VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Kontrola logu.

https://forum.viry.cz:443/viewtopic.php?t=145955

Stránka 1 z 1

Kontrola logu.

Napsal: 06 zář 2015 20:20
od Harmony
Dobrý večer :) prosím o kontrolu logu. PS: problém s "programy neodpovídají" jsem vyřešil tím, že jsem odinstaloval zvukový ovladač a znova nainstaloval.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Viktor at 2015-09-06 21:13:53
Microsoft Windows 8
System drive C: has 841 GB (93%) free of 905 GB
Total RAM: 3962 MB (6% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:14:29, on 6. 9. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16384)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\USB Camera2\VM332STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\RunDll32.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Lenovo\Bluetooth Software\Bluetooth Headset Helper.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Viktor.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Google Update] "C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-21-3533054992-3487030045-1629306104-1001\..\Run: [Google Update] "C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3533054992-3487030045-1629306104-1001\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User 'UpdatusUser')
O4 - Global Startup: Bluetooth.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @oem15.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 9158 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\WLANExt.exe 174361100928
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-76bc0303-cb95-4e2f-b2a6-44ec61259fb0 -SystemEventPortName:HostProcess-18e1e79b-97d1-43d6-a042-415200e13ee1 -IoCancelEventPortName:HostProcess-38d2f9f1-4547-4aa7-bcda-6975c19afea6 -NonStateChangingEventPortName:HostProcess-f9a7298e-9a8b-41a8-9616-85151deb4576 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:133a29c0-400f-488a-9c14-881a565058bb -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
dashost.exe {f98c4187-31eb-4aa6-8f9b0c8edc9bbffa}
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskhostex.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\USB Camera2\VM332STI.EXE"
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4596.0.2083453489\1367447786" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --ignored=" --type=renderer " /prefetch:822062411
"C:\WINDOWS\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="4596.2.1967147998\1694759220" --font-cache-shared-handle=2500 /prefetch:673131151
"C:\Program Files\Lenovo\Bluetooth Software\Bluetooth Headset Helper.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="4596.5.375662267\1462947444" --font-cache-shared-handle=4580 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="4596.8.511456076\667857267" --font-cache-shared-handle=5544 /prefetch:673131151
taskhost.exe $(Arg0)
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="4596.16.1268957130\333892310" --font-cache-shared-handle=2588 /prefetch:673131151

"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="4596.20.1971969714\1930819589" --font-cache-shared-handle=3164 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="4596.33.956818672\126240258" --font-cache-shared-handle=7552 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="4596.41.248175549\1692116898" --font-cache-shared-handle=3084 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="4596.43.180830136\1605725413" --font-cache-shared-handle=8812 /prefetch:673131151
"C:\Users\Viktor\Downloads\RSITx64 (2).exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="4596.44.1333453021\1610074600" --font-cache-shared-handle=7592 /prefetch:673131151
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17280_none_6224eed751126779\TiWorker.exe -Embedding

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3533054992-3487030045-1629306104-1002Core.job - C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3533054992-3487030045-1629306104-1002Core1d0e7bb43568646.job - C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe /c

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-05 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-05 559624]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-08-25 170304]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-25 398656]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-08-25 441152]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-09-20 656896]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-08-10 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-12-01 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-12-01 191544]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28 1393880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-05 144200]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-26 55106080]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-08-23 56128]
"332BigDog"=C:\Program Files (x86)\USB Camera2\VM332STI.EXE [2012-03-21 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-09-05 6111824]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-06 21:13:59 ----D---- C:\Program Files\trend micro
2015-09-06 21:13:53 ----D---- C:\rsit
2015-09-06 18:29:13 ----D---- C:\WINDOWS\system32\DAX2
2015-09-06 18:28:12 ----D---- C:\WINDOWS\LastGood.Tmp
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2015-09-06 18:19:05 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2015-09-06 18:19:02 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2015-09-06 18:19:02 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tosade.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\sltech64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\slprp64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\slcnt64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.DLL
2015-09-06 18:19:00 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\CX64APO.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-09-06 15:52:49 ----D---- C:\ProgramData\Energy Management
2015-09-05 13:37:50 ----D---- C:\Users\Viktor\AppData\Roaming\AVAST Software
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2015-09-05 13:29:47 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-09-05 13:29:43 ----A---- C:\WINDOWS\avastSS.scr
2015-09-05 13:27:54 ----D---- C:\Program Files\AVAST Software
2015-09-05 13:16:10 ----D---- C:\ProgramData\AVAST Software
2015-09-05 13:14:42 ----D---- C:\Users\Viktor\AppData\Roaming\Skype
2015-09-05 13:14:25 ----RD---- C:\Program Files (x86)\Skype
2015-09-05 13:14:17 ----D---- C:\ProgramData\Skype
2015-09-05 13:06:51 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-05 12:41:03 ----D---- C:\Program Files\Common Files\AV
2015-09-05 12:00:17 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-09-05 12:00:17 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-05 11:55:27 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-09-05 11:55:26 ----A---- C:\WINDOWS\system32\twinui.dll
2015-09-05 11:55:24 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-09-05 11:55:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-09-05 11:55:21 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\VSSVC.exe
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\ubpm.dll
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\SYSWOW64\ubpm.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-05 11:55:17 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-05 11:55:17 ----A---- C:\WINDOWS\system32\netprofm.dll
2015-09-05 11:55:15 ----A---- C:\WINDOWS\system32\stobject.dll
2015-09-05 11:55:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\taskhost.exe
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\netplwiz.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\Magnify.exe
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\taskhostex.exe
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\AuthHost.exe
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2015-09-05 11:55:12 ----A---- C:\WINDOWS\system32\biwinrt.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\muifontsetup.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\system32\muifontsetup.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-09-05 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2015-09-05 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2015-09-05 11:54:14 ----A---- C:\WINDOWS\system32\autochk.exe
2015-09-05 11:54:13 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2015-09-05 11:54:13 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2015-09-05 11:54:13 ----A---- C:\WINDOWS\system32\untfs.dll
2015-09-05 11:54:09 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2015-09-05 11:54:09 ----A---- C:\WINDOWS\system32\kernel32.dll
2015-09-05 11:54:07 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll
2015-09-05 11:54:07 ----A---- C:\WINDOWS\system32\msdrm.dll
2015-09-05 11:51:53 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2015-09-05 11:51:53 ----A---- C:\WINDOWS\system32\win32spl.dll
2015-09-05 11:51:52 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\scrrun.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\scrobj.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\cscript.exe
2015-09-05 11:51:33 ----A---- C:\WINDOWS\system32\win32k.sys
2015-09-05 11:51:32 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-09-05 11:51:32 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\lpk.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-05 11:50:43 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-09-05 11:50:43 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcasvc.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcalua.exe
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcaevts.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcadm.dll
2015-09-05 11:50:38 ----D---- C:\Windows.old
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\apprepsync.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\apprepapi.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\nshwfp.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\BFE.DLL
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2015-09-05 11:49:29 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2015-09-05 11:49:29 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2015-09-05 11:49:29 ----A---- C:\WINDOWS\system32\d2d1.dll
2015-09-05 11:49:28 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnet.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\system32\wpdshext.dll
2015-09-05 11:47:02 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-09-05 11:47:02 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2015-09-05 11:46:59 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\sdbinst.exe
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2015-09-05 11:46:04 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-09-05 11:46:04 ----A---- C:\WINDOWS\system32\esent.dll
2015-09-05 11:45:53 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-09-05 11:45:49 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-09-05 11:45:47 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\SHCore.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\msv1_0.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-09-05 11:44:10 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\schannel.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\usercpl.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\sspisrv.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\sspicli.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\lsass.exe
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\adtschema.dll
2015-09-05 11:43:50 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2015-09-05 11:42:13 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2015-09-05 11:42:13 ----A---- C:\WINDOWS\system32\qedit.dll
2015-09-05 11:42:11 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-09-05 11:42:11 ----A---- C:\WINDOWS\system32\notepad.exe
2015-09-05 11:42:11 ----A---- C:\WINDOWS\notepad.exe
2015-09-05 11:42:07 ----A---- C:\WINDOWS\SYSWOW64\cryptdlg.dll
2015-09-05 11:42:07 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2015-09-05 11:42:05 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2015-09-05 11:42:05 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2015-09-05 11:40:14 ----A---- C:\WINDOWS\system32\wmp.dll
2015-09-05 11:40:14 ----A---- C:\WINDOWS\system32\tquery.dll
2015-09-05 11:40:13 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-09-05 11:40:12 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-09-05 11:40:09 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-09-05 11:40:08 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-09-05 11:40:05 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2015-09-05 11:40:05 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-09-05 11:40:04 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2015-09-05 11:40:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\kd_02_10ec.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-09-05 11:40:02 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\rsaenh.dll
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-09-05 11:40:00 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\mssph.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\dwmredir.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\conhost.exe
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\XpsRasterService.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\winresume.exe
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\winload.exe
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\fhengine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\ci.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\XpsRasterService.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\wscsvc.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\Robocopy.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\kdvm.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\kdnet.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\iuilp.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\mssvp.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\GenuineCenter.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\fmifs.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\hidi2c.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-09-05 11:39:54 ----A---- C:\WINDOWS\SYSWOW64\fmifs.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\mssphtb.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\msshooks.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\mssitlb.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\msscntrs.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-09-05 11:39:52 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2015-09-05 11:39:52 ----A---- C:\WINDOWS\system32\tzres.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\VmHostAI.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\tssdisai.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\RDWebAI.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\poqexec.exe
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\appserverai.dll
2015-09-05 11:38:28 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-09-05 11:38:28 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-09-05 11:38:25 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2015-09-05 11:34:24 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-09-05 11:34:24 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-09-05 11:34:17 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2015-09-05 11:34:17 ----A---- C:\WINDOWS\system32\comctl32.dll
2015-09-05 11:34:12 ----A---- C:\WINDOWS\system32\shell32.dll
2015-09-05 11:34:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-09-05 11:33:59 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2015-09-05 11:33:57 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2015-09-05 11:33:55 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2015-09-05 11:33:55 ----A---- C:\WINDOWS\system32\packager.dll
2015-09-05 11:33:08 ----D---- C:\$WINDOWS.~BT
2015-09-05 11:31:59 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-09-05 11:31:46 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-09-05 11:31:45 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2015-09-05 11:31:45 ----A---- C:\WINDOWS\system32\lsm.dll
2015-09-05 11:31:44 ----A---- C:\WINDOWS\system32\wdigest.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\system32\TSpkg.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\system32\credssp.dll
2015-09-05 11:31:42 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2015-09-05 11:31:41 ----A---- C:\WINDOWS\system32\workerdd.dll
2015-09-05 11:31:41 ----A---- C:\WINDOWS\system32\msaudite.dll
2015-09-05 11:31:25 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2015-09-05 11:31:25 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-09-05 11:31:24 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2015-09-05 11:31:24 ----A---- C:\WINDOWS\system32\msieftp.dll
2015-09-05 11:30:32 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2015-09-05 11:30:32 ----A---- C:\WINDOWS\system32\crypt32.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-09-05 11:16:20 ----A---- C:\WINDOWS\system32\wups2.dll
2015-09-05 11:16:20 ----A---- C:\WINDOWS\system32\wups.dll
2015-09-05 11:16:19 ----A---- C:\WINDOWS\system32\wushareduxresources.dll
2015-09-05 11:16:16 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-05 11:16:16 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-09-05 11:16:16 ----A---- C:\WINDOWS\system32\wuaext.dll
2015-09-05 11:16:13 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-09-05 11:16:13 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-09-05 11:16:12 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-09-05 11:16:12 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-09-05 11:16:06 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-09-05 11:16:06 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-09-05 11:16:06 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-09-05 11:16:06 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-09-05 11:04:21 ----D---- C:\Users\Viktor\AppData\Roaming\Intel Corporation
2015-09-05 11:01:00 ----D---- C:\Users\Viktor\AppData\Roaming\Identities
2015-09-05 10:59:31 ----D---- C:\Users\Viktor\AppData\Roaming\Macromedia
2015-09-05 10:59:29 ----D---- C:\Users\Viktor\AppData\Roaming\Adobe
2015-09-05 10:57:42 ----D---- C:\Users\Viktor\AppData\Roaming\Intel
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Šablony
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Plocha
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Nabídka Start
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Dokumenty
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Data aplikací
2015-09-05 10:53:01 ----SD---- C:\Users\Viktor\AppData\Roaming\Microsoft
2015-09-05 10:22:31 ----HD---- C:\$SysReset
2015-09-04 17:17:12 ----SHD---- C:\Config.Msi
2015-08-16 04:25:44 ----ASH---- C:\swapfile.sys
2015-08-16 04:25:42 ----SHD---- C:\System Volume Information
2015-08-16 04:25:42 ----ASH---- C:\pagefile.sys
2015-08-16 04:25:41 ----ASH---- C:\hiberfil.sys
2015-08-16 04:25:18 ----SHD---- C:\Recovery
2015-08-16 04:25:18 ----A---- C:\Recovery.txt
2015-08-15 19:04:09 ----HD---- C:\$AVG

======List of files/folders modified in the last 1 month======

2015-09-06 21:13:59 ----RD---- C:\Program Files
2015-09-06 21:12:52 ----D---- C:\WINDOWS\Temp
2015-09-06 21:11:02 ----D---- C:\WINDOWS\Prefetch
2015-09-06 20:02:00 ----D---- C:\WINDOWS\system32\sru
2015-09-06 19:54:48 ----D---- C:\WINDOWS\LiveKernelReports
2015-09-06 18:41:31 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-09-06 18:37:17 ----AD---- C:\Windows
2015-09-06 18:36:36 ----HD---- C:\Program Files (x86)\Temp
2015-09-06 18:36:35 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-09-06 18:36:26 ----SHD---- C:\WINDOWS\Installer
2015-09-06 18:36:25 ----RD---- C:\Program Files (x86)
2015-09-06 18:36:24 ----D---- C:\WINDOWS\Logs
2015-09-06 18:36:18 ----D---- C:\WINDOWS\Inf
2015-09-06 18:35:47 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-06 18:34:34 ----AD---- C:\WINDOWS\System32
2015-09-06 18:34:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-06 18:29:09 ----D---- C:\WINDOWS\SysWOW64
2015-09-06 18:28:17 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-09-06 18:28:15 ----D---- C:\WINDOWS\system32\Drivers
2015-09-06 18:27:57 ----D---- C:\ProgramData\McAfee
2015-09-06 18:27:53 ----D---- C:\Program Files\Common Files\mcafee
2015-09-06 18:25:08 ----D---- C:\WINDOWS\system32\catroot
2015-09-06 18:16:41 ----D---- C:\Program Files (x86)\Realtek
2015-09-06 18:07:06 ----D---- C:\WINDOWS\system32\config
2015-09-06 16:52:20 ----HD---- C:\Program Files\WindowsApps
2015-09-06 16:38:50 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-06 16:38:35 ----D---- C:\WINDOWS\AUInstallAgent
2015-09-06 16:34:57 ----D---- C:\WINDOWS\CbsTemp
2015-09-06 16:34:55 ----D---- C:\WINDOWS\system32\catroot2
2015-09-06 16:34:46 ----D---- C:\WINDOWS\WinSxS
2015-09-06 15:53:35 ----D---- C:\WINDOWS\system32\wdi
2015-09-06 15:52:49 ----HD---- C:\ProgramData
2015-09-05 21:40:08 ----SD---- C:\ProgramData\Microsoft
2015-09-05 13:55:02 ----HD---- C:\WINDOWS\ELAMBKUP
2015-09-05 13:33:32 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-05 13:33:28 ----RD---- C:\WINDOWS\assembly
2015-09-05 13:30:12 ----D---- C:\WINDOWS\system32\Tasks
2015-09-05 13:14:26 ----D---- C:\Program Files (x86)\Common Files
2015-09-05 13:06:02 ----D---- C:\WINDOWS\servicing
2015-09-05 12:59:48 ----RD---- C:\WINDOWS\ToastData
2015-09-05 12:59:41 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-09-05 12:59:41 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-09-05 12:59:41 ----D---- C:\Program Files\Windows Photo Viewer
2015-09-05 12:59:41 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-09-05 12:59:40 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-09-05 12:59:40 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-09-05 12:59:31 ----D---- C:\WINDOWS\system32\Dism
2015-09-05 12:59:30 ----D---- C:\WINDOWS\system32\sk-SK
2015-09-05 12:59:29 ----D---- C:\WINDOWS\system32\cs-CZ
2015-09-05 12:59:28 ----D---- C:\WINDOWS\system32\en-US
2015-09-05 12:59:16 ----RSD---- C:\WINDOWS\Fonts
2015-09-05 12:58:17 ----D---- C:\WINDOWS\apppatch
2015-09-05 12:58:05 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-05 12:58:05 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-09-05 12:57:20 ----D---- C:\WINDOWS\WinStore
2015-09-05 12:57:20 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-09-05 12:57:09 ----D---- C:\WINDOWS\system32\migration
2015-09-05 12:57:09 ----D---- C:\WINDOWS\system32\Boot
2015-09-05 12:56:31 ----D---- C:\Program Files\Windows Defender
2015-09-05 12:56:25 ----D---- C:\Program Files (x86)\Windows Defender
2015-09-05 12:55:48 ----AD---- C:\WINDOWS\system32\oobe
2015-09-05 12:41:03 ----D---- C:\Program Files\Common Files
2015-09-05 11:14:26 ----D---- C:\WINDOWS\Tasks
2015-09-05 11:08:33 ----D---- C:\Program Files (x86)\Lenovo
2015-09-05 11:06:49 ----D---- C:\Program Files (x86)\Amazon
2015-09-05 11:05:28 ----D---- C:\WINDOWS\system32\restore
2015-09-05 11:02:42 ----D---- C:\ProgramData\Intel
2015-09-05 10:57:55 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-09-05 10:56:39 ----ADC---- C:\WINDOWS\Panther
2015-09-05 10:54:04 ----D---- C:\Program Files\Windows NT
2015-09-05 10:53:56 ----D---- C:\WINDOWS\debug
2015-09-05 10:53:43 ----D---- C:\WINDOWS\system32\Recovery
2015-09-05 10:53:01 ----AD---- C:\Users
2015-08-16 14:49:22 ----SHD---- C:\$Recycle.Bin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-09-05 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-09-05 274808]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-12-01 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2012-10-02 30056]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-09-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-09-05 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-09-05 447944]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-09-05 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-09-05 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-09-05 150672]
R3 ACPIVPC;@oem24.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-12-01 33560]
R3 bcbtums;@oem15.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2012-10-01 169240]
R3 BthEnum;@tdibth.inf,%BthEnum.DisplayName%;Bluetooth Enumerator Service; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2012-09-20 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2012-09-20 74752]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2012-10-16 161144]
R3 btwavdt;@oem10.inf,%btwavdt.SvcDesc%;Bluetooth AVDT; C:\WINDOWS\System32\drivers\btwavdt.sys [2012-10-09 225144]
R3 btwl2cap;@oem13.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-07-27 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2012-10-09 20856]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem21.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2012-10-10 25568]
R3 JMCR;JMCR; C:\WINDOWS\System32\drivers\jmcr.sys [2012-06-22 174176]
R3 L1C;@oem6.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2012-07-19 110744]
R3 MEIx64;@oem7.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem19.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2012-08-20 4273192]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2012-10-02 13443944]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2012-07-26 156672]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-09-17 43832]
R3 SynTP;@oem17.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-09-17 457528]
R3 usb3Hub;@oem22.inf,%usb3Hub.SVCDESC%;USB-IF USB 3.0 Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [2012-10-10 47072]
R3 vm332avs;@oem1.inf,%USBCamera.DeviceDesc2%;Lenovo Camera2; C:\WINDOWS\System32\Drivers\vm332avs.sys [2012-08-25 981112]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2012-09-20 1171968]
S3 btwaudio;@oem10.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2012-10-09 185208]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 intaud_WaveExtensible;@oem20.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2012-10-10 35296]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-18 4496600]
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2012-09-20 210304]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-09-05 146600]
R2 BcmBtRSupport;@oem15.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service; C:\WINDOWS\system32\BtwRSupportService.exe [2012-10-01 2227992]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2012-10-22 957816]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-07-18 627504]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-08-16 7168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-21 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 277824]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-02 1258856]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-07-18 149296]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 365376]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2012-08-25 276288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-07-18 272176]

-----------------EOF-----------------

Re: Kontrola logu.

Napsal: 06 zář 2015 20:44
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Kontrola logu.

Napsal: 06 zář 2015 21:17
od Harmony
# AdwCleaner v5.006 - Logfile created 06/09/2015 at 22:10:53
# Updated 06/09/2015 by Xplode
# Database : 2015-09-04.4 [Server]
# Operating system : Windows 8 (x64)
# Username : Viktor - VIKTOR
# Running from : C:\Users\Viktor\Downloads\adwcleaner_5.006.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\Amazon\ABB

***** [ Files ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

[-] [C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : realtek-hd-audio-drivers-vista.en.softonic.com

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [811 bytes] ##########

Re: Kontrola logu.

Napsal: 06 zář 2015 21:37
od Rudy
Dejte nový log RSIT.

Re: Kontrola logu.

Napsal: 06 zář 2015 21:44
od Harmony
Logfile of random's system information tool 1.10 (written by random/random)
Run by Viktor at 2015-09-06 22:44:16
Microsoft Windows 8
System drive C: has 841 GB (93%) free of 905 GB
Total RAM: 3962 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:44:24, on 6. 9. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16384)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\USB Camera2\VM332STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\RunDll32.exe
C:\Program Files\Lenovo\Bluetooth Software\Bluetooth Headset Helper.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Viktor.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Google Update] "C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-21-3533054992-3487030045-1629306104-1001\..\Run: [Google Update] "C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3533054992-3487030045-1629306104-1001\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User 'UpdatusUser')
O4 - Global Startup: Bluetooth.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @oem15.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 8666 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\WLANExt.exe 687895644000
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
taskhostex.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\Explorer.EXE
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d1e7eb30-a902-4793-a840-a91feaef7a4e -SystemEventPortName:HostProcess-589f01cc-91dc-465d-9017-a4a86c7336dc -IoCancelEventPortName:HostProcess-7f290d88-1e07-4cda-9b29-a912f949ab37 -NonStateChangingEventPortName:HostProcess-35b586cf-0632-4740-b94f-283c6fa4190a -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:28e0a9dd-efcc-4fde-a640-5c537fe3e85d -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
dashost.exe {a63f10a7-aacb-4e80-945b96f63d72bbdc}
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\USB Camera2\VM332STI.EXE"
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding

C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2928.0.238895504\1568716923" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2928.2.915593927\653819854" --font-cache-shared-handle=2712 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2928.5.169196730\1849005398" --font-cache-shared-handle=5000 /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2928.7.1901752781\28127243" --font-cache-shared-handle=5376 /prefetch:673131151
"C:\WINDOWS\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
taskhost.exe $(Arg0)
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17280_none_6224eed751126779\TiWorker.exe -Embedding
"C:\Program Files\Lenovo\Bluetooth Software\Bluetooth Headset Helper.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2928.14.88485539\1744127301" --font-cache-shared-handle=5892 /prefetch:673131151
"C:\Users\Viktor\Downloads\RSITx64 (2).exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3533054992-3487030045-1629306104-1002Core.job - C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3533054992-3487030045-1629306104-1002Core1d0e7bb43568646.job - C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe /c

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-05 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-05 559624]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-08-25 170304]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-25 398656]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-08-25 441152]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-09-20 656896]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-08-10 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-12-01 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-12-01 191544]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28 1393880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-05 144200]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-26 55106080]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-08-23 56128]
"332BigDog"=C:\Program Files (x86)\USB Camera2\VM332STI.EXE [2012-03-21 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-09-05 6111824]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-06 22:09:22 ----D---- C:\AdwCleaner
2015-09-06 21:13:59 ----D---- C:\Program Files\trend micro
2015-09-06 21:13:53 ----D---- C:\rsit
2015-09-06 18:29:13 ----D---- C:\WINDOWS\system32\DAX2
2015-09-06 18:28:12 ----D---- C:\WINDOWS\LastGood.Tmp
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2015-09-06 18:19:05 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2015-09-06 18:19:02 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2015-09-06 18:19:02 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tosade.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\sltech64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\slprp64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\slcnt64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.DLL
2015-09-06 18:19:00 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\CX64APO.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-09-06 15:52:49 ----D---- C:\ProgramData\Energy Management
2015-09-05 13:37:50 ----D---- C:\Users\Viktor\AppData\Roaming\AVAST Software
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2015-09-05 13:29:47 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-09-05 13:29:43 ----A---- C:\WINDOWS\avastSS.scr
2015-09-05 13:27:54 ----D---- C:\Program Files\AVAST Software
2015-09-05 13:16:10 ----D---- C:\ProgramData\AVAST Software
2015-09-05 13:14:42 ----D---- C:\Users\Viktor\AppData\Roaming\Skype
2015-09-05 13:14:25 ----RD---- C:\Program Files (x86)\Skype
2015-09-05 13:14:17 ----D---- C:\ProgramData\Skype
2015-09-05 13:06:51 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-05 12:41:03 ----D---- C:\Program Files\Common Files\AV
2015-09-05 12:00:17 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-09-05 12:00:17 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-05 11:55:27 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-09-05 11:55:26 ----A---- C:\WINDOWS\system32\twinui.dll
2015-09-05 11:55:24 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-09-05 11:55:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-09-05 11:55:21 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\VSSVC.exe
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\ubpm.dll
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\SYSWOW64\ubpm.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-05 11:55:17 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-05 11:55:17 ----A---- C:\WINDOWS\system32\netprofm.dll
2015-09-05 11:55:15 ----A---- C:\WINDOWS\system32\stobject.dll
2015-09-05 11:55:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\taskhost.exe
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\netplwiz.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\Magnify.exe
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\taskhostex.exe
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\AuthHost.exe
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2015-09-05 11:55:12 ----A---- C:\WINDOWS\system32\biwinrt.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\muifontsetup.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\system32\muifontsetup.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-09-05 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2015-09-05 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2015-09-05 11:54:14 ----A---- C:\WINDOWS\system32\autochk.exe
2015-09-05 11:54:13 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2015-09-05 11:54:13 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2015-09-05 11:54:13 ----A---- C:\WINDOWS\system32\untfs.dll
2015-09-05 11:54:09 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2015-09-05 11:54:09 ----A---- C:\WINDOWS\system32\kernel32.dll
2015-09-05 11:54:07 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll
2015-09-05 11:54:07 ----A---- C:\WINDOWS\system32\msdrm.dll
2015-09-05 11:51:53 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2015-09-05 11:51:53 ----A---- C:\WINDOWS\system32\win32spl.dll
2015-09-05 11:51:52 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\scrrun.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\scrobj.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\cscript.exe
2015-09-05 11:51:33 ----A---- C:\WINDOWS\system32\win32k.sys
2015-09-05 11:51:32 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-09-05 11:51:32 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\lpk.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-05 11:50:43 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-09-05 11:50:43 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcasvc.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcalua.exe
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcaevts.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcadm.dll
2015-09-05 11:50:38 ----D---- C:\Windows.old
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\apprepsync.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\apprepapi.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\nshwfp.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\BFE.DLL
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2015-09-05 11:49:29 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2015-09-05 11:49:29 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2015-09-05 11:49:29 ----A---- C:\WINDOWS\system32\d2d1.dll
2015-09-05 11:49:28 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnet.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\system32\wpdshext.dll
2015-09-05 11:47:02 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-09-05 11:47:02 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2015-09-05 11:46:59 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\sdbinst.exe
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2015-09-05 11:46:04 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-09-05 11:46:04 ----A---- C:\WINDOWS\system32\esent.dll
2015-09-05 11:45:53 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-09-05 11:45:49 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-09-05 11:45:47 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\SHCore.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\msv1_0.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-09-05 11:44:10 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\schannel.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\usercpl.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\sspisrv.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\sspicli.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\lsass.exe
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\adtschema.dll
2015-09-05 11:43:50 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2015-09-05 11:42:13 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2015-09-05 11:42:13 ----A---- C:\WINDOWS\system32\qedit.dll
2015-09-05 11:42:11 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-09-05 11:42:11 ----A---- C:\WINDOWS\system32\notepad.exe
2015-09-05 11:42:11 ----A---- C:\WINDOWS\notepad.exe
2015-09-05 11:42:07 ----A---- C:\WINDOWS\SYSWOW64\cryptdlg.dll
2015-09-05 11:42:07 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2015-09-05 11:42:05 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2015-09-05 11:42:05 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2015-09-05 11:40:14 ----A---- C:\WINDOWS\system32\wmp.dll
2015-09-05 11:40:14 ----A---- C:\WINDOWS\system32\tquery.dll
2015-09-05 11:40:13 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-09-05 11:40:12 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-09-05 11:40:09 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-09-05 11:40:08 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-09-05 11:40:05 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2015-09-05 11:40:05 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-09-05 11:40:04 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2015-09-05 11:40:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\kd_02_10ec.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-09-05 11:40:02 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\rsaenh.dll
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-09-05 11:40:00 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\mssph.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\dwmredir.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\conhost.exe
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\XpsRasterService.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\winresume.exe
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\winload.exe
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\fhengine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\ci.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\XpsRasterService.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\wscsvc.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\Robocopy.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\kdvm.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\kdnet.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\iuilp.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\mssvp.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\GenuineCenter.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\fmifs.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\hidi2c.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-09-05 11:39:54 ----A---- C:\WINDOWS\SYSWOW64\fmifs.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\mssphtb.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\msshooks.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\mssitlb.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\msscntrs.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-09-05 11:39:52 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2015-09-05 11:39:52 ----A---- C:\WINDOWS\system32\tzres.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\VmHostAI.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\tssdisai.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\RDWebAI.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\poqexec.exe
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\appserverai.dll
2015-09-05 11:38:28 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-09-05 11:38:28 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-09-05 11:38:25 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2015-09-05 11:34:24 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-09-05 11:34:24 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-09-05 11:34:17 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2015-09-05 11:34:17 ----A---- C:\WINDOWS\system32\comctl32.dll
2015-09-05 11:34:12 ----A---- C:\WINDOWS\system32\shell32.dll
2015-09-05 11:34:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-09-05 11:33:59 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2015-09-05 11:33:57 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2015-09-05 11:33:55 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2015-09-05 11:33:55 ----A---- C:\WINDOWS\system32\packager.dll
2015-09-05 11:33:08 ----D---- C:\$WINDOWS.~BT
2015-09-05 11:31:59 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-09-05 11:31:46 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-09-05 11:31:45 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2015-09-05 11:31:45 ----A---- C:\WINDOWS\system32\lsm.dll
2015-09-05 11:31:44 ----A---- C:\WINDOWS\system32\wdigest.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\system32\TSpkg.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\system32\credssp.dll
2015-09-05 11:31:42 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2015-09-05 11:31:41 ----A---- C:\WINDOWS\system32\workerdd.dll
2015-09-05 11:31:41 ----A---- C:\WINDOWS\system32\msaudite.dll
2015-09-05 11:31:25 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2015-09-05 11:31:25 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-09-05 11:31:24 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2015-09-05 11:31:24 ----A---- C:\WINDOWS\system32\msieftp.dll
2015-09-05 11:30:32 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2015-09-05 11:30:32 ----A---- C:\WINDOWS\system32\crypt32.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-09-05 11:16:20 ----A---- C:\WINDOWS\system32\wups2.dll
2015-09-05 11:16:20 ----A---- C:\WINDOWS\system32\wups.dll
2015-09-05 11:16:19 ----A---- C:\WINDOWS\system32\wushareduxresources.dll
2015-09-05 11:16:16 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-05 11:16:16 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-09-05 11:16:16 ----A---- C:\WINDOWS\system32\wuaext.dll
2015-09-05 11:16:13 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-09-05 11:16:13 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-09-05 11:16:12 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-09-05 11:16:12 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-09-05 11:16:06 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-09-05 11:16:06 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-09-05 11:16:06 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-09-05 11:16:06 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-09-05 11:04:21 ----D---- C:\Users\Viktor\AppData\Roaming\Intel Corporation
2015-09-05 11:01:00 ----D---- C:\Users\Viktor\AppData\Roaming\Identities
2015-09-05 10:59:31 ----D---- C:\Users\Viktor\AppData\Roaming\Macromedia
2015-09-05 10:59:29 ----D---- C:\Users\Viktor\AppData\Roaming\Adobe
2015-09-05 10:57:42 ----D---- C:\Users\Viktor\AppData\Roaming\Intel
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Šablony
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Plocha
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Nabídka Start
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Dokumenty
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Data aplikací
2015-09-05 10:53:01 ----SD---- C:\Users\Viktor\AppData\Roaming\Microsoft
2015-09-05 10:22:31 ----HD---- C:\$SysReset
2015-09-04 17:17:12 ----SHD---- C:\Config.Msi
2015-08-16 04:25:44 ----ASH---- C:\swapfile.sys
2015-08-16 04:25:42 ----SHD---- C:\System Volume Information
2015-08-16 04:25:42 ----ASH---- C:\pagefile.sys
2015-08-16 04:25:41 ----ASH---- C:\hiberfil.sys
2015-08-16 04:25:18 ----SHD---- C:\Recovery
2015-08-16 04:25:18 ----A---- C:\Recovery.txt
2015-08-15 19:04:09 ----HD---- C:\$AVG

======List of files/folders modified in the last 1 month======

2015-09-06 22:16:18 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-09-06 22:14:36 ----D---- C:\WINDOWS\Temp
2015-09-06 22:11:05 ----D---- C:\WINDOWS\Prefetch
2015-09-06 22:10:54 ----D---- C:\Program Files (x86)\Amazon
2015-09-06 22:00:01 ----D---- C:\WINDOWS\system32\sru
2015-09-06 21:25:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-09-06 21:24:54 ----HD---- C:\ProgramData
2015-09-06 21:24:54 ----D---- C:\Program Files (x86)\Lenovo
2015-09-06 21:24:51 ----SHD---- C:\WINDOWS\Installer
2015-09-06 21:13:59 ----RD---- C:\Program Files
2015-09-06 19:54:48 ----D---- C:\WINDOWS\LiveKernelReports
2015-09-06 18:37:17 ----AD---- C:\Windows
2015-09-06 18:36:36 ----HD---- C:\Program Files (x86)\Temp
2015-09-06 18:36:25 ----RD---- C:\Program Files (x86)
2015-09-06 18:36:24 ----D---- C:\WINDOWS\Logs
2015-09-06 18:36:18 ----D---- C:\WINDOWS\Inf
2015-09-06 18:35:47 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-06 18:34:34 ----AD---- C:\WINDOWS\System32
2015-09-06 18:34:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-06 18:29:09 ----D---- C:\WINDOWS\SysWOW64
2015-09-06 18:28:17 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-09-06 18:28:15 ----D---- C:\WINDOWS\system32\Drivers
2015-09-06 18:27:57 ----D---- C:\ProgramData\McAfee
2015-09-06 18:27:53 ----D---- C:\Program Files\Common Files\mcafee
2015-09-06 18:25:08 ----D---- C:\WINDOWS\system32\catroot
2015-09-06 18:16:41 ----D---- C:\Program Files (x86)\Realtek
2015-09-06 18:07:06 ----D---- C:\WINDOWS\system32\config
2015-09-06 16:52:20 ----HD---- C:\Program Files\WindowsApps
2015-09-06 16:50:17 ----D---- C:\WINDOWS\AUInstallAgent
2015-09-06 16:38:50 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-06 16:34:57 ----D---- C:\WINDOWS\CbsTemp
2015-09-06 16:34:55 ----D---- C:\WINDOWS\system32\catroot2
2015-09-06 16:34:46 ----D---- C:\WINDOWS\WinSxS
2015-09-06 15:53:35 ----D---- C:\WINDOWS\system32\wdi
2015-09-05 21:40:08 ----SD---- C:\ProgramData\Microsoft
2015-09-05 13:55:02 ----HD---- C:\WINDOWS\ELAMBKUP
2015-09-05 13:33:32 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-05 13:33:28 ----RD---- C:\WINDOWS\assembly
2015-09-05 13:30:12 ----D---- C:\WINDOWS\system32\Tasks
2015-09-05 13:14:26 ----D---- C:\Program Files (x86)\Common Files
2015-09-05 13:06:02 ----D---- C:\WINDOWS\servicing
2015-09-05 12:59:48 ----RD---- C:\WINDOWS\ToastData
2015-09-05 12:59:41 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-09-05 12:59:41 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-09-05 12:59:41 ----D---- C:\Program Files\Windows Photo Viewer
2015-09-05 12:59:41 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-09-05 12:59:40 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-09-05 12:59:40 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-09-05 12:59:31 ----D---- C:\WINDOWS\system32\Dism
2015-09-05 12:59:30 ----D---- C:\WINDOWS\system32\sk-SK
2015-09-05 12:59:29 ----D---- C:\WINDOWS\system32\cs-CZ
2015-09-05 12:59:28 ----D---- C:\WINDOWS\system32\en-US
2015-09-05 12:59:16 ----RSD---- C:\WINDOWS\Fonts
2015-09-05 12:58:17 ----D---- C:\WINDOWS\apppatch
2015-09-05 12:58:05 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-05 12:58:05 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-09-05 12:57:20 ----D---- C:\WINDOWS\WinStore
2015-09-05 12:57:20 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-09-05 12:57:09 ----D---- C:\WINDOWS\system32\migration
2015-09-05 12:57:09 ----D---- C:\WINDOWS\system32\Boot
2015-09-05 12:56:31 ----D---- C:\Program Files\Windows Defender
2015-09-05 12:56:25 ----D---- C:\Program Files (x86)\Windows Defender
2015-09-05 12:55:48 ----AD---- C:\WINDOWS\system32\oobe
2015-09-05 12:41:03 ----D---- C:\Program Files\Common Files
2015-09-05 11:14:26 ----D---- C:\WINDOWS\Tasks
2015-09-05 11:05:28 ----D---- C:\WINDOWS\system32\restore
2015-09-05 11:02:42 ----D---- C:\ProgramData\Intel
2015-09-05 10:57:55 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-09-05 10:56:39 ----ADC---- C:\WINDOWS\Panther
2015-09-05 10:54:04 ----D---- C:\Program Files\Windows NT
2015-09-05 10:53:56 ----D---- C:\WINDOWS\debug
2015-09-05 10:53:43 ----D---- C:\WINDOWS\system32\Recovery
2015-09-05 10:53:01 ----AD---- C:\Users
2015-08-16 14:49:22 ----SHD---- C:\$Recycle.Bin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-09-05 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-09-05 274808]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-12-01 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2012-10-02 30056]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-09-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-09-05 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-09-05 447944]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-09-05 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-09-05 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-09-05 150672]
R3 ACPIVPC;@oem24.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-12-01 33560]
R3 bcbtums;@oem15.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2012-10-01 169240]
R3 BthEnum;@tdibth.inf,%BthEnum.DisplayName%;Bluetooth Enumerator Service; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2012-09-20 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2012-09-20 74752]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2012-10-16 161144]
R3 btwavdt;@oem10.inf,%btwavdt.SvcDesc%;Bluetooth AVDT; C:\WINDOWS\System32\drivers\btwavdt.sys [2012-10-09 225144]
R3 btwl2cap;@oem13.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-07-27 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2012-10-09 20856]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem21.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2012-10-10 25568]
R3 JMCR;JMCR; C:\WINDOWS\System32\drivers\jmcr.sys [2012-06-22 174176]
R3 L1C;@oem6.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2012-07-19 110744]
R3 MEIx64;@oem7.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem19.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2012-08-20 4273192]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2012-10-02 13443944]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2012-07-26 156672]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-09-17 43832]
R3 SynTP;@oem17.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-09-17 457528]
R3 usb3Hub;@oem22.inf,%usb3Hub.SVCDESC%;USB-IF USB 3.0 Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [2012-10-10 47072]
R3 vm332avs;@oem1.inf,%USBCamera.DeviceDesc2%;Lenovo Camera2; C:\WINDOWS\System32\Drivers\vm332avs.sys [2012-08-25 981112]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2012-09-20 1171968]
S3 btwaudio;@oem10.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2012-10-09 185208]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 intaud_WaveExtensible;@oem20.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2012-10-10 35296]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-18 4496600]
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2012-09-20 210304]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-09-05 146600]
R2 BcmBtRSupport;@oem15.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service; C:\WINDOWS\system32\BtwRSupportService.exe [2012-10-01 2227992]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2012-10-22 957816]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-07-18 627504]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-08-16 7168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-21 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 277824]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-02 1258856]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-07-18 149296]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 365376]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2012-08-25 276288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-07-18 272176]

-----------------EOF-----------------

Re: Kontrola logu.

Napsal: 06 zář 2015 21:51
od Rudy
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3533054992-3487030045-1629306104-1002Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3533054992-3487030045-1629306104-1002Core1d0e7bb43568646.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

Re: Kontrola logu.

Napsal: 07 zář 2015 08:48
od Harmony
Logfile of random's system information tool 1.10 (written by random/random)
Run by Viktor at 2015-09-07 09:47:41
Microsoft Windows 8
System drive C: has 842 GB (93%) free of 905 GB
Total RAM: 3962 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:47:45, on 7. 9. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16384)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\USB Camera2\VM332STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Viktor.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Google Update] "C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-21-3533054992-3487030045-1629306104-1001\..\Run: [Google Update] "C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3533054992-3487030045-1629306104-1001\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User 'UpdatusUser')
O4 - Global Startup: Bluetooth.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @oem15.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 8827 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\WLANExt.exe 1027558942624
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
taskhostex.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8fdf1071-262c-427e-a7b8-03cda3ee2279 -SystemEventPortName:HostProcess-0f45a6c6-129d-44c8-b172-734fd86c8d41 -IoCancelEventPortName:HostProcess-0256b002-835e-4e36-90df-b11470b73e4a -NonStateChangingEventPortName:HostProcess-964dc2cc-526f-49b7-ad07-3b557ae1e6e0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0616dcfe-7e3d-432e-b90d-2c212603e5e5 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
dashost.exe {b422dd90-1e21-41d7-98afb1b49c8debb9}
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\09072015_094019.log
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\USB Camera2\VM332STI.EXE"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"

"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5012.0.968332651\1943800982" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5012.1.1377561752\889159415" --font-cache-shared-handle=2464 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5012.2.498762572\1242830087" --font-cache-shared-handle=2956 /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5012.4.902238723\1464989514" --font-cache-shared-handle=5236 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5012.5.1847114914\548208240" --font-cache-shared-handle=5828 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5012.6.1497118753\1631760554" --font-cache-shared-handle=6248 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5012.7.1466121679\1881436864" --font-cache-shared-handle=6260 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5012.8.35083002\331585669" --font-cache-shared-handle=6252 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5012.9.633242475\1048447471" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5012.10.305236664\442364367" --font-cache-shared-handle=7660 /prefetch:673131151
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_08/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5012.11.1990032838\1132777847" --font-cache-shared-handle=4048 /prefetch:673131151

C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Viktor\Downloads\RSITx64 (2).exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-05 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-05 559624]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-08-25 170304]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-25 398656]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-08-25 441152]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-09-20 656896]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-08-10 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-12-01 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-12-01 191544]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28 1393880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-05 144200]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-08-23 56128]
"332BigDog"=C:\Program Files (x86)\USB Camera2\VM332STI.EXE [2012-03-21 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-09-05 6111824]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-07 09:40:19 ----D---- C:\_OTM
2015-09-06 22:09:22 ----D---- C:\AdwCleaner
2015-09-06 21:13:59 ----D---- C:\Program Files\trend micro
2015-09-06 21:13:53 ----D---- C:\rsit
2015-09-06 18:29:13 ----D---- C:\WINDOWS\system32\DAX2
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2015-09-06 18:19:05 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2015-09-06 18:19:02 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2015-09-06 18:19:02 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tosade.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\sltech64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\slprp64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\slcnt64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.DLL
2015-09-06 18:19:00 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\CX64APO.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-09-06 15:52:49 ----D---- C:\ProgramData\Energy Management
2015-09-05 13:37:50 ----D---- C:\Users\Viktor\AppData\Roaming\AVAST Software
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2015-09-05 13:29:47 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-09-05 13:29:43 ----A---- C:\WINDOWS\avastSS.scr
2015-09-05 13:27:54 ----D---- C:\Program Files\AVAST Software
2015-09-05 13:16:10 ----D---- C:\ProgramData\AVAST Software
2015-09-05 13:14:42 ----D---- C:\Users\Viktor\AppData\Roaming\Skype
2015-09-05 13:14:25 ----RD---- C:\Program Files (x86)\Skype
2015-09-05 13:14:17 ----D---- C:\ProgramData\Skype
2015-09-05 13:06:51 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-05 12:41:03 ----D---- C:\Program Files\Common Files\AV
2015-09-05 12:00:17 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-09-05 12:00:17 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-05 11:55:27 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-09-05 11:55:26 ----A---- C:\WINDOWS\system32\twinui.dll
2015-09-05 11:55:24 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-09-05 11:55:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-09-05 11:55:21 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\VSSVC.exe
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\ubpm.dll
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\SYSWOW64\ubpm.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-05 11:55:17 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-05 11:55:17 ----A---- C:\WINDOWS\system32\netprofm.dll
2015-09-05 11:55:15 ----A---- C:\WINDOWS\system32\stobject.dll
2015-09-05 11:55:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\taskhost.exe
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\netplwiz.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\Magnify.exe
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\taskhostex.exe
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\AuthHost.exe
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2015-09-05 11:55:12 ----A---- C:\WINDOWS\system32\biwinrt.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\muifontsetup.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\system32\muifontsetup.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-09-05 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2015-09-05 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2015-09-05 11:54:14 ----A---- C:\WINDOWS\system32\autochk.exe
2015-09-05 11:54:13 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2015-09-05 11:54:13 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2015-09-05 11:54:13 ----A---- C:\WINDOWS\system32\untfs.dll
2015-09-05 11:54:09 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2015-09-05 11:54:09 ----A---- C:\WINDOWS\system32\kernel32.dll
2015-09-05 11:54:07 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll
2015-09-05 11:54:07 ----A---- C:\WINDOWS\system32\msdrm.dll
2015-09-05 11:51:53 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2015-09-05 11:51:53 ----A---- C:\WINDOWS\system32\win32spl.dll
2015-09-05 11:51:52 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\scrrun.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\scrobj.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\cscript.exe
2015-09-05 11:51:33 ----A---- C:\WINDOWS\system32\win32k.sys
2015-09-05 11:51:32 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-09-05 11:51:32 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\lpk.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-05 11:50:43 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-09-05 11:50:43 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcasvc.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcalua.exe
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcaevts.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcadm.dll
2015-09-05 11:50:38 ----D---- C:\Windows.old
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\apprepsync.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\apprepapi.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\nshwfp.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\BFE.DLL
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2015-09-05 11:49:29 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2015-09-05 11:49:29 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2015-09-05 11:49:29 ----A---- C:\WINDOWS\system32\d2d1.dll
2015-09-05 11:49:28 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnet.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\system32\wpdshext.dll
2015-09-05 11:47:02 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-09-05 11:47:02 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2015-09-05 11:46:59 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\sdbinst.exe
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2015-09-05 11:46:04 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-09-05 11:46:04 ----A---- C:\WINDOWS\system32\esent.dll
2015-09-05 11:45:53 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-09-05 11:45:49 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-09-05 11:45:47 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\SHCore.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\msv1_0.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-09-05 11:44:10 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\schannel.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\usercpl.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\sspisrv.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\sspicli.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\lsass.exe
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\adtschema.dll
2015-09-05 11:43:50 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2015-09-05 11:42:13 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2015-09-05 11:42:13 ----A---- C:\WINDOWS\system32\qedit.dll
2015-09-05 11:42:11 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-09-05 11:42:11 ----A---- C:\WINDOWS\system32\notepad.exe
2015-09-05 11:42:11 ----A---- C:\WINDOWS\notepad.exe
2015-09-05 11:42:07 ----A---- C:\WINDOWS\SYSWOW64\cryptdlg.dll
2015-09-05 11:42:07 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2015-09-05 11:42:05 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2015-09-05 11:42:05 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2015-09-05 11:40:14 ----A---- C:\WINDOWS\system32\wmp.dll
2015-09-05 11:40:14 ----A---- C:\WINDOWS\system32\tquery.dll
2015-09-05 11:40:13 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-09-05 11:40:12 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-09-05 11:40:09 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-09-05 11:40:08 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-09-05 11:40:05 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2015-09-05 11:40:05 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-09-05 11:40:04 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2015-09-05 11:40:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\kd_02_10ec.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-09-05 11:40:02 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\rsaenh.dll
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-09-05 11:40:00 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\mssph.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\dwmredir.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\conhost.exe
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\XpsRasterService.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\winresume.exe
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\winload.exe
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\fhengine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\ci.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\XpsRasterService.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\wscsvc.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\Robocopy.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\kdvm.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\kdnet.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\iuilp.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\mssvp.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\GenuineCenter.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\fmifs.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\hidi2c.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-09-05 11:39:54 ----A---- C:\WINDOWS\SYSWOW64\fmifs.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\mssphtb.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\msshooks.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\mssitlb.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\msscntrs.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-09-05 11:39:52 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2015-09-05 11:39:52 ----A---- C:\WINDOWS\system32\tzres.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\VmHostAI.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\tssdisai.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\RDWebAI.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\poqexec.exe
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\appserverai.dll
2015-09-05 11:38:28 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-09-05 11:38:28 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-09-05 11:38:25 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2015-09-05 11:34:24 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-09-05 11:34:24 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-09-05 11:34:17 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2015-09-05 11:34:17 ----A---- C:\WINDOWS\system32\comctl32.dll
2015-09-05 11:34:12 ----A---- C:\WINDOWS\system32\shell32.dll
2015-09-05 11:34:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-09-05 11:33:59 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2015-09-05 11:33:57 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2015-09-05 11:33:55 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2015-09-05 11:33:55 ----A---- C:\WINDOWS\system32\packager.dll
2015-09-05 11:33:08 ----D---- C:\$WINDOWS.~BT
2015-09-05 11:31:59 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-09-05 11:31:46 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-09-05 11:31:45 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2015-09-05 11:31:45 ----A---- C:\WINDOWS\system32\lsm.dll
2015-09-05 11:31:44 ----A---- C:\WINDOWS\system32\wdigest.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\system32\TSpkg.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\system32\credssp.dll
2015-09-05 11:31:42 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2015-09-05 11:31:41 ----A---- C:\WINDOWS\system32\workerdd.dll
2015-09-05 11:31:41 ----A---- C:\WINDOWS\system32\msaudite.dll
2015-09-05 11:31:25 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2015-09-05 11:31:25 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-09-05 11:31:24 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2015-09-05 11:31:24 ----A---- C:\WINDOWS\system32\msieftp.dll
2015-09-05 11:30:32 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2015-09-05 11:30:32 ----A---- C:\WINDOWS\system32\crypt32.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-09-05 11:16:20 ----A---- C:\WINDOWS\system32\wups2.dll
2015-09-05 11:16:20 ----A---- C:\WINDOWS\system32\wups.dll
2015-09-05 11:16:19 ----A---- C:\WINDOWS\system32\wushareduxresources.dll
2015-09-05 11:16:16 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-05 11:16:16 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-09-05 11:16:16 ----A---- C:\WINDOWS\system32\wuaext.dll
2015-09-05 11:16:13 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-09-05 11:16:13 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-09-05 11:16:12 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-09-05 11:16:12 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-09-05 11:16:06 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-09-05 11:16:06 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-09-05 11:16:06 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-09-05 11:16:06 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-09-05 11:04:21 ----D---- C:\Users\Viktor\AppData\Roaming\Intel Corporation
2015-09-05 11:01:00 ----D---- C:\Users\Viktor\AppData\Roaming\Identities
2015-09-05 10:59:31 ----D---- C:\Users\Viktor\AppData\Roaming\Macromedia
2015-09-05 10:59:29 ----D---- C:\Users\Viktor\AppData\Roaming\Adobe
2015-09-05 10:57:42 ----D---- C:\Users\Viktor\AppData\Roaming\Intel
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Šablony
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Plocha
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Nabídka Start
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Dokumenty
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Data aplikací
2015-09-05 10:53:01 ----SD---- C:\Users\Viktor\AppData\Roaming\Microsoft
2015-09-05 10:22:31 ----HD---- C:\$SysReset
2015-09-04 17:17:12 ----SHD---- C:\Config.Msi
2015-08-16 04:25:44 ----ASH---- C:\swapfile.sys
2015-08-16 04:25:42 ----SHD---- C:\System Volume Information
2015-08-16 04:25:42 ----ASH---- C:\pagefile.sys
2015-08-16 04:25:41 ----ASH---- C:\hiberfil.sys
2015-08-16 04:25:18 ----SHD---- C:\Recovery
2015-08-16 04:25:18 ----A---- C:\Recovery.txt
2015-08-15 19:04:09 ----HD---- C:\$AVG

======List of files/folders modified in the last 1 month======

2015-09-07 09:46:41 ----D---- C:\WINDOWS\Temp
2015-09-07 09:46:30 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-09-07 09:41:04 ----AD---- C:\Windows
2015-09-07 09:40:22 ----D---- C:\WINDOWS\Tasks
2015-09-07 09:31:17 ----D---- C:\WINDOWS\Prefetch
2015-09-07 09:00:01 ----D---- C:\WINDOWS\system32\sru
2015-09-07 08:54:49 ----SD---- C:\ProgramData\Microsoft
2015-09-06 22:10:54 ----D---- C:\Program Files (x86)\Amazon
2015-09-06 21:25:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-09-06 21:24:54 ----HD---- C:\ProgramData
2015-09-06 21:24:54 ----D---- C:\Program Files (x86)\Lenovo
2015-09-06 21:24:51 ----SHD---- C:\WINDOWS\Installer
2015-09-06 21:13:59 ----RD---- C:\Program Files
2015-09-06 19:54:48 ----D---- C:\WINDOWS\LiveKernelReports
2015-09-06 18:36:36 ----HD---- C:\Program Files (x86)\Temp
2015-09-06 18:36:25 ----RD---- C:\Program Files (x86)
2015-09-06 18:36:24 ----D---- C:\WINDOWS\Logs
2015-09-06 18:36:18 ----D---- C:\WINDOWS\Inf
2015-09-06 18:35:47 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-06 18:34:34 ----AD---- C:\WINDOWS\System32
2015-09-06 18:34:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-06 18:29:09 ----D---- C:\WINDOWS\SysWOW64
2015-09-06 18:28:17 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-09-06 18:28:15 ----D---- C:\WINDOWS\system32\Drivers
2015-09-06 18:27:57 ----D---- C:\ProgramData\McAfee
2015-09-06 18:27:53 ----D---- C:\Program Files\Common Files\mcafee
2015-09-06 18:25:08 ----D---- C:\WINDOWS\system32\catroot
2015-09-06 18:16:41 ----D---- C:\Program Files (x86)\Realtek
2015-09-06 18:07:06 ----D---- C:\WINDOWS\system32\config
2015-09-06 16:52:20 ----HD---- C:\Program Files\WindowsApps
2015-09-06 16:50:17 ----D---- C:\WINDOWS\AUInstallAgent
2015-09-06 16:38:50 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-06 16:34:57 ----D---- C:\WINDOWS\CbsTemp
2015-09-06 16:34:55 ----D---- C:\WINDOWS\system32\catroot2
2015-09-06 16:34:46 ----D---- C:\WINDOWS\WinSxS
2015-09-06 15:53:35 ----D---- C:\WINDOWS\system32\wdi
2015-09-05 13:55:02 ----HD---- C:\WINDOWS\ELAMBKUP
2015-09-05 13:33:32 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-05 13:33:28 ----RD---- C:\WINDOWS\assembly
2015-09-05 13:30:12 ----D---- C:\WINDOWS\system32\Tasks
2015-09-05 13:14:26 ----D---- C:\Program Files (x86)\Common Files
2015-09-05 13:06:02 ----D---- C:\WINDOWS\servicing
2015-09-05 12:59:48 ----RD---- C:\WINDOWS\ToastData
2015-09-05 12:59:41 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-09-05 12:59:41 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-09-05 12:59:41 ----D---- C:\Program Files\Windows Photo Viewer
2015-09-05 12:59:41 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-09-05 12:59:40 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-09-05 12:59:40 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-09-05 12:59:31 ----D---- C:\WINDOWS\system32\Dism
2015-09-05 12:59:30 ----D---- C:\WINDOWS\system32\sk-SK
2015-09-05 12:59:29 ----D---- C:\WINDOWS\system32\cs-CZ
2015-09-05 12:59:28 ----D---- C:\WINDOWS\system32\en-US
2015-09-05 12:59:16 ----RSD---- C:\WINDOWS\Fonts
2015-09-05 12:58:17 ----D---- C:\WINDOWS\apppatch
2015-09-05 12:58:05 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-05 12:58:05 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-09-05 12:57:20 ----D---- C:\WINDOWS\WinStore
2015-09-05 12:57:20 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-09-05 12:57:09 ----D---- C:\WINDOWS\system32\migration
2015-09-05 12:57:09 ----D---- C:\WINDOWS\system32\Boot
2015-09-05 12:56:31 ----D---- C:\Program Files\Windows Defender
2015-09-05 12:56:25 ----D---- C:\Program Files (x86)\Windows Defender
2015-09-05 12:55:48 ----AD---- C:\WINDOWS\system32\oobe
2015-09-05 12:41:03 ----D---- C:\Program Files\Common Files
2015-09-05 11:05:28 ----D---- C:\WINDOWS\system32\restore
2015-09-05 11:02:42 ----D---- C:\ProgramData\Intel
2015-09-05 10:57:55 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-09-05 10:56:39 ----ADC---- C:\WINDOWS\Panther
2015-09-05 10:54:04 ----D---- C:\Program Files\Windows NT
2015-09-05 10:53:56 ----D---- C:\WINDOWS\debug
2015-09-05 10:53:43 ----D---- C:\WINDOWS\system32\Recovery
2015-09-05 10:53:01 ----AD---- C:\Users
2015-08-16 14:49:22 ----SHD---- C:\$Recycle.Bin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-09-05 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-09-05 274808]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-12-01 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2012-10-02 30056]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-09-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-09-05 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-09-05 447944]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-09-05 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-09-05 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-09-05 150672]
R3 ACPIVPC;@oem24.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-12-01 33560]
R3 bcbtums;@oem15.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2012-10-01 169240]
R3 BthEnum;@tdibth.inf,%BthEnum.DisplayName%;Bluetooth Enumerator Service; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2012-09-20 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2012-09-20 74752]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2012-10-16 161144]
R3 btwavdt;@oem10.inf,%btwavdt.SvcDesc%;Bluetooth AVDT; C:\WINDOWS\System32\drivers\btwavdt.sys [2012-10-09 225144]
R3 btwl2cap;@oem13.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-07-27 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2012-10-09 20856]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem21.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2012-10-10 25568]
R3 JMCR;JMCR; C:\WINDOWS\System32\drivers\jmcr.sys [2012-06-22 174176]
R3 L1C;@oem6.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2012-07-19 110744]
R3 MEIx64;@oem7.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem19.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2012-08-20 4273192]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2012-10-02 13443944]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2012-07-26 156672]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-09-17 43832]
R3 SynTP;@oem17.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-09-17 457528]
R3 usb3Hub;@oem22.inf,%usb3Hub.SVCDESC%;USB-IF USB 3.0 Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [2012-10-10 47072]
R3 vm332avs;@oem1.inf,%USBCamera.DeviceDesc2%;Lenovo Camera2; C:\WINDOWS\System32\Drivers\vm332avs.sys [2012-08-25 981112]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2012-09-20 1171968]
S3 btwaudio;@oem10.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2012-10-09 185208]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 intaud_WaveExtensible;@oem20.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2012-10-10 35296]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-18 4496600]
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2012-09-20 210304]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-09-05 146600]
R2 BcmBtRSupport;@oem15.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service; C:\WINDOWS\system32\BtwRSupportService.exe [2012-10-01 2227992]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2012-10-22 957816]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-07-18 627504]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-08-16 7168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-21 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 277824]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-02 1258856]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-07-18 149296]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 365376]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2012-08-25 276288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-07-18 272176]

-----------------EOF-----------------

Re: Kontrola logu.

Napsal: 07 zář 2015 16:53
od Rudy
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Vše v pořádku?

Re: Kontrola logu.

Napsal: 07 zář 2015 20:26
od Harmony
Vše OK.

Re: Kontrola logu.

Napsal: 07 zář 2015 21:19
od Rudy
Tak to jsem rád. :)

Re: Kontrola logu.

Napsal: 08 zář 2015 20:22
od Harmony
Prosím ještě jedou o kontrolu, protože jsem chtěl zkusit stáhnout program ke sledování TV a nějak se mi to začalo všechno sekat:D

Logfile of random's system information tool 1.10 (written by random/random)
Run by Viktor at 2015-09-08 21:20:37
Microsoft Windows 8
System drive C: has 836 GB (92%) free of 905 GB
Total RAM: 3962 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:21:01, on 8. 9. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17377)
Boot mode: Normal

Running processes:
C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\USB Camera2\VM332STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\WINDOWS\SysWOW64\RunDll32.exe
C:\Program Files\Lenovo\Bluetooth Software\Bluetooth Headset Helper.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Viktor.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\45.0.2454.85\delegate_execute.exe
C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Google Update] "C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [iTV] C:\Program Files (x86)\iTV\iTV.exe
O4 - HKUS\S-1-5-21-3533054992-3487030045-1629306104-1001\..\Run: [Google Update] "C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3533054992-3487030045-1629306104-1001\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User 'UpdatusUser')
O4 - Global Startup: Bluetooth.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @oem15.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 8452 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\WLANExt.exe 5578734192
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {4a696ba4-b651-4e01-a416281049857688}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-98165904-a9ec-4041-b955-ee5283dbb3ab -SystemEventPortName:HostProcess-4ba76cff-6f4b-4af6-9780-0df3e3924cab -IoCancelEventPortName:HostProcess-9d7083ab-a20c-43d5-aabb-5df010ae7cba -NonStateChangingEventPortName:HostProcess-e9ae4f83-5527-4bb9-934f-7edeaa629767 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5df56206-cb4f-4efd-8176-b3cd6a9b1c04 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\wbem\wmiprvse.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\USB Camera2\VM332STI.EXE"
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\WINDOWS\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\Lenovo\Bluetooth Software\Bluetooth Headset Helper.exe"
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding

taskhost.exe
C:\WINDOWS\system32\srtasks.exe ExecuteScopeRestorePoint /WaitForRestorePoint:3
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\WSqmCons.exe -u
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe14_ Global\UsGthrCtrlFltPipeMssGthrPipe14 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 584 588 596 65536 592
"C:\Users\Viktor\Downloads\RSITx64 (2).exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6544.0.1867650083\1294000399" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Viktor\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5328.0.1870753537\1265387432" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2843 --ignored=" --type=renderer " /prefetch:822062411

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-05 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-05 559624]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-08-25 170304]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-25 398656]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-08-25 441152]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-09-20 656896]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-08-10 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-12-01 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-12-01 191544]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28 1393880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Viktor\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-05 144200]
"iTV"=C:\Program Files (x86)\iTV\iTV.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-08-23 56128]
"332BigDog"=C:\Program Files (x86)\USB Camera2\VM332STI.EXE [2012-03-21 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-09-05 6111824]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-08 21:20:37 ----D---- C:\rsit
2015-09-08 21:13:16 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2015-09-08 20:54:23 ----D---- C:\Program Files (x86)\iTV
2015-09-08 20:40:18 ----D---- C:\ProgramData\ProgDVB
2015-09-08 20:39:57 ----D---- C:\Program Files (x86)\ProgDVB
2015-09-07 21:24:33 ----D---- C:\ProgramData\CyberLink
2015-09-07 21:24:14 ----D---- C:\Users\Viktor\AppData\Roaming\CyberLink
2015-09-07 14:12:10 ----D---- C:\WINDOWS\system32\AutoUpdateLicense
2015-09-07 14:06:56 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2015-09-07 14:06:54 ----A---- C:\WINDOWS\system32\storagewmi.dll
2015-09-07 14:06:47 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2015-09-07 14:06:46 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2015-09-07 14:06:44 ----A---- C:\WINDOWS\system32\winload.exe
2015-09-07 14:06:38 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2015-09-07 14:06:38 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-09-07 14:06:38 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2015-09-07 14:06:38 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-09-07 14:06:38 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-09-07 14:06:37 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-09-07 14:06:37 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2015-09-07 14:06:37 ----A---- C:\WINDOWS\system32\defragsvc.dll
2015-09-07 14:06:33 ----A---- C:\WINDOWS\SYSWOW64\KBDRUM.DLL
2015-09-07 14:06:33 ----A---- C:\WINDOWS\system32\KBDRUM.DLL
2015-09-07 14:06:33 ----A---- C:\WINDOWS\system32\Defrag.exe
2015-09-07 14:06:32 ----A---- C:\WINDOWS\system32\KBDTAT.DLL
2015-09-07 14:06:31 ----A---- C:\WINDOWS\SYSWOW64\KBDYAK.DLL
2015-09-07 14:06:31 ----A---- C:\WINDOWS\SYSWOW64\KBDTAT.DLL
2015-09-07 14:06:31 ----A---- C:\WINDOWS\SYSWOW64\KBDRU1.DLL
2015-09-07 14:06:31 ----A---- C:\WINDOWS\SYSWOW64\KBDRU.DLL
2015-09-07 14:06:31 ----A---- C:\WINDOWS\SYSWOW64\KBDBASH.DLL
2015-09-07 14:06:31 ----A---- C:\WINDOWS\system32\KBDYAK.DLL
2015-09-07 14:06:31 ----A---- C:\WINDOWS\system32\KBDRU1.DLL
2015-09-07 14:06:31 ----A---- C:\WINDOWS\system32\KBDRU.DLL
2015-09-07 14:06:31 ----A---- C:\WINDOWS\system32\KBDBASH.DLL
2015-09-07 13:53:06 ----A---- C:\WINDOWS\system32\NotificationUI.exe
2015-09-07 13:53:05 ----A---- C:\WINDOWS\system32\WSShared.dll
2015-09-07 13:53:05 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-09-07 13:53:05 ----A---- C:\WINDOWS\system32\AutoUpdate.exe
2015-09-07 13:53:04 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2015-09-07 13:53:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-09-07 13:53:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-07 13:53:01 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-07 13:10:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-09-07 13:10:32 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-09-07 12:51:19 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2015-09-07 12:51:17 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2015-09-07 12:41:28 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-09-07 12:28:52 ----D---- C:\WINDOWS\Migration
2015-09-07 12:28:49 ----SD---- C:\WINDOWS\system32\CompatTel
2015-09-07 12:28:48 ----D---- C:\WINDOWS\system32\appraiser
2015-09-07 11:38:48 ----D---- C:\WINDOWS\system32\MRT
2015-09-07 11:38:43 ----A---- C:\WINDOWS\system32\MRT.exe
2015-09-07 11:01:46 ----A---- C:\WINDOWS\SYSWOW64\vsstrace.dll
2015-09-07 11:01:46 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2015-09-07 11:01:46 ----A---- C:\WINDOWS\system32\VSSVC.exe
2015-09-07 11:01:46 ----A---- C:\WINDOWS\system32\vsstrace.dll
2015-09-07 11:01:46 ----A---- C:\WINDOWS\system32\vssapi.dll
2015-09-07 10:19:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2015-09-07 10:19:25 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2015-09-07 10:15:21 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2015-09-06 22:09:22 ----D---- C:\AdwCleaner
2015-09-06 21:13:59 ----D---- C:\Program Files\trend micro
2015-09-06 18:29:13 ----D---- C:\WINDOWS\system32\DAX2
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2015-09-06 18:19:06 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2015-09-06 18:19:05 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2015-09-06 18:19:02 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2015-09-06 18:19:02 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tosade.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\sltech64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\slprp64.dll
2015-09-06 18:19:01 ----A---- C:\WINDOWS\system32\slcnt64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.DLL
2015-09-06 18:19:00 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2015-09-06 18:19:00 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-09-06 18:18:59 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-09-06 18:18:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-09-06 18:18:57 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2015-09-06 18:18:50 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2015-09-06 18:18:49 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\CX64APO.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2015-09-06 18:18:48 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-09-06 16:35:08 ----A---- C:\WINDOWS\SYSWOW64\KBDKURD.DLL
2015-09-06 16:35:08 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2015-09-06 16:35:08 ----A---- C:\WINDOWS\system32\KBDKURD.DLL
2015-09-06 16:35:08 ----A---- C:\WINDOWS\system32\drivers\usbohci.sys
2015-09-06 16:35:08 ----A---- C:\WINDOWS\system32\Display.dll
2015-09-06 16:28:40 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2015-09-06 16:28:28 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2015-09-06 16:28:25 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-09-06 16:28:21 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-09-06 16:28:15 ----A---- C:\WINDOWS\HelpPane.exe
2015-09-06 16:28:11 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-09-06 16:28:10 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2015-09-06 16:28:10 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2015-09-06 16:28:10 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-09-06 16:28:09 ----A---- C:\WINDOWS\system32\rdpclip.exe
2015-09-06 16:28:09 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-09-06 16:28:08 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-09-06 16:28:07 ----A---- C:\WINDOWS\system32\wlanapi.dll
2015-09-06 16:28:07 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2015-09-06 16:28:06 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2015-09-06 16:28:05 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-09-06 16:28:05 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-09-06 16:28:04 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2015-09-06 16:28:02 ----A---- C:\WINDOWS\system32\wlansec.dll
2015-09-06 16:27:58 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-09-06 16:27:58 ----A---- C:\WINDOWS\system32\WcnEapPeerProxy.dll
2015-09-06 16:27:58 ----A---- C:\WINDOWS\system32\WcnEapAuthProxy.dll
2015-09-06 16:27:58 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-09-06 16:27:57 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-09-06 16:27:57 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-09-06 16:27:56 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2015-09-06 16:27:56 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2015-09-06 16:27:56 ----A---- C:\WINDOWS\system32\iscsilog.dll
2015-09-06 16:27:56 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2015-09-06 16:27:56 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2015-09-06 16:27:56 ----A---- C:\WINDOWS\system32\drivers\fxppm.sys
2015-09-06 16:27:56 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2015-09-06 16:27:56 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2015-09-06 15:52:49 ----D---- C:\ProgramData\Energy Management
2015-09-05 15:03:56 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-09-05 15:03:50 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-09-05 15:03:49 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-09-05 15:03:49 ----A---- C:\WINDOWS\explorer.exe
2015-09-05 15:03:48 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-09-05 15:03:48 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-09-05 15:03:47 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-09-05 15:03:47 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-09-05 15:03:46 ----A---- C:\WINDOWS\system32\samsrv.dll
2015-09-05 15:03:45 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-09-05 15:03:43 ----A---- C:\WINDOWS\system32\vds.exe
2015-09-05 15:03:41 ----A---- C:\WINDOWS\system32\winresume.exe
2015-09-05 15:03:41 ----A---- C:\WINDOWS\system32\mscms.dll
2015-09-05 15:03:41 ----A---- C:\WINDOWS\system32\drivers\BthAvrcpTg.sys
2015-09-05 15:03:40 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2015-09-05 15:03:40 ----A---- C:\WINDOWS\system32\samlib.dll
2015-09-05 15:03:39 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-09-05 15:03:39 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2015-09-05 15:03:37 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2015-09-05 15:03:37 ----A---- C:\WINDOWS\system32\vdsutil.dll
2015-09-05 15:01:47 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-09-05 15:01:43 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2015-09-05 15:01:42 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2015-09-05 15:01:42 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-09-05 15:01:42 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2015-09-05 15:01:41 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2015-09-05 15:01:41 ----A---- C:\WINDOWS\system32\WSDApi.dll
2015-09-05 15:01:40 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2015-09-05 15:01:06 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2015-09-05 15:01:06 ----A---- C:\WINDOWS\system32\wusa.exe
2015-09-05 14:59:40 ----A---- C:\WINDOWS\system32\clusapi.dll
2015-09-05 14:59:39 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2015-09-05 14:59:39 ----A---- C:\WINDOWS\system32\resutils.dll
2015-09-05 14:59:38 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2015-09-05 14:59:38 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2015-09-05 14:57:13 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-09-05 14:57:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-09-05 14:57:09 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-09-05 14:57:09 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-09-05 14:57:07 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2015-09-05 14:57:06 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2015-09-05 14:57:06 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2015-09-05 14:55:11 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-09-05 14:55:10 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-09-05 14:55:05 ----A---- C:\WINDOWS\SYSWOW64\winmm.dll
2015-09-05 14:55:05 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-09-05 14:55:05 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-09-05 14:55:05 ----A---- C:\WINDOWS\system32\winmmbase.dll
2015-09-05 14:55:05 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-09-05 14:55:04 ----A---- C:\WINDOWS\SYSWOW64\winmmbase.dll
2015-09-05 14:55:04 ----A---- C:\WINDOWS\system32\WinSCard.dll
2015-09-05 14:55:04 ----A---- C:\WINDOWS\system32\winmm.dll
2015-09-05 14:55:04 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2015-09-05 14:55:04 ----A---- C:\WINDOWS\system32\drivers\HdAudio.sys
2015-09-05 14:55:04 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2015-09-05 14:55:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-09-05 14:55:03 ----A---- C:\WINDOWS\system32\Wwanadvui.dll
2015-09-05 14:55:03 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2015-09-05 14:55:02 ----A---- C:\WINDOWS\SYSWOW64\openfiles.exe
2015-09-05 14:55:02 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2015-09-05 14:55:02 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-09-05 14:55:02 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-09-05 14:55:02 ----A---- C:\WINDOWS\system32\openfiles.exe
2015-09-05 14:55:02 ----A---- C:\WINDOWS\system32\LocationApi.dll
2015-09-05 14:55:02 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2015-09-05 14:55:01 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2015-09-05 14:54:25 ----A---- C:\WINDOWS\system32\dskquota.dll
2015-09-05 14:54:24 ----A---- C:\WINDOWS\SYSWOW64\dskquota.dll
2015-09-05 14:54:08 ----A---- C:\WINDOWS\system32\hal.dll
2015-09-05 14:54:04 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-09-05 14:54:04 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2015-09-05 14:54:04 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-09-05 14:54:04 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2015-09-05 14:53:26 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-05 14:53:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-05 14:53:22 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2015-09-05 14:53:22 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-09-05 14:53:17 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-09-05 14:53:16 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-09-05 14:53:15 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2015-09-05 14:53:13 ----A---- C:\WINDOWS\system32\Windows.Storage.Compression.dll
2015-09-05 14:53:10 ----A---- C:\WINDOWS\system32\ListSvc.dll
2015-09-05 14:53:10 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2015-09-05 14:53:09 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2015-09-05 14:53:09 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2015-09-05 14:53:07 ----A---- C:\WINDOWS\system32\drivers\battc.sys
2015-09-05 14:53:06 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-09-05 14:53:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Compression.dll
2015-09-05 14:53:03 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2015-09-05 14:53:02 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2015-09-05 14:53:02 ----A---- C:\WINDOWS\system32\input.dll
2015-09-05 14:53:02 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2015-09-05 14:53:01 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2015-09-05 14:53:01 ----A---- C:\WINDOWS\system32\bdesvc.dll
2015-09-05 14:52:59 ----A---- C:\WINDOWS\system32\microsoft-windows-pdc.dll
2015-09-05 14:52:58 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2015-09-05 14:52:58 ----A---- C:\WINDOWS\system32\mswsock.dll
2015-09-05 14:52:57 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2015-09-05 14:52:55 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2015-09-05 14:52:54 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2015-09-05 14:52:53 ----A---- C:\WINDOWS\system32\AppxSip.dll
2015-09-05 14:52:51 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2015-09-05 14:52:51 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2015-09-05 14:52:50 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2015-09-05 14:52:50 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2015-09-05 14:52:45 ----A---- C:\WINDOWS\SYSWOW64\kbdhebl3.dll
2015-09-05 14:52:45 ----A---- C:\WINDOWS\system32\kbdhebl3.dll
2015-09-05 14:50:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-09-05 14:50:49 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2015-09-05 14:50:49 ----A---- C:\WINDOWS\system32\Robocopy.exe
2015-09-05 14:42:56 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-09-05 14:42:56 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2015-09-05 14:42:55 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2015-09-05 14:42:55 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2015-09-05 14:42:54 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2015-09-05 14:42:54 ----A---- C:\WINDOWS\system32\wfapigp.dll
2015-09-05 14:42:54 ----A---- C:\WINDOWS\system32\icfupgd.dll
2015-09-05 14:42:54 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys
2015-09-05 14:42:30 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2015-09-05 14:42:30 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2015-09-05 14:42:29 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2015-09-05 14:42:27 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2015-09-05 14:42:27 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2015-09-05 14:42:26 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-09-05 14:42:24 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2015-09-05 14:42:23 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-09-05 14:42:22 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2015-09-05 14:42:19 ----A---- C:\WINDOWS\system32\vdsldr.exe
2015-09-05 14:42:19 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2015-09-05 14:42:18 ----A---- C:\WINDOWS\SYSWOW64\vds_ps.dll
2015-09-05 14:42:18 ----A---- C:\WINDOWS\system32\vds_ps.dll
2015-09-05 14:42:17 ----A---- C:\WINDOWS\system32\drivers\BthhfHid.sys
2015-09-05 14:42:17 ----A---- C:\WINDOWS\system32\drivers\BtaMPM.sys
2015-09-05 14:38:55 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-09-05 14:38:54 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-09-05 14:38:50 ----A---- C:\WINDOWS\system32\consent.exe
2015-09-05 14:38:50 ----A---- C:\WINDOWS\system32\appinfo.dll
2015-09-05 14:38:36 ----A---- C:\WINDOWS\system32\user32.dll
2015-09-05 14:38:36 ----A---- C:\WINDOWS\system32\srvsvc.dll
2015-09-05 14:38:36 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2015-09-05 14:38:34 ----A---- C:\WINDOWS\system32\msdtctm.dll
2015-09-05 14:38:33 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2015-09-05 14:38:32 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-09-05 14:38:32 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-09-05 14:38:27 ----A---- C:\WINDOWS\SYSWOW64\sscore.dll
2015-09-05 14:38:27 ----A---- C:\WINDOWS\system32\sscore.dll
2015-09-05 14:36:57 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2015-09-05 14:36:57 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2015-09-05 14:36:57 ----A---- C:\WINDOWS\system32\wvc.dll
2015-09-05 14:36:57 ----A---- C:\WINDOWS\system32\wdc.dll
2015-09-05 14:36:24 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-05 14:36:20 ----A---- C:\WINDOWS\system32\shdocvw.dll
2015-09-05 14:36:20 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2015-09-05 14:36:19 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2015-09-05 14:36:19 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncInfo.dll
2015-09-05 14:36:19 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-05 14:36:19 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2015-09-05 14:36:18 ----A---- C:\WINDOWS\system32\SettingSyncInfo.dll
2015-09-05 14:29:15 ----A---- C:\WINDOWS\system32\kernel32.dll
2015-09-05 14:29:11 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2015-09-05 14:29:11 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2015-09-05 14:29:11 ----A---- C:\WINDOWS\system32\gpedit.dll
2015-09-05 14:29:11 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2015-09-05 14:29:11 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2015-09-05 14:29:11 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2015-09-05 14:27:32 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-09-05 14:27:31 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-09-05 14:26:57 ----A---- C:\WINDOWS\system32\sppsvc.exe
2015-09-05 14:26:56 ----A---- C:\WINDOWS\system32\WSService.dll
2015-09-05 14:26:54 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2015-09-05 14:26:54 ----A---- C:\WINDOWS\system32\WSSync.dll
2015-09-05 14:26:54 ----A---- C:\WINDOWS\system32\sppwinob.dll
2015-09-05 14:26:54 ----A---- C:\WINDOWS\system32\sppc.dll
2015-09-05 14:26:53 ----A---- C:\WINDOWS\SYSWOW64\WSSync.dll
2015-09-05 14:26:53 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2015-09-05 14:26:53 ----A---- C:\WINDOWS\system32\WSClient.dll
2015-09-05 14:26:53 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-09-05 14:26:52 ----A---- C:\WINDOWS\SYSWOW64\setupcln.dll
2015-09-05 14:26:52 ----A---- C:\WINDOWS\SYSWOW64\OEMLicense.dll
2015-09-05 14:26:52 ----A---- C:\WINDOWS\system32\setupcln.dll
2015-09-05 14:25:39 ----A---- C:\WINDOWS\system32\localspl.dll
2015-09-05 14:25:37 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2015-09-05 14:25:34 ----A---- C:\WINDOWS\system32\win32spl.dll
2015-09-05 14:25:33 ----A---- C:\WINDOWS\system32\wuaext.dll
2015-09-05 14:25:11 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2015-09-05 14:25:11 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2015-09-05 14:25:11 ----A---- C:\WINDOWS\system32\WebClnt.dll
2015-09-05 14:25:11 ----A---- C:\WINDOWS\system32\davclnt.dll
2015-09-05 14:25:01 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-09-05 14:25:00 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-09-05 14:24:59 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-09-05 14:24:59 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-09-05 14:24:59 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-09-05 14:24:59 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-09-05 14:24:59 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-09-05 14:24:59 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-05 14:24:59 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-09-05 14:24:59 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-09-05 14:24:59 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-09-05 14:24:59 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-09-05 14:24:59 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-09-05 14:24:46 ----A---- C:\WINDOWS\system32\mstscax.dll
2015-09-05 14:24:45 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2015-09-05 14:24:45 ----A---- C:\WINDOWS\SYSWOW64\aaclient.dll
2015-09-05 14:24:45 ----A---- C:\WINDOWS\system32\aaclient.dll
2015-09-05 14:24:34 ----A---- C:\WINDOWS\system32\csrsrv.dll
2015-09-05 14:24:34 ----A---- C:\WINDOWS\system32\basesrv.dll
2015-09-05 14:24:01 ----A---- C:\WINDOWS\SYSWOW64\imagehlp.dll
2015-09-05 14:24:01 ----A---- C:\WINDOWS\system32\imagehlp.dll
2015-09-05 14:23:56 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2015-09-05 14:23:56 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2015-09-05 14:23:32 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2015-09-05 14:23:32 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2015-09-05 14:23:31 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2015-09-05 14:23:31 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-09-05 14:23:30 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2015-09-05 14:23:29 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2015-09-05 14:23:29 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2015-09-05 14:23:29 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2015-09-05 14:23:29 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2015-09-05 14:23:29 ----A---- C:\WINDOWS\system32\rpchttp.dll
2015-09-05 14:23:29 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2015-09-05 14:23:29 ----A---- C:\WINDOWS\system32\FXST30.dll
2015-09-05 14:23:29 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2015-09-05 14:23:29 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2015-09-05 14:23:21 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2015-09-05 14:23:21 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-09-05 14:23:21 ----A---- C:\WINDOWS\system32\cdd.dll
2015-09-05 14:23:20 ----A---- C:\WINDOWS\system32\cryptcatsvc.dll
2015-09-05 14:23:18 ----A---- C:\WINDOWS\SYSWOW64\synceng.dll
2015-09-05 14:23:18 ----A---- C:\WINDOWS\system32\synceng.dll
2015-09-05 14:23:09 ----A---- C:\WINDOWS\system32\ole32.dll
2015-09-05 14:23:08 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2015-09-05 14:23:06 ----A---- C:\WINDOWS\SYSWOW64\ubpm.dll
2015-09-05 14:23:06 ----A---- C:\WINDOWS\system32\ubpm.dll
2015-09-05 14:23:05 ----A---- C:\WINDOWS\system32\sppobjs.dll
2015-09-05 14:22:53 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2015-09-05 14:22:53 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2015-09-05 14:22:41 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2015-09-05 14:22:41 ----A---- C:\WINDOWS\system32\osk.exe
2015-09-05 14:22:40 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-05 14:22:38 ----A---- C:\WINDOWS\system32\services.exe
2015-09-05 14:21:47 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-09-05 14:21:47 ----A---- C:\WINDOWS\system32\mmc.exe
2015-09-05 14:21:46 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2015-09-05 14:21:39 ----A---- C:\WINDOWS\system32\setupapi.dll
2015-09-05 14:21:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-09-05 14:21:38 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2015-09-05 14:21:38 ----A---- C:\WINDOWS\system32\WSDMon.dll
2015-09-05 14:21:38 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-09-05 14:21:38 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2015-09-05 14:21:38 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2015-09-05 14:21:38 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2015-09-05 14:21:38 ----A---- C:\WINDOWS\system32\inetpp.dll
2015-09-05 14:21:38 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2015-09-05 14:21:38 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-09-05 14:21:37 ----A---- C:\WINDOWS\SYSWOW64\wiaacmgr.exe
2015-09-05 14:21:37 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2015-09-05 14:21:37 ----A---- C:\WINDOWS\system32\ncbservice.dll
2015-09-05 14:21:37 ----A---- C:\WINDOWS\system32\keepaliveprovider.dll
2015-09-05 14:21:37 ----A---- C:\WINDOWS\system32\httpprxp.dll
2015-09-05 14:21:37 ----A---- C:\WINDOWS\system32\httpprxm.dll
2015-09-05 14:21:37 ----A---- C:\WINDOWS\system32\adhsvc.dll
2015-09-05 14:21:37 ----A---- C:\WINDOWS\system32\adhapi.dll
2015-09-05 14:21:19 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2015-09-05 14:21:18 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2015-09-05 14:21:18 ----A---- C:\WINDOWS\system32\rastls.dll
2015-09-05 14:20:52 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-05 14:20:52 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-05 14:02:34 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys
2015-09-05 14:02:34 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-09-05 14:02:19 ----A---- C:\WINDOWS\system32\dnsapi.dll
2015-09-05 14:02:18 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-09-05 14:02:17 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-09-05 14:02:17 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2015-09-05 14:02:16 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2015-09-05 14:02:08 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2015-09-05 14:02:05 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2015-09-05 14:02:05 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2015-09-05 13:58:15 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2015-09-05 13:51:18 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2015-09-05 13:37:50 ----D---- C:\Users\Viktor\AppData\Roaming\AVAST Software
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2015-09-05 13:29:53 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2015-09-05 13:29:47 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-09-05 13:29:43 ----A---- C:\WINDOWS\avastSS.scr
2015-09-05 13:27:54 ----D---- C:\Program Files\AVAST Software
2015-09-05 13:16:10 ----D---- C:\ProgramData\AVAST Software
2015-09-05 13:14:42 ----D---- C:\Users\Viktor\AppData\Roaming\Skype
2015-09-05 13:14:25 ----RD---- C:\Program Files (x86)\Skype
2015-09-05 13:14:17 ----D---- C:\ProgramData\Skype
2015-09-05 12:52:15 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2015-09-05 12:52:15 ----A---- C:\WINDOWS\system32\drivers\usbcir.sys
2015-09-05 12:42:30 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-09-05 12:42:29 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2015-09-05 12:42:29 ----A---- C:\WINDOWS\system32\winmde.dll
2015-09-05 12:42:29 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2015-09-05 12:42:29 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2015-09-05 12:42:29 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-09-05 12:42:28 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2015-09-05 12:42:27 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-09-05 12:42:27 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2015-09-05 12:42:27 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2015-09-05 12:42:27 ----A---- C:\WINDOWS\system32\usbmon.dll
2015-09-05 12:42:27 ----A---- C:\WINDOWS\system32\netcfgx.dll
2015-09-05 12:42:27 ----A---- C:\WINDOWS\system32\drvstore.dll
2015-09-05 12:42:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2015-09-05 12:42:24 ----A---- C:\WINDOWS\SYSWOW64\DevDispItemProvider.dll
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\WSDPrintProxy.DLL
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\NdisImPlatform.dll
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\fsquirt.exe
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\drivers\monitor.sys
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\discan.dll
2015-09-05 12:42:24 ----A---- C:\WINDOWS\system32\DevDispItemProvider.dll
2015-09-05 12:42:10 ----A---- C:\WINDOWS\system32\drivers\http.sys
2015-09-05 12:41:03 ----D---- C:\Program Files\Common Files\AV
2015-09-05 12:38:40 ----A---- C:\WINDOWS\system32\invagent.dll
2015-09-05 12:38:40 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-09-05 12:38:40 ----A---- C:\WINDOWS\system32\devinv.dll
2015-09-05 12:38:40 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-09-05 12:38:40 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-09-05 12:38:40 ----A---- C:\WINDOWS\system32\aepic.dll
2015-09-05 12:38:40 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-09-05 12:38:40 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-09-05 12:38:40 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-09-05 12:34:09 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-05 12:34:08 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-09-05 12:34:07 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-05 12:34:06 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-05 12:34:06 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-05 12:34:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-09-05 12:34:04 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-09-05 12:34:04 ----A---- C:\WINDOWS\system32\wininet.dll
2015-09-05 12:34:03 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-05 12:34:03 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-09-05 12:34:03 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-05 12:34:03 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-05 12:34:03 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-09-05 12:34:03 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-09-05 12:34:03 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-05 12:34:01 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-09-05 12:34:01 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-09-05 12:34:01 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-09-05 12:34:01 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2015-09-05 12:34:00 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-09-05 12:34:00 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-09-05 12:34:00 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\UXInit.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\msrating.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\INETRES.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\iesysprep.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-09-05 12:33:59 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-09-05 12:31:16 ----A---- C:\WINDOWS\system32\termsrv.dll
2015-09-05 12:31:16 ----A---- C:\WINDOWS\system32\mstsc.exe
2015-09-05 12:31:15 ----A---- C:\WINDOWS\SYSWOW64\winsta.dll
2015-09-05 12:31:15 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2015-09-05 12:31:15 ----A---- C:\WINDOWS\system32\winsta.dll
2015-09-05 12:31:06 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2015-09-05 12:31:06 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2015-09-05 12:26:00 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2015-09-05 12:26:00 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2015-09-05 12:26:00 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-09-05 12:26:00 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-09-05 12:25:59 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2015-09-05 12:25:59 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2015-09-05 12:25:59 ----A---- C:\WINDOWS\system32\msxml6r.dll
2015-09-05 12:25:59 ----A---- C:\WINDOWS\system32\msxml3r.dll
2015-09-05 12:25:57 ----A---- C:\WINDOWS\SYSWOW64\cryptnet.dll
2015-09-05 12:25:57 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2015-09-05 12:25:57 ----A---- C:\WINDOWS\system32\cryptnet.dll
2015-09-05 12:25:57 ----A---- C:\WINDOWS\system32\certutil.exe
2015-09-05 12:25:02 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2015-09-05 12:25:01 ----A---- C:\WINDOWS\system32\rdpudd.dll
2015-09-05 12:23:11 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2015-09-05 12:23:11 ----A---- C:\WINDOWS\system32\scesrv.dll
2015-09-05 12:22:07 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2015-09-05 12:22:07 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2015-09-05 12:22:07 ----A---- C:\WINDOWS\system32\clfsw32.dll
2015-09-05 12:20:14 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2015-09-05 12:20:14 ----A---- C:\WINDOWS\system32\msctf.dll
2015-09-05 12:18:40 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2015-09-05 12:18:40 ----A---- C:\WINDOWS\system32\KernelBase.dll
2015-09-05 12:18:38 ----A---- C:\WINDOWS\system32\InkEd.dll
2015-09-05 12:18:35 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-09-05 12:18:35 ----A---- C:\WINDOWS\system32\twinui.dll
2015-09-05 12:18:33 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-09-05 12:18:33 ----A---- C:\WINDOWS\system32\msi.dll
2015-09-05 12:18:33 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-05 12:18:32 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2015-09-05 12:18:32 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-09-05 12:18:32 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-05 12:18:32 ----A---- C:\WINDOWS\system32\msihnd.dll
2015-09-05 12:18:32 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-09-05 12:14:34 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-09-05 12:14:33 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2015-09-05 12:14:33 ----A---- C:\WINDOWS\system32\nlasvc.dll
2015-09-05 12:14:33 ----A---- C:\WINDOWS\system32\nlaapi.dll
2015-09-05 12:13:34 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2015-09-05 12:13:34 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2015-09-05 12:10:46 ----A---- C:\WINDOWS\system32\resetengmig.dll
2015-09-05 12:10:45 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-09-05 12:10:45 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-09-05 12:10:44 ----A---- C:\WINDOWS\system32\sysreset.exe
2015-09-05 12:10:44 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-09-05 12:07:06 ----A---- C:\WINDOWS\SYSWOW64\duser.dll
2015-09-05 12:07:06 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-09-05 12:07:06 ----A---- C:\WINDOWS\system32\wlroamextension.dll
2015-09-05 12:07:06 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-09-05 12:07:06 ----A---- C:\WINDOWS\system32\duser.dll
2015-09-05 12:07:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-09-05 12:07:04 ----A---- C:\WINDOWS\system32\hotspotauth.dll
2015-09-05 12:07:04 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2015-09-05 12:07:03 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-09-05 12:07:03 ----A---- C:\WINDOWS\SYSWOW64\wlroamextension.dll
2015-09-05 12:07:03 ----A---- C:\WINDOWS\SYSWOW64\tasklist.exe
2015-09-05 12:07:03 ----A---- C:\WINDOWS\SYSWOW64\taskkill.exe
2015-09-05 12:07:03 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2015-09-05 12:07:03 ----A---- C:\WINDOWS\system32\wersvc.dll
2015-09-05 12:07:03 ----A---- C:\WINDOWS\system32\tasklist.exe
2015-09-05 12:07:03 ----A---- C:\WINDOWS\system32\taskkill.exe
2015-09-05 12:07:00 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-09-05 12:07:00 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-09-05 12:06:56 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2015-09-05 12:06:56 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2015-09-05 12:06:56 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2015-09-05 12:06:56 ----A---- C:\WINDOWS\system32\WerFault.exe
2015-09-05 12:06:56 ----A---- C:\WINDOWS\system32\wer.dll
2015-09-05 12:06:56 ----A---- C:\WINDOWS\system32\Faultrep.dll
2015-09-05 12:06:56 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-09-05 12:06:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-09-05 12:06:56 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-05 12:06:55 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2015-09-05 12:06:55 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2015-09-05 12:06:55 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-09-05 12:06:49 ----A---- C:\WINDOWS\system32\objsel.dll
2015-09-05 12:06:49 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2015-09-05 12:06:48 ----A---- C:\WINDOWS\SYSWOW64\objsel.dll
2015-09-05 12:06:46 ----A---- C:\WINDOWS\SYSWOW64\dimsroam.dll
2015-09-05 12:06:46 ----A---- C:\WINDOWS\system32\dimsroam.dll
2015-09-05 12:03:52 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2015-09-05 12:03:52 ----A---- C:\WINDOWS\system32\oleaut32.dll
2015-09-05 12:03:36 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2015-09-05 12:03:36 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2015-09-05 12:03:36 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-09-05 12:03:36 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2015-09-05 12:03:36 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2015-09-05 12:03:36 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2015-09-05 12:00:17 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-09-05 12:00:17 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-05 11:59:14 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2015-09-05 11:55:21 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2015-09-05 11:55:19 ----A---- C:\WINDOWS\system32\BCP47Langs.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\SYSWOW64\BCP47Langs.dll
2015-09-05 11:55:18 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2015-09-05 11:55:17 ----A---- C:\WINDOWS\system32\netprofm.dll
2015-09-05 11:55:15 ----A---- C:\WINDOWS\system32\stobject.dll
2015-09-05 11:55:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\taskhost.exe
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\netplwiz.dll
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\Magnify.exe
2015-09-05 11:55:14 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\taskhostex.exe
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2015-09-05 11:55:13 ----A---- C:\WINDOWS\system32\AuthHost.exe
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2015-09-05 11:55:12 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2015-09-05 11:55:12 ----A---- C:\WINDOWS\system32\biwinrt.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\muifontsetup.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\system32\muifontsetup.dll
2015-09-05 11:55:11 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-09-05 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2015-09-05 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2015-09-05 11:54:14 ----A---- C:\WINDOWS\system32\autochk.exe
2015-09-05 11:54:13 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2015-09-05 11:54:13 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2015-09-05 11:54:13 ----A---- C:\WINDOWS\system32\untfs.dll
2015-09-05 11:54:07 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll
2015-09-05 11:54:07 ----A---- C:\WINDOWS\system32\msdrm.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\scrrun.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\scrobj.dll
2015-09-05 11:51:35 ----A---- C:\WINDOWS\system32\cscript.exe
2015-09-05 11:51:33 ----A---- C:\WINDOWS\system32\win32k.sys
2015-09-05 11:51:32 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-09-05 11:51:32 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\lpk.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-05 11:51:31 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-05 11:50:43 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-09-05 11:50:43 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcasvc.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcalua.exe
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcaevts.dll
2015-09-05 11:50:42 ----A---- C:\WINDOWS\system32\pcadm.dll
2015-09-05 11:50:38 ----D---- C:\Windows.old
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\apprepsync.dll
2015-09-05 11:50:37 ----A---- C:\WINDOWS\system32\apprepapi.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\nshwfp.dll
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2015-09-05 11:50:35 ----A---- C:\WINDOWS\system32\BFE.DLL
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-09-05 11:49:31 ----A---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2015-09-05 11:49:29 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2015-09-05 11:49:29 ----A---- C:\WINDOWS\system32\d2d1.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnet.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2015-09-05 11:49:27 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2015-09-05 11:49:23 ----A---- C:\WINDOWS\system32\wpdshext.dll
2015-09-05 11:47:02 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-09-05 11:47:02 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2015-09-05 11:46:59 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\sdbinst.exe
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-09-05 11:46:59 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2015-09-05 11:46:04 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-09-05 11:46:04 ----A---- C:\WINDOWS\system32\esent.dll
2015-09-05 11:45:53 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-09-05 11:45:49 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-09-05 11:45:47 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-09-05 11:45:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\SHCore.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\msv1_0.dll
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-09-05 11:45:46 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-09-05 11:44:10 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\schannel.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-09-05 11:44:10 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\usercpl.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\sspisrv.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\sspicli.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\lsass.exe
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2015-09-05 11:44:09 ----A---- C:\WINDOWS\system32\adtschema.dll
2015-09-05 11:43:50 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2015-09-05 11:42:13 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2015-09-05 11:42:13 ----A---- C:\WINDOWS\system32\qedit.dll
2015-09-05 11:42:11 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-09-05 11:42:11 ----A---- C:\WINDOWS\system32\notepad.exe
2015-09-05 11:42:11 ----A---- C:\WINDOWS\notepad.exe
2015-09-05 11:42:07 ----A---- C:\WINDOWS\SYSWOW64\cryptdlg.dll
2015-09-05 11:42:07 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2015-09-05 11:42:05 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2015-09-05 11:42:05 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2015-09-05 11:40:14 ----A---- C:\WINDOWS\system32\wmp.dll
2015-09-05 11:40:14 ----A---- C:\WINDOWS\system32\tquery.dll
2015-09-05 11:40:13 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-09-05 11:40:12 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-09-05 11:40:09 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-09-05 11:40:08 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-09-05 11:40:05 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2015-09-05 11:40:04 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-09-05 11:40:03 ----A---- C:\WINDOWS\system32\kd_02_10ec.dll
2015-09-05 11:40:02 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\rsaenh.dll
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2015-09-05 11:40:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-09-05 11:40:00 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\mssph.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\dwmredir.dll
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\conhost.exe
2015-09-05 11:39:59 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-09-05 11:39:58 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\XpsRasterService.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\fhengine.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2015-09-05 11:39:57 ----A---- C:\WINDOWS\system32\ci.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\XpsRasterService.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\wscsvc.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\kdvm.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\kdnet.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\iuilp.dll
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-09-05 11:39:56 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\mssvp.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\GenuineCenter.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\fmifs.dll
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\hidi2c.sys
2015-09-05 11:39:55 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-09-05 11:39:54 ----A---- C:\WINDOWS\SYSWOW64\fmifs.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\mssphtb.dll
2015-09-05 11:39:54 ----A---- C:\WINDOWS\system32\msshooks.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\mssitlb.dll
2015-09-05 11:39:53 ----A---- C:\WINDOWS\system32\msscntrs.dll
2015-09-05 11:39:52 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2015-09-05 11:39:52 ----A---- C:\WINDOWS\system32\tzres.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\VmHostAI.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\tssdisai.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\RDWebAI.dll
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\poqexec.exe
2015-09-05 11:38:31 ----A---- C:\WINDOWS\system32\appserverai.dll
2015-09-05 11:38:28 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-09-05 11:38:25 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\SysFxUI.dll
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2015-09-05 11:38:24 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2015-09-05 11:34:24 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-09-05 11:34:24 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-09-05 11:34:17 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2015-09-05 11:34:17 ----A---- C:\WINDOWS\system32\comctl32.dll
2015-09-05 11:34:12 ----A---- C:\WINDOWS\system32\shell32.dll
2015-09-05 11:34:10 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-09-05 11:33:55 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2015-09-05 11:33:55 ----A---- C:\WINDOWS\system32\packager.dll
2015-09-05 11:33:08 ----D---- C:\$WINDOWS.~BT
2015-09-05 11:31:59 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-09-05 11:31:46 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-09-05 11:31:45 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2015-09-05 11:31:45 ----A---- C:\WINDOWS\system32\lsm.dll
2015-09-05 11:31:44 ----A---- C:\WINDOWS\system32\wdigest.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\system32\TSpkg.dll
2015-09-05 11:31:43 ----A---- C:\WINDOWS\system32\credssp.dll
2015-09-05 11:31:42 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2015-09-05 11:31:41 ----A---- C:\WINDOWS\system32\workerdd.dll
2015-09-05 11:31:41 ----A---- C:\WINDOWS\system32\msaudite.dll
2015-09-05 11:31:25 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2015-09-05 11:31:25 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-09-05 11:31:24 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2015-09-05 11:31:24 ----A---- C:\WINDOWS\system32\msieftp.dll
2015-09-05 11:30:32 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2015-09-05 11:30:32 ----A---- C:\WINDOWS\system32\crypt32.dll
2015-09-05 11:16:24 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-09-05 11:16:20 ----A---- C:\WINDOWS\system32\wups2.dll
2015-09-05 11:16:20 ----A---- C:\WINDOWS\system32\wups.dll
2015-09-05 11:16:19 ----A---- C:\WINDOWS\system32\wushareduxresources.dll
2015-09-05 11:04:21 ----D---- C:\Users\Viktor\AppData\Roaming\Intel Corporation
2015-09-05 11:01:00 ----D---- C:\Users\Viktor\AppData\Roaming\Identities
2015-09-05 10:59:31 ----D---- C:\Users\Viktor\AppData\Roaming\Macromedia
2015-09-05 10:59:29 ----D---- C:\Users\Viktor\AppData\Roaming\Adobe
2015-09-05 10:57:42 ----D---- C:\Users\Viktor\AppData\Roaming\Intel
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Šablony
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Plocha
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Nabídka Start
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Dokumenty
2015-09-05 10:54:04 ----SHD---- C:\ProgramData\Data aplikací
2015-09-05 10:53:01 ----SD---- C:\Users\Viktor\AppData\Roaming\Microsoft
2015-09-05 10:22:31 ----HD---- C:\$SysReset
2015-09-04 17:17:12 ----SHD---- C:\Config.Msi
2015-08-16 04:25:44 ----ASH---- C:\swapfile.sys
2015-08-16 04:25:42 ----SHD---- C:\System Volume Information
2015-08-16 04:25:42 ----ASH---- C:\pagefile.sys
2015-08-16 04:25:41 ----ASH---- C:\hiberfil.sys
2015-08-16 04:25:18 ----SHD---- C:\Recovery
2015-08-16 04:25:18 ----A---- C:\Recovery.txt
2015-08-15 19:04:09 ----HD---- C:\$AVG

======List of files/folders modified in the last 1 month======

2015-09-08 21:13:48 ----D---- C:\WINDOWS\SysWOW64
2015-09-08 21:10:39 ----D---- C:\WINDOWS\system32\config
2015-09-08 21:09:44 ----RSD---- C:\WINDOWS\assembly
2015-09-08 21:09:07 ----D---- C:\WINDOWS\Prefetch
2015-09-08 21:08:27 ----D---- C:\WINDOWS\Logs
2015-09-08 21:02:07 ----D---- C:\WINDOWS\system32\sru
2015-09-08 20:56:00 ----D---- C:\WINDOWS\Temp
2015-09-08 20:54:23 ----RD---- C:\Program Files (x86)
2015-09-08 20:49:30 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-08 20:40:18 ----HD---- C:\ProgramData
2015-09-08 11:15:57 ----HD---- C:\Program Files\WindowsApps
2015-09-08 09:19:42 ----D---- C:\WINDOWS\rescache
2015-09-08 08:58:57 ----D---- C:\WINDOWS\Inf
2015-09-08 08:58:57 ----AD---- C:\WINDOWS\System32
2015-09-08 08:58:57 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-08 08:53:54 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-09-08 08:53:14 ----D---- C:\WINDOWS\WinSxS
2015-09-08 08:49:28 ----D---- C:\Program Files\Windows Media Player
2015-09-08 08:49:28 ----D---- C:\Program Files\Windows Mail
2015-09-08 08:49:28 ----D---- C:\Program Files\Internet Explorer
2015-09-08 08:49:27 ----D---- C:\Program Files\Windows Photo Viewer
2015-09-08 08:49:27 ----D---- C:\Program Files\Windows Journal
2015-09-08 08:49:26 ----D---- C:\Program Files\Common Files\System
2015-09-08 08:49:25 ----D---- C:\Program Files\Windows Defender
2015-09-08 08:49:25 ----D---- C:\Program Files (x86)\Windows Media Player
2015-09-08 08:49:25 ----D---- C:\Program Files (x86)\Windows Mail
2015-09-08 08:49:25 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-08 08:49:24 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-09-08 08:49:22 ----D---- C:\WINDOWS\WinStore
2015-09-08 08:49:22 ----D---- C:\Program Files (x86)\Windows Defender
2015-09-08 08:49:21 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-09-08 08:49:20 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-09-08 08:49:20 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-09-08 08:49:18 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-09-08 08:49:18 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-09-08 08:49:17 ----D---- C:\WINDOWS\SYSWOW64\wbem
2015-09-08 08:49:11 ----AD---- C:\Windows
2015-09-08 08:49:09 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-09-08 08:49:09 ----D---- C:\WINDOWS\PolicyDefinitions
2015-09-08 08:49:09 ----AD---- C:\WINDOWS\system32\oobe
2015-09-08 08:49:08 ----D---- C:\WINDOWS\system32\migwiz
2015-09-08 08:49:07 ----D---- C:\WINDOWS\system32\Sysprep
2015-09-08 08:49:07 ----D---- C:\WINDOWS\system32\sk-SK
2015-09-08 08:47:47 ----D---- C:\WINDOWS\system32\Drivers
2015-09-08 08:47:45 ----D---- C:\WINDOWS\system32\WCN
2015-09-08 08:47:45 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-08 08:47:39 ----D---- C:\WINDOWS\system32\wbem
2015-09-08 08:47:27 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-09-08 08:47:03 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-09-08 08:47:02 ----D---- C:\WINDOWS\system32\cs-CZ
2015-09-08 08:47:00 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2015-09-08 08:46:54 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-09-08 08:46:52 ----D---- C:\WINDOWS\system32\Boot
2015-09-08 08:46:51 ----D---- C:\WINDOWS\system32\en-US
2015-09-08 08:46:47 ----RSD---- C:\WINDOWS\Fonts
2015-09-07 14:15:33 ----D---- C:\WINDOWS\CbsTemp
2015-09-07 14:01:56 ----D---- C:\WINDOWS\system32\catroot2
2015-09-07 14:01:49 ----D---- C:\WINDOWS\system32\catroot
2015-09-07 13:12:10 ----SD---- C:\ProgramData\Microsoft
2015-09-07 12:33:57 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2015-09-07 12:33:08 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-09-07 12:33:07 ----D---- C:\WINDOWS\system32\migration
2015-09-07 12:32:59 ----D---- C:\Program Files\Common Files\microsoft shared
2015-09-07 12:28:47 ----D---- C:\WINDOWS\apppatch
2015-09-07 12:25:54 ----RD---- C:\WINDOWS\ToastData
2015-09-07 12:24:11 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-09-07 12:24:10 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-07 12:18:26 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-09-07 11:38:47 ----D---- C:\WINDOWS\debug
2015-09-07 09:46:41 ----D---- C:\WINDOWS\system32\wdi
2015-09-07 09:40:22 ----D---- C:\WINDOWS\Tasks
2015-09-06 22:10:54 ----D---- C:\Program Files (x86)\Amazon
2015-09-06 21:25:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-09-06 21:24:54 ----D---- C:\Program Files (x86)\Lenovo
2015-09-06 21:24:51 ----SHD---- C:\WINDOWS\Installer
2015-09-06 21:13:59 ----RD---- C:\Program Files
2015-09-06 19:54:48 ----D---- C:\WINDOWS\LiveKernelReports
2015-09-06 18:36:36 ----HD---- C:\Program Files (x86)\Temp
2015-09-06 18:28:17 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-09-06 18:27:57 ----D---- C:\ProgramData\McAfee
2015-09-06 18:27:53 ----D---- C:\Program Files\Common Files\mcafee
2015-09-06 18:16:41 ----D---- C:\Program Files (x86)\Realtek
2015-09-06 16:50:17 ----D---- C:\WINDOWS\AUInstallAgent
2015-09-06 16:38:50 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-05 13:55:02 ----HD---- C:\WINDOWS\ELAMBKUP
2015-09-05 13:30:12 ----D---- C:\WINDOWS\system32\Tasks
2015-09-05 13:14:26 ----D---- C:\Program Files (x86)\Common Files
2015-09-05 13:06:02 ----D---- C:\WINDOWS\servicing
2015-09-05 12:59:40 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-09-05 12:59:31 ----D---- C:\WINDOWS\system32\Dism
2015-09-05 12:41:03 ----D---- C:\Program Files\Common Files
2015-09-05 11:05:28 ----D---- C:\WINDOWS\system32\restore
2015-09-05 11:02:42 ----D---- C:\ProgramData\Intel
2015-09-05 10:56:39 ----ADC---- C:\WINDOWS\Panther
2015-09-05 10:54:04 ----D---- C:\Program Files\Windows NT
2015-09-05 10:53:43 ----D---- C:\WINDOWS\system32\Recovery
2015-09-05 10:53:01 ----AD---- C:\Users
2015-08-16 14:49:22 ----SHD---- C:\$Recycle.Bin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-09-05 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-09-05 274808]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-12-01 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2012-10-02 30056]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-09-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-09-05 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-09-05 447944]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-09-05 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-09-05 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-09-05 150672]
R3 ACPIVPC;@oem24.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-12-01 33560]
R3 bcbtums;@oem15.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2012-10-01 169240]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2012-10-16 161144]
R3 btwavdt;@oem10.inf,%btwavdt.SvcDesc%;Bluetooth AVDT; C:\WINDOWS\System32\drivers\btwavdt.sys [2012-10-09 225144]
R3 btwl2cap;@oem13.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-07-27 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2012-10-09 20856]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem21.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2012-10-10 25568]
R3 JMCR;JMCR; C:\WINDOWS\System32\drivers\jmcr.sys [2012-06-22 174176]
R3 L1C;@oem6.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2012-07-19 110744]
R3 MEIx64;@oem7.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem19.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2012-08-20 4273192]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2012-10-02 13443944]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-09-17 43832]
R3 SynTP;@oem17.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-09-17 457528]
R3 usb3Hub;@oem22.inf,%usb3Hub.SVCDESC%;USB-IF USB 3.0 Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [2012-10-10 47072]
R3 vm332avs;@oem1.inf,%USBCamera.DeviceDesc2%;Lenovo Camera2; C:\WINDOWS\System32\Drivers\vm332avs.sys [2012-08-25 981112]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 btwaudio;@oem10.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2012-10-09 185208]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 intaud_WaveExtensible;@oem20.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2012-10-10 35296]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-18 4496600]
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-07-06 210560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-09-05 146600]
R2 BcmBtRSupport;@oem15.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service; C:\WINDOWS\system32\BtwRSupportService.exe [2012-10-01 2227992]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2012-10-22 957816]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-07-18 627504]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-08-16 7168]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-21 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 277824]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-02 1258856]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-07-18 149296]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 365376]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2012-08-25 276288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-07-18 272176]

-----------------EOF-----------------

Re: Kontrola logu.

Napsal: 08 zář 2015 20:42
od Rudy
Log je OK. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Re: Kontrola logu.

Napsal: 09 zář 2015 15:49
od Harmony
čisto.

Re: Kontrola logu.

Napsal: 09 zář 2015 17:29
od Rudy
Pak je to OK. Pokud se PC stále stále seká, udělejte obnvu systému k datu, před instalací toho programu. Patrně bude s něčím v PC nainstalovaným, v konfliktu.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz