22:05 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-12 08:28:03 ----D---- C:\WINDOWS\system32\catroot2
2014-11-02 12:25:26 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-11-01 18:23:37 ----D---- C:\Program Files (x86)\Common Files
2014-11-01 18:16:17 ----D---- C:\ProgramData\Package Cache
2014-11-01 16:08:34 ----D---- C:\WINDOWS\system32\wdi
2014-10-31 18:37:25 ----D---- C:\WINDOWS\system32\NDF
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-09-16 80552]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-09-16 26280]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-11-14 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-11-14 267632]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-11-14 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-11-22 1050432]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-11-14 436624]
R1 dtsoftbus01;@oem15.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-10-17 283064]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-11-14 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-11-14 83280]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-11-14 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-14 271752]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-08-07 4102928]
R3 NVHDA;@oem7.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2014-08-19 197408]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-08-19 12866008]
R3 RTL2832U_IRHID;@oem24.inf,%RTL2832U_IRHID%;HID Infrared Remote Receiver; C:\WINDOWS\System32\drivers\RTL2832U_IRHID.sys [2009-10-05 44320]
R3 RTL2832UBDA;@oem10.inf,%RTLUSBDEV.BDA_Desc%;REALTEK 2832U BDA Driver; C:\WINDOWS\system32\drivers\RTL2832UBDA.sys [2010-07-01 224488]
R3 RTL2832UUSB;@oem10.inf,%RTLUSBDEV.USB_Desc%;REALTEK 2832U USB Driver; C:\WINDOWS\System32\Drivers\RTL2832UUSB.sys [2010-07-01 39016]
R3 RTL8168;@oem19.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2012-07-30 690832]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2012-08-28 58536]
S3 USBAAPL64;@oem26.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl64.sys [2014-08-15 54784]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-10-07 60744]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-14 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 DTSAudioSvc;DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [2012-01-23 233328]
R2 hddrsrv;hddrsrv; C:\Program Files (x86)\HDD Regenerator\hrsrv.exe [2013-05-08 82144]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-07-02 935368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
R2 WindowsMangerProtect;WindowsMangerProtect Service; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [2014-11-29 484352]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-14 4012248]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-10-15 643880]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-11-29 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-17 107912]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2014-03-02 977088]
S2 trntv;Torntv Downloader; C:\Users\Murtagh\AppData\Roaming\TornTV.com\TornTVSvc.exe []
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-11-29 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-17 107912]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 wampapache64;wampapache64; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [2014-05-01 24576]
S3 wampmysqld64;wampmysqld64; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [2014-05-01 12942848]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Murtagh at 2014-11-29 08:32:48
Microsoft Windows 8.1 Pro
System drive C: has 51 GB (45%) free of 114 GB
Total RAM: 8093 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:32:54, on 29.11.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\MSI\TotalMedia 3.5\TMMonitor.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Murtagh\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Murtagh.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1D6ZVJW
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... XXZ1D6ZVJW
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXZ1D6ZVJW
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... XXZ1D6ZVJW
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: edccb4a004ec01329fbb0fbe6070a3f60063285 - {11111111-1111-1111-1111-110611321185} - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\TotalPlusHD-3.1V29.11-bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [IR_SERVER] C:\PROGRA~2\Realtek\REALTE~1\IR_SERVER.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [HDD Regenerator] "C:\Program Files (x86)\HDD Regenerator\Shell.exe" /1
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [RGSC] E:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - Global Startup: TMMonitor.lnk = C:\Program Files (x86)\MSI\TotalMedia 3.5\TMMonitor.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: hddrsrv - Unknown owner - C:\Program Files (x86)\HDD Regenerator\hrsrv.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Torntv Downloader (trntv) - Unknown owner - C:\Users\Murtagh\AppData\Roaming\TornTV.com\TornTVSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: wampapache64 - Apache Software Foundation - c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe
O23 - Service: wampmysqld64 - Unknown owner - c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Fuyu LIMITED - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11901 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe"
dashost.exe {af9b73c3-a411-4bf0-829c98cac1991111}
"C:\Program Files (x86)\HDD Regenerator\hrsrv.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5ae6816e-32e7-446f-8a27-b215ee2b7760 -SystemEventPortName:HostProcess-69803768-b08f-4c58-ba97-064c087eddf4 -IoCancelEventPortName:HostProcess-8dcc5ed7-6580-4e73-9768-bd5d5c50707e -NonStateChangingEventPortName:HostProcess-06a8fade-84fd-47d1-b571-04d2edaeb376 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:202786bc-364a-480e-9c80-bfde3bf3f06d -DeviceGroupId:WpdFsGroup
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
taskeng.exe {0FCD148B-7A96-47C4-95A9-2F7E468338FC}
taskhostex.exe
ngservice.exe pipeserver
"C:\Program Files (x86)\TotalPlusHD-3.1V29.11\37133fa4-a99c-4592-b3ac-b2c099629ff3.exe" /agentregpath='TotalPlusHD-3.1V29.11' /appid=63285 /srcid='002173' /subid='0' /zdata='0' /bic=731EE7529FD04C1F9F47799A1D7C9927IE /verifier=81355038cd62e5fdeb3de00be8e9412c /installerversion=1_35_11_26 /installationtime=1417245325 /statsdomain=http://stats.newstaticclientstack.com /errorsdomain=http://errors.newstaticclientstack.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newstaticclientstack.com /runfrom='task' /externallog=''
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DTSU2P
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\MSI\TotalMedia 3.5\TMMonitor.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
ArcCon.ac 66258 0
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"HDD Regenerator.exe"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan"
"HDD Regenerator.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\locales" --log-severity=disable --channel="5304.0.1724631830\1405654164" /prefetch:673131151
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\locales" --log-severity=disable --channel="5304.1.1037254458\128946327" /prefetch:673131151
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=gpu-process --channel="5304.2.992060695\1495668603" --no-sandbox --lang=en-US --locales-dir-path="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\locales" --log-severity=disable --supports-dual-gpus=false --gpu-vendor-id=0x10de --gpu-device-id=0x1184 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --lang=en-US --locales-dir-path="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\locales" --log-severity=disable /prefetch:822062411
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&t ... XXZ1D6ZVJW
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="508.0.148913685\643769393" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38,46 --gpu-vendor-id=0x10de --gpu-device-id=0x1184 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.1.196613328\140635049" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.2.442812800\160616080" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.4.1120166181\1296799283" /prefetch:673131151
"C:\Users\Murtagh\AppData\Roaming\uTorrent\utorrent.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.9.1168373110\1585399162" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="508.10.20992235\605203871" --ppapi-flash-args=enable_hw_video_decode=1 --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.11.718707109\1393418969" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.12.1642823028\1996512858" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.14.936749123\337543174" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.15.1319096361\2047057198" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.17.1022138477\1646445336" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.19.675181746\315872093" /prefetch:673131151
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_36/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="508.20.1726901184\168896981" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\Users\Murtagh\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\37133fa4-a99c-4592-b3ac-b2c099629ff3.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\37133fa4-a99c-4592-b3ac-b2c099629ff3.exe /agentregpath='TotalPlusHD-3.1V29.11' /appid=63285 /srcid='002173' /subid='0' /zdata='0' /bic=731EE7529FD04C1F9F47799A1D7C9927IE /verifier=81355038cd62e5fdeb3de00be8e9412c /installerversion=1_35_11_26 /installationtime=1417245325 /statsdomain=http://stats.newstaticclientstack.com /errorsdomain=http://errors.newstaticclientstack.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newstaticclientstack.com /runfrom='task' /externallog=''
C:\WINDOWS\tasks\cefb22c8-e565-4d64-bff1-e4b9e39b7399.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\cefb22c8-e565-4d64-bff1-e4b9e39b7399.exe 002173 731EE7529FD04C1F9F47799A1D7C9927IE 63285 1417245325 93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 TotalPlusHD-3.1V29.11
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-1.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\TotalPlusHD-3.1V29.11-codedownloader.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-11.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-11.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-2.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-2.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-3.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-3.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-4.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-4.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-5.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-5.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-5_user.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-5.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-6.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-6.exe /rawdata=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
C:\WINDOWS\tasks\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-7.job - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\d9d39d52-08ac-497e-be3d-dabd7a3d38b7-7.exe /rawdata=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
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\NNZAKKJ.job - C:\Users\Murtagh\AppData\Roaming\NNZAKKJ.exe /infocmdline=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
C:\WINDOWS\tasks\RPWFJSMA.job - C:\Users\Murtagh\AppData\Roaming\RPWFJSMA.exe /infocmdline=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
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611321185}]
TotalPlusHD-3.1V29.11 - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\TotalPlusHD-3.1V29.11-bho64.dll [2014-11-29 965592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-10-22 218776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-14 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 2334928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611321185}]
TotalPlusHD-3.1V29.11 - C:\Program Files (x86)\TotalPlusHD-3.1V29.11\TotalPlusHD-3.1V29.11-bho.dll [2014-11-29 631256]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-10-22 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-14 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 1729752]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3933496]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-10-14 557768]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-08-07 6827664]
"RtHDVBg_DTS"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-08-06 1215632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"RGSC"=E:\Hry\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-20 5226600]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2014-10-15 2694320]
"IR_SERVER"=C:\PROGRA~2\Realtek\REALTE~1\IR_SERVER.exe []
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27 207424]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-10-15 157480]
"HDD Regenerator"=C:\Program Files (x86)\HDD Regenerator\Shell.exe [2013-05-08 90336]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TMMonitor.lnk - C:\Program Files (x86)\MSI\TotalMedia 3.5\TMMonitor.exe
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-29 08:32:48 ----D---- C:\rsit
2014-11-29 08:32:48 ----D---- C:\Program Files\trend micro
2014-11-29 08:16:03 ----A---- C:\Users\Murtagh\AppData\Roaming\NNZAKKJ.exe
2014-11-29 08:15:49 ----D---- C:\Program Files (x86)\3ed0d997-e9f3-46a5-9dd0-994a206e6088
2014-11-29 08:15:32 ----A---- C:\Users\Murtagh\AppData\Roaming\RPWFJSMA.exe
2014-11-29 08:15:30 ----D---- C:\Program Files (x86)\globalUpdate
2014-11-29 08:15:29 ----D---- C:\Program Files (x86)\TotalPlusHD-3.1V29.11
2014-11-29 08:14:26 ----D---- C:\ProgramData\WindowsMangerProtect
2014-11-29 08:13:48 ----D---- C:\Users\Murtagh\AppData\Roaming\TornTV.com
2014-11-18 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2014-11-18 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-11-18 20:36:45 ----A---- C:\WINDOWS\system32\pku2u.dll
2014-11-18 20:36:45 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-11-15 23:41:02 ----D---- C:\WINDOWS\SYSWOW64\vbox
2014-11-15 23:41:02 ----D---- C:\WINDOWS\system32\vbox
2014-11-14 06:41:31 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-11-14 06:40:24 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-11-14 06:40:22 ----A---- C:\WINDOWS\avastSS.scr
2014-11-12 08:33:21 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 08:33:21 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 08:33:20 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 08:33:20 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 08:33:20 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 08:33:00 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 08:33:00 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 08:32:59 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 08:32:58 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 08:32:16 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 08:32:16 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 08:32:15 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-12 08:32:15 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-12 08:32:15 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-12 08:32:14 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-12 08:32:14 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-12 08:32:14 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-12 08:32:14 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-12 08:32:14 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-12 08:32:11 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-12 08:32:10 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-12 08:32:09 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-12 08:31:34 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-12 08:31:33 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-12 08:31:33 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-12 08:31:32 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-12 08:31:32 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-12 08:31:31 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-12 08:31:30 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-12 08:31:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 08:31:01 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 08:30:30 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 08:30:26 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 08:30:22 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 08:30:20 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 08:30:19 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 08:30:19 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 08:30:19 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 08:30:18 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 08:30:17 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 08:30:16 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 08:30:15 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 08:30:05 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 08:30:05 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 08:30:04 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-01 18:16:18 ----A---- C:\WINDOWS\SYSWOW64\vp6vfw.dll
2014-11-01 15:26:58 ----AD---- C:\ProgramData\TEMP
2014-11-01 15:26:56 ----D---- C:\Program Files (x86)\HDD Regenerator
2014-10-31 15:04:20 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-10-31 15:04:20 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-10-31 15:04:19 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-10-31 15:04:18 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2014-10-31 15:04:17 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2014-10-31 15:04:16 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2014-10-31 15:04:16 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2014-10-31 15:04:16 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2014-10-31 15:04:16 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2014-10-31 15:04:15 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2014-10-31 15:04:14 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2014-10-31 15:04:13 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2014-10-31 15:04:12 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2014-10-31 15:04:11 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2014-10-31 15:04:10 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2014-10-31 15:04:09 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2014-10-31 15:04:09 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2014-10-31 15:04:09 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2014-10-31 15:04:09 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2014-10-31 15:04:08 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2014-10-31 15:04:07 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2014-10-31 15:04:06 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2014-10-31 15:04:05 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2014-10-31 15:04:04 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2014-10-31 15:04:03 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2014-10-31 15:04:02 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-10-31 15:04:01 ----A---- C:\WINDOWS\system32\d3dx10.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2014-10-31 15:04:00 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2014-10-31 15:03:59 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-10-31 15:03:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-10-31 15:03:57 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-10-31 15:03:56 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2014-10-31 15:03:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2014-10-31 15:03:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2014-10-31 15:03:55 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2014-10-31 15:03:55 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2014-10-31 15:03:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2014-10-31 15:03:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2014-10-31 15:03:54 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2014-10-31 15:03:54 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2014-10-31 15:03:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2014-10-31 15:03:53 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
======List of files/folders modified in the last 1 month======
2014-11-29 08:32:54 ----D---- C:\WINDOWS\Prefetch
2014-11-29 08:32:48 ----RD---- C:\Program Files
2014-11-29 08:31:31 ----D---- C:\WINDOWS\Temp
2014-11-29 08:27:33 ----D---- C:\Users\Murtagh\AppData\Roaming\uTorrent
2014-11-29 08:23:15 ----D---- C:\WINDOWS\system32\config
2014-11-29 08:22:36 ----RD---- C:\WINDOWS\System32
2014-11-29 08:22:36 ----D---- C:\WINDOWS\Inf
2014-11-29 08:22:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-29 08:18:25 ----D---- C:\WINDOWS\WinSxS
2014-11-29 08:18:23 ----D---- C:\ProgramData\NVIDIA
2014-11-29 08:18:17 ----D---- C:\WINDOWS\system32\drivers
2014-11-29 08:17:28 ----D---- C:\WINDOWS\SysWOW64
2014-11-29 08:16:21 ----D---- C:\WINDOWS\Tasks
2014-11-29 08:16:21 ----D---- C:\WINDOWS\system32\Tasks
2014-11-29 08:15:53 ----D---- C:\Program Files (x86)\AMD APP
2014-11-29 08:15:49 ----RD---- C:\Program Files (x86)
2014-11-29 08:15:31 ----SHD---- C:\WINDOWS\Installer
2014-11-29 08:14:26 ----HD---- C:\ProgramData
2014-11-29 08:00:00 ----D---- C:\WINDOWS\system32\sru
2014-11-29 02:50:19 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-28 15:39:50 ----D---- C:\WINDOWS\AppReadiness
2014-11-28 05:34:27 ----SHD---- C:\System Volume Information
2014-11-27 17:15:13 ----D---- C:\Users\Murtagh\AppData\Roaming\vlc
2014-11-27 02:14:10 ----D---- C:\WINDOWS\CbsTemp
2014-11-26 14:38:09 ----D---- C:\Program Files (x86)\Steam
2014-11-25 15:51:41 ----HD---- C:\Program Files\WindowsApps
2014-11-24 23:43:17 ----D---- C:\Program Files\Common Files\Adobe
2014-11-24 20:16:26 ----D---- C:\Users\Murtagh\AppData\Roaming\Mumble
2014-11-20 21:51:37 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-11-16 12:56:31 ----RSD---- C:\WINDOWS\assembly
2014-11-16 03:11:49 ----D---- C:\WINDOWS\rescache
2014-11-16 02:57:21 ----D---- C:\ProgramData\Microsoft Help
2014-11-16 00:17:26 ----D---- C:\WINDOWS\Logs
2014-11-15 23:33:00 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-15 23:33:00 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-11-15 23:33:00 ----D---- C:\WINDOWS\system32\sk-SK
2014-11-15 23:33:00 ----D---- C:\WINDOWS\system32\migration
2014-11-15 23:33:00 ----D---- C:\WINDOWS\system32\en-US
2014-11-15 23:33:00 ----D---- C:\Program Files\Internet Explorer
2014-11-15 23:33:00 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-15 23:32:59 ----D---- C:\Program Files\Windows Defender
2014-11-15 23:32:59 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-14 06:40:28 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-14 06:40:23 ----D---- C:\Windows
2014-11-13 11:26:45 ----D---- C:\WINDOWS\system32\wbem
2014-11-13 11:25:14 ----A---- C:\WINDOWS\win.ini
2014-11-13 11:22:05 ----D---- C:\WINDOWS\system32\MRT
2014-11-13 11:22:05 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-12 08:28:03 ----D---- C:\WINDOWS\system32\catroot2
2014-11-02 12:25:26 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-11-01 18:23:37 ----D---- C:\Program Files (x86)\Common Files
2014-11-01 18:16:17 ----D---- C:\ProgramData\Package Cache
2014-11-01 16:08:34 ----D---- C:\WINDOWS\system32\wdi
2014-10-31 18:37:25 ----D---- C:\WINDOWS\system32\NDF
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-09-16 80552]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-09-16 26280]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-11-14 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-11-14 267632]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-11-14 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-11-22 1050432]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-11-14 436624]
R1 dtsoftbus01;@oem15.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-10-17 283064]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-11-14 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-11-14 83280]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-11-14 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-14 271752]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-08-07 4102928]
R3 NVHDA;@oem7.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2014-08-19 197408]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-08-19 12866008]
R3 RTL2832U_IRHID;@oem24.inf,%RTL2832U_IRHID%;HID Infrared Remote Receiver; C:\WINDOWS\System32\drivers\RTL2832U_IRHID.sys [2009-10-05 44320]
R3 RTL2832UBDA;@oem10.inf,%RTLUSBDEV.BDA_Desc%;REALTEK 2832U BDA Driver; C:\WINDOWS\system32\drivers\RTL2832UBDA.sys [2010-07-01 224488]
R3 RTL2832UUSB;@oem10.inf,%RTLUSBDEV.USB_Desc%;REALTEK 2832U USB Driver; C:\WINDOWS\System32\Drivers\RTL2832UUSB.sys [2010-07-01 39016]
R3 RTL8168;@oem19.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2012-07-30 690832]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2012-08-28 58536]
S3 USBAAPL64;@oem26.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl64.sys [2014-08-15 54784]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-10-07 60744]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-14 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 DTSAudioSvc;DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [2012-01-23 233328]
R2 hddrsrv;hddrsrv; C:\Program Files (x86)\HDD Regenerator\hrsrv.exe [2013-05-08 82144]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-07-02 935368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
R2 WindowsMangerProtect;WindowsMangerProtect Service; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [2014-11-29 484352]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-14 4012248]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-10-15 643880]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-11-29 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-17 107912]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2014-03-02 977088]
S2 trntv;Torntv Downloader; C:\Users\Murtagh\AppData\Roaming\TornTV.com\TornTVSvc.exe []
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-11-29 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-17 107912]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 wampapache64;wampapache64; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [2014-05-01 24576]
S3 wampmysqld64;wampmysqld64; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [2014-05-01 12942848]
-----------------EOF-----------------
Stahnete AdwCleaner 
