Prosím o kontrolu logu

Zpráva

Halen · #1 Příspěvek od **Halen** » 03 úno 2013 21:15

Nedávno jsem přeinstaloval Windows a mám neurčité podezření na nějakou havěť. Párkrát se mi stalo, že počítač zatuhl a nereagoval na tříprsťák a také se stává, pokud například sleduji video na youtube, že u kurzoru myši se objevuje "blikající modré kolečko", jako kdyby windows na pozadí něco zpracovávaly. Ve správci úloh jsem neobjevil nic, co by mi bylo podezřeleé a ubíralo výkon PC, přesto mě to znepokojuje. Log je velký, přikládám jej jako přílohu. Předem díky.

#2 Příspěvek od **Márty84** » 04 úno 2013 03:40

Zdravim

Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze

Odinstalujte Spybota. Program je zastaraly a spis jen na ozdobu, nez ze by chranil.

Vidim tam MBAM. Delal jste kompletni kontrolu? Nasel neco?

Halen · #3 Příspěvek od **Halen** » 04 úno 2013 11:31

1. Systém je legální, zakoupen při výrazném upgrade PC (CPU, MB, HDD, VGA, CASE). Tímto upgrade hardware jsem přišel o předcházející OEM licenci.
2. MBAM nenašel nic.
3. Netušil jsem, že SPYBOT 2.0.12.0 je zastaralý, ale jako jediný mi při kontrole našel SweetIM, což vůbec netuším, jak se při instalaci mohl do PC dostat, ale zřejmě při autoupdate ovladačů Creative.
4. Vkládám obrázek Správce úloh, který jasně ukazuje vyšší využití CPU (7%) oproti výpisu procesů ve Správci úloh, tříděné podle zatížení. Toto se děje pouze, pokud aktivně s PC nepracuji, jako kdyby nějaký skrytý proces čekal na pozadí na neaktivitu uživatele.

Děkuji za pomoc.

#4 Příspěvek od **Márty84** » 04 úno 2013 14:29

OK, podivame se na to.
Spybot uz bohuzel zije jen ze sve davne slavy.
Ten procesor zas neni az tak neobvykly. Mi to taky neukazuje presne. Taky mam necinne procesy 99% a kdyz mrknu na procesor, tak ten ukazuje 4%

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Search a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner[R?].txt ), ten mi sem zkopirujte.

Halen · #5 Příspěvek od **Halen** » 04 úno 2013 15:58

Děkuji. Přikládám log a také obrázek, co nastane při delší nečinnosti uživatele ze Sledování výkonu.
-
# AdwCleaner v2.110 - Logfile created 02/04/2013 at 15:53:48
# Updated 03/02/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Terazky - TERAZKY-PC
# Boot Mode : Normal
# Running from : C:\Users\Terazky\Desktop\adwcleaner.exe
# Option [Search]

***** [Services] *****

***** [Files / Folders] *****

File Found : C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\searchplugins\daemon-search.xml
File Found : C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\searchplugins\search.xml

***** [Registry] *****

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (cs)

File : C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\prefs.js

Found : user_pref("CT3220468_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]

*************************

AdwCleaner[R1].txt - [1127 octets] - [04/02/2013 15:25:53]
AdwCleaner[R2].txt - [1059 octets] - [04/02/2013 15:53:48]

########## EOF - C:\AdwCleaner[R2].txt - [1119 octets] ##########

Obrázek

#6 Příspěvek od **Márty84** » 04 úno 2013 16:26

Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.
Tentokrat kliknete na Delete
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner [S1].txt ). Ten mi sem zase zkopirujte.

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

Halen · #7 Příspěvek od **Halen** » 04 úno 2013 16:46

Děkuji. Vkládám oba logy.
# AdwCleaner v2.110 - Logfile created 02/04/2013 at 16:34:46
# Updated 03/02/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Terazky - TERAZKY-PC
# Boot Mode : Normal
# Running from : C:\Users\Terazky\Desktop\adwcleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

File Deleted : C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\searchplugins\daemon-search.xml
File Deleted : C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\searchplugins\search.xml

***** [Registry] *****

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (cs)

File : C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\prefs.js

C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\user.js ... Deleted !

Deleted : user_pref("CT3220468_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]

*************************

AdwCleaner[R1].txt - [1127 octets] - [04/02/2013 15:25:53]
AdwCleaner[R2].txt - [1188 octets] - [04/02/2013 15:53:48]
AdwCleaner[S1].txt - [320 octets] - [04/02/2013 16:34:37]
AdwCleaner[S2].txt - [1284 octets] - [04/02/2013 16:34:46]

########## EOF - C:\AdwCleaner[S2].txt - [1344 octets] ##########

RogueKiller V8.4.4 [Feb 4 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Terazky [Práva správce]
Mód : Kontrola -- Datum : 02/04/2013 16:37:48
| ARK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD3200AAKS-22SBA0 ATA Device +++++
--- User ---
[MBR] 7357a99b6a6bdc3d4a8381deb1996ec2
[BSP] 61a9434e2efd2f4a5d8962cdd0996b8a : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 63 | Size: 305242 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: WDC WD15EARX-00PASB0 ATA Device +++++
--- User ---
[MBR] 6379ab9fa13490ce665af71bb118f484
[BSP] 3022767430d6dbbef0bfa2da5e758a48 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 99 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 199897 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600000 | Size: 1230797 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[1]_S_02042013_02d1637.txt >>
RKreport[1]_S_02042013_02d1637.txt

#8 Příspěvek od **Márty84** » 04 úno 2013 16:58

Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.

Halen · #9 Příspěvek od **Halen** » 04 úno 2013 17:03

Děkuji.
RogueKiller V8.4.4 [Feb 4 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Terazky [Práva správce]
Mód : Odebrat -- Datum : 02/04/2013 17:00:11
| ARK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD3200AAKS-22SBA0 ATA Device +++++
--- User ---
[MBR] 7357a99b6a6bdc3d4a8381deb1996ec2
[BSP] 61a9434e2efd2f4a5d8962cdd0996b8a : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 63 | Size: 305242 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: WDC WD15EARX-00PASB0 ATA Device +++++
--- User ---
[MBR] 6379ab9fa13490ce665af71bb118f484
[BSP] 3022767430d6dbbef0bfa2da5e758a48 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 99 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 199897 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600000 | Size: 1230797 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[4]_D_02042013_02d1700.txt >>
RKreport[1]_S_02042013_02d1637.txt ; RKreport[2]_S_02042013_02d1644.txt ; RKreport[3]_S_02042013_02d1659.txt ; RKreport[4]_D_02042013_02d1700.txt

RogueKiller V8.4.4 [Feb 4 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Terazky [Práva správce]
Mód : Oprava HOSTS -- Datum : 02/04/2013 17:01:51
| ARK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]

¤¤¤ Resetovaný HOSTS: ¤¤¤

Dokončeno : << RKreport[5]_H_02042013_02d1701.txt >>
RKreport[1]_S_02042013_02d1637.txt ; RKreport[2]_S_02042013_02d1644.txt ; RKreport[3]_S_02042013_02d1659.txt ; RKreport[4]_D_02042013_02d1700.txt ; RKreport[5]_H_02042013_02d1701.txt

#10 Příspěvek od **Márty84** » 04 úno 2013 17:04

Dejte novy log z RSIT - pokud bude dlouhy, rozdelte ho do vice prispevku.

Halen · #11 Příspěvek od **Halen** » 04 úno 2013 17:21

Prvních 1000 řádků logu.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Terazky at 2013-02-04 17:09:23
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 173 GB (87%) free of 200 GB
Total RAM: 8189 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:09:32, on 4.2.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe
C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
C:\Windows\SysWOW64\Ctxfihlp.exe
C:\Windows\SysWOW64\CTXFISPI.EXE
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\foobar2000\foobar2000.exe
C:\Users\Terazky\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost32.exe
C:\Program Files\trend micro\Terazky.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [RCSystem] "C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe" RCSystem * -Startup
O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files (x86)\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll"
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe
O4 - HKCU\..\Run: [WebcamMaxAutoRun] "C:\Program Files (x86)\WebcamMax\WebcamMax.exe" -a
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-622998894-1097472747-2165159803-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-622998894-1097472747-2165159803-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: O&O Defrag Tray.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/f ... wflash.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 9496 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Program Files\OO Software\Defrag\oodag.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE"
"C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TuneUpUtilitiesApp64.EXE" /TUStart /pid:1900
"C:\Windows\system32\Dwm.exe"
taskhost.exe USER
C:\Windows\Explorer.EXE
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\OO Software\Defrag\oodtray.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe" RCSystem * -Startup
"C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
"C:\Windows\System32\Ctxfihlp.exe"
"C:\Windows\SysWOW64\CTXFISPI.EXE" -Embedding
taskeng.exe {8BB530D0-5A1C-4F23-8AE4-7E4FC8BBE420}
"C:\Program Files\PeerBlock\peerblock.exe"
"C:\Program Files (x86)\SpeedFan\speedfan.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\foobar2000\foobar2000.exe"
"C:\Users\Terazky\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost32.exe"
taskhost.exe $(Arg0)
"C:\Users\Terazky\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default

prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6, cs@dictionaries.addons.mozilla.org:1.0.2, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.6, YoutubeDownloader@PeterOlayev.com:1.5, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {e0204bd5-9d31-402b-a99d-a6aa8ffebdca}:1.2.5, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, customsearch@apsolo.com:1.0.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.146 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.11.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.146 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\extensions\
cs@dictionaries.addons.mozilla.org
{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-01-29 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-01-29 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2012-09-14 7060848]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"PeerBlock"=C:\Program Files\PeerBlock\peerblock.exe [2010-11-06 2646128]
"WebcamMaxAutoRun"=C:\Program Files (x86)\WebcamMax\WebcamMax.exe [2009-12-30 1561232]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
"RCSystem"=C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe [2006-11-22 57344]
"AudioDrvEmulator"=C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe [2006-11-22 57344]
"VolPanel"=C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe [2006-12-06 180224]
"CTxfiHlp"=CTXFIHLP.EXE []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O&O Defrag Tray.lnk - C:\Windows\Installer\{07D8F982-2B93-4805-B15D-7569023A394D}\DefragIcon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-02-04 16:34:46 ----A---- C:\AdwCleaner[S2].txt
2013-02-04 16:34:37 ----A---- C:\AdwCleaner[S1].txt
2013-02-04 15:53:48 ----A---- C:\AdwCleaner[R2].txt
2013-02-04 15:25:53 ----A---- C:\AdwCleaner[R1].txt
2013-02-04 14:11:23 ----D---- C:\Program Files\Iarsn
2013-02-04 14:11:23 ----A---- C:\Windows\system32\drivers\Tsknf900.sys
2013-02-03 20:56:48 ----D---- C:\rsit
2013-02-03 20:56:48 ----D---- C:\Program Files\trend micro
2013-02-03 01:36:24 ----D---- C:\Users\Terazky\AppData\Roaming\WebcamMax
2013-02-03 01:36:24 ----D---- C:\ProgramData\WebcamMax
2013-02-03 01:35:14 ----D---- C:\Program Files (x86)\WebcamMax
2013-02-02 19:08:41 ----D---- C:\Users\Terazky\AppData\Roaming\dvdcss
2013-02-01 14:59:26 ----D---- C:\Program Files (x86)\YTD
2013-01-31 22:37:06 ----D---- C:\Users\Terazky\AppData\Roaming\Skype
2013-01-31 22:36:56 ----RD---- C:\Program Files (x86)\Skype
2013-01-31 22:36:47 ----D---- C:\ProgramData\Skype
2013-01-30 11:55:54 ----D---- C:\Windows\system32\oodag
2013-01-30 11:18:03 ----D---- C:\Program Files\OO Software
2013-01-30 11:17:34 ----D---- C:\ProgramData\OO Software
2013-01-30 01:23:03 ----D---- C:\ProgramData\Blizzard Entertainment
2013-01-30 01:21:01 ----D---- C:\ProgramData\Battle.net
2013-01-29 23:51:21 ----A---- C:\Windows\SYSWOW64\authuitu.dll
2013-01-29 23:51:21 ----A---- C:\Windows\system32\TURegOpt.exe
2013-01-29 23:51:21 ----A---- C:\Windows\system32\authuitu.dll
2013-01-29 23:50:55 ----D---- C:\Program Files (x86)\TuneUp Utilities 2012
2013-01-29 23:50:20 ----SHD---- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2013-01-29 23:00:55 ----D---- C:\ProgramData\Spybot - Search & Destroy
2013-01-29 22:55:38 ----D---- C:\Users\Terazky\AppData\Roaming\Malwarebytes
2013-01-29 22:55:25 ----D---- C:\ProgramData\Malwarebytes
2013-01-29 22:55:24 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-01-29 22:55:24 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-01-29 22:53:38 ----A---- C:\Windows\system32\drivers\stflt.sys
2013-01-29 19:14:29 ----D---- C:\Users\Terazky\AppData\Roaming\TuneUp Software
2013-01-29 19:13:26 ----D---- C:\ProgramData\TuneUp Software
2013-01-29 19:13:08 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2013-01-29 18:49:08 ----D---- C:\Users\Terazky\AppData\Roaming\vlc
2013-01-29 18:48:22 ----D---- C:\Program Files (x86)\VideoLAN
2013-01-29 18:36:35 ----D---- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
2013-01-29 18:33:16 ----D---- C:\Users\Terazky\AppData\Roaming\Ashampoo
2013-01-29 18:32:35 ----D---- C:\ProgramData\ashampoo
2013-01-29 18:32:14 ----D---- C:\Program Files (x86)\Ashampoo
2013-01-29 18:14:41 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-01-29 18:14:41 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-01-29 18:14:41 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-01-29 18:14:38 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-01-29 18:14:38 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-01-29 18:14:31 ----A---- C:\Windows\system32\wksprtPS.dll
2013-01-29 18:14:30 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-01-29 18:14:30 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-01-29 18:14:30 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-01-29 18:14:30 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-01-29 18:14:30 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-01-29 18:14:30 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-01-29 18:14:30 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-01-29 18:14:30 ----A---- C:\Windows\system32\tsgqec.dll
2013-01-29 18:14:30 ----A---- C:\Windows\system32\rdpudd.dll
2013-01-29 18:14:30 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-01-29 18:14:30 ----A---- C:\Windows\system32\aaclient.dll
2013-01-29 18:14:29 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-01-29 18:14:29 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-01-29 18:14:29 ----A---- C:\Windows\system32\wksprt.exe
2013-01-29 18:14:29 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-01-29 18:14:29 ----A---- C:\Windows\system32\rdpcorets.dll
2013-01-29 18:14:29 ----A---- C:\Windows\system32\mstsc.exe
2013-01-29 18:14:28 ----A---- C:\Windows\system32\mstscax.dll
2013-01-29 18:13:31 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-01-29 18:13:31 ----A---- C:\Windows\system32\qdvd.dll
2013-01-29 18:13:29 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-01-29 18:13:29 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-01-29 18:13:29 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-01-29 18:13:29 ----A---- C:\Windows\system32\schannel.dll
2013-01-29 18:13:29 ----A---- C:\Windows\system32\lsasrv.dll
2013-01-29 18:13:29 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-01-29 18:13:29 ----A---- C:\Windows\system32\drivers\cng.sys
2013-01-29 18:02:42 ----D---- C:\Program Files (x86)\uTorrent
2013-01-29 18:01:43 ----D---- C:\Users\Terazky\AppData\Roaming\uTorrent
2013-01-29 17:59:20 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-01-29 17:59:20 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-01-29 17:59:20 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-01-29 17:59:20 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-01-29 17:59:20 ----A---- C:\Windows\system32\nlasvc.dll
2013-01-29 17:59:20 ----A---- C:\Windows\system32\nlaapi.dll
2013-01-29 17:59:20 ----A---- C:\Windows\system32\netevent.dll
2013-01-29 17:59:20 ----A---- C:\Windows\system32\netcorehc.dll
2013-01-29 17:59:20 ----A---- C:\Windows\system32\ncsi.dll
2013-01-29 17:59:20 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-01-29 17:59:20 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-01-29 17:59:20 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-01-29 17:59:20 ----A---- C:\Windows\system32\drivers\netio.sys
2013-01-29 17:59:20 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-01-29 17:59:01 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-01-29 17:58:55 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-01-29 17:58:55 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-01-29 17:58:55 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-01-29 17:58:55 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-01-29 17:58:53 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-01-29 17:58:52 ----A---- C:\Windows\system32\taskhost.exe
2013-01-29 17:58:52 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-01-29 17:56:31 ----D---- C:\Program Files (x86)\Adobe
2013-01-29 17:55:27 ----D---- C:\ProgramData\Adobe
2013-01-29 17:11:34 ----D---- C:\Program Files\CCleaner
2013-01-29 17:11:15 ----D---- C:\Windows\system32\SPReview
2013-01-29 17:10:39 ----D---- C:\Windows\system32\EventProviders
2013-01-29 17:01:01 ----D---- C:\Program Files (x86)\ASIO4ALL v2
2013-01-29 17:00:31 ----A---- C:\Windows\system32\netfxperf.dll
2013-01-29 17:00:31 ----A---- C:\Windows\system32\dfshim.dll
2013-01-29 17:00:27 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2013-01-29 17:00:23 ----A---- C:\Windows\system32\d3d10warp.dll
2013-01-29 17:00:20 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-01-29 17:00:19 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2013-01-29 17:00:19 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2013-01-29 17:00:19 ----A---- C:\Windows\system32\tssrvlic.dll
2013-01-29 17:00:19 ----A---- C:\Windows\system32\sysmain.dll
2013-01-29 17:00:19 ----A---- C:\Windows\system32\RDVGHelper.exe
2013-01-29 17:00:18 ----A---- C:\Windows\SYSWOW64\pmcsnap.dll
2013-01-29 17:00:17 ----A---- C:\Windows\system32\MSVidCtl.dll
2013-01-29 17:00:15 ----A---- C:\Windows\system32\secproc_isv.dll
2013-01-29 17:00:15 ----A---- C:\Windows\system32\mscoree.dll
2013-01-29 17:00:15 ----A---- C:\Windows\system32\mmcndmgr.dll
2013-01-29 17:00:14 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2013-01-29 17:00:14 ----A---- C:\Windows\system32\xpsservices.dll
2013-01-29 17:00:14 ----A---- C:\Windows\system32\secproc.dll
2013-01-29 17:00:14 ----A---- C:\Windows\system32\RMActivate_isv.exe
2013-01-29 17:00:14 ----A---- C:\Windows\system32\RMActivate.exe
2013-01-29 17:00:14 ----A---- C:\Windows\system32\mf.dll
2013-01-29 17:00:13 ----A---- C:\Windows\SYSWOW64\secproc.dll
2013-01-29 17:00:13 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2013-01-29 17:00:13 ----A---- C:\Windows\system32\rpcrt4.dll
2013-01-29 17:00:12 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2013-01-29 17:00:12 ----A---- C:\Windows\SYSWOW64\PushPrinterConnections.exe
2013-01-29 17:00:12 ----A---- C:\Windows\SYSWOW64\ppcsnap.dll
2013-01-29 17:00:12 ----A---- C:\Windows\system32\schedsvc.dll
2013-01-29 17:00:12 ----A---- C:\Windows\system32\ole32.dll
2013-01-29 17:00:11 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2013-01-29 17:00:11 ----A---- C:\Windows\system32\spwizui.dll
2013-01-29 17:00:10 ----A---- C:\Windows\SYSWOW64\mf.dll
2013-01-29 17:00:10 ----A---- C:\Windows\system32\wevtsvc.dll
2013-01-29 17:00:10 ----A---- C:\Windows\system32\taskschd.dll
2013-01-29 17:00:10 ----A---- C:\Windows\system32\RacEngn.dll
2013-01-29 17:00:10 ----A---- C:\Windows\system32\ExplorerFrame.dll
2013-01-29 17:00:10 ----A---- C:\Windows\system32\diagperf.dll
2013-01-29 17:00:09 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2013-01-29 17:00:09 ----A---- C:\Windows\system32\vssapi.dll
2013-01-29 17:00:09 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2013-01-29 17:00:09 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2013-01-29 17:00:08 ----A---- C:\Windows\system32\UIRibbon.dll
2013-01-29 17:00:08 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2013-01-29 17:00:07 ----A---- C:\Windows\system32\WsmSvc.dll
2013-01-29 17:00:06 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2013-01-29 17:00:06 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2013-01-29 17:00:06 ----A---- C:\Windows\system32\WMVCORE.DLL
2013-01-29 17:00:06 ----A---- C:\Windows\system32\spreview.exe
2013-01-29 17:00:06 ----A---- C:\Windows\system32\rdpdd.dll
2013-01-29 17:00:06 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2013-01-29 17:00:06 ----A---- C:\Windows\system32\PresentationHost.exe
2013-01-29 17:00:06 ----A---- C:\Windows\system32\MPSSVC.dll
2013-01-29 17:00:05 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-01-29 17:00:05 ----A---- C:\Windows\system32\WinSAT.exe
2013-01-29 17:00:05 ----A---- C:\Windows\system32\spinstall.exe
2013-01-29 17:00:05 ----A---- C:\Windows\system32\d3d9.dll
2013-01-29 17:00:05 ----A---- C:\Windows\system32\CertEnroll.dll
2013-01-29 17:00:04 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2013-01-29 17:00:04 ----A---- C:\Windows\system32\SearchFolder.dll
2013-01-29 17:00:04 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-01-29 17:00:03 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2013-01-29 17:00:03 ----A---- C:\Windows\system32\VSSVC.exe
2013-01-29 17:00:03 ----A---- C:\Windows\system32\gpsvc.dll
2013-01-29 17:00:03 ----A---- C:\Windows\system32\dwmcore.dll
2013-01-29 17:00:03 ----A---- C:\Windows\system32\dbgeng.dll
2013-01-29 17:00:03 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2013-01-29 17:00:02 ----A---- C:\Windows\SYSWOW64\rdvgumd32.dll
2013-01-29 17:00:02 ----A---- C:\Windows\system32\drivers\http.sys
2013-01-29 17:00:01 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2013-01-29 17:00:00 ----A---- C:\Windows\SYSWOW64\ole32.dll
2013-01-29 17:00:00 ----A---- C:\Windows\system32\TSWorkspace.dll
2013-01-29 17:00:00 ----A---- C:\Windows\system32\qmgr.dll
2013-01-29 17:00:00 ----A---- C:\Windows\system32\audiosrv.dll
2013-01-29 17:00:00 ----A---- C:\Windows\system32\actxprxy.dll
2013-01-29 16:59:59 ----A---- C:\Windows\system32\termsrv.dll
2013-01-29 16:59:59 ----A---- C:\Windows\system32\netlogon.dll
2013-01-29 16:59:59 ----A---- C:\Windows\system32\imapi2fs.dll
2013-01-29 16:59:59 ----A---- C:\Windows\system32\gpprefcl.dll
2013-01-29 16:59:58 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2013-01-29 16:59:58 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2013-01-29 16:59:58 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2013-01-29 16:59:58 ----A---- C:\Windows\system32\winhttp.dll
2013-01-29 16:59:58 ----A---- C:\Windows\system32\QAGENTRT.DLL
2013-01-29 16:59:58 ----A---- C:\Windows\system32\propsys.dll
2013-01-29 16:59:58 ----A---- C:\Windows\system32\msv1_0.dll
2013-01-29 16:59:58 ----A---- C:\Windows\system32\d3d11.dll
2013-01-29 16:59:57 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2013-01-29 16:59:57 ----A---- C:\Windows\system32\werconcpl.dll
2013-01-29 16:59:57 ----A---- C:\Windows\system32\wbengine.exe
2013-01-29 16:59:57 ----A---- C:\Windows\system32\taskeng.exe
2013-01-29 16:59:57 ----A---- C:\Windows\system32\setupapi.dll
2013-01-29 16:59:57 ----A---- C:\Windows\system32\rpcss.dll
2013-01-29 16:59:57 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2013-01-29 16:59:57 ----A---- C:\Windows\system32\odbc32.dll
2013-01-29 16:59:57 ----A---- C:\Windows\system32\authui.dll
2013-01-29 16:59:56 ----A---- C:\Windows\system32\WSDApi.dll
2013-01-29 16:59:56 ----A---- C:\Windows\system32\user32.dll
2013-01-29 16:59:55 ----A---- C:\Windows\SYSWOW64\wer.dll
2013-01-29 16:59:55 ----A---- C:\Windows\SYSWOW64\certcli.dll
2013-01-29 16:59:55 ----A---- C:\Windows\system32\umrdp.dll
2013-01-29 16:59:55 ----A---- C:\Windows\system32\scavengeui.dll
2013-01-29 16:59:55 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2013-01-29 16:59:55 ----A---- C:\Windows\system32\LSCSHostPolicy.dll
2013-01-29 16:59:55 ----A---- C:\Windows\system32\drivers\tdx.sys
2013-01-29 16:59:55 ----A---- C:\Windows\system32\drivers\netbt.sys
2013-01-29 16:59:55 ----A---- C:\Windows\system32\dhcpcore.dll
2013-01-29 16:59:55 ----A---- C:\Windows\system32\certmgr.dll
2013-01-29 16:59:54 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2013-01-29 16:59:54 ----A---- C:\Windows\system32\tsmf.dll
2013-01-29 16:59:54 ----A---- C:\Windows\system32\shlwapi.dll
2013-01-29 16:59:54 ----A---- C:\Windows\system32\msdrm.dll
2013-01-29 16:59:53 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2013-01-29 16:59:53 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2013-01-29 16:59:53 ----A---- C:\Windows\system32\ws2_32.dll
2013-01-29 16:59:53 ----A---- C:\Windows\system32\wmicmiplugin.dll
2013-01-29 16:59:53 ----A---- C:\Windows\system32\winlogon.exe
2013-01-29 16:59:53 ----A---- C:\Windows\system32\rdpshell.exe
2013-01-29 16:59:53 ----A---- C:\Windows\system32\netshell.dll
2013-01-29 16:59:53 ----A---- C:\Windows\system32\netcfgx.dll
2013-01-29 16:59:53 ----A---- C:\Windows\system32\msdtctm.dll
2013-01-29 16:59:53 ----A---- C:\Windows\system32\framedynos.dll
2013-01-29 16:59:53 ----A---- C:\Windows\system32\appmgr.dll
2013-01-29 16:59:52 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2013-01-29 16:59:52 ----A---- C:\Windows\system32\mswsock.dll
2013-01-29 16:59:52 ----A---- C:\Windows\system32\lsm.exe
2013-01-29 16:59:52 ----A---- C:\Windows\system32\dxgi.dll
2013-01-29 16:59:52 ----A---- C:\Windows\system32\drivers\csc.sys
2013-01-29 16:59:52 ----A---- C:\Windows\system32\comdlg32.dll
2013-01-29 16:59:52 ----A---- C:\Windows\system32\apphelp.dll
2013-01-29 16:59:51 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2013-01-29 16:59:51 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2013-01-29 16:59:51 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2013-01-29 16:59:51 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2013-01-29 16:59:51 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2013-01-29 16:59:51 ----A---- C:\Windows\system32\wpdshext.dll
2013-01-29 16:59:51 ----A---- C:\Windows\system32\Vault.dll
2013-01-29 16:59:51 ----A---- C:\Windows\system32\Query.dll
2013-01-29 16:59:51 ----A---- C:\Windows\system32\QAGENT.DLL
2013-01-29 16:59:51 ----A---- C:\Windows\system32\drvstore.dll
2013-01-29 16:59:51 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-01-29 16:59:51 ----A---- C:\Windows\system32\cmd.exe
2013-01-29 16:59:51 ----A---- C:\Windows\system32\BFE.DLL
2013-01-29 16:59:51 ----A---- C:\Windows\system32\azroles.dll
2013-01-29 16:59:50 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2013-01-29 16:59:50 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2013-01-29 16:59:50 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2013-01-29 16:59:50 ----A---- C:\Windows\system32\samsrv.dll
2013-01-29 16:59:50 ----A---- C:\Windows\system32\lpksetup.exe
2013-01-29 16:59:50 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2013-01-29 16:59:49 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-01-29 16:59:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-01-29 16:59:49 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2013-01-29 16:59:49 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-01-29 16:59:49 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-01-29 16:59:49 ----A---- C:\Windows\system32\WebClnt.dll
2013-01-29 16:59:49 ----A---- C:\Windows\system32\rdpclip.exe
2013-01-29 16:59:49 ----A---- C:\Windows\system32\cscsvc.dll
2013-01-29 16:59:48 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2013-01-29 16:59:48 ----A---- C:\Windows\SYSWOW64\upnp.dll
2013-01-29 16:59:48 ----A---- C:\Windows\SYSWOW64\Query.dll
2013-01-29 16:59:48 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll
2013-01-29 16:59:48 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-01-29 16:59:48 ----A---- C:\Windows\system32\Wldap32.dll
2013-01-29 16:59:48 ----A---- C:\Windows\system32\taskcomp.dll
2013-01-29 16:59:48 ----A---- C:\Windows\system32\sxs.dll
2013-01-29 16:59:48 ----A---- C:\Windows\system32\mfds.dll
2013-01-29 16:59:48 ----A---- C:\Windows\system32\mcbuilder.exe
2013-01-29 16:59:48 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2013-01-29 16:59:48 ----A---- C:\Windows\system32\cscobj.dll
2013-01-29 16:59:47 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2013-01-29 16:59:47 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2013-01-29 16:59:47 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2013-01-29 16:59:47 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2013-01-29 16:59:47 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2013-01-29 16:59:47 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2013-01-29 16:59:47 ----A---- C:\Windows\system32\webservices.dll
2013-01-29 16:59:47 ----A---- C:\Windows\system32\SessEnv.dll
2013-01-29 16:59:47 ----A---- C:\Windows\system32\rdpendp.dll
2013-01-29 16:59:47 ----A---- C:\Windows\system32\pnidui.dll
2013-01-29 16:59:47 ----A---- C:\Windows\system32\ipsmsnap.dll
2013-01-29 16:59:47 ----A---- C:\Windows\system32\hgprint.dll
2013-01-29 16:59:46 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2013-01-29 16:59:46 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2013-01-29 16:59:46 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2013-01-29 16:59:46 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2013-01-29 16:59:46 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-01-29 16:59:46 ----A---- C:\Windows\system32\winsta.dll
2013-01-29 16:59:46 ----A---- C:\Windows\system32\sqlsrv32.dll
2013-01-29 16:59:46 ----A---- C:\Windows\system32\gdi32.dll
2013-01-29 16:59:46 ----A---- C:\Windows\system32\fveapi.dll
2013-01-29 16:59:46 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-01-29 16:59:46 ----A---- C:\Windows\system32\drivers\msrpc.sys
2013-01-29 16:59:46 ----A---- C:\Windows\system32\dot3api.dll
2013-01-29 16:59:45 ----A---- C:\Windows\SYSWOW64\userenv.dll
2013-01-29 16:59:45 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2013-01-29 16:59:45 ----A---- C:\Windows\system32\WMNetMgr.dll
2013-01-29 16:59:45 ----A---- C:\Windows\system32\wlanpref.dll
2013-01-29 16:59:45 ----A---- C:\Windows\system32\vpnike.dll
2013-01-29 16:59:45 ----A---- C:\Windows\system32\userenv.dll
2013-01-29 16:59:45 ----A---- C:\Windows\system32\schtasks.exe
2013-01-29 16:59:45 ----A---- C:\Windows\system32\prncache.dll
2013-01-29 16:59:45 ----A---- C:\Windows\system32\drivers\rdbss.sys
2013-01-29 16:59:44 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2013-01-29 16:59:44 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-01-29 16:59:44 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2013-01-29 16:59:44 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2013-01-29 16:59:44 ----A---- C:\Windows\system32\tspubwmi.dll
2013-01-29 16:59:44 ----A---- C:\Windows\system32\photowiz.dll
2013-01-29 16:59:44 ----A---- C:\Windows\system32\framedyn.dll
2013-01-29 16:59:44 ----A---- C:\Windows\system32\evr.dll
2013-01-29 16:59:44 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2013-01-29 16:59:43 ----A---- C:\Windows\SYSWOW64\cmd.exe
2013-01-29 16:59:43 ----A---- C:\Windows\system32\tscfgwmi.dll
2013-01-29 16:59:43 ----A---- C:\Windows\system32\SyncCenter.dll
2013-01-29 16:59:43 ----A---- C:\Windows\system32\srvsvc.dll
2013-01-29 16:59:43 ----A---- C:\Windows\system32\sppobjs.dll
2013-01-29 16:59:43 ----A---- C:\Windows\system32\shsvcs.dll
2013-01-29 16:59:43 ----A---- C:\Windows\system32\rdpinit.exe
2013-01-29 16:59:43 ----A---- C:\Windows\system32\mfreadwrite.dll
2013-01-29 16:59:43 ----A---- C:\Windows\system32\IPSECSVC.DLL
2013-01-29 16:59:43 ----A---- C:\Windows\system32\FXSSVC.exe
2013-01-29 16:59:43 ----A---- C:\Windows\system32\AudioSes.dll
2013-01-29 16:59:43 ----A---- C:\Windows\system32\aepdu.dll
2013-01-29 16:59:43 ----A---- C:\Windows\system32\aeinv.dll
2013-01-29 16:59:42 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2013-01-29 16:59:42 ----A---- C:\Windows\SYSWOW64\propsys.dll
2013-01-29 16:59:42 ----A---- C:\Windows\SYSWOW64\mfds.dll
2013-01-29 16:59:42 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2013-01-29 16:59:42 ----A---- C:\Windows\system32\WinSATAPI.dll
2013-01-29 16:59:42 ----A---- C:\Windows\system32\vmicsvc.exe
2013-01-29 16:59:42 ----A---- C:\Windows\system32\stobject.dll
2013-01-29 16:59:42 ----A---- C:\Windows\system32\imapi2.dll
2013-01-29 16:59:42 ----A---- C:\Windows\system32\fde.dll
2013-01-29 16:59:41 ----A---- C:\Windows\SYSWOW64\user32.dll
2013-01-29 16:59:41 ----A---- C:\Windows\SYSWOW64\rdpendp.dll
2013-01-29 16:59:41 ----A---- C:\Windows\SYSWOW64\azroles.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\tcpipcfg.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\spp.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\QSHVHOST.DLL
2013-01-29 16:59:41 ----A---- C:\Windows\system32\netid.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\netdiagfx.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\localsec.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\inetpp.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\drivers\vmbus.sys
2013-01-29 16:59:41 ----A---- C:\Windows\system32\drivers\udfs.sys
2013-01-29 16:59:41 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2013-01-29 16:59:41 ----A---- C:\Windows\system32\davclnt.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\cscui.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\credui.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\cdd.dll
2013-01-29 16:59:41 ----A---- C:\Windows\system32\bcryptprimitives.dll
2013-01-29 16:59:40 ----A---- C:\Windows\SYSWOW64\themeui.dll
2013-01-29 16:59:40 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-01-29 16:59:40 ----A---- C:\Windows\SYSWOW64\appmgr.dll
2013-01-29 16:59:40 ----A---- C:\Windows\system32\scansetting.dll
2013-01-29 16:59:40 ----A---- C:\Windows\system32\printui.dll
2013-01-29 16:59:40 ----A---- C:\Windows\system32\msinfo32.exe
2013-01-29 16:59:40 ----A---- C:\Windows\system32\biocpl.dll
2013-01-29 16:59:39 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2013-01-29 16:59:39 ----A---- C:\Windows\SYSWOW64\spp.dll
2013-01-29 16:59:39 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-01-29 16:59:39 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2013-01-29 16:59:39 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2013-01-29 16:59:39 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2013-01-29 16:59:39 ----A---- C:\Windows\system32\wusa.exe
2013-01-29 16:59:39 ----A---- C:\Windows\system32\wiaservc.dll
2013-01-29 16:59:39 ----A---- C:\Windows\system32\vds.exe
2013-01-29 16:59:39 ----A---- C:\Windows\system32\rpchttp.dll
2013-01-29 16:59:39 ----A---- C:\Windows\system32\pla.dll
2013-01-29 16:59:39 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2013-01-29 16:59:39 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2013-01-29 16:59:39 ----A---- C:\Windows\system32\drivers\pci.sys
2013-01-29 16:59:39 ----A---- C:\Windows\system32\aitagent.exe
2013-01-29 16:59:39 ----A---- C:\Windows\system32\AdmTmpl.dll
2013-01-29 16:59:38 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2013-01-29 16:59:38 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-01-29 16:59:38 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2013-01-29 16:59:38 ----A---- C:\Windows\system32\XpsRasterService.dll
2013-01-29 16:59:38 ----A---- C:\Windows\system32\wisptis.exe
2013-01-29 16:59:38 ----A---- C:\Windows\system32\PkgMgr.exe
2013-01-29 16:59:38 ----A---- C:\Windows\system32\mscms.dll
2013-01-29 16:59:38 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2013-01-29 16:59:38 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2013-01-29 16:59:37 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2013-01-29 16:59:37 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2013-01-29 16:59:37 ----A---- C:\Windows\SYSWOW64\evr.dll
2013-01-29 16:59:37 ----A---- C:\Windows\SYSWOW64\calc.exe
2013-01-29 16:59:37 ----A---- C:\Windows\system32\wpdbusenum.dll
2013-01-29 16:59:37 ----A---- C:\Windows\system32\sppwinob.dll
2013-01-29 16:59:37 ----A---- C:\Windows\system32\ocsetup.exe
2013-01-29 16:59:37 ----A---- C:\Windows\system32\ocsetapi.dll
2013-01-29 16:59:37 ----A---- C:\Windows\system32\eapp3hst.dll
2013-01-29 16:59:37 ----A---- C:\Windows\system32\DXP.dll
2013-01-29 16:59:37 ----A---- C:\Windows\system32\drivers\volmgr.sys
2013-01-29 16:59:37 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-01-29 16:59:37 ----A---- C:\Windows\system32\ci.dll
2013-01-29 16:59:36 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2013-01-29 16:59:36 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2013-01-29 16:59:36 ----A---- C:\Windows\system32\wcncsvc.dll
2013-01-29 16:59:36 ----A---- C:\Windows\system32\upnp.dll
2013-01-29 16:59:36 ----A---- C:\Windows\system32\t2embed.dll
2013-01-29 16:59:36 ----A---- C:\Windows\system32\Robocopy.exe
2013-01-29 16:59:36 ----A---- C:\Windows\system32\mprapi.dll
2013-01-29 16:59:36 ----A---- C:\Windows\system32\eapphost.dll
2013-01-29 16:59:36 ----A---- C:\Windows\system32\drivers\msdsm.sys
2013-01-29 16:59:36 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2013-01-29 16:59:35 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2013-01-29 16:59:35 ----A---- C:\Windows\SYSWOW64\sxs.dll
2013-01-29 16:59:35 ----A---- C:\Windows\SYSWOW64\stobject.dll
2013-01-29 16:59:35 ----A---- C:\Windows\SYSWOW64\netshell.dll
2013-01-29 16:59:35 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-01-29 16:59:35 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-01-29 16:59:35 ----A---- C:\Windows\system32\thumbcache.dll
2013-01-29 16:59:35 ----A---- C:\Windows\system32\scecli.dll
2013-01-29 16:59:35 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2013-01-29 16:59:35 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2013-01-29 16:59:35 ----A---- C:\Windows\system32\msasn1.dll
2013-01-29 16:59:35 ----A---- C:\Windows\system32\hal.dll
2013-01-29 16:59:35 ----A---- C:\Windows\system32\DxpTaskSync.dll
2013-01-29 16:59:35 ----A---- C:\Windows\system32\dwmredir.dll
2013-01-29 16:59:35 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-01-29 16:59:35 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2013-01-29 16:59:34 ----A---- C:\Windows\SYSWOW64\prncache.dll
2013-01-29 16:59:34 ----A---- C:\Windows\SYSWOW64\printui.dll
2013-01-29 16:59:34 ----A---- C:\Windows\system32\themeui.dll
2013-01-29 16:59:34 ----A---- C:\Windows\system32\scrptadm.dll
2013-01-29 16:59:34 ----A---- C:\Windows\system32\puiobj.dll
2013-01-29 16:59:34 ----A---- C:\Windows\system32\onex.dll
2013-01-29 16:59:34 ----A---- C:\Windows\system32\iasrad.dll
2013-01-29 16:59:34 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2013-01-29 16:59:34 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2013-01-29 16:59:33 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2013-01-29 16:59:33 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2013-01-29 16:59:33 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2013-01-29 16:59:33 ----A---- C:\Windows\SYSWOW64\net1.exe
2013-01-29 16:59:33 ----A---- C:\Windows\system32\wdc.dll
2013-01-29 16:59:32 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2013-01-29 16:59:32 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\wscapi.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\wlangpui.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\wiadefui.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\VAN.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\StructuredQuery.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\SndVol.exe
2013-01-29 16:59:32 ----A---- C:\Windows\system32\sdengin2.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\scesrv.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\samcli.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\rasmans.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\netcenter.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\msftedit.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\iasacct.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\dskquoui.dll
2013-01-29 16:59:32 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2013-01-29 16:59:31 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2013-01-29 16:59:31 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2013-01-29 16:59:31 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2013-01-29 16:59:31 ----A---- C:\Windows\SYSWOW64\webservices.dll
2013-01-29 16:59:31 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2013-01-29 16:59:31 ----A---- C:\Windows\SYSWOW64\scrptadm.dll
2013-01-29 16:59:31 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2013-01-29 16:59:31 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2013-01-29 16:59:31 ----A---- C:\Windows\SYSWOW64\fde.dll
2013-01-29 16:59:31 ----A---- C:\Windows\system32\TabSvc.dll
2013-01-29 16:59:31 ----A---- C:\Windows\system32\regapi.dll
2013-01-29 16:59:31 ----A---- C:\Windows\system32\QUTIL.DLL
2013-01-29 16:59:31 ----A---- C:\Windows\system32\drivers\termdd.sys
2013-01-29 16:59:31 ----A---- C:\Windows\system32\consent.exe
2013-01-29 16:59:30 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2013-01-29 16:59:30 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2013-01-29 16:59:30 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2013-01-29 16:59:30 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2013-01-29 16:59:30 ----A---- C:\Windows\system32\setupcl.exe
2013-01-29 16:59:30 ----A---- C:\Windows\system32\rastls.dll
2013-01-29 16:59:30 ----A---- C:\Windows\system32\drivers\msahci.sys
2013-01-29 16:59:30 ----A---- C:\Windows\system32\drivers\acpi.sys
2013-01-29 16:59:29 ----A---- C:\Windows\SYSWOW64\winsta.dll
2013-01-29 16:59:29 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2013-01-29 16:59:29 ----A---- C:\Windows\SYSWOW64\pla.dll
2013-01-29 16:59:29 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2013-01-29 16:59:29 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2013-01-29 16:59:29 ----A---- C:\Windows\SYSWOW64\cscobj.dll
2013-01-29 16:59:29 ----A---- C:\Windows\system32\tapisrv.dll
2013-01-29 16:59:29 ----A---- C:\Windows\system32\netiohlp.dll
2013-01-29 16:59:29 ----A---- C:\Windows\system32\msconfig.exe
2013-01-29 16:59:29 ----A---- C:\Windows\system32\mimefilt.dll
2013-01-29 16:59:29 ----A---- C:\Windows\system32\lsmproxy.dll
2013-01-29 16:59:29 ----A---- C:\Windows\system32\ListSvc.dll
2013-01-29 16:59:29 ----A---- C:\Windows\system32\hgcpl.dll
2013-01-29 16:59:29 ----A---- C:\Windows\system32\fdeploy.dll
2013-01-29 16:59:29 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2013-01-29 16:59:29 ----A---- C:\Windows\system32\drivers\raspptp.sys
2013-01-29 16:59:29 ----A---- C:\Windows\system32\drivers\ks.sys
2013-01-29 16:59:29 ----A---- C:\Windows\system32\clusapi.dll
2013-01-29 16:59:29 ----A---- C:\Windows\system32\basecsp.dll
2013-01-29 16:59:28 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2013-01-29 16:59:28 ----A---- C:\Windows\system32\riched20.dll
2013-01-29 16:59:28 ----A---- C:\Windows\system32\mtxclu.dll
2013-01-29 16:59:28 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2013-01-29 16:59:27 ----A---- C:\Windows\SYSWOW64\winmm.dll
2013-01-29 16:59:27 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2013-01-29 16:59:27 ----A---- C:\Windows\SYSWOW64\onex.dll
2013-01-29 16:59:27 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2013-01-29 16:59:27 ----A---- C:\Windows\system32\themecpl.dll
2013-01-29 16:59:27 ----A---- C:\Windows\system32\sharemediacpl.dll
2013-01-29 16:59:27 ----A---- C:\Windows\system32\RpcRtRemote.dll
2013-01-29 16:59:27 ----A---- C:\Windows\system32\powercpl.dll
2013-01-29 16:59:27 ----A---- C:\Windows\system32\nci.dll
2013-01-29 16:59:27 ----A---- C:\Windows\system32\logoncli.dll
2013-01-29 16:59:27 ----A---- C:\Windows\system32\eudcedit.exe
2013-01-29 16:59:27 ----A---- C:\Windows\system32\dnscmmc.dll
2013-01-29 16:59:26 ----A---- C:\Windows\SYSWOW64\samcli.dll
2013-01-29 16:59:26 ----A---- C:\Windows\SYSWOW64\proquota.exe
2013-01-29 16:59:26 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2013-01-29 16:59:26 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2013-01-29 16:59:26 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2013-01-29 16:59:26 ----A---- C:\Windows\SYSWOW64\autochk.exe
2013-01-29 16:59:26 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2013-01-29 16:59:26 ----A---- C:\Windows\system32\wkssvc.dll
2013-01-29 16:59:26 ----A---- C:\Windows\system32\vpnikeapi.dll
2013-01-29 16:59:26 ----A---- C:\Windows\system32\sppcomapi.dll
2013-01-29 16:59:26 ----A---- C:\Windows\system32\SensorsCpl.dll
2013-01-29 16:59:26 ----A---- C:\Windows\system32\netjoin.dll
2013-01-29 16:59:26 ----A---- C:\Windows\system32\Narrator.exe
2013-01-29 16:59:26 ----A---- C:\Windows\system32\Faultrep.dll
2013-01-29 16:59:26 ----A---- C:\Windows\system32\comctl32.dll
2013-01-29 16:59:26 ----A---- C:\Windows\system32\cabview.dll
2013-01-29 16:59:26 ----A---- C:\Windows\system32\autochk.exe
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\regapi.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\msutb.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2013-01-29 16:59:25 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2013-01-29 16:59:25 ----A---- C:\Windows\system32\wwanconn.dll
2013-01-29 16:59:25 ----A---- C:\Windows\system32\wpd_ci.dll
2013-01-29 16:59:25 ----A---- C:\Windows\system32\shsetup.dll
2013-01-29 16:59:25 ----A---- C:\Windows\system32\sdclt.exe
2013-01-29 16:59:25 ----A---- C:\Windows\system32\prntvpt.dll
2013-01-29 16:59:25 ----A---- C:\Windows\system32\nshipsec.dll
2013-01-29 16:59:25 ----A---- C:\Windows\system32\fms.dll
2013-01-29 16:59:25 ----A---- C:\Windows\system32\drivers\wanarp.sys
2013-01-29 16:59:25 ----A---- C:\Windows\system32\bcdsrv.dll
2013-01-29 16:59:25 ----A---- C:\Windows\system32\autofmt.exe
2013-01-29 16:59:25 ----A---- C:\Windows\system32\autoconv.exe
2013-01-29 16:59:25 ----A---- C:\Windows\system32\audiodg.exe
2013-01-29 16:59:24 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2013-01-29 16:59:24 ----A---- C:\Windows\SYSWOW64\netid.dll
2013-01-29 16:59:24 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2013-01-29 16:59:24 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2013-01-29 16:59:24 ----A---- C:\Windows\system32\wlanui.dll
2013-01-29 16:59:24 ----A---- C:\Windows\system32\SmiEngine.dll
2013-01-29 16:59:24 ----A---- C:\Windows\system32\rdpsign.exe
2013-01-29 16:59:24 ----A---- C:\Windows\system32\qedit.dll
2013-01-29 16:59:24 ----A---- C:\Windows\system32\mscorier.dll
2013-01-29 16:59:24 ----A---- C:\Windows\system32\mprddm.dll
2013-01-29 16:59:24 ----A---- C:\Windows\system32\fontext.dll
2013-01-29 16:59:24 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2013-01-29 16:59:24 ----A---- C:\Windows\system32\drivers\scsiport.sys
2013-01-29 16:59:24 ----A---- C:\Windows\system32\dps.dll
2013-01-29 16:59:24 ----A---- C:\Windows\system32\Display.dll
2013-01-29 16:59:24 ----A---- C:\Windows\system32\AxInstSv.dll
2013-01-29 16:59:23 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2013-01-29 16:59:23 ----A---- C:\Windows\SYSWOW64\wdc.dll
2013-01-29 16:59:23 ----A---- C:\Windows\SYSWOW64\Vault.dll
2013-01-29 16:59:23 ----A---- C:\Windows\SYSWOW64\untfs.dll
2013-01-29 16:59:23 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2013-01-29 16:59:23 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2013-01-29 16:59:23 ----A---- C:\Windows\SYSWOW64\rastls.dll
2013-01-29 16:59:23 ----A---- C:\Windows\SYSWOW64\nci.dll
2013-01-29 16:59:23 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2013-01-29 16:59:23 ----A---- C:\Windows\system32\mblctr.exe
2013-01-29 16:59:23 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-01-29 16:59:23 ----A---- C:\Windows\system32\DiagCpl.dll
2013-01-29 16:59:23 ----A---- C:\Windows\system32\credssp.dll
2013-01-29 16:59:23 ----A---- C:\Windows\system32\batmeter.dll
2013-01-29 16:59:22 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2013-01-29 16:59:22 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2013-01-29 16:59:22 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2013-01-29 16:59:22 ----A---- C:\Windows\system32\wpccpl.dll
2013-01-29 16:59:22 ----A---- C:\Windows\system32\usercpl.dll
2013-01-29 16:59:22 ----A---- C:\Windows\system32\rtutils.dll
2013-01-29 16:59:22 ----A---- C:\Windows\system32\provsvc.dll
2013-01-29 16:59:22 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2013-01-29 16:59:22 ----A---- C:\Windows\system32\bootres.dll
2013-01-29 16:59:21 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2013-01-29 16:59:21 ----A---- C:\Windows\SYSWOW64\userinit.exe
2013-01-29 16:59:21 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2013-01-29 16:59:21 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2013-01-29 16:59:21 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2013-01-29 16:59:21 ----A---- C:\Windows\SYSWOW64\Display.dll
2013-01-29 16:59:21 ----A---- C:\Windows\system32\sppsvc.exe
2013-01-29 16:59:21 ----A---- C:\Windows\system32\SndVolSSO.dll
2013-01-29 16:59:21 ----A---- C:\Windows\system32\shdocvw.dll
2013-01-29 16:59:21 ----A---- C:\Windows\system32\rasppp.dll
2013-01-29 16:59:21 ----A---- C:\Windows\system32\hbaapi.dll
2013-01-29 16:59:21 ----A---- C:\Windows\system32\dxdiagn.dll
2013-01-29 16:59:21 ----A---- C:\Windows\system32\drivers\winhv.sys
2013-01-29 16:59:21 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2013-01-29 16:59:21 ----A---- C:\Windows\system32\dot3cfg.dll
2013-01-29 16:59:20 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2013-01-29 16:59:20 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2013-01-29 16:59:20 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2013-01-29 16:59:20 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2013-01-29 16:59:20 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2013-01-29 16:59:20 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2013-01-29 16:59:20 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2013-01-29 16:59:20 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2013-01-29 16:59:20 ----A---- C:\Windows\system32\untfs.dll
2013-01-29 16:59:20 ----A---- C:\Windows\system32\taskmgr.exe
2013-01-29 16:59:20 ----A---- C:\Windows\system32\proquota.exe
2013-01-29 16:59:20 ----A---- C:\Windows\system32\prnfldr.dll
2013-01-29 16:59:20 ----A---- C:\Windows\system32\pdh.dll
2013-01-29 16:59:20 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2013-01-29 16:59:20 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2013-01-29 16:59:20 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2013-01-29 16:59:20 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-01-29 16:59:19 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2013-01-29 16:59:19 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2013-01-29 16:59:19 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2013-01-29 16:59:19 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-01-29 16:59:19 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2013-01-29 16:59:19 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2013-01-29 16:59:19 ----A---- C:\Windows\SYSWOW64\cabview.dll
2013-01-29 16:59:19 ----A---- C:\Windows\system32\userinit.exe
2013-01-29 16:59:19 ----A---- C:\Windows\system32\slui.exe
2013-01-29 16:59:19 ----A---- C:\Windows\system32\accessibilitycpl.dll
2013-01-29 16:59:18 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2013-01-29 16:59:18 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2013-01-29 16:59:18 ----A---- C:\Windows\system32\zipfldr.dll
2013-01-29 16:59:18 ----A---- C:\Windows\system32\msieftp.dll
2013-01-29 16:59:18 ----A---- C:\Windows\system32\drivers\storvsc.sys
2013-01-29 16:59:18 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2013-01-29 16:59:17 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2013-01-29 16:59:17 ----A---- C:\Windows\SYSWOW64\scecli.dll
2013-01-29 16:59:17 ----A---- C:\Windows\SYSWOW64\mscories.dll
2013-01-29 16:59:17 ----A---- C:\Windows\SYSWOW64\mscms.dll
2013-01-29 16:59:17 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2013-01-29 16:59:17 ----A---- C:\Windows\SYSWOW64\localsec.dll
2013-01-29 16:59:17 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2013-01-29 16:59:17 ----A---- C:\Windows\SYSWOW64\fontext.dll
2013-01-29 16:59:17 ----A---- C:\Windows\system32\sud.dll
2013-01-29 16:59:17 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2013-01-29 16:59:17 ----A---- C:\Windows\system32\networkmap.dll
2013-01-29 16:59:17 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-01-29 16:59:17 ----A---- C:\Windows\system32\dot3svc.dll
2013-01-29 16:59:17 ----A---- C:\Windows\system32\DeviceCenter.dll
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\VAN.dll
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\prntvpt.dll

Halen · #12 Příspěvek od **Halen** » 04 úno 2013 17:24

Pokračování.
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2013-01-29 16:59:16 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2013-01-29 16:59:16 ----A---- C:\Windows\system32\uxlib.dll
2013-01-29 16:59:16 ----A---- C:\Windows\system32\twext.dll
2013-01-29 16:59:16 ----A---- C:\Windows\system32\taskbarcpl.dll
2013-01-29 16:59:16 ----A---- C:\Windows\system32\recovery.dll
2013-01-29 16:59:16 ----A---- C:\Windows\system32\OobeFldr.dll
2013-01-29 16:59:16 ----A---- C:\Windows\system32\cryptui.dll
2013-01-29 16:59:16 ----A---- C:\Windows\system32\bcdedit.exe
2013-01-29 16:59:16 ----A---- C:\Windows\system32\azroleui.dll
2013-01-29 16:59:16 ----A---- C:\Windows\system32\ActionCenter.dll
2013-01-29 16:59:15 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2013-01-29 16:59:15 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2013-01-29 16:59:15 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2013-01-29 16:59:15 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2013-01-29 16:59:15 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2013-01-29 16:59:15 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\tzutil.exe
2013-01-29 16:59:15 ----A---- C:\Windows\system32\systemcpl.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\syncui.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\sisbkup.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\shwebsvc.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\sdcpl.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\recdisc.exe
2013-01-29 16:59:15 ----A---- C:\Windows\system32\netplwiz.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\isoburn.exe
2013-01-29 16:59:15 ----A---- C:\Windows\system32\httpapi.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\fvecpl.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\efscore.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\dsuiext.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\drivers\mpio.sys
2013-01-29 16:59:15 ----A---- C:\Windows\system32\cca.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\autoplay.dll
2013-01-29 16:59:15 ----A---- C:\Windows\system32\asycfilt.dll
2013-01-29 16:59:14 ----A---- C:\Windows\SYSWOW64\wusa.exe
2013-01-29 16:59:14 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2013-01-29 16:59:14 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2013-01-29 16:59:14 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2013-01-29 16:59:14 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2013-01-29 16:59:14 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2013-01-29 16:59:14 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2013-01-29 16:59:14 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2013-01-29 16:59:14 ----A---- C:\Windows\system32\wlanmsm.dll
2013-01-29 16:59:14 ----A---- C:\Windows\system32\sysclass.dll
2013-01-29 16:59:14 ----A---- C:\Windows\system32\sdrsvc.dll
2013-01-29 16:59:14 ----A---- C:\Windows\system32\ncryptui.dll
2013-01-29 16:59:14 ----A---- C:\Windows\system32\msvidc32.dll
2013-01-29 16:59:14 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2013-01-29 16:59:14 ----A---- C:\Windows\system32\certcli.dll
2013-01-29 16:59:14 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2013-01-29 16:59:14 ----A---- C:\Windows\system32\appinfo.dll
2013-01-29 16:59:14 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2013-01-29 16:59:13 ----A---- C:\Windows\SYSWOW64\sud.dll
2013-01-29 16:59:13 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2013-01-29 16:59:13 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2013-01-29 16:59:13 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-01-29 16:59:13 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2013-01-29 16:59:13 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2013-01-29 16:59:13 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2013-01-29 16:59:13 ----A---- C:\Windows\SYSWOW64\credssp.dll
2013-01-29 16:59:13 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2013-01-29 16:59:13 ----A---- C:\Windows\system32\vdsutil.dll
2013-01-29 16:59:13 ----A---- C:\Windows\system32\termmgr.dll
2013-01-29 16:59:13 ----A---- C:\Windows\system32\spwizeng.dll
2013-01-29 16:59:13 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-01-29 16:59:13 ----A---- C:\Windows\system32\sethc.exe
2013-01-29 16:59:13 ----A---- C:\Windows\system32\ReAgent.dll
2013-01-29 16:59:13 ----A---- C:\Windows\system32\ntlanman.dll
2013-01-29 16:59:13 ----A---- C:\Windows\system32\msscp.dll
2013-01-29 16:59:13 ----A---- C:\Windows\system32\MFPlay.dll
2013-01-29 16:59:12 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2013-01-29 16:59:12 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2013-01-29 16:59:12 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2013-01-29 16:59:12 ----A---- C:\Windows\SYSWOW64\ftp.exe
2013-01-29 16:59:12 ----A---- C:\Windows\SYSWOW64\efscore.dll
2013-01-29 16:59:12 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2013-01-29 16:59:12 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-01-29 16:59:12 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2013-01-29 16:59:12 ----A---- C:\Windows\system32\sqlcese30.dll
2013-01-29 16:59:12 ----A---- C:\Windows\system32\rdpd3d.dll
2013-01-29 16:59:12 ----A---- C:\Windows\system32\iprtrmgr.dll
2013-01-29 16:59:12 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2013-01-29 16:59:11 ----A---- C:\Windows\SYSWOW64\syncui.dll
2013-01-29 16:59:11 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2013-01-29 16:59:11 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2013-01-29 16:59:11 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2013-01-29 16:59:11 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2013-01-29 16:59:11 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2013-01-29 16:59:11 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2013-01-29 16:59:11 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2013-01-29 16:59:11 ----A---- C:\Windows\system32\wmdrmsdk.dll
2013-01-29 16:59:11 ----A---- C:\Windows\system32\wavemsp.dll
2013-01-29 16:59:11 ----A---- C:\Windows\system32\ssText3d.scr
2013-01-29 16:59:11 ----A---- C:\Windows\system32\srvcli.dll
2013-01-29 16:59:11 ----A---- C:\Windows\system32\slwga.dll
2013-01-29 16:59:11 ----A---- C:\Windows\system32\ntprint.dll
2013-01-29 16:59:11 ----A---- C:\Windows\system32\nslookup.exe
2013-01-29 16:59:11 ----A---- C:\Windows\system32\NAPHLPR.DLL
2013-01-29 16:59:11 ----A---- C:\Windows\system32\msiexec.exe
2013-01-29 16:59:11 ----A---- C:\Windows\system32\iyuv_32.dll
2013-01-29 16:59:11 ----A---- C:\Windows\system32\drmmgrtn.dll
2013-01-29 16:59:11 ----A---- C:\Windows\system32\drivers\vmstorfl.sys
2013-01-29 16:59:11 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2013-01-29 16:59:11 ----A---- C:\Windows\system32\acppage.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\sethc.exe
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\riched20.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\migisol.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\fms.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\dpx.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2013-01-29 16:59:10 ----A---- C:\Windows\SYSWOW64\activeds.dll
2013-01-29 16:59:10 ----A---- C:\Windows\system32\TSpkg.dll
2013-01-29 16:59:10 ----A---- C:\Windows\system32\srrstr.dll
2013-01-29 16:59:10 ----A---- C:\Windows\system32\sppnp.dll
2013-01-29 16:59:10 ----A---- C:\Windows\system32\networkexplorer.dll
2013-01-29 16:59:10 ----A---- C:\Windows\system32\certprop.dll
2013-01-29 16:59:10 ----A---- C:\Windows\system32\bcdboot.exe
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2013-01-29 16:59:09 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2013-01-29 16:59:09 ----A---- C:\Windows\system32\wsnmp32.dll
2013-01-29 16:59:09 ----A---- C:\Windows\system32\wkscli.dll
2013-01-29 16:59:09 ----A---- C:\Windows\system32\WinSCard.dll
2013-01-29 16:59:09 ----A---- C:\Windows\system32\remotepg.dll
2013-01-29 16:59:09 ----A---- C:\Windows\system32\PresentationSettings.exe
2013-01-29 16:59:09 ----A---- C:\Windows\system32\net1.exe
2013-01-29 16:59:09 ----A---- C:\Windows\system32\ftp.exe
2013-01-29 16:59:09 ----A---- C:\Windows\system32\dfrgui.exe
2013-01-29 16:59:09 ----A---- C:\Windows\system32\cabinet.dll
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\wvc.dll
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\twext.dll
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\mstask.dll
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2013-01-29 16:59:08 ----A---- C:\Windows\SYSWOW64\AdmTmpl.dll
2013-01-29 16:59:08 ----A---- C:\Windows\system32\wvc.dll
2013-01-29 16:59:08 ----A---- C:\Windows\system32\wsqmcons.exe
2013-01-29 16:59:08 ----A---- C:\Windows\system32\wmdrmdev.dll
2013-01-29 16:59:08 ----A---- C:\Windows\system32\WerFaultSecure.exe
2013-01-29 16:59:08 ----A---- C:\Windows\system32\msyuv.dll
2013-01-29 16:59:08 ----A---- C:\Windows\system32\mfps.dll
2013-01-29 16:59:08 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-01-29 16:59:08 ----A---- C:\Windows\system32\blackbox.dll
2013-01-29 16:59:07 ----A---- C:\Windows\twain_32.dll
2013-01-29 16:59:07 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2013-01-29 16:59:07 ----A---- C:\Windows\SYSWOW64\ssText3d.scr
2013-01-29 16:59:07 ----A---- C:\Windows\SYSWOW64\slwga.dll
2013-01-29 16:59:07 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-01-29 16:59:07 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2013-01-29 16:59:07 ----A---- C:\Windows\SYSWOW64\qcap.dll
2013-01-29 16:59:07 ----A---- C:\Windows\SYSWOW64\qasf.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\unimdmat.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\tsbyuv.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\seclogon.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\Ribbons.scr
2013-01-29 16:59:07 ----A---- C:\Windows\system32\OpcServices.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\Mystify.scr
2013-01-29 16:59:07 ----A---- C:\Windows\system32\msrle32.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\mapistub.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\mapi32.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\iscsium.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\ifsutil.dll
2013-01-29 16:59:07 ----A---- C:\Windows\system32\diskraid.exe
2013-01-29 16:59:07 ----A---- C:\Windows\system32\Bubbles.scr
2013-01-29 16:59:06 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2013-01-29 16:59:06 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2013-01-29 16:59:06 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2013-01-29 16:59:06 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2013-01-29 16:59:06 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2013-01-29 16:59:06 ----A---- C:\Windows\system32\muifontsetup.dll
2013-01-29 16:59:06 ----A---- C:\Windows\system32\drivers\umbus.sys
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\raschap.dll
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\msscp.dll
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2013-01-29 16:59:05 ----A---- C:\Windows\SYSWOW64\acppage.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2013-01-29 16:59:05 ----A---- C:\Windows\system32\umb.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\tlscsp.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\runonce.exe
2013-01-29 16:59:05 ----A---- C:\Windows\system32\rdpencom.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\raschap.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\qasf.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\perfmon.exe
2013-01-29 16:59:05 ----A---- C:\Windows\system32\netutils.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2013-01-29 16:59:05 ----A---- C:\Windows\system32\FXSAPI.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\dbghelp.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\AzSqlExt.dll
2013-01-29 16:59:05 ----A---- C:\Windows\system32\ActionQueue.dll
2013-01-29 16:59:05 ----A---- C:\Windows\bfsvc.exe
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\runonce.exe
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\onexui.dll
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\input.dll
2013-01-29 16:59:04 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2013-01-29 16:59:04 ----A---- C:\Windows\system32\wpdwcn.dll
2013-01-29 16:59:04 ----A---- C:\Windows\system32\WMVSDECD.DLL
2013-01-29 16:59:04 ----A---- C:\Windows\system32\WMADMOD.DLL
2013-01-29 16:59:04 ----A---- C:\Windows\system32\wiavideo.dll
2013-01-29 16:59:04 ----A---- C:\Windows\system32\vdsbas.dll
2013-01-29 16:59:04 ----A---- C:\Windows\system32\syssetup.dll
2013-01-29 16:59:04 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2013-01-29 16:59:04 ----A---- C:\Windows\system32\MdSched.exe
2013-01-29 16:59:03 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2013-01-29 16:59:03 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2013-01-29 16:59:03 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2013-01-29 16:59:03 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2013-01-29 16:59:03 ----A---- C:\Windows\SYSWOW64\logagent.exe
2013-01-29 16:59:03 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2013-01-29 16:59:03 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2013-01-29 16:59:03 ----A---- C:\Windows\system32\vss_ps.dll
2013-01-29 16:59:03 ----A---- C:\Windows\system32\tabcal.exe
2013-01-29 16:59:03 ----A---- C:\Windows\system32\shacct.dll
2013-01-29 16:59:03 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2013-01-29 16:59:03 ----A---- C:\Windows\system32\nltest.exe
2013-01-29 16:59:03 ----A---- C:\Windows\system32\mstask.dll
2013-01-29 16:59:03 ----A---- C:\Windows\system32\drivers\rmcast.sys
2013-01-29 16:59:03 ----A---- C:\Windows\system32\cscapi.dll
2013-01-29 16:59:03 ----A---- C:\Windows\system32\bitsadmin.exe
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\shacct.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\pdh.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\Bubbles.scr
2013-01-29 16:59:02 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2013-01-29 16:59:02 ----A---- C:\Windows\system32\WPDSp.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2013-01-29 16:59:02 ----A---- C:\Windows\system32\wmdrmnet.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\vmictimeprovider.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\spbcd.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\secproc_ssp.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\qdv.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\qcap.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\msnetobj.dll
2013-01-29 16:59:02 ----A---- C:\Windows\system32\logman.exe
2013-01-29 16:59:02 ----A---- C:\Windows\system32\CscMig.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\utildll.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\takeown.exe
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\Ribbons.scr
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\Mystify.scr
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\logman.exe
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\fphc.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2013-01-29 16:59:01 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2013-01-29 16:59:01 ----A---- C:\Windows\system32\WMPhoto.dll
2013-01-29 16:59:01 ----A---- C:\Windows\system32\takeown.exe
2013-01-29 16:59:01 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2013-01-29 16:59:01 ----A---- C:\Windows\system32\PnPUnattend.exe
2013-01-29 16:59:01 ----A---- C:\Windows\system32\fphc.dll
2013-01-29 16:59:01 ----A---- C:\Windows\system32\EhStorAPI.dll
2013-01-29 16:59:01 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2013-01-29 16:59:01 ----A---- C:\Windows\system32\dot3ui.dll
2013-01-29 16:59:01 ----A---- C:\Windows\system32\amstream.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\qdv.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2013-01-29 16:59:00 ----A---- C:\Windows\SYSWOW64\cca.dll
2013-01-29 16:59:00 ----A---- C:\Windows\system32\WavDest.dll
2013-01-29 16:59:00 ----A---- C:\Windows\system32\vfwwdm32.dll
2013-01-29 16:59:00 ----A---- C:\Windows\system32\shimgvw.dll
2013-01-29 16:59:00 ----A---- C:\Windows\system32\QCLIPROV.DLL
2013-01-29 16:59:00 ----A---- C:\Windows\system32\nrpsrv.dll
2013-01-29 16:59:00 ----A---- C:\Windows\system32\KMSVC.DLL
2013-01-29 16:59:00 ----A---- C:\Windows\system32\iasrecst.dll
2013-01-29 16:59:00 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2013-01-29 16:59:00 ----A---- C:\Windows\system32\fdProxy.dll
2013-01-29 16:59:00 ----A---- C:\Windows\system32\drivers\pacer.sys
2013-01-29 16:59:00 ----A---- C:\Windows\system32\djoin.exe
2013-01-29 16:59:00 ----A---- C:\Windows\system32\cmstp.exe
2013-01-29 16:59:00 ----A---- C:\Windows\system32\CertPolEng.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\relog.exe
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2013-01-29 16:58:59 ----A---- C:\Windows\SYSWOW64\amstream.dll
2013-01-29 16:58:59 ----A---- C:\Windows\system32\sscore.dll
2013-01-29 16:58:59 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2013-01-29 16:58:59 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2013-01-29 16:58:59 ----A---- C:\Windows\system32\relog.exe
2013-01-29 16:58:59 ----A---- C:\Windows\system32\mydocs.dll
2013-01-29 16:58:59 ----A---- C:\Windows\system32\MultiDigiMon.exe
2013-01-29 16:58:59 ----A---- C:\Windows\system32\msdmo.dll
2013-01-29 16:58:59 ----A---- C:\Windows\system32\mobsync.exe
2013-01-29 16:58:59 ----A---- C:\Windows\system32\itircl.dll
2013-01-29 16:58:59 ----A---- C:\Windows\system32\iscsicli.exe
2013-01-29 16:58:59 ----A---- C:\Windows\system32\dot3msm.dll
2013-01-29 16:58:59 ----A---- C:\Windows\system32\diskpart.exe
2013-01-29 16:58:59 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2013-01-29 16:58:59 ----A---- C:\Windows\system32\BdeHdCfg.exe
2013-01-29 16:58:58 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2013-01-29 16:58:58 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2013-01-29 16:58:58 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2013-01-29 16:58:58 ----A---- C:\Windows\SYSWOW64\resutils.dll
2013-01-29 16:58:58 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2013-01-29 16:58:58 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2013-01-29 16:58:58 ----A---- C:\Windows\SYSWOW64\itircl.dll
2013-01-29 16:58:58 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\netutils.dll
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\findstr.exe
2013-01-29 16:58:57 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2013-01-29 16:58:57 ----A---- C:\Windows\system32\sppc.dll
2013-01-29 16:58:57 ----A---- C:\Windows\system32\qprocess.exe
2013-01-29 16:58:57 ----A---- C:\Windows\system32\onexui.dll
2013-01-29 16:58:57 ----A---- C:\Windows\system32\mciqtz32.dll
2013-01-29 16:58:57 ----A---- C:\Windows\system32\luainstall.dll
2013-01-29 16:58:57 ----A---- C:\Windows\system32\choice.exe
2013-01-29 16:58:57 ----A---- C:\Windows\system32\chglogon.exe
2013-01-29 16:58:57 ----A---- C:\Windows\system32\FXSTIFF.dll
2013-01-29 16:58:57 ----A---- C:\Windows\system32\findstr.exe
2013-01-29 16:58:57 ----A---- C:\Windows\system32\eappgnui.dll
2013-01-29 16:58:57 ----A---- C:\Windows\system32\drivers\tunnel.sys
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\sppc.dll
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\spopk.dll
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2013-01-29 16:58:56 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2013-01-29 16:58:56 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2013-01-29 16:58:56 ----A---- C:\Windows\system32\vmstorfltres.dll
2013-01-29 16:58:56 ----A---- C:\Windows\system32\vmicres.dll
2013-01-29 16:58:56 ----A---- C:\Windows\system32\tsdiscon.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\tscon.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\spopk.dll
2013-01-29 16:58:56 ----A---- C:\Windows\system32\schedcli.dll
2013-01-29 16:58:56 ----A---- C:\Windows\system32\rwinsta.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\repair-bde.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\RDPENCDD.dll
2013-01-29 16:58:56 ----A---- C:\Windows\system32\qappsrv.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\odbcconf.dll
2013-01-29 16:58:56 ----A---- C:\Windows\system32\manage-bde.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\logoff.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\inetmib1.dll
2013-01-29 16:58:56 ----A---- C:\Windows\system32\chgusr.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\chgport.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\fixmapi.exe
2013-01-29 16:58:56 ----A---- C:\Windows\system32\drivers\dfsc.sys
2013-01-29 16:58:55 ----A---- C:\Windows\SYSWOW64\wups.dll
2013-01-29 16:58:55 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2013-01-29 16:58:55 ----A---- C:\Windows\SYSWOW64\perfts.dll
2013-01-29 16:58:55 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2013-01-29 16:58:55 ----A---- C:\Windows\SYSWOW64\imm32.dll
2013-01-29 16:58:55 ----A---- C:\Windows\system32\wshbth.dll
2013-01-29 16:58:55 ----A---- C:\Windows\system32\vmbusres.dll
2013-01-29 16:58:55 ----A---- C:\Windows\system32\UIRibbonRes.dll
2013-01-29 16:58:55 ----A---- C:\Windows\system32\tskill.exe
2013-01-29 16:58:55 ----A---- C:\Windows\system32\TRAPI.dll
2013-01-29 16:58:55 ----A---- C:\Windows\system32\shadow.exe
2013-01-29 16:58:55 ----A---- C:\Windows\system32\LogonUI.exe
2013-01-29 16:58:55 ----A---- C:\Windows\system32\FXSMON.dll
2013-01-29 16:58:55 ----A---- C:\Windows\system32\elsTrans.dll
2013-01-29 16:58:55 ----A---- C:\Windows\system32\drivers\tdi.sys
2013-01-29 16:58:54 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2013-01-29 16:58:54 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2013-01-29 16:58:54 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2013-01-29 16:58:54 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2013-01-29 16:58:54 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2013-01-29 16:58:54 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2013-01-29 16:58:54 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2013-01-29 16:58:54 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2013-01-29 16:58:54 ----A---- C:\Windows\system32\reset.exe
2013-01-29 16:58:54 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2013-01-29 16:58:54 ----A---- C:\Windows\system32\query.exe
2013-01-29 16:58:54 ----A---- C:\Windows\system32\napdsnap.dll
2013-01-29 16:58:54 ----A---- C:\Windows\system32\change.exe
2013-01-29 16:58:54 ----A---- C:\Windows\system32\FXSUNATD.exe
2013-01-29 16:58:54 ----A---- C:\Windows\system32\dsauth.dll
2013-01-29 16:58:54 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2013-01-29 16:58:54 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2013-01-29 16:58:54 ----A---- C:\Windows\system32\cscdll.dll
2013-01-29 16:58:54 ----A---- C:\Windows\system32\bitsperf.dll
2013-01-29 16:58:53 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2013-01-29 16:58:53 ----A---- C:\Windows\SYSWOW64\sscore.dll
2013-01-29 16:58:53 ----A---- C:\Windows\system32\wsdchngr.dll
2013-01-29 16:58:53 ----A---- C:\Windows\system32\shgina.dll
2013-01-29 16:58:52 ----A---- C:\Windows\SYSWOW64\shgina.dll
2013-01-29 16:58:52 ----A---- C:\Windows\SYSWOW64\riched32.dll
2013-01-29 16:58:52 ----A---- C:\Windows\system32\wshirda.dll
2013-01-29 16:58:52 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2013-01-29 16:58:52 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2013-01-29 16:58:51 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2013-01-29 16:58:51 ----A---- C:\Windows\SYSWOW64\browseui.dll
2013-01-29 16:58:51 ----A---- C:\Windows\system32\vmbuspipe.dll
2013-01-29 16:58:51 ----A---- C:\Windows\system32\VmbusCoinstaller.dll
2013-01-29 16:58:51 ----A---- C:\Windows\system32\riched32.dll
2013-01-29 16:58:51 ----A---- C:\Windows\system32\rdpcfgex.dll
2013-01-29 16:58:51 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2013-01-29 16:58:51 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2013-01-29 16:58:51 ----A---- C:\Windows\system32\drivers\hidusb.sys
2013-01-29 16:58:51 ----A---- C:\Windows\system32\drivers\appid.sys
2013-01-29 16:58:51 ----A---- C:\Windows\system32\C_ISCII.DLL
2013-01-29 16:58:51 ----A---- C:\Windows\system32\browseui.dll
2013-01-29 16:58:50 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2013-01-29 16:58:50 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2013-01-29 16:58:50 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2013-01-29 16:58:50 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2013-01-29 16:58:50 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2013-01-29 16:58:50 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2013-01-29 16:58:50 ----A---- C:\Windows\system32\VmdCoinstall.dll
2013-01-29 16:58:50 ----A---- C:\Windows\system32\shunimpl.dll
2013-01-29 16:58:50 ----A---- C:\Windows\system32\KBDTUF.DLL
2013-01-29 16:58:50 ----A---- C:\Windows\system32\KBDSF.DLL
2013-01-29 16:58:50 ----A---- C:\Windows\system32\KBDPO.DLL
2013-01-29 16:58:50 ----A---- C:\Windows\system32\KBDINTAM.DLL
2013-01-29 16:58:50 ----A---- C:\Windows\system32\IcCoinstall.dll
2013-01-29 16:58:50 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2013-01-29 16:58:50 ----A---- C:\Windows\system32\drivers\scfilter.sys
2013-01-29 16:58:50 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2013-01-29 16:58:50 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2013-01-29 16:58:50 ----A---- C:\Windows\system32\drivers\cdrom.sys
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDUS.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDTUQ.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDSG.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDNEPR.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDMON.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\kbdlk41a.dll
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDINBEN.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDGR1.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDGKL.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDGEO.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\KBDCZ1.DLL
2013-01-29 16:58:49 ----A---- C:\Windows\system32\drivers\vms3cap.sys
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\spwizres.dll
2013-01-29 16:58:48 ----A---- C:\Windows\system32\pifmgr.dll
2013-01-29 16:58:48 ----A---- C:\Windows\system32\nlsbres.dll
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDTURME.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDMAORI.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDLT1.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDINTEL.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDINORI.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDINMAR.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDINKAN.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDINHIN.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDBULG.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDBLR.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\KBDBASH.DLL
2013-01-29 16:58:48 ----A---- C:\Windows\system32\drivers\VMBusHID.sys
2013-01-29 16:58:48 ----A---- C:\Windows\system32\BlbEvents.dll
2013-01-29 16:58:37 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2013-01-29 16:58:37 ----A---- C:\Windows\system32\dpx.dll
2013-01-29 16:58:34 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2013-01-29 16:58:34 ----A---- C:\Windows\SYSWOW64\printmanagement.msc
2013-01-29 16:58:32 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2013-01-29 16:58:15 ----A---- C:\Windows\system32\wbemcomn.dll
2013-01-29 16:58:14 ----A---- C:\Windows\system32\sqmapi.dll
2013-01-29 16:41:16 ----D---- C:\Users\Terazky\AppData\Roaming\foobar2000
2013-01-29 16:41:11 ----D---- C:\Program Files (x86)\foobar2000
2013-01-29 16:37:37 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-01-29 16:37:37 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-01-29 16:37:37 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-01-29 16:37:37 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-01-29 16:37:37 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-01-29 16:37:37 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-01-29 16:37:37 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-01-29 16:37:32 ----A---- C:\Windows\SYSWOW64\esent.dll
2013-01-29 16:37:32 ----A---- C:\Windows\system32\esent.dll
2013-01-29 16:37:31 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2013-01-29 16:37:31 ----A---- C:\Windows\system32\fsutil.exe
2013-01-29 16:37:31 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2013-01-29 16:37:31 ----A---- C:\Windows\system32\drivers\storport.sys
2013-01-29 16:37:31 ----A---- C:\Windows\system32\drivers\nvstor.sys
2013-01-29 16:37:31 ----A---- C:\Windows\system32\drivers\nvraid.sys
2013-01-29 16:37:31 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2013-01-29 16:37:31 ----A---- C:\Windows\system32\drivers\amdxata.sys
2013-01-29 16:37:31 ----A---- C:\Windows\system32\drivers\amdsata.sys
2013-01-29 16:26:35 ----D---- C:\Program Files (x86)\Microsoft.NET
2013-01-29 16:05:10 ----D---- C:\Program Files (x86)\SpeedFan
2013-01-29 16:03:14 ----D---- C:\Program Files\PeerBlock
2013-01-29 15:51:08 ----D---- C:\Windows\SYSWOW64\Wat
2013-01-29 15:51:08 ----D---- C:\Windows\system32\Wat
2013-01-29 15:50:32 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-01-29 15:50:32 ----A---- C:\Windows\system32\FntCache.dll
2013-01-29 15:50:32 ----A---- C:\Windows\system32\d2d1.dll
2013-01-29 15:48:48 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-01-29 15:16:44 ----D---- C:\Program Files (x86)\IrfanView
2013-01-29 15:15:52 ----A---- C:\Windows\system32\Wdfres.dll
2013-01-29 15:15:52 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-01-29 15:15:52 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-01-29 15:14:59 ----A---- C:\Windows\system32\MRT.exe
2013-01-29 15:05:34 ----A---- C:\Windows\system32\browserchoice.exe
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\url.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-01-29 15:03:16 ----A---- C:\Windows\SYSWOW64\admparse.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\wininet.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\urlmon.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-01-29 15:03:16 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-01-29 15:03:16 ----A---- C:\Windows\system32\pngfilt.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\occache.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\msrating.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\msls31.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\mshtmler.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\mshtml.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\mshta.exe
2013-01-29 15:03:16 ----A---- C:\Windows\system32\msfeedssync.exe
2013-01-29 15:03:16 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\jsproxy.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\jscript9.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\jscript.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\imgutil.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\ieUnatt.exe
2013-01-29 15:03:16 ----A---- C:\Windows\system32\ieui.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\iesysprep.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\iertutil.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\iepeers.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\ieframe.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\ieakui.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\ieaksie.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\ieakeng.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-01-29 15:03:16 ----A---- C:\Windows\system32\admparse.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\wextract.exe
2013-01-29 15:03:15 ----A---- C:\Windows\system32\webcheck.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\vbscript.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\url.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\mshtmled.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\licmgr10.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\inseng.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\iexpress.exe
2013-01-29 15:03:15 ----A---- C:\Windows\system32\iesetup.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\iernonce.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\iedkcs32.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\ieapfltr.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\ieapfltr.dat
2013-01-29 15:03:15 ----A---- C:\Windows\system32\ie4uinit.exe
2013-01-29 15:03:15 ----A---- C:\Windows\system32\icardie.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\dxtrans.dll
2013-01-29 15:03:15 ----A---- C:\Windows\system32\dxtmsft.dll
2013-01-29 14:56:33 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-01-29 14:56:33 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-01-29 14:56:33 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-01-29 14:56:33 ----A---- C:\Windows\system32\fontsub.dll
2013-01-29 14:56:33 ----A---- C:\Windows\system32\atmlib.dll
2013-01-29 14:56:33 ----A---- C:\Windows\system32\atmfd.dll
2013-01-29 14:55:52 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-01-29 14:55:52 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-01-29 14:55:52 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-01-29 14:55:52 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-01-29 14:55:51 ----A---- C:\Windows\system32\WUDFx.dll
2013-01-29 14:55:51 ----A---- C:\Windows\system32\WUDFHost.exe
2013-01-29 14:55:51 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-01-29 14:53:13 ----A---- C:\Windows\SYSWOW64\wmi.dll
2013-01-29 14:53:13 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-01-29 14:53:13 ----A---- C:\Windows\system32\wmi.dll
2013-01-29 14:53:13 ----A---- C:\Windows\system32\imagehlp.dll
2013-01-29 14:53:13 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2013-01-29 14:49:24 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-01-29 14:49:24 ----A---- C:\Windows\system32\Wpc.dll
2013-01-29 14:49:24 ----A---- C:\Windows\system32\gameux.dll
2013-01-29 14:49:23 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-01-29 14:49:14 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-01-29 14:49:14 ----A---- C:\Windows\system32\wow64win.dll
2013-01-29 14:49:14 ----A---- C:\Windows\system32\KernelBase.dll
2013-01-29 14:49:14 ----A---- C:\Windows\system32\kernel32.dll
2013-01-29 14:49:13 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-01-29 14:49:13 ----A---- C:\Windows\system32\wow64.dll
2013-01-29 14:49:13 ----A---- C:\Windows\system32\winsrv.dll
2013-01-29 14:49:13 ----A---- C:\Windows\system32\conhost.exe
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-29 14:49:12 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-01-29 14:49:12 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-01-29 14:49:12 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-01-29 14:49:12 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-01-29 14:49:12 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-01-29 14:49:12 ----A---- C:\Windows\system32\wow64cpu.dll
2013-01-29 14:49:12 ----A---- C:\Windows\system32\ntvdm64.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-01-29 14:49:11 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-01-29 14:49:11 ----A---- C:\Windows\SYSWOW64\user.exe
2013-01-29 14:48:34 ----A---- C:\Windows\system32\shell32.dll
2013-01-29 14:48:33 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-01-29 14:48:23 ----A---- C:\Windows\system32\DWrite.dll
2013-01-29 14:48:22 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-01-29 14:48:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-01-29 14:48:16 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-01-29 14:48:15 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-01-29 14:48:04 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2013-01-29 14:48:04 ----A---- C:\Windows\system32\ntshrui.dll
2013-01-29 14:48:00 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2013-01-29 14:48:00 ----A---- C:\Windows\system32\CPFilters.dll
2013-01-29 14:47:59 ----A---- C:\Windows\SYSWOW64\sbe.dll
2013-01-29 14:47:59 ----A---- C:\Windows\system32\sbe.dll
2013-01-29 14:47:32 ----A---- C:\Windows\system32\rdpcore.dll
2013-01-29 14:47:31 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2013-01-29 14:47:31 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2013-01-29 14:47:29 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2013-01-29 14:47:29 ----A---- C:\Windows\system32\poqexec.exe
2013-01-29 14:47:27 ----A---- C:\Windows\system32\sspisrv.dll
2013-01-29 14:47:27 ----A---- C:\Windows\system32\sspicli.dll
2013-01-29 14:47:27 ----A---- C:\Windows\system32\secur32.dll
2013-01-29 14:47:27 ----A---- C:\Windows\system32\lsass.exe
2013-01-29 14:47:27 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-01-29 14:47:24 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-01-29 14:47:24 ----A---- C:\Windows\system32\XpsPrint.dll
2013-01-29 14:47:22 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-01-29 14:47:22 ----A---- C:\Windows\system32\win32spl.dll
2013-01-29 14:47:21 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-01-29 14:47:21 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-01-29 14:47:21 ----A---- C:\Windows\system32\drivers\srv.sys
2013-01-29 14:47:20 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-01-29 14:47:18 ----A---- C:\Windows\SYSWOW64\webio.dll
2013-01-29 14:47:18 ----A---- C:\Windows\system32\webio.dll
2013-01-29 14:47:17 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2013-01-29 14:47:14 ----A---- C:\Windows\system32\msxml3.dll
2013-01-29 14:47:13 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-01-29 14:47:13 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2013-01-29 14:47:13 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-01-29 14:47:13 ----A---- C:\Windows\system32\msxml6.dll
2013-01-29 14:47:13 ----A---- C:\Windows\system32\msxml3r.dll
2013-01-29 14:47:10 ----A---- C:\Windows\SYSWOW64\quartz.dll
2013-01-29 14:47:10 ----A---- C:\Windows\system32\quartz.dll
2013-01-29 14:47:08 ----A---- C:\Windows\SYSWOW64\srclient.dll
2013-01-29 14:47:08 ----A---- C:\Windows\system32\srcore.dll
2013-01-29 14:47:08 ----A---- C:\Windows\system32\rstrui.exe
2013-01-29 14:47:07 ----A---- C:\Windows\system32\winload.exe
2013-01-29 14:47:06 ----A---- C:\Windows\system32\winresume.exe
2013-01-29 14:47:06 ----A---- C:\Windows\system32\setbcdlocale.dll
2013-01-29 14:47:06 ----A---- C:\Windows\system32\kdusb.dll
2013-01-29 14:47:06 ----A---- C:\Windows\system32\kdcom.dll
2013-01-29 14:47:06 ----A---- C:\Windows\system32\kd1394.dll
2013-01-29 14:46:58 ----A---- C:\Windows\system32\mfc42u.dll
2013-01-29 14:46:58 ----A---- C:\Windows\system32\mfc42.dll
2013-01-29 14:46:57 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2013-01-29 14:46:57 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2013-01-29 14:46:54 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2013-01-29 14:46:54 ----A---- C:\Windows\system32\kerberos.dll
2013-01-29 14:46:54 ----A---- C:\Windows\system32\drivers\afd.sys
2013-01-29 14:46:52 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-01-29 14:46:52 ----A---- C:\Windows\explorer.exe
2013-01-29 14:46:51 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2013-01-29 14:46:51 ----A---- C:\Windows\system32\psisdecd.dll
2013-01-29 14:46:47 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-01-29 14:46:47 ----A---- C:\Windows\system32\tzres.dll
2013-01-29 14:46:42 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-01-29 14:46:42 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-01-29 14:46:40 ----A---- C:\Windows\system32\win32k.sys
2013-01-29 14:46:38 ----A---- C:\Windows\SYSWOW64\msi.dll
2013-01-29 14:46:38 ----A---- C:\Windows\system32\msi.dll
2013-01-29 14:46:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-01-29 14:46:34 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2013-01-29 14:46:34 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-01-29 14:46:31 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-01-29 14:46:31 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-01-29 14:46:31 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-01-29 14:46:31 ----A---- C:\Windows\system32\d3d10_1.dll
2013-01-29 14:46:23 ----A---- C:\Windows\system32\dnsapi.dll
2013-01-29 14:46:22 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-01-29 14:46:22 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2013-01-29 14:46:22 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2013-01-29 14:46:22 ----A---- C:\Windows\system32\usp10.dll
2013-01-29 14:46:22 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-01-29 14:46:22 ----A---- C:\Windows\system32\dnscacheugc.exe
2013-01-29 14:46:19 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2013-01-29 14:46:19 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2013-01-29 14:46:19 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2013-01-29 14:46:19 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2013-01-29 14:46:19 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2013-01-29 14:46:19 ----A---- C:\Windows\system32\odbctrac.dll
2013-01-29 14:46:19 ----A---- C:\Windows\system32\odbccu32.dll
2013-01-29 14:46:19 ----A---- C:\Windows\system32\odbccr32.dll
2013-01-29 14:46:19 ----A---- C:\Windows\system32\odbccp32.dll
2013-01-29 14:46:15 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-01-29 14:46:15 ----A---- C:\Windows\system32\wintrust.dll
2013-01-29 14:46:14 ----A---- C:\Windows\system32\drivers\bowser.sys
2013-01-29 14:46:12 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2013-01-29 14:46:12 ----A---- C:\Windows\SYSWOW64\browcli.dll
2013-01-29 14:46:12 ----A---- C:\Windows\system32\netapi32.dll
2013-01-29 14:46:12 ----A---- C:\Windows\system32\browser.dll
2013-01-29 14:46:12 ----A---- C:\Windows\system32\browcli.dll
2013-01-29 14:46:10 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2013-01-29 14:46:10 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2013-01-29 14:46:10 ----A---- C:\Windows\system32\dpnet.dll
2013-01-29 14:46:10 ----A---- C:\Windows\system32\dpnaddr.dll
2013-01-29 14:46:08 ----A---- C:\Windows\system32\rdrmemptylst.exe
2013-01-29 14:46:08 ----A---- C:\Windows\system32\rdpwsx.dll
2013-01-29 14:46:08 ----A---- C:\Windows\system32\rdpcorekmts.dll
2013-01-29 14:46:04 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2013-01-29 14:46:04 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2013-01-29 14:46:04 ----A---- C:\Windows\system32\synceng.dll
2013-01-29 14:46:04 ----A---- C:\Windows\system32\oleaut32.dll
2013-01-29 14:46:04 ----A---- C:\Windows\system32\oleacc.dll
2013-01-29 14:46:03 ----A---- C:\Windows\SYSWOW64\synceng.dll
2013-01-29 14:46:03 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2013-01-29 14:46:03 ----A---- C:\Windows\system32\prevhost.exe
2013-01-29 14:45:58 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2013-01-29 14:45:58 ----A---- C:\Windows\system32\xmllite.dll
2013-01-29 14:45:57 ----A---- C:\Windows\system32\csrsrv.dll
2013-01-29 14:45:56 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-01-29 14:45:56 ----A---- C:\Windows\system32\d3d10level9.dll
2013-01-29 14:45:52 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-01-29 14:45:50 ----A---- C:\Windows\system32\profsvc.dll
2013-01-29 14:45:50 ----A---- C:\Windows\system32\profprov.dll
2013-01-29 14:45:44 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2013-01-29 14:45:42 ----A---- C:\Windows\system32\cdosys.dll
2013-01-29 14:45:30 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2013-01-29 14:45:30 ----A---- C:\Windows\system32\EncDec.dll
2013-01-29 14:45:26 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2013-01-29 14:45:26 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2013-01-29 14:45:26 ----A---- C:\Windows\SYSWOW64\devobj.dll
2013-01-29 14:45:26 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2013-01-29 14:45:26 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-01-29 14:45:26 ----A---- C:\Windows\system32\cfgmgr32.dll
2013-01-29 14:45:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-01-29 14:45:23 ----A---- C:\Windows\system32\ncrypt.dll
2013-01-29 14:45:16 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2013-01-29 14:45:16 ----A---- C:\Windows\system32\inetcomm.dll
2013-01-29 14:45:15 ----A---- C:\Windows\system32\localspl.dll
2013-01-29 14:45:14 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-01-29 14:45:12 ----A---- C:\Windows\system32\WFS.exe
2013-01-29 14:45:12 ----A---- C:\Windows\system32\FXSCOVER.exe
2013-01-29 14:45:10 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2013-01-29 14:45:10 ----A---- C:\Windows\system32\msvcrt.dll
2013-01-29 14:45:07 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-01-29 14:45:07 ----A---- C:\Windows\system32\crypt32.dll
2013-01-29 14:45:06 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-01-29 14:45:06 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-01-29 14:45:06 ----A---- C:\Windows\system32\cryptsvc.dll
2013-01-29 14:45:06 ----A---- C:\Windows\system32\cryptnet.dll
2013-01-29 14:44:53 ----A---- C:\Windows\system32\ntdll.dll
2013-01-29 14:44:52 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-01-29 14:34:52 ----A---- C:\Windows\SYSWOW64\packager.dll
2013-01-29 14:34:52 ----A---- C:\Windows\system32\packager.dll
2013-01-29 14:34:50 ----A---- C:\Windows\system32\spoolsv.exe
2013-01-29 14:34:50 ----A---- C:\Windows\splwow64.exe
2013-01-29 14:28:30 ----A---- C:\Windows\system32\wups2.dll
2013-01-29 14:28:30 ----A---- C:\Windows\system32\wucltux.dll
2013-01-29 14:28:30 ----A---- C:\Windows\system32\wuaueng.dll
2013-01-29 14:28:30 ----A---- C:\Windows\system32\wuauclt.exe
2013-01-29 14:28:22 ----A---- C:\Windows\system32\wups.dll
2013-01-29 14:28:22 ----A---- C:\Windows\system32\wudriver.dll
2013-01-29 14:28:21 ----A---- C:\Windows\system32\wuapi.dll
2013-01-29 14:28:15 ----A---- C:\Windows\system32\wuwebv.dll
2013-01-29 14:28:15 ----A---- C:\Windows\system32\wuapp.exe
2013-01-29 14:27:30 ----D---- C:\Temp
2013-01-29 13:51:15 ----A---- C:\Windows\sfbm.INI
2013-01-29 13:37:39 ----D---- C:\Users\Terazky\AppData\Roaming\Thunderbird
2013-01-29 13:32:20 ----D---- C:\Users\Terazky\AppData\Roaming\GHISLER
2013-01-29 13:32:20 ----D---- C:\Program Files\totalcmd
2013-01-29 13:29:47 ----D---- C:\Users\Terazky\AppData\Roaming\Mozilla
2013-01-29 13:29:41 ----D---- C:\ProgramData\Mozilla
2013-01-29 13:29:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-01-29 13:29:39 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2013-01-29 13:21:00 ----D---- C:\Program Files\Creative
2013-01-29 13:20:29 ----A---- C:\Windows\SYSWOW64\cttele32.dll
2013-01-29 13:20:29 ----A---- C:\Windows\system32\cttele64.dll
2013-01-29 13:20:22 ----D---- C:\Program Files (x86)\OpenAL
2013-01-29 13:20:22 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2013-01-29 13:20:22 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2013-01-29 13:20:22 ----A---- C:\Windows\SYSWOW64\CmdRtr.DLL
2013-01-29 13:20:22 ----A---- C:\Windows\SYSWOW64\APOMngr.DLL
2013-01-29 13:20:22 ----A---- C:\Windows\system32\wrap_oal.dll
2013-01-29 13:20:22 ----A---- C:\Windows\system32\OpenAL32.dll
2013-01-29 13:20:22 ----A---- C:\Windows\system32\CmdRtr64.DLL
2013-01-29 13:20:22 ----A---- C:\Windows\system32\APOMgr64.DLL
2013-01-29 13:20:05 ----D---- C:\Windows\SYSWOW64\Data
2013-01-29 13:20:05 ----D---- C:\Windows\system32\Data
2013-01-29 13:20:05 ----A---- C:\Windows\SYSWOW64\INRES.DLL
2013-01-29 13:20:05 ----A---- C:\Windows\system32\INRES.DLL
2013-01-29 13:19:58 ----A---- C:\Windows\SYSWOW64\AppSetup.exe
2013-01-29 13:11:39 ----D---- C:\ProgramData\Creative
2013-01-29 13:09:30 ----N---- C:\Windows\Ctregrun.exe
2013-01-29 13:08:08 ----HD---- C:\Program Files (x86)\Creative Installation Information
2013-01-29 13:06:25 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2013-01-29 13:06:25 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-01-29 13:06:15 ----D---- C:\Users\Terazky\AppData\Roaming\Creative
2013-01-29 13:04:51 ----D---- C:\Program Files (x86)\Creative
2013-01-29 12:54:21 ----D---- C:\Windows\system32\appmgmt
2013-01-29 12:48:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-01-29 12:47:55 ----A---- C:\Windows\system32\nvvsvc.exe
2013-01-29 12:47:55 ----A---- C:\Windows\system32\nvsvc64.dll
2013-01-29 12:47:55 ----A---- C:\Windows\system32\nvshext.dll
2013-01-29 12:47:55 ----A---- C:\Windows\system32\nvmctray.dll
2013-01-29 12:47:55 ----A---- C:\Windows\system32\nvcpl.dll
2013-01-29 12:47:48 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-01-29 12:47:48 ----A---- C:\Windows\system32\OpenCL.dll
2013-01-29 12:47:44 ----D---- C:\ProgramData\NVIDIA Corporation
2013-01-29 12:47:41 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-01-29 12:47:20 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-01-29 12:47:20 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2013-01-29 12:47:20 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-01-29 12:47:20 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-01-29 12:47:20 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2013-01-29 12:47:20 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-01-29 12:47:20 ----A---- C:\Windows\system32\nvumdshimx.dll
2013-01-29 12:47:20 ----A---- C:\Windows\system32\nvopencl.dll
2013-01-29 12:47:20 ----A---- C:\Windows\system32\nvoglv64.dll
2013-01-29 12:47:20 ----A---- C:\Windows\system32\nvinitx.dll
2013-01-29 12:47:20 ----A---- C:\Windows\system32\nvhdap64.dll
2013-01-29 12:47:20 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2013-01-29 12:47:20 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-01-29 12:47:20 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2013-01-29 12:47:19 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-01-29 12:47:19 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-01-29 12:47:19 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-01-29 12:47:19 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-01-29 12:47:19 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-01-29 12:47:19 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-01-29 12:47:19 ----A---- C:\Windows\system32\nvdispgenco64.dll
2013-01-29 12:47:19 ----A---- C:\Windows\system32\nvdispco64.dll
2013-01-29 12:47:19 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-01-29 12:47:19 ----A---- C:\Windows\system32\nvcuvid.dll
2013-01-29 12:47:19 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-01-29 12:47:19 ----A---- C:\Windows\system32\nvcuda.dll
2013-01-29 12:47:19 ----A---- C:\Windows\system32\nvcompiler.dll
2013-01-29 12:47:19 ----A---- C:\Windows\system32\nvapi64.dll
2013-01-29 12:47:01 ----D---- C:\Program Files\NVIDIA Corporation
2013-01-29 12:41:42 ----D---- C:\Users\Terazky\AppData\Roaming\Macromedia
2013-01-29 12:41:42 ----D---- C:\Users\Terazky\AppData\Roaming\Adobe
2013-01-29 12:41:30 ----D---- C:\Windows\SYSWOW64\Macromed
2013-01-29 12:41:30 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-01-29 12:41:29 ----D---- C:\Windows\system32\Macromed
2013-01-29 12:35:40 ----D---- C:\ProgramData\NVIDIA
2013-01-29 12:35:29 ----D---- C:\Windows\Sun
2013-01-29 12:34:56 ----D---- C:\ProgramData\Sun
2013-01-29 12:34:49 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-01-29 12:34:49 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-01-29 12:34:49 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-01-29 12:34:44 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-01-29 12:34:44 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-01-29 12:34:44 ----A---- C:\Windows\SYSWOW64\java.exe
2013-01-29 12:34:40 ----D---- C:\Program Files (x86)\Java
2013-01-29 12:29:19 ----D---- C:\Program Files\Google
2013-01-29 12:25:34 ----D---- C:\Program Files (x86)\Google
2013-01-29 12:25:33 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-01-29 12:25:33 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-01-29 12:25:31 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-01-29 12:25:30 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-01-29 12:25:27 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-01-29 12:25:26 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-01-29 12:25:26 ----A---- C:\Windows\system32\aswBoot.exe
2013-01-29 12:24:47 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2013-01-29 12:24:47 ----A---- C:\Windows\avastSS.scr
2013-01-29 12:24:39 ----D---- C:\ProgramData\AVAST Software
2013-01-29 12:24:39 ----D---- C:\Program Files\AVAST Software
2013-01-29 12:21:17 ----A---- C:\Windows\gdrv.sys
2013-01-29 12:19:30 ----D---- C:\Program Files\GIGABYTE
2013-01-29 12:19:30 ----A---- C:\Windows\system32\drivers\AppleCharger.sys
2013-01-29 12:19:30 ----A---- C:\Windows\system32\AppleChargerSrv.exe
2013-01-29 12:19:19 ----D---- C:\Program Files (x86)\Etron Technology
2013-01-29 12:19:06 ----N---- C:\Windows\system32\MpSigStub.exe
2013-01-29 12:04:42 ----A---- C:\Windows\system32\RtNicProp64.dll
2013-01-29 12:04:42 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2013-01-29 12:04:41 ----A---- C:\Windows\system32\RTNUninst64.dll
2013-01-29 12:04:38 ----D---- C:\Program Files (x86)\Realtek
2013-01-29 12:04:04 ----A---- C:\ProgramData\NTUser.dat
2013-01-29 12:03:50 ----HD---- C:\ProgramData\{8533ADFA-85F0-4dc1-946A-2A0BA58E78E3}
2013-01-29 12:03:49 ----D---- C:\Users\Terazky\AppData\Roaming\Splashtop
2013-01-29 12:03:34 ----D---- C:\Program Files (x86)\Splashtop
2013-01-29 12:03:19 ----SHD---- C:\Windows\Installer
2013-01-29 12:03:03 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-01-29 12:03:03 ----D---- C:\Program Files (x86)\Gigabyte
2013-01-29 12:02:28 ----A---- C:\Windows\GSetup.ini
2013-01-29 11:57:04 ----D---- C:\Users\Terazky\AppData\Roaming\Identities
2013-01-29 11:56:51 ----SD---- C:\Users\Terazky\AppData\Roaming\Microsoft
2013-01-29 11:56:51 ----D---- C:\Users\Terazky\AppData\Roaming\Media Center Programs
2013-01-29 11:55:30 ----SHD---- C:\Recovery
2013-01-29 11:55:30 ----SHD---- C:\ProgramData\Šablony
2013-01-29 11:55:30 ----SHD---- C:\ProgramData\Plocha
2013-01-29 11:55:30 ----SHD---- C:\ProgramData\Oblíbené položky
2013-01-29 11:55:30 ----SHD---- C:\ProgramData\Nabídka Start
2013-01-29 11:55:30 ----SHD---- C:\ProgramData\Dokumenty
2013-01-29 11:55:30 ----SHD---- C:\ProgramData\Data aplikací
2013-01-29 11:49:35 ----D---- C:\Windows\SoftwareDistribution
2013-01-29 11:47:12 ----D---- C:\Windows\Prefetch
2013-01-29 11:46:55 ----SHD---- C:\System Volume Information
2013-01-29 11:45:58 ----D---- C:\Windows\Panther

Halen · #13 Příspěvek od **Halen** » 04 úno 2013 17:25

Zbytek logu.

======List of files/folders modified in the last 1 month======

2013-02-04 17:09:23 ----D---- C:\Windows\Temp
2013-02-04 16:47:15 ----D---- C:\Windows\System32
2013-02-04 16:47:15 ----D---- C:\Windows\inf
2013-02-04 16:47:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-04 16:44:33 ----D---- C:\Windows\system32\config
2013-02-04 16:41:26 ----RD---- C:\Program Files (x86)
2013-02-04 16:40:28 ----SD---- C:\ProgramData\Microsoft
2013-02-04 15:04:10 ----D---- C:\Windows\rescache
2013-02-04 14:45:32 ----RSD---- C:\Windows\assembly
2013-02-04 14:45:32 ----D---- C:\Windows\Microsoft.NET
2013-02-04 14:11:23 ----RD---- C:\Program Files
2013-02-04 14:11:23 ----D---- C:\Windows\system32\drivers
2013-02-04 13:14:13 ----D---- C:\Windows\winsxs
2013-02-04 13:12:06 ----D---- C:\Windows
2013-02-04 13:12:06 ----D---- C:\Program Files\Windows Media Player
2013-02-04 13:12:06 ----D---- C:\Program Files\DVD Maker
2013-02-04 13:12:04 ----D---- C:\Windows\SYSWOW64\migration
2013-02-04 13:12:04 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-02-04 13:12:04 ----D---- C:\Windows\SysWOW64
2013-02-04 13:12:01 ----D---- C:\Windows\system32\wbem
2013-02-04 13:12:01 ----D---- C:\Windows\system32\cs-CZ
2013-02-04 13:12:01 ----D---- C:\Windows\PolicyDefinitions
2013-02-03 01:36:24 ----HD---- C:\ProgramData
2013-02-01 14:39:41 ----D---- C:\Windows\system32\Tasks
2013-02-01 13:28:24 ----HD---- C:\Windows\system32\GroupPolicy
2013-01-31 22:36:56 ----D---- C:\Program Files (x86)\Common Files
2013-01-31 13:11:30 ----D---- C:\Windows\Logs
2013-01-30 17:17:27 ----D---- C:\Windows\system32\drivers\etc
2013-01-29 22:18:52 ----D---- C:\Windows\system32\catroot2
2013-01-29 20:27:30 ----D---- C:\Windows\system32\wdi
2013-01-29 18:26:56 ----D---- C:\Windows\system32\NDF
2013-01-29 18:16:17 ----D---- C:\Windows\SYSWOW64\wbem
2013-01-29 18:16:17 ----D---- C:\Windows\SYSWOW64\en-US
2013-01-29 18:16:16 ----D---- C:\Windows\system32\en-US
2013-01-29 18:16:16 ----D---- C:\Windows\system32\DriverStore
2013-01-29 18:16:16 ----D---- C:\Windows\system32\drivers\en-US
2013-01-29 18:15:16 ----D---- C:\Windows\system32\catroot
2013-01-29 18:04:25 ----D---- C:\Windows\system32\migration
2013-01-29 17:37:37 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-01-29 17:37:37 ----D---- C:\Program Files (x86)\Windows Portable Devices
2013-01-29 17:37:37 ----D---- C:\Program Files (x86)\Windows Mail
2013-01-29 17:37:36 ----D---- C:\Program Files\Windows Sidebar
2013-01-29 17:37:36 ----D---- C:\Program Files\Windows Portable Devices
2013-01-29 17:37:36 ----D---- C:\Program Files\Windows Mail
2013-01-29 17:37:36 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-01-29 17:37:35 ----D---- C:\Program Files\Windows Photo Viewer
2013-01-29 17:37:35 ----D---- C:\Program Files\Windows Journal
2013-01-29 17:37:35 ----D---- C:\Program Files\Common Files\System
2013-01-29 17:37:31 ----D---- C:\Windows\servicing
2013-01-29 17:37:31 ----D---- C:\Program Files\Windows Defender
2013-01-29 17:37:24 ----SHD---- C:\Windows\BitLockerDiscoveryVolumeContents
2013-01-29 17:37:24 ----D---- C:\Windows\SYSWOW64\Setup
2013-01-29 17:37:24 ----D---- C:\Windows\SYSWOW64\oobe
2013-01-29 17:37:24 ----D---- C:\Windows\SYSWOW64\da-DK
2013-01-29 17:37:24 ----D---- C:\Windows\SYSWOW64\cs
2013-01-29 17:37:24 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2013-01-29 17:37:23 ----D---- C:\Windows\SYSWOW64\sppui
2013-01-29 17:37:23 ----D---- C:\Windows\SYSWOW64\manifeststore
2013-01-29 17:37:23 ----D---- C:\Windows\SYSWOW64\es-ES
2013-01-29 17:37:22 ----D---- C:\Windows\SYSWOW64\migwiz
2013-01-29 17:37:22 ----D---- C:\Windows\SYSWOW64\Dism
2013-01-29 17:37:07 ----D---- C:\Windows\system32\Setup
2013-01-29 17:37:07 ----D---- C:\Windows\system32\oobe
2013-01-29 17:37:07 ----D---- C:\Windows\system32\da-DK
2013-01-29 17:37:07 ----D---- C:\Windows\system32\cs
2013-01-29 17:37:07 ----D---- C:\Windows\system32\AdvancedInstallers
2013-01-29 17:37:06 ----D---- C:\Windows\system32\sppui
2013-01-29 17:37:06 ----D---- C:\Windows\system32\manifeststore
2013-01-29 17:37:06 ----D---- C:\Windows\system32\es-ES
2013-01-29 17:37:04 ----D---- C:\Windows\system32\migwiz
2013-01-29 17:37:04 ----D---- C:\Windows\system32\drivers\UMDF
2013-01-29 17:37:04 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-01-29 17:37:04 ----D---- C:\Windows\system32\Dism
2013-01-29 17:36:54 ----RSD---- C:\Windows\Fonts
2013-01-29 17:36:54 ----D---- C:\Windows\AppPatch
2013-01-29 17:36:42 ----D---- C:\Windows\system32\Boot
2013-01-29 17:34:05 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2013-01-29 17:34:05 ----A---- C:\Windows\system32\msclmd.dll
2013-01-29 17:12:57 ----D---- C:\Windows\debug
2013-01-29 15:42:07 ----D---- C:\Program Files\Internet Explorer
2013-01-29 15:42:07 ----D---- C:\Program Files (x86)\Internet Explorer
2013-01-29 13:58:47 ----D---- C:\Windows\Downloaded Program Files
2013-01-29 12:48:15 ----RD---- C:\Users
2013-01-29 12:47:54 ----D---- C:\Windows\Help
2013-01-29 12:41:31 ----D---- C:\Windows\Tasks
2013-01-29 12:25:46 ----D---- C:\Windows\system32\LogFiles
2013-01-29 12:11:00 ----D---- C:\Windows\system32\CodeIntegrity
2013-01-29 12:02:52 ----D---- C:\Windows\system32\restore
2013-01-29 11:57:03 ----SHD---- C:\$Recycle.Bin
2013-01-29 11:55:30 ----D---- C:\Program Files\Windows NT
2013-01-29 11:50:09 ----D---- C:\Windows\system32\sysprep
2013-01-29 11:47:27 ----D---- C:\Windows\CSC
2013-01-29 11:45:26 ----D---- C:\Windows\Setup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2011-03-18 29592]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 54072]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 984144]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 370288]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 59728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 TSKNF900.SYS;TSKNF900.SYS; \??\C:\Windows\system32\Drivers\TSKNF900.SYS [2009-04-19 23592]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
R3 CT20XUT.SYS;CT20XUT.SYS; C:\Windows\System32\drivers\CT20XUT.SYS [2010-05-05 202840]
R3 ctac32k;Creative AC3 Software Decoder; C:\Windows\system32\drivers\ctac32k.sys [2010-05-05 580696]
R3 ctaud2k;Creative Audio Driver (WDM); C:\Windows\system32\drivers\ctaud2k.sys [2010-05-05 684376]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS; C:\Windows\System32\drivers\CTEXFIFX.SYS [2010-05-05 1417304]
R3 CTHWIUT.SYS;CTHWIUT.SYS; C:\Windows\System32\drivers\CTHWIUT.SYS [2010-05-05 94808]
R3 ctprxy2k;Creative Proxy Driver; C:\Windows\system32\drivers\ctprxy2k.sys [2010-05-05 15960]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\Windows\system32\drivers\ctsfm2k.sys [2010-05-05 213080]
R3 emupia;E-mu Plug-in Architecture Driver; C:\Windows\system32\drivers\emupia2k.sys [2010-05-05 118360]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-03-07 65280]
R3 ha20x2k;Creative 20X HAL Driver; C:\Windows\system32\drivers\ha20x2k.sys [2010-05-05 1561688]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2012-12-14 24176]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-07-03 189288]
R3 ossrv;Creative OS Services Driver; C:\Windows\system32\drivers\ctoss2k.sys [2010-05-05 179288]
R3 pbfilter;pbfilter; \??\C:\Program Files\PeerBlock\pbfilter.sys [2010-11-06 24176]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TuneUpUtilitiesDriver64.sys [2011-09-22 11856]
S3 CT20XUT;CT20XUT; C:\Windows\system32\drivers\CT20XUT.SYS [2010-05-05 202840]
S3 CTEXFIFX;CTEXFIFX; C:\Windows\system32\drivers\CTEXFIFX.SYS [2010-05-05 1417304]
S3 CTHWIUT;CTHWIUT; C:\Windows\system32\drivers\CTHWIUT.SYS [2010-05-05 94808]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2013-02-03 25640]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-12-29 884152]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-12-29 1260472]
R2 OODefragAgent;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2012-09-14 2552176]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-12-29 383416]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE [2011-10-12 2072896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-29 251400]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2013-01-29 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2013-01-29 79360]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-01-16 115608]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-29 1255736]

-----------------EOF-----------------

#14 Příspěvek od **Márty84** » 04 úno 2013 17:31

Odinstalujte MBAM. Pere se s Avastem.

Jeste si dame jeden sken a budem mazat.

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Halen · #15 Příspěvek od **Halen** » 04 úno 2013 19:17

OTL logfile created on: 4.2.2013 18:45:54 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Terazky\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

8,00 Gb Total Physical Memory | 5,43 Gb Available Physical Memory | 67,93% Memory free
20,01 Gb Paging File | 17,73 Gb Available in Paging File | 88,50% Paging File free
Paging file location(s): e:\pagefile.sys 12300 12300 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 195,21 Gb Total Space | 168,67 Gb Free Space | 86,40% Space Free | Partition Type: NTFS
Drive D: | 298,09 Gb Total Space | 119,32 Gb Free Space | 40,03% Space Free | Partition Type: NTFS
Drive E: | 1201,95 Gb Total Space | 1052,08 Gb Free Space | 87,53% Space Free | Partition Type: NTFS

Computer Name: TERAZKY-PC | User Name: Terazky | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013.02.04 17:54:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Terazky\Desktop\OTL.exe
PRC - [2012.12.29 11:34:47 | 001,260,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012.12.29 02:53:20 | 000,383,416 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012.10.30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012.09.12 08:32:32 | 004,679,672 | ---- | M] (Almico Software (http://www.almico.com)) -- C:\Program Files (x86)\SpeedFan\speedfan.exe
PRC - [2010.05.05 19:56:42 | 000,025,600 | ---- | M] (Creative Technology Ltd) -- C:\Windows\SysWOW64\Ctxfihlp.exe
PRC - [2010.05.05 19:51:56 | 001,212,928 | ---- | M] (Creative Technology Ltd) -- C:\Windows\SysWOW64\CTxfispi.exe
PRC - [2009.02.23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2007.02.01 11:13:06 | 000,094,208 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files (x86)\Creative\ShareDLL\CADI\NotiMan.exe
PRC - [2006.12.06 18:10:16 | 000,180,224 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
PRC - [2006.11.22 17:55:38 | 000,057,344 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe
PRC - [2005.10.21 18:12:22 | 000,040,960 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Entertainment Center\EAXLoadr.exe

========== Modules (No Company Name) ==========

MOD - [2013.02.04 17:52:55 | 000,192,512 | ---- | M] () -- C:\Temp\sfamcc00001.dll
MOD - [2013.02.04 17:52:55 | 000,158,720 | ---- | M] () -- C:\Temp\sfareca00001.dll
MOD - [2010.05.05 19:56:46 | 000,002,560 | ---- | M] () -- C:\Windows\SysWOW64\CTXFIRES.DLL
MOD - [2009.03.26 14:46:42 | 000,148,480 | ---- | M] () -- C:\Windows\SysWOW64\APOMngr.DLL
MOD - [2009.02.06 18:52:24 | 000,073,728 | ---- | M] () -- C:\Windows\SysWOW64\CmdRtr.DLL

========== Services (SafeList) ==========

SRV:64bit: - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2012.09.14 18:43:44 | 002,552,176 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Program Files\OO Software\Defrag\oodag.exe -- (OODefragAgent)
SRV:64bit: - [2010.04.06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.01.29 23:37:12 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.01.29 13:44:41 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2013.01.29 13:21:06 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2013.01.16 21:09:27 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.01.08 12:55:20 | 000,161,536 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.12.29 11:34:47 | 001,260,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012.12.29 02:53:20 | 000,383,416 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011.10.12 18:14:14 | 002,072,896 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009.02.23 11:43:54 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2012.10.30 23:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012.10.30 23:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012.10.30 23:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012.10.30 23:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012.10.30 23:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012.10.15 17:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012.08.23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.08.23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.07.03 16:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.03.07 10:22:00 | 000,065,280 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronXHCI.sys -- (EtronXHCI)
DRV:64bit: - [2011.01.13 12:58:30 | 000,413,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.01.10 18:16:08 | 000,021,104 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.05.05 21:30:52 | 001,561,688 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ha20x2k.sys -- (ha20x2k)
DRV:64bit: - [2010.05.05 21:30:42 | 000,118,360 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\emupia2k.sys -- (emupia)
DRV:64bit: - [2010.05.05 21:30:34 | 000,213,080 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV:64bit: - [2010.05.05 21:30:26 | 000,015,960 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctprxy2k.sys -- (ctprxy2k)
DRV:64bit: - [2010.05.05 21:30:18 | 000,179,288 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctoss2k.sys -- (ossrv)
DRV:64bit: - [2010.05.05 21:30:10 | 000,684,376 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctaud2k.sys -- (ctaud2k)
DRV:64bit: - [2010.05.05 21:30:02 | 000,580,696 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ctac32k.sys -- (ctac32k)
DRV:64bit: - [2010.05.05 21:29:52 | 001,417,304 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CTEXFIFX.sys -- (CTEXFIFX.SYS)
DRV:64bit: - [2010.05.05 21:29:52 | 001,417,304 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CTEXFIFX.sys -- (CTEXFIFX)
DRV:64bit: - [2010.05.05 21:29:42 | 000,094,808 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CTHWIUT.sys -- (CTHWIUT.SYS)
DRV:64bit: - [2010.05.05 21:29:42 | 000,094,808 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CTHWIUT.sys -- (CTHWIUT)
DRV:64bit: - [2010.05.05 21:29:34 | 000,202,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CT20XUT.sys -- (CT20XUT.SYS)
DRV:64bit: - [2010.05.05 21:29:34 | 000,202,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CT20XUT.sys -- (CT20XUT)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.04.19 13:31:18 | 000,023,592 | ---- | M] (Igor Arsenin) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\Tsknf900.sys -- (TSKNF900.SYS)
DRV - [2013.02.03 10:57:23 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2011.09.22 13:08:26 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1000\..\SearchScopes\{A4F7EB40-B399-4f62-94D2-101C5BFC3684}: "URL" = http://uk.search.yahoo.com/search?p={se ... ype=IEBDSV
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1000\..\SearchScopes\{A74FA0D3-B306-488c-8E7E-3949D5967DAA}: "URL" = http://www.google.com/cse?cx=partner-pu ... earchTerms}
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1000\..\SearchScopes\{E9C74D9F-8EE8-41bc-AC5C-E7B8ACB978A5}: "URL" = http://www.bing.com/search?q={searchTer ... R1&pc=SPLH
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1001\..\SearchScopes\{A4F7EB40-B399-4f62-94D2-101C5BFC3684}: "URL" = http://uk.search.yahoo.com/search?p={se ... ype=IEBDSV
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1001\..\SearchScopes\{A74FA0D3-B306-488c-8E7E-3949D5967DAA}: "URL" = http://www.google.com/cse?cx=partner-pu ... earchTerms}
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1001\..\SearchScopes\{E9C74D9F-8EE8-41bc-AC5C-E7B8ACB978A5}: "URL" = http://www.bing.com/search?q={searchTer ... R1&pc=SPLH
IE - HKU\S-1-5-21-622998894-1097472747-2165159803-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B8f8fe09b-0bd3-4470-bc1b-8cad42b8203a%7D:0.17
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.13
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:7.0.1474
FF - prefs.js..extensions.enabledAddons: adblockpopups%40jessehakanen.net:0.6
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: cs@dictionaries.addons.mozilla.org:1.0.2
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.6
FF - prefs.js..extensions.enabledItems: YoutubeDownloader@PeterOlayev.com:1.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {e0204bd5-9d31-402b-a99d-a6aa8ffebdca}:1.2.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: customsearch@apsolo.com:1.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.11.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013.01.29 12:24:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.01.29 15:48:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.01.29 13:29:40 | 000,000,000 | ---D | M]

[2013.01.29 13:29:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Terazky\AppData\Roaming\Mozilla\Extensions
[2013.01.31 23:36:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\extensions
[2013.01.29 15:58:37 | 000,000,000 | ---D | M] (Live HTTP Headers) -- C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}
[2013.01.29 15:58:37 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2013.01.29 15:58:37 | 000,000,000 | ---D | M] (ÄŚeskĂ˝ slovnĂk pro kontrolu pravopisu) -- C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\extensions\cs@dictionaries.addons.mozilla.org
[2013.01.31 23:36:23 | 000,130,828 | ---- | M] () (No name found) -- C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\extensions\adblockpopups@jessehakanen.net.xpi
[2012.07.07 10:42:14 | 000,123,385 | ---- | M] () (No name found) -- C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\extensions\elemhidehelper@adblockplus.org.xpi
[2012.06.27 08:07:44 | 000,273,552 | ---- | M] () (No name found) -- C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\extensions\sharemenot@franziroesner.com.xpi
[2013.01.31 17:55:28 | 000,817,973 | ---- | M] () (No name found) -- C:\Users\Terazky\AppData\Roaming\Mozilla\Firefox\Profiles\xn8bhvoy.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013.01.29 15:48:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013.01.29 12:24:51 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2013.01.16 21:10:14 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013.01.17 03:20:48 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2013.01.17 03:20:48 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2013.01.17 03:20:48 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2013.01.17 03:20:49 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2013.01.17 03:20:49 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2013.01.30 17:17:27 | 000,445,034 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 http://www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 http://www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 http://www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 http://www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 http://www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 http://www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 http://www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 http://www.100888290cs.com
O1 - Hosts: 127.0.0.1 http://www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 http://www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 http://www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 http://www.123fporn.info
O1 - Hosts: 15284 more lines...
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe (O&O Software GmbH)
O4 - HKLM..\Run: [AudioDrvEmulator] C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CTxfiHlp] C:\Windows\SysWow64\Ctxfihlp.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [RCSystem] C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [VolPanel] C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-622998894-1097472747-2165159803-1000..\Run: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe (PeerBlock, LLC)
O4 - HKU\S-1-5-21-622998894-1097472747-2165159803-1000..\Run: [WebcamMaxAutoRun] C:\Program Files (x86)\WebcamMax\WebcamMax.exe (CoolwareMax)
O4 - HKU\S-1-5-21-622998894-1097472747-2165159803-1001..\Run: [Creative MediaSource Go] C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe (Creative Technology Ltd)
O4 - HKU\S-1-5-21-622998894-1097472747-2165159803-1001..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-622998894-1097472747-2165159803-1001..\RunOnce: [CTAutoUpdate] "C:\Program Files (x86)\Creative\Shared Files\Software Update\AutoUpdate.exe" /RunFromInstaller File not found
O4 - HKU\S-1-5-21-622998894-1097472747-2165159803-1001..\RunOnce: [CTSU] "C:\Program Files (x86)\Creative\Shared Files\Software Update\CTSURun.exe" File not found
O4 - HKU\S-1-5-21-622998894-1097472747-2165159803-1001..\RunOnce: [InetReg] C:\Program Files (x86)\Creative\Product Registration\English\InetReg.exe (Creative Technology Ltd)
O4 - HKU\S-1-5-21-622998894-1097472747-2165159803-1001..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-622998894-1097472747-2165159803-1001..\RunOnce: [StartMSu] C:\Program Files (x86)\Creative\MediaSource5\Startmsu.exe (Creative Technology Ltd)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/f ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab (Reg Error: Key error.)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.190.64.20 89.190.65.200
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4A495491-C271-4C61-A171-46EA1625F9C3}: DhcpNameServer = 89.190.64.20 89.190.65.200
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (OODBS)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

VIRY.CZ

Prosím o kontrolu logu

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu