sekanie a zamrzanie pc

Zpráva

b.j.001 · #1 Příspěvek od **b.j.001** » 18 lis 2012 11:59

prosím o pomoc seka sa az zamrza pc a nepomoze nic az tvrdy reset.nevipina sa len sa odhlasuje a nic vdaka za pomoc.

Logfile of random's system information tool 1.09 (written by random/random)
Run by BJ at 2012-11-18 11:34:21
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 173 GB (75%) free of 231 GB
Total RAM: 6143 MB (79% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:34:26, on 18. 11. 2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe
C:\Windows\V0640Mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\trend micro\BJ.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Live! Central 3] "C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe" /mode2
O4 - HKLM\..\Run: [V0640Mon.exe] C:\Windows\V0640Mon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2745142898-2815742099-1246389504-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2745142898-2815742099-1246389504-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: Logitech . Registrácia výrobku.lnk = C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} (Creative Software AutoUpdate 2) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7724 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe" /mode2
"C:\Windows\V0640Mon.exe"
KHALMNPR.EXE /API
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
LBTWiz -silent
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
"taskhost.exe"
"C:\Users\BJ\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-10-30 449512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2012-10-06 366904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-10-30 155384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-03-07 4081008]
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2007-09-21 134160]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2012-10-06 2409272]
"Bluetooth Connection Assistant"=LBTWIZ.EXE -silent []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Live! Central 3"=C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe [2010-09-28 499852]
"V0640Mon.exe"=C:\Windows\V0640Mon.exe [2009-09-23 28672]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

C:\Users\BJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Logitech . Registrácia výrobku.lnk - C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2012-10-01 68408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-11-18 11:34:21 ----D---- C:\rsit
2012-11-18 11:34:21 ----D---- C:\Program Files\trend micro
2012-11-16 18:41:05 ----D---- C:\ProgramData\Hewlett-Packard
2012-11-16 08:50:58 ----A---- C:\Windows\system32\Wdfres.dll
2012-11-16 08:50:58 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-11-16 08:50:58 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-11-16 08:46:56 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-11-16 08:46:56 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-11-16 08:46:55 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-11-16 08:46:55 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-11-16 08:46:53 ----A---- C:\Windows\system32\WUDFx.dll
2012-11-16 08:46:53 ----A---- C:\Windows\system32\WUDFHost.exe
2012-11-16 08:46:53 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-11-16 05:31:26 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2012-11-16 05:31:26 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2012-11-16 05:31:26 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2012-11-16 05:31:26 ----A---- C:\Windows\system32\dhcpcore6.dll
2012-11-16 05:31:21 ----A---- C:\Windows\system32\win32k.sys
2012-11-16 05:31:14 ----A---- C:\Windows\system32\ncsi.dll
2012-11-16 05:31:14 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-11-16 05:31:13 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2012-11-16 05:31:13 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2012-11-16 05:31:13 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\nlasvc.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\nlaapi.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\netcorehc.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\iphlpsvc.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2012-11-16 05:31:12 ----A---- C:\Windows\SYSWOW64\netevent.dll
2012-11-16 05:31:12 ----A---- C:\Windows\system32\netevent.dll
2012-11-16 05:30:53 ----A---- C:\Windows\SYSWOW64\synceng.dll
2012-11-16 05:30:53 ----A---- C:\Windows\system32\synceng.dll
2012-11-12 22:05:38 ----ASH---- C:\pagefile.sys
2012-11-10 19:30:23 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2012-11-10 19:29:37 ----D---- C:\ProgramData\HF Designer
2012-11-10 19:29:34 ----D---- C:\Program Files (x86)\HF Designer
2012-11-04 18:33:14 ----D---- C:\Program Files\CCleaner
2012-10-30 14:54:23 ----D---- C:\ProgramData\Sony Ericsson
2012-10-30 14:54:12 ----D---- C:\Program Files (x86)\Sony Ericsson
2012-10-30 14:54:11 ----D---- C:\ProgramData\Sun
2012-10-30 14:54:06 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2012-10-30 14:54:06 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-10-30 14:54:06 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2012-10-30 14:53:59 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2012-10-30 14:53:59 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-10-30 14:53:59 ----A---- C:\Windows\SYSWOW64\java.exe
2012-10-30 14:53:48 ----D---- C:\Program Files (x86)\Java
2012-10-30 14:39:30 ----D---- C:\ProgramData\Sony
2012-10-30 14:39:30 ----D---- C:\Program Files (x86)\Sony
2012-10-29 12:27:37 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2012-10-29 12:20:34 ----A---- C:\Windows\SYSWOW64\MSVCRTD.DLL
2012-10-29 12:20:33 ----A---- C:\Windows\SYSWOW64\mfc42d.dll
2012-10-29 12:20:24 ----A---- C:\Windows\SYSWOW64\drivers\AsIO.sys
2012-10-29 12:20:24 ----A---- C:\Windows\SYSWOW64\AsIO.dll
2012-10-29 12:20:21 ----D---- C:\Program Files (x86)\ASUS
2012-10-29 12:16:49 ----A---- C:\Windows\system32\drivers\ASACPI.sys
2012-10-28 07:09:40 ----D---- C:\Users\BJ\AppData\Roaming\Logishrd
2012-10-27 12:15:57 ----D---- C:\ProgramData\SecTaskMan
2012-10-27 12:15:52 ----D---- C:\Program Files (x86)\Security Task Manager
2012-10-27 09:51:05 ----D---- C:\Program Files (x86)\Adobe
2012-10-27 09:50:11 ----D---- C:\ProgramData\Adobe
2012-10-25 21:11:21 ----D---- C:\Windows\Minidump
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbport.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbohci.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbehci.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbd.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2012-10-25 07:47:42 ----A---- C:\Windows\SYSWOW64\esent.dll
2012-10-25 07:47:42 ----A---- C:\Windows\system32\fsutil.exe
2012-10-25 07:47:42 ----A---- C:\Windows\system32\esent.dll
2012-10-25 07:47:42 ----A---- C:\Windows\system32\drivers\amdxata.sys
2012-10-25 07:47:41 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2012-10-25 07:47:41 ----A---- C:\Windows\system32\drivers\storport.sys
2012-10-25 07:47:41 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2012-10-25 07:47:40 ----A---- C:\Windows\system32\drivers\nvraid.sys
2012-10-25 07:47:40 ----A---- C:\Windows\system32\drivers\amdsata.sys
2012-10-25 07:47:38 ----A---- C:\Windows\system32\drivers\nvstor.sys
2012-10-23 03:58:27 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-10-22 04:29:41 ----D---- C:\Windows\SYSWOW64\Wat
2012-10-22 04:29:41 ----D---- C:\Windows\system32\Wat
2012-10-21 19:54:54 ----A---- C:\Windows\system32\MRT.exe
2012-10-21 19:46:51 ----A---- C:\Windows\system32\browserchoice.exe
2012-10-21 19:44:05 ----A---- C:\Windows\SYSWOW64\wmi.dll
2012-10-21 19:44:05 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2012-10-21 19:44:05 ----A---- C:\Windows\system32\wmi.dll
2012-10-21 19:44:05 ----A---- C:\Windows\system32\imagehlp.dll
2012-10-21 19:44:05 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-10-21 17:09:03 ----D---- C:\Users\BJ\AppData\Roaming\ts3overlay
2012-10-21 16:25:14 ----D---- C:\Users\BJ\AppData\Roaming\WinRAR
2012-10-21 16:24:57 ----D---- C:\Program Files\WinRAR
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\system32\odbctrac.dll
2012-10-21 15:17:40 ----A---- C:\Windows\system32\odbccu32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\system32\odbccr32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\system32\odbccp32.dll
2012-10-21 15:17:33 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2012-10-21 15:17:33 ----A---- C:\Windows\system32\xmllite.dll
2012-10-21 15:17:31 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-10-21 15:17:31 ----A---- C:\Windows\system32\webio.dll
2012-10-21 15:17:29 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2012-10-21 15:17:29 ----A---- C:\Windows\system32\tquery.dll
2012-10-21 15:17:29 ----A---- C:\Windows\system32\SearchIndexer.exe
2012-10-21 15:17:29 ----A---- C:\Windows\system32\mssrch.dll
2012-10-21 15:17:28 ----A---- C:\Windows\SYSWOW64\tquery.dll
2012-10-21 15:17:28 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2012-10-21 15:17:28 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2012-10-21 15:17:28 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\mssph.dll
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2012-10-21 15:17:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2012-10-21 15:17:27 ----A---- C:\Windows\system32\mssvp.dll
2012-10-21 15:17:27 ----A---- C:\Windows\system32\mssphtb.dll
2012-10-21 15:17:27 ----A---- C:\Windows\system32\mssph.dll
2012-10-21 15:17:27 ----A---- C:\Windows\system32\msscntrs.dll
2012-10-21 15:17:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-10-21 15:17:23 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-10-21 15:17:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-10-21 15:16:44 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2012-10-21 15:16:44 ----A---- C:\Windows\system32\ntshrui.dll
2012-10-21 15:16:42 ----A---- C:\Windows\system32\mshtml.dll
2012-10-21 15:16:40 ----A---- C:\Windows\system32\ieframe.dll
2012-10-21 15:16:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-10-21 15:16:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-10-21 15:16:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-10-21 15:16:34 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-10-21 15:16:34 ----A---- C:\Windows\system32\wininet.dll
2012-10-21 15:16:34 ----A---- C:\Windows\system32\urlmon.dll
2012-10-21 15:16:33 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-10-21 15:16:33 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-10-21 15:16:33 ----A---- C:\Windows\system32\msfeeds.dll
2012-10-21 15:16:33 ----A---- C:\Windows\system32\iertutil.dll
2012-10-21 15:16:32 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-10-21 15:16:32 ----A---- C:\Windows\system32\jsproxy.dll
2012-10-21 15:16:32 ----A---- C:\Windows\system32\ieui.dll
2012-10-21 15:16:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-10-21 15:16:05 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-10-21 15:16:05 ----A---- C:\Windows\system32\tzres.dll
2012-10-21 15:15:48 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2012-10-21 15:15:48 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-10-21 15:15:29 ----A---- C:\Windows\system32\shell32.dll
2012-10-21 15:15:27 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-10-21 15:15:24 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-10-21 15:15:23 ----A---- C:\Windows\system32\cdosys.dll
2012-10-21 15:15:20 ----A---- C:\Windows\SYSWOW64\quartz.dll
2012-10-21 15:15:20 ----A---- C:\Windows\system32\quartz.dll
2012-10-21 15:15:19 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-10-21 15:15:19 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2012-10-21 15:15:19 ----A---- C:\Windows\system32\qdvd.dll
2012-10-21 15:15:18 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2012-10-21 15:15:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-10-21 15:15:16 ----A---- C:\Windows\system32\drivers\netio.sys
2012-10-21 15:15:16 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-10-21 15:15:05 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-10-21 15:15:05 ----A---- C:\Windows\system32\msxml6.dll
2012-10-21 15:15:04 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-10-21 15:15:04 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-10-21 15:15:04 ----A---- C:\Windows\system32\msxml3r.dll
2012-10-21 15:15:04 ----A---- C:\Windows\system32\msxml3.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\wow64win.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\winsrv.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\KernelBase.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\kernel32.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\conhost.exe
2012-10-21 15:14:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-10-21 15:14:51 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2012-10-21 15:14:51 ----A---- C:\Windows\system32\wow64cpu.dll
2012-10-21 15:14:51 ----A---- C:\Windows\system32\wow64.dll
2012-10-21 15:14:51 ----A---- C:\Windows\system32\ntvdm64.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-10-21 15:14:50 ----A---- C:\Windows\SYSWOW64\wow32.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-10-21 15:14:48 ----A---- C:\Windows\SYSWOW64\user.exe
2012-10-21 15:14:37 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2012-10-21 15:14:37 ----A---- C:\Windows\system32\CPFilters.dll
2012-10-21 15:14:36 ----A---- C:\Windows\SYSWOW64\sbe.dll
2012-10-21 15:14:36 ----A---- C:\Windows\system32\sbe.dll
2012-10-21 15:14:34 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2012-10-21 15:14:34 ----A---- C:\Windows\system32\mfc42u.dll
2012-10-21 15:14:34 ----A---- C:\Windows\system32\mfc42.dll
2012-10-21 15:14:33 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2012-10-21 15:14:32 ----A---- C:\Windows\system32\atmfd.dll
2012-10-21 15:14:31 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2012-10-21 15:14:31 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-10-21 15:14:31 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-10-21 15:14:31 ----A---- C:\Windows\system32\fontsub.dll
2012-10-21 15:14:31 ----A---- C:\Windows\system32\atmlib.dll
2012-10-21 15:14:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2012-10-21 15:14:27 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-10-21 15:14:27 ----A---- C:\Windows\system32\vbscript.dll
2012-10-21 15:14:27 ----A---- C:\Windows\system32\jscript.dll
2012-10-21 15:14:25 ----A---- C:\Windows\system32\OxpsConverter.exe
2012-10-21 15:14:23 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2012-10-21 15:14:23 ----A---- C:\Windows\system32\XpsPrint.dll
2012-10-21 15:14:23 ----A---- C:\Windows\system32\drivers\srvnet.sys
2012-10-21 15:14:23 ----A---- C:\Windows\system32\drivers\srv2.sys
2012-10-21 15:14:23 ----A---- C:\Windows\system32\drivers\srv.sys
2012-10-21 15:14:20 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2012-10-21 15:14:20 ----A---- C:\Windows\system32\poqexec.exe
2012-10-21 15:14:19 ----A---- C:\Windows\explorer.exe
2012-10-21 15:14:18 ----A---- C:\Windows\SYSWOW64\explorer.exe
2012-10-21 15:14:17 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-10-21 15:14:17 ----A---- C:\Windows\system32\DWrite.dll
2012-10-21 15:14:15 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-10-21 15:14:15 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2012-10-21 15:14:15 ----A---- C:\Windows\system32\schannel.dll
2012-10-21 15:14:15 ----A---- C:\Windows\system32\ncrypt.dll
2012-10-21 15:14:15 ----A---- C:\Windows\system32\lsasrv.dll
2012-10-21 15:14:15 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-10-21 15:14:15 ----A---- C:\Windows\system32\drivers\cng.sys
2012-10-21 15:14:14 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-10-21 15:14:14 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-10-21 15:14:14 ----A---- C:\Windows\system32\sspisrv.dll
2012-10-21 15:14:14 ----A---- C:\Windows\system32\sspicli.dll
2012-10-21 15:14:14 ----A---- C:\Windows\system32\secur32.dll
2012-10-21 15:14:14 ----A---- C:\Windows\system32\lsass.exe
2012-10-21 15:14:14 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-10-21 15:14:13 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2012-10-21 15:14:13 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2012-10-21 15:14:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2012-10-21 15:14:07 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2012-10-21 15:14:07 ----A---- C:\Windows\system32\d3d10level9.dll
2012-10-21 15:14:06 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2012-10-21 15:14:05 ----A---- C:\Windows\system32\psisdecd.dll
2012-10-21 15:14:04 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2012-10-21 15:14:04 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-10-21 15:14:04 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-10-21 15:14:03 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2012-10-21 15:14:03 ----A---- C:\Windows\system32\rdpwsx.dll
2012-10-21 15:14:03 ----A---- C:\Windows\system32\dnsrslvr.dll
2012-10-21 15:14:03 ----A---- C:\Windows\system32\dnsapi.dll
2012-10-21 15:14:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2012-10-21 15:14:02 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2012-10-21 15:14:02 ----A---- C:\Windows\system32\kerberos.dll
2012-10-21 15:14:02 ----A---- C:\Windows\system32\dnscacheugc.exe
2012-10-21 15:13:59 ----A---- C:\Windows\system32\profsvc.dll
2012-10-21 15:13:58 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2012-10-21 15:13:58 ----A---- C:\Windows\system32\ntdll.dll
2012-10-21 15:13:56 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2012-10-21 15:13:56 ----A---- C:\Windows\system32\d3d10_1.dll
2012-10-21 15:13:55 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2012-10-21 15:13:55 ----A---- C:\Windows\system32\wintrust.dll
2012-10-21 15:13:51 ----A---- C:\Windows\system32\winresume.exe
2012-10-21 15:13:51 ----A---- C:\Windows\system32\winload.exe
2012-10-21 15:13:51 ----A---- C:\Windows\system32\kdusb.dll
2012-10-21 15:13:51 ----A---- C:\Windows\system32\kdcom.dll
2012-10-21 15:13:51 ----A---- C:\Windows\system32\kd1394.dll
2012-10-21 15:13:50 ----A---- C:\Windows\system32\msi.dll
2012-10-21 15:13:49 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-10-21 15:13:48 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-10-21 15:13:48 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-10-21 15:13:48 ----A---- C:\Windows\system32\netapi32.dll
2012-10-21 15:13:48 ----A---- C:\Windows\system32\browser.dll
2012-10-21 15:13:48 ----A---- C:\Windows\system32\browcli.dll
2012-10-21 15:13:47 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2012-10-21 15:13:47 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2012-10-21 15:13:47 ----A---- C:\Windows\system32\oleaut32.dll
2012-10-21 15:13:47 ----A---- C:\Windows\system32\oleacc.dll
2012-10-21 15:13:46 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-10-21 15:13:45 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2012-10-21 15:13:45 ----A---- C:\Windows\system32\inetcomm.dll
2012-10-21 15:13:40 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-10-21 15:13:39 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2012-10-21 15:13:39 ----A---- C:\Windows\system32\msvcrt.dll
2012-10-21 15:13:39 ----A---- C:\Windows\system32\drivers\afd.sys
2012-10-21 15:13:38 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-10-21 15:13:37 ----A---- C:\Windows\system32\localspl.dll
2012-10-21 15:13:36 ----A---- C:\Windows\system32\FXSCOVER.exe
2012-10-21 15:13:35 ----A---- C:\Windows\system32\prevhost.exe
2012-10-21 15:13:34 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2012-10-21 15:13:34 ----A---- C:\Windows\system32\csrsrv.dll
2012-10-21 15:13:25 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2012-10-21 15:13:25 ----A---- C:\Windows\SYSWOW64\devobj.dll
2012-10-21 15:13:25 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2012-10-21 15:13:25 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-10-21 15:13:24 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2012-10-21 15:11:40 ----D---- C:\Users\BJ\AppData\Roaming\TS3Client
2012-10-21 15:07:59 ----A---- C:\Windows\SYSWOW64\srclient.dll
2012-10-21 15:07:59 ----A---- C:\Windows\system32\srcore.dll
2012-10-21 15:07:10 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2012-10-21 15:07:10 ----A---- C:\Windows\system32\EncDec.dll
2012-10-21 15:06:24 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2012-10-21 15:06:24 ----A---- C:\Windows\system32\win32spl.dll
2012-10-21 15:06:24 ----A---- C:\Windows\system32\spoolsv.exe
2012-10-21 15:06:23 ----A---- C:\Windows\splwow64.exe
2012-10-21 15:00:43 ----A---- C:\Windows\system32\crypt32.dll
2012-10-21 15:00:42 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-10-21 15:00:42 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2012-10-21 15:00:42 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-10-21 15:00:42 ----A---- C:\Windows\system32\cryptsvc.dll
2012-10-21 15:00:42 ----A---- C:\Windows\system32\cryptnet.dll
2012-10-21 15:00:21 ----A---- C:\Windows\SYSWOW64\packager.dll
2012-10-21 15:00:21 ----A---- C:\Windows\system32\packager.dll
2012-10-21 14:58:13 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-10-21 14:54:15 ----D---- C:\Users\BJ\AppData\Roaming\Creative
2012-10-21 14:50:36 ----D---- C:\ProgramData\Creative
2012-10-21 14:49:54 ----N---- C:\Windows\Ctregrun.exe
2012-10-21 14:49:25 ----A---- C:\Windows\system32\CTAFX64.dll
2012-10-21 14:49:12 ----A---- C:\Windows\SYSWOW64\V0640Pin.dll
2012-10-21 14:49:11 ----A---- C:\Windows\SYSWOW64\V0640Hwx.dll
2012-10-21 14:49:11 ----A---- C:\Windows\SYSWOW64\CtCamMgr.dll
2012-10-21 14:49:11 ----A---- C:\Windows\system32\V0640Pin.dll
2012-10-21 14:49:11 ----A---- C:\Windows\system32\V0640Hwx.dll
2012-10-21 14:49:11 ----A---- C:\Windows\system32\drivers\V0640Vid.sys
2012-10-21 14:49:11 ----A---- C:\Windows\system32\CtCamMgr.dll
2012-10-21 14:49:11 ----A---- C:\Windows\CtDrvIns.exe
2012-10-21 14:44:42 ----A---- C:\Windows\system32\drivers\CtClsFlt.sys
2012-10-21 14:44:41 ----A---- C:\Windows\system32\drivers\CtAudDrv.sys
2012-10-21 14:44:36 ----D---- C:\Program Files (x86)\Creative
2012-10-21 14:38:44 ----D---- C:\Users\BJ\AppData\Roaming\Logitech
2012-10-21 14:38:40 ----D---- C:\Users\BJ\AppData\Roaming\Leadertech
2012-10-21 14:36:41 ----D---- C:\ProgramData\Logitech
2012-10-21 14:36:39 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-10-21 14:36:38 ----D---- C:\Program Files\Common Files\Logishrd
2012-10-21 14:36:36 ----D---- C:\Program Files\Logitech
2012-10-21 14:36:25 ----D---- C:\ProgramData\LogiShrd
2012-10-21 13:59:43 ----D---- C:\Program Files (x86)\Microsoft Works
2012-10-21 13:59:30 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2012-10-21 13:59:20 ----D---- C:\Windows\PCHEALTH
2012-10-21 13:59:20 ----D---- C:\Program Files (x86)\Microsoft.NET
2012-10-21 13:57:49 ----D---- C:\Program Files\Microsoft Office
2012-10-21 13:57:21 ----D---- C:\ProgramData\Microsoft Help
2012-10-21 13:57:21 ----D---- C:\Program Files (x86)\Microsoft Office
2012-10-21 13:57:02 ----RHD---- C:\MSOCache
2012-10-21 13:44:24 ----D---- C:\Users\BJ\AppData\Roaming\Skype
2012-10-21 13:44:19 ----RD---- C:\Program Files (x86)\Skype
2012-10-21 13:44:16 ----D---- C:\ProgramData\Skype
2012-10-21 13:37:15 ----D---- C:\Program Files (x86)\The KMPlayer
2012-10-21 13:32:51 ----D---- C:\Windows\Panther
2012-10-21 13:24:30 ----D---- C:\Users\BJ\AppData\Roaming\wargaming.net
2012-10-21 13:24:03 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2012-10-21 13:24:03 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2012-10-21 13:24:03 ----A---- C:\Windows\system32\XAudio2_7.dll
2012-10-21 13:24:03 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\xactengine3_7.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\d3dx10_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\d3dcsx_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\XAudio2_6.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\xactengine3_6.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-10-21 13:24:00 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2012-10-21 13:24:00 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2012-10-21 13:24:00 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2012-10-21 13:24:00 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2012-10-21 13:24:00 ----A---- C:\Windows\system32\XAudio2_5.dll
2012-10-21 13:24:00 ----A---- C:\Windows\system32\xactengine3_5.dll
2012-10-21 13:24:00 ----A---- C:\Windows\system32\d3dcsx_42.dll
2012-10-21 13:24:00 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\system32\d3dx11_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\XAudio2_4.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\D3DX9_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\d3dx10_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\xactengine3_4.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\D3DX9_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\d3dx10_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\XAudio2_1.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\xactengine3_1.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\D3DX9_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\d3dx10_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2012-10-21 13:23:53 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2012-10-21 13:23:53 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2012-10-21 13:23:53 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2012-10-21 13:23:53 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-10-21 13:23:53 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-10-21 13:23:53 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-10-21 13:23:52 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2012-10-21 13:23:52 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-10-21 13:23:52 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-10-21 13:23:51 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\xinput1_3.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-10-21 13:23:48 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2012-10-21 13:23:48 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2012-10-21 13:23:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2012-10-21 13:23:48 ----A---- C:\Windows\system32\xactengine2_6.dll
2012-10-21 13:23:48 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-10-21 13:23:48 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-10-21 13:23:48 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-10-21 13:23:47 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2012-10-21 13:23:47 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2012-10-21 13:23:47 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2012-10-21 13:23:47 ----A---- C:\Windows\system32\xactengine2_5.dll
2012-10-21 13:23:47 ----A---- C:\Windows\system32\d3dx9_32.dll
2012-10-21 13:23:47 ----A---- C:\Windows\system32\d3dx10.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xinput1_2.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xinput1_1.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-10-21 13:23:45 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2012-10-21 13:23:45 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2012-10-21 13:23:45 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-10-21 13:23:45 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-10-21 13:23:44 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2012-10-21 13:23:44 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2012-10-21 13:23:44 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2012-10-21 13:23:44 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-10-21 13:23:44 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-10-21 13:23:44 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-10-21 13:23:43 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2012-10-21 13:23:43 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2012-10-21 13:23:43 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2012-10-21 13:23:43 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2012-10-21 13:23:43 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-10-21 13:23:43 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-10-21 13:23:43 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-10-21 13:23:43 ----A---- C:\Windows\system32\d3dx9_25.dll
2012-10-21 13:23:42 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2012-10-21 13:23:42 ----A---- C:\Windows\system32\d3dx9_24.dll
2012-10-21 13:19:43 ----D---- C:\Windows\SYSWOW64\directx
2012-10-21 13:19:39 ----D---- C:\Games
2012-10-21 13:04:42 ----D---- C:\Program Files (x86)\Google
2012-10-21 12:56:32 ----D---- C:\Users\BJ\AppData\Roaming\ESET
2012-10-21 12:54:50 ----D---- C:\ProgramData\ESET
2012-10-21 12:54:50 ----D---- C:\Program Files\ESET
2012-10-21 12:50:49 ----SHD---- C:\Windows\Installer
2012-10-21 12:49:34 ----D---- C:\Users\BJ\AppData\Roaming\Macromedia
2012-10-21 12:49:34 ----D---- C:\Users\BJ\AppData\Roaming\Adobe
2012-10-21 12:49:26 ----D---- C:\Windows\SYSWOW64\Macromed
2012-10-21 12:49:26 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-10-21 12:49:20 ----D---- C:\Windows\system32\Macromed
2012-10-21 12:49:03 ----D---- C:\ProgramData\NVIDIA
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvvsvc.exe
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvsvcr.dll
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvsvc64.dll
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvshext.dll
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvmctray.dll
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvcpl.dll
2012-10-21 12:48:34 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2012-10-21 12:48:34 ----A---- C:\Windows\system32\OpenCL.dll
2012-10-21 12:48:18 ----D---- C:\ProgramData\NVIDIA Corporation
2012-10-21 12:48:15 ----D---- C:\Program Files\NVIDIA Corporation
2012-10-21 12:48:15 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-10-21 12:47:37 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2012-10-21 12:47:37 ----A---- C:\Windows\system32\rdpcore.dll
2012-10-21 12:47:37 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-10-21 12:44:31 ----A---- C:\Windows\system32\wups2.dll
2012-10-21 12:44:31 ----A---- C:\Windows\system32\wucltux.dll
2012-10-21 12:44:31 ----A---- C:\Windows\system32\wuaueng.dll
2012-10-21 12:44:31 ----A---- C:\Windows\system32\wuauclt.exe
2012-10-21 12:44:25 ----A---- C:\Windows\system32\wups.dll
2012-10-21 12:44:25 ----A---- C:\Windows\system32\wudriver.dll
2012-10-21 12:44:25 ----A---- C:\Windows\system32\wuapi.dll
2012-10-21 12:44:18 ----A---- C:\Windows\system32\wuwebv.dll
2012-10-21 12:44:18 ----A---- C:\Windows\system32\wuapp.exe
2012-10-21 12:44:03 ----D---- C:\Users\BJ\AppData\Roaming\Identities
2012-10-21 12:43:52 ----SD---- C:\Users\BJ\AppData\Roaming\Microsoft
2012-10-21 12:43:52 ----D---- C:\Users\BJ\AppData\Roaming\Media Center Programs
2012-10-21 12:43:41 ----SHD---- C:\Recovery
2012-10-21 12:36:19 ----D---- C:\Windows\SoftwareDistribution
2012-10-21 12:34:09 ----D---- C:\Windows\Prefetch
2012-10-21 12:33:36 ----SHD---- C:\System Volume Information
2012-10-21 12:33:36 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2012-11-18 11:34:22 ----D---- C:\Windows\Temp
2012-11-18 11:34:21 ----RD---- C:\Program Files
2012-11-18 10:48:18 ----D---- C:\Windows\System32
2012-11-18 10:48:18 ----D---- C:\Windows\inf
2012-11-18 10:48:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-11-18 07:06:33 ----D---- C:\Windows
2012-11-18 02:03:58 ----D---- C:\Windows\debug
2012-11-17 12:53:05 ----D---- C:\Windows\system32\config
2012-11-16 18:41:05 ----HD---- C:\ProgramData
2012-11-16 18:40:41 ----D---- C:\Windows\system32\drivers
2012-11-16 16:24:37 ----D---- C:\Windows\rescache
2012-11-16 12:46:03 ----D---- C:\Windows\Microsoft.NET
2012-11-16 12:46:02 ----RSD---- C:\Windows\assembly
2012-11-16 11:48:16 ----D---- C:\Windows\winsxs
2012-11-16 11:45:04 ----D---- C:\Windows\SYSWOW64\en-US
2012-11-16 11:45:04 ----D---- C:\Windows\SysWOW64
2012-11-16 11:45:04 ----D---- C:\Windows\system32\en-US
2012-11-16 11:45:03 ----D---- C:\Windows\system32\wbem
2012-11-16 11:45:03 ----D---- C:\Windows\system32\drivers\en-US
2012-11-16 11:45:02 ----D---- C:\Windows\SYSWOW64\migration
2012-11-16 11:45:02 ----D---- C:\Windows\system32\migration
2012-11-16 11:45:01 ----RSD---- C:\Windows\Fonts
2012-11-16 11:45:01 ----D---- C:\Windows\system32\sk-SK
2012-11-16 08:51:03 ----D---- C:\Windows\system32\catroot
2012-11-16 05:31:04 ----D---- C:\Windows\system32\catroot2
2012-11-15 21:06:56 ----D---- C:\Windows\Tasks
2012-11-15 21:06:56 ----D---- C:\Windows\system32\wfp
2012-11-15 21:06:56 ----D---- C:\Windows\system32\DriverStore
2012-11-15 21:06:55 ----D---- C:\Windows\system32\drivers\UMDF
2012-11-15 21:06:54 ----D---- C:\Windows\system32\CodeIntegrity
2012-11-15 21:06:54 ----D---- C:\Windows\AppCompat
2012-11-15 21:06:52 ----D---- C:\Windows\registration
2012-11-10 19:29:34 ----RD---- C:\Program Files (x86)
2012-11-10 13:17:55 ----SD---- C:\ProgramData\Microsoft
2012-11-08 05:38:07 ----D---- C:\Windows\SYSWOW64\drivers
2012-11-04 18:44:21 ----D---- C:\Windows\Logs
2012-11-04 18:33:16 ----D---- C:\Windows\system32\Tasks
2012-10-30 14:54:10 ----D---- C:\Program Files (x86)\Common Files
2012-10-24 05:47:36 ----D---- C:\Windows\LiveKernelReports
2012-10-23 04:34:55 ----D---- C:\Windows\system32\LogFiles
2012-10-22 04:29:51 ----D---- C:\Program Files\Common Files\System
2012-10-22 04:29:50 ----D---- C:\Windows\ehome
2012-10-22 04:29:46 ----D---- C:\Program Files\Internet Explorer
2012-10-22 04:29:46 ----D---- C:\Program Files (x86)\Internet Explorer
2012-10-22 04:29:45 ----D---- C:\Windows\SYSWOW64\sk-SK
2012-10-22 04:29:44 ----D---- C:\Windows\AppPatch
2012-10-22 04:29:38 ----D---- C:\Windows\system32\Boot
2012-10-22 04:29:32 ----D---- C:\Program Files\Windows Journal
2012-10-21 20:00:01 ----D---- C:\Windows\system32\wdi
2012-10-21 15:08:22 ----D---- C:\Windows\Downloaded Program Files
2012-10-21 14:58:21 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-10-21 14:49:14 ----D---- C:\Windows\twain_32
2012-10-21 14:36:38 ----D---- C:\Program Files\Common Files
2012-10-21 13:57:40 ----D---- C:\Windows\ShellNew
2012-10-21 13:57:35 ----A---- C:\Windows\win.ini
2012-10-21 12:49:22 ----RD---- C:\Users
2012-10-21 12:48:43 ----D---- C:\Windows\Help
2012-10-21 12:44:05 ----D---- C:\Windows\system32\restore
2012-10-21 12:44:00 ----SHD---- C:\$Recycle.Bin
2012-10-21 12:37:21 ----D---- C:\Windows\system32\sysprep

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2012-03-14 187632]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2010-08-31 176000]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2012-09-18 75064]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2012-09-18 61240]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
R3 V0640Vid;Creative Live! Cam Socialize (VF0640) Driver; C:\Windows\system32\DRIVERS\V0640Vid.sys [2009-12-04 319520]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\Windows\system32\DRIVERS\s1039bus.sys [2010-03-01 127600]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1039mdfl.sys [2010-03-01 19568]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1039mdm.sys [2010-03-01 161904]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1039mgmt.sys [2010-03-01 141424]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1039nd5.sys [2010-03-01 34416]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1039obex.sys [2010-03-01 137328]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1039unic.sys [2010-03-01 158320]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
R2 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2012-10-01 359224]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-10 1258856]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-21 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-21 116648]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-10-21 1255736]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 18 lis 2012 18:38

Zdravím!
Log vypadá OK. Systém byl instalován relativně nedávno. Tento problém máte od samého počátku, nebo se stal až v průběhu používání?

b.j.001 · #3 Příspěvek od **b.j.001** » 18 lis 2012 20:03

problem mam uz dlhsie asi pol roka tak som ho preinstaloval a nepomohlo.niekedy nebere ani usb kluc a ani nejde nic vymazat proste robi si co chce.

#4 Příspěvek od **Rudy** » 18 lis 2012 20:43

Nainstaloval jste všechny ovladače hardwaru?

b.j.001 · #5 Příspěvek od **b.j.001** » 18 lis 2012 21:43

asi ano robil to kamos takze nemozem potvrdit na 100%, ako to zistim?

#6 Příspěvek od **Rudy** » 18 lis 2012 22:21

Startmenu>ovl. panely>system>správce zařízení. U žádné položky nesmí být varovný trojúhelník.

b.j.001 · #7 Příspěvek od **b.j.001** » 19 lis 2012 05:41

vsetky su ok ziadny trojuholnik

#8 Příspěvek od **Rudy** » 19 lis 2012 18:45

Dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

b.j.001 · #9 Příspěvek od **b.j.001** » 20 lis 2012 15:50

ComboFix 12-11-20.02 - BJ . 11. 2012 15:44:24.1.3 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.4095.2673 [GMT 1:00]
Running from: c:\users\BJ\Desktop\ComboFix.exe
AV: ESET Smart Security 5.2 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.2 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\BJ\DOCUME~1\WOTTWE~1.0)\WOTTwe~1.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-10-20 to 2012-11-20 )))))))))))))))))))))))))))))))
.
.
2012-11-20 14:47 . 2012-11-20 14:47 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-11-20 14:47 . 2012-11-20 14:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-20 13:50 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2012-11-20 13:50 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2012-11-20 13:50 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2012-11-20 13:50 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2012-11-20 13:45 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2012-11-20 13:45 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2012-11-20 13:45 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2012-11-20 13:45 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2012-11-20 13:45 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2012-11-20 13:45 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2012-11-20 13:45 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2012-11-20 12:52 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{35C986DB-29F2-494E-AB09-77F15F67516C}\mpengine.dll
2012-11-20 12:52 . 2012-10-09 18:17 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2012-11-20 12:52 . 2012-10-09 18:17 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
2012-11-20 12:52 . 2012-10-09 17:40 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
2012-11-20 12:52 . 2012-10-09 17:40 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
2012-11-20 12:52 . 2012-10-18 18:25 3149824 ----a-w- c:\windows\system32\win32k.sys
2012-11-19 09:36 . 2012-07-03 15:25 31080 ----a-w- c:\windows\system32\nvhdap64.dll
2012-11-19 09:36 . 2012-11-19 09:36 -------- d-----w- C:\NVIDIA
2012-11-18 11:37 . 2012-11-18 11:37 -------- d-----w- c:\users\BJ\AppData\Local\Diagnostics
2012-11-18 10:34 . 2012-11-20 12:23 -------- d-----w- c:\program files\trend micro
2012-11-18 10:34 . 2012-11-18 10:34 -------- d-----w- C:\rsit
2012-11-10 18:30 . 2012-11-10 18:30 -------- d-----w- c:\users\BJ\AppData\Local\HF Designer
2012-11-10 18:30 . 2007-03-12 15:42 3495784 ----a-w- c:\windows\SysWow64\d3dx9_33.dll
2012-11-10 18:29 . 2012-11-10 18:29 -------- d-----w- c:\programdata\HF Designer
2012-11-10 18:29 . 2012-11-15 20:06 -------- d-----w- c:\program files (x86)\HF Designer
2012-11-10 11:39 . 2001-09-05 03:18 77824 ----a-w- c:\program files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2012-11-10 11:39 . 2001-09-05 03:18 225280 ----a-w- c:\program files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-11-10 11:39 . 2001-09-05 03:14 176128 ----a-w- c:\program files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2012-11-10 11:39 . 2001-09-05 03:13 32768 ----a-w- c:\program files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2012-11-10 11:39 . 2002-07-25 09:07 614532 ----a-w- c:\program files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2012-11-04 17:33 . 2012-11-04 17:33 -------- d-----w- c:\program files\CCleaner
2012-10-30 13:54 . 2012-10-30 13:54 -------- d-----w- c:\programdata\Sony Ericsson
2012-10-30 13:54 . 2012-10-30 13:54 -------- d-----w- c:\program files (x86)\Sony Ericsson
2012-10-30 13:54 . 2012-10-30 13:54 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-10-30 13:54 . 2012-10-30 13:53 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-10-30 13:54 . 2012-10-30 13:53 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-10-30 13:53 . 2012-10-30 13:53 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-30 13:53 . 2012-10-30 13:53 -------- d-----w- c:\program files (x86)\Java
2012-10-30 13:41 . 2012-10-30 13:41 -------- d-----w- c:\users\BJ\AppData\Local\Sony
2012-10-30 13:39 . 2012-10-30 13:39 -------- d-----w- c:\programdata\Sony
2012-10-30 13:39 . 2012-10-30 13:39 -------- d-----w- c:\program files (x86)\Sony
2012-10-29 11:27 . 2012-10-29 11:27 53248 ----a-r- c:\users\BJ\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2012-10-29 11:27 . 2012-10-29 11:27 -------- d-----w- c:\program files (x86)\Common Files\LogiShrd
2012-10-29 11:27 . 2012-10-29 11:27 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2012-10-29 11:20 . 2004-02-16 23:00 434252 ----a-w- c:\windows\SysWow64\MSVCRTD.DLL
2012-10-29 11:20 . 2004-02-26 23:00 962612 ----a-w- c:\windows\SysWow64\mfc42d.dll
2012-10-29 11:20 . 2009-04-06 14:24 13368 ----a-w- c:\windows\SysWow64\drivers\AsIO.sys
2012-10-29 11:20 . 2006-01-10 15:50 24576 ----a-w- c:\windows\SysWow64\AsIO.dll
2012-10-29 11:20 . 2012-11-08 04:37 -------- d-----w- c:\program files (x86)\ASUS
2012-10-29 11:16 . 2009-05-14 08:26 15416 ----a-w- c:\windows\system32\drivers\ASACPI.sys
2012-10-28 06:09 . 2012-10-29 11:26 -------- d-----w- c:\users\BJ\AppData\Roaming\Logishrd
2012-10-27 11:15 . 2012-10-27 11:29 -------- d-----w- c:\programdata\SecTaskMan
2012-10-27 11:15 . 2012-10-27 11:15 -------- d-----w- c:\program files (x86)\Security Task Manager
2012-10-27 08:52 . 2012-10-27 08:52 -------- d-----w- c:\users\BJ\AppData\Local\Adobe
2012-10-27 08:51 . 2012-10-27 08:51 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-10-25 06:48 . 2011-03-25 03:29 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2012-10-25 06:48 . 2011-03-25 03:29 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2012-10-25 06:48 . 2011-03-25 03:29 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2012-10-25 06:48 . 2011-03-25 03:29 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys
2012-10-25 06:48 . 2011-03-25 03:29 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2012-10-25 06:48 . 2011-03-25 03:29 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2012-10-25 06:48 . 2011-03-25 03:28 7936 ----a-w- c:\windows\system32\drivers\usbd.sys
2012-10-25 06:47 . 2011-03-11 06:41 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2012-10-25 06:47 . 2011-03-11 06:33 2565632 ----a-w- c:\windows\system32\esent.dll
2012-10-25 06:47 . 2011-03-11 06:30 96768 ----a-w- c:\windows\system32\fsutil.exe
2012-10-25 06:47 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\SysWow64\esent.dll
2012-10-25 06:47 . 2011-03-11 06:41 189824 ----a-w- c:\windows\system32\drivers\storport.sys
2012-10-25 06:47 . 2011-03-11 06:41 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2012-10-25 06:47 . 2011-03-11 05:31 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2012-10-25 06:47 . 2011-03-11 06:41 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2012-10-25 06:47 . 2011-03-11 06:41 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2012-10-25 06:47 . 2011-03-11 06:41 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2012-10-23 02:58 . 2011-03-11 04:37 91648 ----a-w- c:\windows\system32\drivers\USBSTOR.SYS
2012-10-22 03:29 . 2012-10-22 03:29 -------- d-----w- c:\windows\SysWow64\Wat
2012-10-22 03:29 . 2012-10-22 03:29 -------- d-----w- c:\windows\system32\Wat
2012-10-21 18:54 . 2012-11-20 13:46 66395536 ----a-w- c:\windows\system32\MRT.exe
2012-10-21 18:46 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2012-10-21 18:44 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-10-21 18:44 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-10-21 18:44 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-10-21 18:44 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-10-21 18:44 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-10-21 16:09 . 2012-11-20 12:23 -------- d-----w- c:\users\BJ\AppData\Roaming\ts3overlay
2012-10-21 15:24 . 2012-10-21 15:25 -------- d-----w- c:\program files\WinRAR
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-21 11:49 . 2012-10-21 11:49 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-21 11:49 . 2012-10-21 11:49 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-10 19:24 . 2012-10-21 11:48 52584 ----a-w- c:\windows\SysWow64\OpenCL.dll
2012-10-10 19:23 . 2012-10-10 19:23 247144 ----a-w- c:\windows\system32\nvinitx.dll
2012-10-10 19:23 . 2012-10-10 19:23 1867112 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2012-10-10 19:23 . 2012-10-10 19:23 18252136 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-10-10 19:23 . 2012-10-10 19:23 1482600 ----a-w- c:\windows\system32\nvdispgenco64.dll
2012-10-10 19:23 . 2012-10-10 19:23 6127464 ----a-w- c:\windows\SysWow64\nvopencl.dll
2012-10-10 19:23 . 2012-10-10 19:23 2574696 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2012-10-10 19:23 . 2012-10-10 19:23 25256296 ----a-w- c:\windows\system32\nvcompiler.dll
2012-10-10 19:23 . 2012-10-10 19:23 831848 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2012-10-10 19:23 . 2012-10-10 19:23 202600 ----a-w- c:\windows\SysWow64\nvinit.dll
2012-10-10 19:23 . 2012-10-10 19:23 7414632 ----a-w- c:\windows\system32\nvopencl.dll
2012-10-10 19:23 . 2012-10-10 19:23 2731880 ----a-w- c:\windows\system32\nvapi64.dll
2012-10-10 19:23 . 2012-10-21 11:48 60776 ----a-w- c:\windows\system32\OpenCL.dll
2012-10-10 19:23 . 2012-10-10 19:23 973672 ----a-w- c:\windows\system32\nvumdshimx.dll
2012-10-10 19:23 . 2012-10-10 19:23 14922600 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-10-10 19:23 . 2012-10-10 19:23 9146728 ----a-w- c:\windows\system32\nvcuda.dll
2012-10-10 19:23 . 2012-10-10 19:23 7697768 ----a-w- c:\windows\SysWow64\nvcuda.dll
2012-10-10 19:23 . 2012-10-10 19:23 2218344 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-10-10 19:23 . 2012-10-10 19:23 12501352 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-10-10 19:22 . 2012-10-10 19:22 2428776 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-10-10 19:22 . 2012-10-10 19:22 26331496 ----a-w- c:\windows\system32\nvoglv64.dll
2012-10-10 19:22 . 2012-10-10 19:22 1760104 ----a-w- c:\windows\system32\nvdispco64.dll
2012-10-10 19:22 . 2012-10-10 19:22 15309160 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-10-10 19:22 . 2012-10-10 19:22 2747240 ----a-w- c:\windows\system32\nvcuvid.dll
2012-10-10 19:22 . 2012-10-10 19:22 19906920 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2012-10-10 19:22 . 2012-10-10 19:22 13443944 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-10-10 19:22 . 2012-10-10 19:22 17559912 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2012-10-02 19:51 . 2012-10-21 11:48 3536817 ----a-w- c:\windows\system32\nvcoproc.bin
2012-10-02 19:51 . 2012-10-21 11:48 3293544 ----a-w- c:\windows\system32\nvsvc64.dll
2012-10-02 19:51 . 2012-10-21 11:48 6200680 ----a-w- c:\windows\system32\nvcpl.dll
2012-10-02 19:50 . 2012-10-21 11:48 891240 ----a-w- c:\windows\system32\nvvsvc.exe
2012-10-02 19:50 . 2012-10-21 11:48 63336 ----a-w- c:\windows\system32\nvshext.dll
2012-10-02 19:50 . 2012-10-21 11:48 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2012-10-02 19:50 . 2012-10-21 11:48 118120 ----a-w- c:\windows\system32\nvmctray.dll
2012-10-02 11:15 . 2012-10-02 11:15 430952 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-09-18 09:32 . 2012-09-18 09:32 55096 ----a-w- c:\windows\system32\LMouFiltCoInst.dll
2012-09-18 09:32 . 2012-09-18 09:32 52536 ----a-w- c:\windows\system32\LBTCoIns.DLL
2012-09-18 09:32 . 2012-09-18 09:32 75064 ----a-w- c:\windows\system32\drivers\LHidFilt.Sys
2012-09-18 09:32 . 2012-09-18 09:32 61240 ----a-w- c:\windows\system32\drivers\LMouFilt.Sys
2012-09-18 09:32 . 2012-09-18 09:32 1845560 ----a-w- c:\windows\system32\LkmdfCoInst.dll
2012-09-14 19:19 . 2012-10-21 14:16 2048 ----a-w- c:\windows\system32\tzres.dll
2012-09-14 18:28 . 2012-10-21 14:16 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-08-31 18:19 . 2012-10-21 14:15 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-08-30 18:03 . 2012-10-21 14:17 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-30 17:12 . 2012-10-21 14:17 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-08-30 17:12 . 2012-10-21 14:17 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-08-24 18:05 . 2012-10-21 14:13 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-08-24 16:57 . 2012-10-21 14:13 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-08-22 18:12 . 2012-10-21 14:15 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-08-22 18:12 . 2012-10-21 14:15 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-08-22 18:12 . 2012-10-21 14:15 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
2012-10-06 08:15 366904 ----a-w- c:\program files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Live! Central 3"="c:\program files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe" [2010-09-28 499852]
"V0640Mon.exe"="c:\windows\V0640Mon.exe" [2009-09-23 28672]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\users\BJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech . Registrácia výrobku.lnk - c:\program files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe [2009-11-16 517384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\DRIVERS\s1039bus.sys [2010-03-01 127600]
R3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1039mdfl.sys [2010-03-01 19568]
R3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1039mdm.sys [2010-03-01 161904]
R3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1039mgmt.sys [2010-03-01 141424]
R3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1039nd5.sys [2010-03-01 34416]
R3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1039obex.sys [2010-03-01 137328]
R3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1039unic.sys [2010-03-01 158320]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2012-10-21 1255736]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2010-08-31 176000]
S3 V0640Vid;Creative Live! Cam Socialize (VF0640) Driver;c:\windows\system32\DRIVERS\V0640Vid.sys [2009-12-04 319520]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2012-11-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-21 12:04]
.
2012-11-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-21 12:04]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bluetooth Connection Assistant"="LBTWIZ.EXE -silent" [X]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-03-07 4081008]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-09-21 134160]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2012-10-06 2409272]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
IE: E&xportovať do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-11-20 15:49:25
ComboFix-quarantined-files.txt 2012-11-20 14:49
.
Pre-Run: 185 315 655 680 bytes free
Post-Run: 185 223 385 088 bytes free
.
- - End Of File - - BA6D60F4406CDE37E6359F65D20D92E4

#10 Příspěvek od **Rudy** » 20 lis 2012 20:05

Ještě dosčistíme. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek

VIRY.CZ

sekanie a zamrzanie pc

sekanie a zamrzanie pc

Re: sekanie a zamrzanie pc

Re: sekanie a zamrzanie pc

Re: sekanie a zamrzanie pc

Re: sekanie a zamrzanie pc

Re: sekanie a zamrzanie pc

Re: sekanie a zamrzanie pc

Re: sekanie a zamrzanie pc

Re: sekanie a zamrzanie pc

Re: sekanie a zamrzanie pc