zavirovany system

Zpráva

mamproblem · #1 Příspěvek od **mamproblem** » 12 čer 2013 17:24

Dobry den,

davam sem log z rsit chtel bych poprosit o kontolu.

Moc dekuji

info.txt logfile of random's system information tool 1.09 2013-06-12 17:15:05

======Uninstall list======

µTorrent-->"C:\Users\cashgen\AppData\Roaming\uTorrent\uTorrent.exe" /UNINSTALL
Acrobat.com-->MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}
Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 11 ActiveX-->C:\windows\system32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe -maintain activex
Adobe Flash Player 11 Plugin-->C:\windows\system32\Macromed\Flash\FlashUtil32_11_7_700_224_Plugin.exe -maintain plugin
Adobe Reader 9.1-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A91000000001}
ArcSoft Magic-i Visual Effects 2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8E90189A-A5D4-4C0E-A908-06C4236F98EE}\Setup.exe" -l0x9
ArcSoft Print Creations - Brochures & Flyers-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1Brochure
ArcSoft Print Creations - Funhouse II-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1HouseFun
ArcSoft Print Creations - Funhouse-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1Funhouse
ArcSoft Print Creations - Greeting Card-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1GreetingCard
ArcSoft Print Creations - Photo Book-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1PhotoBook
ArcSoft Print Creations - Photo Calendar-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1Calendar
ArcSoft Print Creations - Photo Prints-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1PhotoPrint
ArcSoft Print Creations - Poster Creator-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1Poster
ArcSoft Print Creations - Scrapbook-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1ScrapBook
ArcSoft Print Creations - Slimline Card-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9 -1Slimline
ArcSoft Print Creations-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5D7039E-0803-4FE8-976D-156DE1147E4F}\Setup.exe" -l0x9
ArcSoft WebCam Companion 3-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{25478065-4CB1-448C-80E4-8C4529017EE3}\Setup.exe" -l0x9
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
DefaultTab-->"C:\Users\cashgen\AppData\Roaming\DefaultTab\DefaultTab\uninstalldt.exe"
Google Chrome-->"C:\Program Files\Google\Chrome\Application\27.0.1453.110\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
KMP Media Toolbar-->MsiExec.exe /X{4B4D5056-3600-A76A-76A7-A758B70B0801}
Microsoft .NET Framework 4 Client Profile-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Office Excel MUI (Dutch) 2007-->MsiExec.exe /X{90120000-0016-0413-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (German) 2007-->MsiExec.exe /X{90120000-0016-0407-0000-0000000FF1CE}
Microsoft Office Excel MUI (Greek) 2007-->MsiExec.exe /X{90120000-0016-0408-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Dutch) 2007-->MsiExec.exe /X{90120000-00A1-0413-0000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
Microsoft Office OneNote MUI (German) 2007-->MsiExec.exe /X{90120000-00A1-0407-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Greek) 2007-->MsiExec.exe /X{90120000-00A1-0408-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Dutch) 2007-->MsiExec.exe /X{90120000-0018-0413-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (German) 2007-->MsiExec.exe /X{90120000-0018-0407-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Greek) 2007-->MsiExec.exe /X{90120000-0018-0408-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (English)-->MsiExec.exe /X{95120000-00AF-0409-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Greek) 2007-->MsiExec.exe /X{90120000-001F-0408-0000-0000000FF1CE}
Microsoft Office Proof (Italian) 2007-->MsiExec.exe /X{90120000-001F-0410-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (Dutch) 2007-->MsiExec.exe /X{90120000-002C-0413-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Proofing (German) 2007-->MsiExec.exe /X{90120000-002C-0407-0000-0000000FF1CE}
Microsoft Office Proofing (Greek) 2007-->MsiExec.exe /X{90120000-002C-0408-0000-0000000FF1CE}
Microsoft Office Shared MUI (Dutch) 2007-->MsiExec.exe /X{90120000-006E-0413-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (German) 2007-->MsiExec.exe /X{90120000-006E-0407-0000-0000000FF1CE}
Microsoft Office Shared MUI (Greek) 2007-->MsiExec.exe /X{90120000-006E-0408-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Suite Activation Assistant-->MsiExec.exe /X{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
Microsoft Office Word MUI (Dutch) 2007-->MsiExec.exe /X{90120000-001B-0413-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (German) 2007-->MsiExec.exe /X{90120000-001B-0407-0000-0000000FF1CE}
Microsoft Office Word MUI (Greek) 2007-->MsiExec.exe /X{90120000-001B-0408-0000-0000000FF1CE}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Works-->MsiExec.exe /I{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}
Mozilla Firefox 21.0 (x86 cs)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
msi Software Install-->MsiExec.exe /I{07690F1C-04B1-4060-9691-6748ED1826B9}
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
NexGen Media Player - a modern video player-->"C:\Program Files\NexGen Media Player\uninstall.exe"
NOD32 antivirus system-->C:\Program Files\Eset\Setup\setup.exe /UNINSTALL
Norton Internet Security-->MsiExec.exe /I{7B15D70E-9449-4CFB-B9BC-798465B2BD5C}
NVIDIA Drivers-->C:\windows\system32\nvuninst.exe UninstallGUI
NVIDIA ForceWare Network Access Manager-->"C:\Program Files\InstallShield Installation Information\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}\setup.exe" -runfromtemp -l0x0409 -removeonly
NVIDIA ForceWare Network Access Manager-->MsiExec.exe /I{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
Pandora Service-->"C:\Program Files\PANDORA.TV\PanService\unins000.exe"
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
Realtek USB 2.0 Card Reader-->"C:\Program Files\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.exe" -runfromtemp -l0x0009 -removeonly
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CD6D9B8A-BBC4-3FA7-B24D-D74CE90630CF} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B7C20E16-9A3A-3F05-A6B5-E15AA09200E0} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CF581973-77E0-3093-A1AC-A03130DE990F} /parameterfolder Client
SevenZip-->C:\Program Files\SevenZip\uninstall.exe
Skype Click to Call-->MsiExec.exe /I{B6CF2967-C81E-40C0-9815-C05774FEF120}
SKYPE FULL verze 1.00-->C:\Users\cashgen\Desktop\SKYPE FULL verze\Uninstall.exe
Skype™ 6.5-->MsiExec.exe /X{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
Software Version Updater-->C:\Users\cashgen\AppData\Local\SwvUpdater\Updater.exe /uninstall
System Control Manager-->C:\Program Files\InstallShield Installation Information\{ED9C5D25-55DF-48D8-9328-2AC0D75DE5D8}\setup.exe -runfromtemp -l0x0009 -removeonly
The KMPlayer (remove only)-->"C:\Program Files\The KMPlayer\uninstall.exe"
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
Update for Microsoft Office Word 2007 (KB974631)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {1D53FB73-9826-4541-B2E0-A239C6EBA718}
Update for Microsoft Office Word 2007 (KB974631)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {34726474-50D6-49FC-B8AC-35411459D27A}
Update for Office 2007 (KB934528)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {2B939677-2FFD-48F6-9075-7BF48CB87C80}
Update for Office System 2007 Setup (KB929722)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {D8E9BEBD-655F-467D-8176-CA9959C140A3}
VLC media player 2.0.2-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Call-->MsiExec.exe /I{F6BD194C-4190-4D73-B1B1-C48C99921BFE}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}
Windows Live Mail-->MsiExec.exe /I{6412CECE-8172-4BE5-935B-6CECACD2CA87}
Windows Live Messenger-->MsiExec.exe /X{A85FD55B-891B-4314-97A5-EA96C0BD80B5}
Windows Live Movie Maker-->MsiExec.exe /X{3D5044A5-97B8-45C0-B956-BB2376569188}
Windows Live Photo Gallery-->MsiExec.exe /X{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}
Windows Live Sign-in Assistant-->MsiExec.exe /I{45338B07-A236-4270-9A77-EBB4115517B5}
Windows Live Sync-->MsiExec.exe /X{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}
Windows Live Toolbar-->MsiExec.exe /X{995F1E2E-F542-4310-8E1D-9926F5A279B3}
Windows Live Upload Tool-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Windows Live Writer-->MsiExec.exe /X{178832DE-9DE0-4C87-9F82-9315A9B03985}
WinRAR archiver-->C:\Program Files\WinRAR 3.61 Multi\Uninstall.exe

======System event log======

Computer Name: MSI-msi
Event Code: 4001
Message: WLAN AutoConfig service has successfully stopped.

Record Number: 1801
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20121218124234.774800-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: MSI-msi
Event Code: 4001
Message: WLAN AutoConfig service has successfully stopped.

Record Number: 1650
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20121218121935.197600-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: MSI-msi
Event Code: 4001
Message: WLAN AutoConfig service has successfully stopped.

Record Number: 1549
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20121218195343.519600-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: WIN-37SA766UEGE
Event Code: 4001
Message: WLAN AutoConfig service has successfully stopped.

Record Number: 1368
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20100420145057.142400-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: WIN-37SA766UEGE
Event Code: 10010
Message: The server {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} did not register with DCOM within the required timeout.
Record Number: 1342
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20100420145007.000000-000
Event Type: Error
User:

=====Application event log=====

Computer Name: MSI-msi
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-641927181-3933758310-3291354813-1001:
Process 772 (\Device\HarddiskVolume3\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-641927181-3933758310-3291354813-1001

Record Number: 953
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20130315112522.603800-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: MSI-msi
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-641927181-3933758310-3291354813-1000:
Process 492 (\Device\HarddiskVolume3\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-641927181-3933758310-3291354813-1000

Record Number: 804
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20121218124232.263200-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: MSI-msi
Event Code: 8194
Message: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
. This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {4d5eae33-fec8-4d3b-b9e8-9777c72b4d1b}
Record Number: 713
Source Name: VSS
Time Written: 20121218122733.000000-000
Event Type: Error
User:

Computer Name: MSI-msi
Event Code: 3086
Message: The system locale has changed. Existing data will be deleted and the index must be recreated.

Context: Application, SystemIndex Catalog

Record Number: 634
Source Name: Microsoft-Windows-Search
Time Written: 20121218122257.000000-000
Event Type: Warning
User:

Computer Name: MSI-msi
Event Code: 1008
Message: The Windows Search Service is starting up and attempting to remove the old search index {Reason: Full Index Reset}.

Record Number: 610
Source Name: Microsoft-Windows-Search
Time Written: 20121218121921.000000-000
Event Type: Warning
User:

=====Security event log=====

Computer Name: WIN-37SA766UEGE
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: WIN-37SA766UEGE$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 5

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x1f4
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 257
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100420144810.082000-000
Event Type: Audit Success
User:

Computer Name: WIN-37SA766UEGE
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7

Privileges: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 256
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100420144807.320800-000
Event Type: Audit Success
User:

Computer Name: WIN-37SA766UEGE
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: WIN-37SA766UEGE$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 5

New Logon:
Security ID: S-1-5-18
Account Name: SYSTEM
Account Domain: NT AUTHORITY
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x1f4
Process Name: C:\Windows\System32\services.exe

Network Information:
Workstation Name:
Source Network Address: -
Source Port: -

Detailed Authentication Information:
Logon Process: Advapi
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 255
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100420144807.320800-000
Event Type: Audit Success
User:

Computer Name: WIN-37SA766UEGE
Event Code: 4738
Message: A user account was changed.

Subject:
Security ID: S-1-5-21-3021701692-1383318904-1883943267-500
Account Name: Administrator
Account Domain: WIN-37SA766UEGE
Logon ID: 0x26d1c

Target Account:
Security ID: S-1-5-21-3021701692-1383318904-1883943267-500
Account Name: Administrator
Account Domain: WIN-37SA766UEGE

Changed Attributes:
SAM Account Name: -
Display Name: -
User Principal Name: -
Home Directory: -
Home Drive: -
Script Path: -
Profile Path: -
User Workstations: -
Password Last Set: -
Account Expires: -
Primary Group ID: -
AllowedToDelegateTo: -
Old UAC Value: 0x211
New UAC Value: 0x211
User Account Control: -
User Parameters: -
SID History: -
Logon Hours: -

Additional Information:
Privileges: -
Record Number: 254
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20100420144759.458400-000
Event Type: Audit Success
User:

Computer Name: WIN-37SA766UEGE
Event Code: 1102
Message: The audit log was cleared.
Subject:
Security ID: S-1-5-21-3021701692-1383318904-1883943267-500
Account Name: Administrator
Domain Name: WIN-37SA766UEGE
Logon ID: 0x26d1c
Record Number: 253
Source Name: Microsoft-Windows-Eventlog
Time Written: 20100420144759.052800-000
Event Type: Audit Success
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
"configsetroot"=%SystemRoot%\ConfigSetRoot

-----------------EOF-----------------

mamproblem · #2 Příspěvek od **mamproblem** » 12 čer 2013 17:47

Dekuji za ochotu a omlouvam se ze jsem byl netrpelivy ale jsem na navsteve a snazim se opravit cizi system.
Kazdopadne dekuji za radu - zde je tedy log z rsit:

Logfile of random's system information tool 1.09 (written by random/random)
Run by cashgen at 2013-06-12 19:14:00
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 151 GB (54%) free of 280 GB
Total RAM: 2815 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:14:21, on 12.6.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16611)
Boot mode: Normal

Running processes:
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\System Control Manager\MGSysCtrl.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\taskhost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\SearchFilterHost.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Users\cashgen\Downloads\RSIT (3).exe
C:\Program Files\trend micro\cashgen.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} - (no file)
O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\cashgen\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [MGSysCtrl] C:\Program Files\System Control Manager\MGSysCtrl.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Printsrv] c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: DefaultTabUpdate - Unknown owner - C:\Users\cashgen\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files\System Control Manager\MSIService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\windows\system32\nvvsvc.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 8512 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\AmiUpdXp.job
C:\windows\tasks\Dealply.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\cashgen\AppData\Roaming\Mozilla\Firefox\Profiles\ykcsyo6m.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... 34&UM=2&q="

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

C:\Program Files\Mozilla Firefox\extensions\
cxfnl@nxazbwxrbgsgfqqp.net
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Program Files\Mozilla Firefox\searchplugins\
adawaretb.xml

C:\Users\cashgen\AppData\Roaming\Mozilla\Firefox\Profiles\ykcsyo6m.default\extensions\
ffxtlbr@delta.com
plugin@getwebcake.com
{7f3f960e-a836-45ca-8911-0accb522246e}
{a55bb532-2438-4ece-820e-3e2c86861893}

C:\Users\cashgen\AppData\Roaming\Mozilla\Firefox\Profiles\ykcsyo6m.default\searchplugins\
ask-search.xml
babylon.xml
delta.xml
games-bar-a-customized-web-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}]
DefaultTab Browser Helper - C:\Users\cashgen\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll [2013-06-07 433272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\windows\system32\NvCpl.dll [2009-06-07 13789728]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"MGSysCtrl"=C:\Program Files\System Control Manager\MGSysCtrl.exe [2009-07-24 2068480]
"ArcSoft Connection Service"=C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-03-18 207360]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"Printsrv"=c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs [2013-05-05 543]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2013-05-24 949376]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2013-03-21 5078504]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-06-03 19604072]

C:\Users\cashgen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OneNote 2007 Screen Clipper and Launcher.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-06-12 19:07:08 ----D---- C:\ProgramData\ESET
2013-06-12 18:50:18 ----D---- C:\Program Files\VITSOFT
2013-06-12 17:13:39 ----D---- C:\rsit
2013-06-12 17:13:39 ----D---- C:\Program Files\trend micro
2013-06-11 21:19:56 ----A---- C:\windows\system32\urlmon.dll
2013-06-11 21:19:56 ----A---- C:\windows\system32\ieui.dll
2013-06-11 21:19:54 ----A---- C:\windows\system32\ieframe.dll
2013-06-11 21:19:52 ----A---- C:\windows\system32\mshtml.dll
2013-06-11 21:19:52 ----A---- C:\windows\system32\iertutil.dll
2013-06-11 21:17:16 ----A---- C:\windows\system32\jscript.dll
2013-06-11 21:17:15 ----A---- C:\windows\system32\jsproxy.dll
2013-06-11 21:17:15 ----A---- C:\windows\system32\jscript9.dll
2013-06-11 21:17:14 ----A---- C:\windows\system32\iesetup.dll
2013-06-11 21:17:13 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2013-06-11 21:17:13 ----A---- C:\windows\system32\msfeeds.dll
2013-06-11 21:17:13 ----A---- C:\windows\system32\iesysprep.dll
2013-06-11 21:17:13 ----A---- C:\windows\system32\iernonce.dll
2013-06-11 21:17:13 ----A---- C:\windows\system32\ie4uinit.exe
2013-06-11 21:17:10 ----A---- C:\windows\system32\wininet.dll
2013-06-11 20:26:27 ----A---- C:\windows\system32\d3d11.dll
2013-06-11 20:26:23 ----A---- C:\windows\system32\cryptdlg.dll
2013-06-11 20:26:16 ----A---- C:\windows\system32\win32spl.dll
2013-06-11 20:26:10 ----A---- C:\windows\system32\certutil.exe
2013-06-11 20:26:09 ----A---- C:\windows\system32\cryptsvc.dll
2013-06-11 20:26:09 ----A---- C:\windows\system32\cryptnet.dll
2013-06-11 20:26:09 ----A---- C:\windows\system32\crypt32.dll
2013-06-11 20:26:09 ----A---- C:\windows\system32\certenc.dll
2013-06-11 20:26:04 ----A---- C:\windows\system32\WindowsCodecs.dll
2013-06-11 20:26:03 ----A---- C:\windows\system32\ntoskrnl.exe
2013-06-11 20:26:02 ----A---- C:\windows\system32\ntkrnlpa.exe
2013-06-11 20:26:00 ----A---- C:\windows\system32\drivers\tcpip.sys
2013-06-11 19:04:19 ----A---- C:\windows\system32\FlashPlayerInstaller.exe
2013-06-11 18:30:20 ----D---- C:\Program Files\MSXML 4.0
2013-06-11 06:18:37 ----D---- C:\Users\cashgen\AppData\Roaming\BabSolution
2013-06-11 06:17:16 ----D---- C:\ProgramData\Babylon
2013-06-11 06:17:15 ----D---- C:\Users\cashgen\AppData\Roaming\Babylon
2013-06-10 22:14:51 ----D---- C:\Program Files\Vafmusic2
2013-06-10 22:10:32 ----D---- C:\Program Files\SearchProtect
2013-06-10 22:10:27 ----D---- C:\Users\cashgen\AppData\Roaming\SearchProtect
2013-06-10 22:10:07 ----D---- C:\Program Files\Uninstaller
2013-06-10 22:08:31 ----SHD---- C:\windows\system32\AI_RecycleBin
2013-06-10 22:08:02 ----D---- C:\ProgramData\Strongvault Online Backup
2013-06-10 22:08:00 ----D---- C:\Program Files\Strongvault Online Backup
2013-06-10 22:07:38 ----D---- C:\Users\cashgen\AppData\Roaming\WebCake
2013-06-10 22:07:18 ----D---- C:\Users\cashgen\AppData\Roaming\Optimizer Pro
2013-06-10 22:07:13 ----D---- C:\ProgramData\TEMP
2013-06-10 22:07:08 ----D---- C:\Users\cashgen\AppData\Roaming\Desk 365
2013-06-10 22:07:08 ----D---- C:\Program Files\Desk 365
2013-06-10 22:06:52 ----SHD---- C:\AI_RecycleBin
2013-06-10 22:06:43 ----D---- C:\ProgramData\Tarma Installer
2013-06-10 22:06:42 ----D---- C:\Program Files\Optimizer Pro
2013-06-10 22:06:27 ----D---- C:\Users\cashgen\AppData\Roaming\Strongvault
2013-06-08 10:21:49 ----N---- C:\bootsqm.dat
2013-06-07 09:35:59 ----D---- C:\windows\Minidump
2013-06-07 00:19:20 ----RASH---- C:\MSDOS.SYS
2013-06-07 00:19:20 ----RASH---- C:\IO.SYS
2013-06-07 00:18:34 ----D---- C:\Program Files\Fast Free Converter
2013-06-07 00:18:10 ----D---- C:\Users\cashgen\AppData\Roaming\DefaultTab
2013-06-06 11:01:03 ----D---- C:\Program Files\TornTV.com
2013-06-06 10:52:06 ----A---- C:\windows\ntbtlog.txt
2013-06-05 16:35:49 ----D---- C:\windows\system32\Hotspot Shield
2013-06-05 13:39:22 ----SHD---- C:\Config.Msi
2013-06-01 12:47:33 ----D---- C:\ProgramData\APN
2013-06-01 12:46:25 ----D---- C:\Program Files\The KMPlayer
2013-05-29 22:41:46 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2013-05-29 22:41:46 ----A---- C:\windows\system32\elshyph.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\wextract.exe
2013-05-29 22:41:45 ----A---- C:\windows\system32\vbscript.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2013-05-29 22:41:45 ----A---- C:\windows\system32\pngfilt.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\occache.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\msrating.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\msls31.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\mshtmler.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\mshtmled.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\mshta.exe
2013-05-29 22:41:45 ----A---- C:\windows\system32\msfeedssync.exe
2013-05-29 22:41:45 ----A---- C:\windows\system32\inseng.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\imgutil.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\iexpress.exe
2013-05-29 22:41:45 ----A---- C:\windows\system32\ieUnatt.exe
2013-05-29 22:41:45 ----A---- C:\windows\system32\iepeers.dll
2013-05-29 22:41:45 ----A---- C:\windows\system32\IEAdvpack.dll
2013-05-29 22:41:44 ----A---- C:\windows\system32\ieapfltr.dll
2013-05-29 22:41:44 ----A---- C:\windows\system32\ieapfltr.dat
2013-05-29 22:41:44 ----A---- C:\windows\system32\icardie.dll
2013-05-29 22:41:44 ----A---- C:\windows\system32\dxtrans.dll
2013-05-29 22:41:44 ----A---- C:\windows\system32\dxtmsft.dll
2013-05-29 22:41:43 ----A---- C:\windows\system32\webcheck.dll
2013-05-29 22:41:43 ----A---- C:\windows\system32\url.dll
2013-05-29 22:41:43 ----A---- C:\windows\system32\mshtmlmedia.dll
2013-05-29 22:41:43 ----A---- C:\windows\system32\licmgr10.dll
2013-05-29 22:41:43 ----A---- C:\windows\system32\iedkcs32.dll
2013-05-29 22:40:51 ----AH---- C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-29 22:40:51 ----AH---- C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-29 22:40:51 ----AH---- C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-29 22:40:51 ----AH---- C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-29 22:40:51 ----AH---- C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-29 22:40:51 ----AH---- C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-29 22:40:51 ----AH---- C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-29 22:40:51 ----AH---- C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-29 22:40:51 ----AH---- C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\XpsPrint.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\XpsGdiConverter.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\WMPhoto.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\UIAnimation.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\msmpeg2vdec.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\FntCache.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\dxgi.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\DWrite.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\d3d10warp.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\d3d10level9.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\d3d10core.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\d3d10_1core.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\d3d10_1.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\d3d10.dll
2013-05-29 22:40:51 ----A---- C:\windows\system32\d2d1.dll
2013-05-29 05:51:40 ----A---- C:\windows\system32\msfeedsbs.dll
2013-05-24 21:46:46 ----A---- C:\windows\system32\MRT.exe
2013-05-24 21:22:00 ----N---- C:\windows\system32\MpSigStub.exe
2013-05-24 20:58:38 ----A---- C:\windows\system32\imon.dll
2013-05-24 20:58:38 ----A---- C:\windows\system32\drivers\amon.sys
2013-05-24 20:58:37 ----A---- C:\windows\system32\drivers\nod32drv.sys
2013-05-24 20:53:45 ----D---- C:\Program Files\ESET
2013-05-24 19:35:44 ----A---- C:\windows\system32\aswBoot.exe
2013-05-24 19:35:35 ----D---- C:\ProgramData\AVAST Software
2013-05-24 19:35:35 ----D---- C:\Program Files\AVAST Software
2013-05-24 19:09:29 ----D---- C:\Users\cashgen\AppData\Roaming\uTorrent
2013-05-24 19:02:16 ----D---- C:\Users\cashgen\AppData\Roaming\vlc
2013-05-24 18:54:37 ----D---- C:\Program Files\VideoLAN
2013-05-24 18:49:43 ----D---- C:\Users\cashgen\AppData\Roaming\GHISLER
2013-05-24 18:49:43 ----D---- C:\totalcmd
2013-05-24 17:55:00 ----D---- C:\Program Files\Google
2013-05-22 10:28:14 ----D---- C:\Users\cashgen\AppData\Roaming\Panda Security
2013-05-22 10:23:24 ----D---- C:\ProgramData\Panda Security
2013-05-22 10:22:15 ----D---- C:\temp
2013-05-22 10:08:39 ----D---- C:\Program Files\SevenZip
2013-05-22 10:08:11 ----D---- C:\Users\cashgen\AppData\Roaming\Dealply
2013-05-22 10:07:37 ----D---- C:\Program Files\Conduit
2013-05-22 10:07:07 ----A---- C:\windows\system32\msvcr100.dll
2013-05-22 10:07:07 ----A---- C:\windows\system32\msvcp100.dll
2013-05-22 10:05:46 ----D---- C:\Program Files\Company
2013-05-22 08:23:49 ----A---- C:\windows\system32\drivers\ndis.sys
2013-05-22 08:23:48 ----A---- C:\windows\system32\drivers\RNDISMP.sys
2013-05-22 08:22:28 ----A---- C:\windows\system32\OxpsConverter.exe
2013-05-22 08:22:23 ----A---- C:\windows\system32\wwansvc.dll
2013-05-22 08:22:23 ----A---- C:\windows\system32\wwanprotdim.dll
2013-05-22 08:22:22 ----A---- C:\windows\system32\win32k.sys
2013-05-22 08:22:16 ----A---- C:\windows\system32\nlasvc.dll
2013-05-22 08:22:16 ----A---- C:\windows\system32\netcorehc.dll
2013-05-22 08:22:16 ----A---- C:\windows\system32\ncsi.dll
2013-05-22 08:22:16 ----A---- C:\windows\system32\iphlpsvc.dll
2013-05-22 08:22:16 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2013-05-22 08:22:15 ----A---- C:\windows\system32\nlaapi.dll
2013-05-22 08:22:15 ----A---- C:\windows\system32\netevent.dll
2013-05-22 08:20:54 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2013-05-22 08:20:53 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2013-05-22 08:20:52 ----A---- C:\windows\system32\taskhost.exe
2013-05-22 08:20:47 ----A---- C:\windows\system32\dhcpcsvc6.dll
2013-05-22 08:20:47 ----A---- C:\windows\system32\dhcpcore6.dll
2013-05-22 08:16:45 ----A---- C:\windows\system32\shell32.dll
2013-05-22 08:16:44 ----A---- C:\windows\system32\shdocvw.dll
2013-05-22 08:16:44 ----A---- C:\windows\system32\consent.exe
2013-05-22 08:16:44 ----A---- C:\windows\system32\authui.dll
2013-05-22 08:16:44 ----A---- C:\windows\system32\appinfo.dll
2013-05-22 07:33:09 ----D---- C:\windows\system32\SPReview
2013-05-21 05:47:37 ----D---- C:\windows\system32\EventProviders
2013-05-20 16:10:04 ----D---- C:\ProgramData\McAfee
2013-05-20 16:09:54 ----A---- C:\windows\system32\FlashPlayerApp.exe
2013-05-20 14:06:12 ----D---- C:\Users\cashgen\AppData\Roaming\Mozilla
2013-05-20 14:05:59 ----D---- C:\ProgramData\Mozilla
2013-05-20 14:05:59 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-05-20 14:05:55 ----D---- C:\Program Files\Mozilla Firefox
2013-05-20 12:57:52 ----A---- C:\windows\system32\dfshim.dll
2013-05-20 12:57:47 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-05-20 12:57:47 ----A---- C:\windows\system32\drivers\TsUsbFlt.sys
2013-05-20 12:57:43 ----A---- C:\windows\system32\mfc40u.dll
2013-05-20 12:57:43 ----A---- C:\windows\system32\mfc40.dll
2013-05-20 12:57:42 ----A---- C:\windows\system32\sysmain.dll
2013-05-20 12:57:40 ----A---- C:\windows\system32\secproc_isv.dll
2013-05-20 12:57:39 ----A---- C:\windows\system32\RMActivate_isv.exe
2013-05-20 12:57:38 ----A---- C:\windows\system32\secproc.dll
2013-05-20 12:57:38 ----A---- C:\windows\system32\RMActivate.exe
2013-05-20 12:57:36 ----A---- C:\windows\system32\spwizui.dll
2013-05-20 12:57:36 ----A---- C:\windows\system32\mscoree.dll
2013-05-20 12:57:34 ----A---- C:\windows\system32\mf.dll
2013-05-20 12:57:33 ----A---- C:\windows\system32\mcupdate_GenuineIntel.dll
2013-05-20 12:57:32 ----A---- C:\windows\system32\wmp.dll
2013-05-20 12:57:32 ----A---- C:\windows\system32\CertEnroll.dll
2013-05-20 12:57:30 ----A---- C:\windows\system32\PresentationHostProxy.dll
2013-05-20 12:57:30 ----A---- C:\windows\system32\PresentationHost.exe
2013-05-20 12:57:30 ----A---- C:\windows\system32\drivers\msiscsi.sys
2013-05-20 12:57:30 ----A---- C:\windows\system32\drivers\hwpolicy.sys
2013-05-20 12:57:29 ----A---- C:\windows\system32\schedsvc.dll
2013-05-20 12:57:28 ----A---- C:\windows\system32\RacEngn.dll
2013-05-20 12:57:27 ----A---- C:\windows\system32\AuthFWSnapin.dll
2013-05-20 12:57:26 ----A---- C:\windows\system32\rdpdd.dll
2013-05-20 12:57:26 ----A---- C:\windows\system32\qmgr.dll
2013-05-20 12:57:25 ----A---- C:\windows\system32\ExplorerFrame.dll
2013-05-20 12:57:24 ----A---- C:\windows\system32\wevtsvc.dll
2013-05-20 12:57:24 ----A---- C:\windows\system32\ole32.dll
2013-05-20 12:57:23 ----A---- C:\windows\system32\vssapi.dll
2013-05-20 12:57:23 ----A---- C:\windows\system32\SearchFolder.dll
2013-05-20 12:57:23 ----A---- C:\windows\system32\d3d9.dll
2013-05-20 12:57:22 ----A---- C:\windows\system32\IKEEXT.DLL
2013-05-20 12:57:21 ----A---- C:\windows\system32\taskschd.dll
2013-05-20 12:57:20 ----A---- C:\windows\system32\spreview.exe
2013-05-20 12:57:20 ----A---- C:\windows\system32\spinstall.exe
2013-05-20 12:57:20 ----A---- C:\windows\system32\mstsc.exe
2013-05-20 12:57:19 ----A---- C:\windows\system32\wer.dll
2013-05-20 12:57:19 ----A---- C:\windows\system32\termsrv.dll
2013-05-20 12:57:19 ----A---- C:\windows\system32\rpcrt4.dll
2013-05-20 12:57:19 ----A---- C:\windows\system32\certcli.dll
2013-05-20 12:57:18 ----A---- C:\windows\system32\odbc32.dll
2013-05-20 12:57:18 ----A---- C:\windows\system32\gpsvc.dll
2013-05-20 12:57:18 ----A---- C:\windows\system32\dwmcore.dll
2013-05-20 12:57:17 ----A---- C:\windows\system32\wbengine.exe
2013-05-20 12:57:17 ----A---- C:\windows\system32\MPSSVC.dll
2013-05-20 12:57:17 ----A---- C:\windows\system32\diagperf.dll
2013-05-20 12:57:16 ----A---- C:\windows\system32\WinSAT.exe
2013-05-20 12:57:16 ----A---- C:\windows\system32\TSWorkspace.dll
2013-05-20 12:57:16 ----A---- C:\windows\system32\scavengeui.dll
2013-05-20 12:57:15 ----A---- C:\windows\system32\tsmf.dll
2013-05-20 12:57:15 ----A---- C:\windows\system32\dot3api.dll
2013-05-20 12:57:14 ----A---- C:\windows\system32\winhttp.dll
2013-05-20 12:57:14 ----A---- C:\windows\system32\setupapi.dll
2013-05-20 12:57:14 ----A---- C:\windows\system32\MSVidCtl.dll
2013-05-20 12:57:14 ----A---- C:\windows\system32\apphelp.dll
2013-05-20 12:57:13 ----A---- C:\windows\system32\VSSVC.exe
2013-05-20 12:57:13 ----A---- C:\windows\system32\netlogon.dll
2013-05-20 12:57:13 ----A---- C:\windows\system32\dbgeng.dll
2013-05-20 12:57:12 ----A---- C:\windows\system32\WMVDECOD.DLL
2013-05-20 12:57:12 ----A---- C:\windows\system32\winlogon.exe
2013-05-20 12:57:12 ----A---- C:\windows\system32\user32.dll
2013-05-20 12:57:12 ----A---- C:\windows\system32\netcfgx.dll
2013-05-20 12:57:11 ----A---- C:\windows\system32\Query.dll
2013-05-20 12:57:10 ----A---- C:\windows\system32\WsmSvc.dll
2013-05-20 12:57:10 ----A---- C:\windows\system32\upnp.dll
2013-05-20 12:57:10 ----A---- C:\windows\system32\netfxperf.dll
2013-05-20 12:57:10 ----A---- C:\windows\system32\mmcndmgr.dll
2013-05-20 12:57:10 ----A---- C:\windows\system32\DShowRdpFilter.dll
2013-05-20 12:57:10 ----A---- C:\windows\system32\advapi32.dll
2013-05-20 12:57:09 ----A---- C:\windows\system32\msv1_0.dll
2013-05-20 12:57:09 ----A---- C:\windows\system32\msdrm.dll
2013-05-20 12:57:09 ----A---- C:\windows\system32\lsm.exe
2013-05-20 12:57:09 ----A---- C:\windows\system32\imapi2fs.dll
2013-05-20 12:57:08 ----A---- C:\windows\system32\sppobjs.dll
2013-05-20 12:57:08 ----A---- C:\windows\system32\shlwapi.dll
2013-05-20 12:57:08 ----A---- C:\windows\system32\SessEnv.dll
2013-05-20 12:57:08 ----A---- C:\windows\system32\PortableDeviceApi.dll
2013-05-20 12:57:07 ----A---- C:\windows\system32\mcbuilder.exe
2013-05-20 12:57:06 ----A---- C:\windows\system32\xpsservices.dll
2013-05-20 12:57:06 ----A---- C:\windows\system32\winload.exe
2013-05-20 12:57:06 ----A---- C:\windows\system32\WebClnt.dll
2013-05-20 12:57:06 ----A---- C:\windows\system32\userenv.dll
2013-05-20 12:57:06 ----A---- C:\windows\system32\drvstore.dll
2013-05-20 12:57:06 ----A---- C:\windows\system32\comdlg32.dll
2013-05-20 12:57:06 ----A---- C:\windows\system32\certmgr.dll
2013-05-20 12:57:06 ----A---- C:\windows\system32\audiosrv.dll
2013-05-20 12:57:05 ----A---- C:\windows\system32\sppwinob.dll
2013-05-20 12:57:04 ----A---- C:\windows\system32\rpcss.dll
2013-05-20 12:57:04 ----A---- C:\windows\system32\framedynos.dll
2013-05-20 12:57:04 ----A---- C:\windows\system32\cmd.exe
2013-05-20 12:57:04 ----A---- C:\windows\system32\BFE.DLL
2013-05-20 12:57:03 ----A---- C:\windows\system32\Wldap32.dll
2013-05-20 12:57:03 ----A---- C:\windows\system32\propsys.dll
2013-05-20 12:57:03 ----A---- C:\windows\system32\mfds.dll
2013-05-20 12:57:03 ----A---- C:\windows\system32\drivers\volsnap.sys
2013-05-20 12:57:02 ----A---- C:\windows\system32\wmicmiplugin.dll
2013-05-20 12:57:02 ----A---- C:\windows\system32\winresume.exe
2013-05-20 12:57:02 ----A---- C:\windows\system32\samsrv.dll
2013-05-20 12:57:01 ----A---- C:\windows\system32\werconcpl.dll
2013-05-20 12:57:01 ----A---- C:\windows\system32\azroles.dll
2013-05-20 12:57:00 ----A---- C:\windows\system32\themeui.dll
2013-05-20 12:57:00 ----A---- C:\windows\system32\taskeng.exe
2013-05-20 12:57:00 ----A---- C:\windows\system32\spp.dll
2013-05-20 12:57:00 ----A---- C:\windows\system32\mswsock.dll
2013-05-20 12:57:00 ----A---- C:\windows\system32\dhcpcore.dll
2013-05-20 12:57:00 ----A---- C:\windows\system32\credui.dll
2013-05-20 12:56:59 ----A---- C:\windows\system32\drivers\http.sys
2013-05-20 12:56:58 ----A---- C:\windows\system32\taskcomp.dll
2013-05-20 12:56:58 ----A---- C:\windows\system32\NaturalLanguage6.dll
2013-05-20 12:56:58 ----A---- C:\windows\system32\mfreadwrite.dll
2013-05-20 12:56:58 ----A---- C:\windows\system32\evr.dll
2013-05-20 12:56:58 ----A---- C:\windows\system32\drivers\mrxdav.sys
2013-05-20 12:56:58 ----A---- C:\windows\system32\dbghelp.dll
2013-05-20 12:56:58 ----A---- C:\windows\system32\basecsp.dll
2013-05-20 12:56:57 ----A---- C:\windows\system32\WinSATAPI.dll
2013-05-20 12:56:57 ----A---- C:\windows\system32\gdi32.dll
2013-05-20 12:56:57 ----A---- C:\windows\system32\drivers\1394ohci.sys
2013-05-20 12:56:57 ----A---- C:\windows\system32\calc.exe
2013-05-20 12:56:56 ----A---- C:\windows\system32\vpnike.dll
2013-05-20 12:56:56 ----A---- C:\windows\system32\sqlsrv32.dll
2013-05-20 12:56:56 ----A---- C:\windows\system32\QAGENTRT.DLL
2013-05-20 12:56:55 ----A---- C:\windows\system32\srvsvc.dll
2013-05-20 12:56:54 ----A---- C:\windows\system32\UIRibbon.dll
2013-05-20 12:56:54 ----A---- C:\windows\system32\lpksetup.exe
2013-05-20 12:56:54 ----A---- C:\windows\system32\fveapi.dll
2013-05-20 12:56:53 ----A---- C:\windows\system32\sxs.dll
2013-05-20 12:56:52 ----A---- C:\windows\system32\ws2_32.dll
2013-05-20 12:56:52 ----A---- C:\windows\system32\stobject.dll
2013-05-20 12:56:52 ----A---- C:\windows\system32\netshell.dll
2013-05-20 12:56:52 ----A---- C:\windows\system32\hgprint.dll
2013-05-20 12:56:52 ----A---- C:\windows\system32\drivers\msdsm.sys
2013-05-20 12:56:51 ----A---- C:\windows\system32\prncache.dll
2013-05-20 12:56:51 ----A---- C:\windows\system32\printui.dll
2013-05-20 12:56:51 ----A---- C:\windows\system32\inetpp.dll
2013-05-20 12:56:51 ----A---- C:\windows\system32\drivers\rdbss.sys
2013-05-20 12:56:51 ----A---- C:\windows\system32\comctl32.dll
2013-05-20 12:56:50 ----A---- C:\windows\system32\WSDApi.dll
2013-05-20 12:56:50 ----A---- C:\windows\system32\wmpeffects.dll
2013-05-20 12:56:50 ----A---- C:\windows\system32\dps.dll
2013-05-20 12:56:49 ----A---- C:\windows\system32\rpchttp.dll
2013-05-20 12:56:49 ----A---- C:\windows\system32\net1.exe
2013-05-20 12:56:49 ----A---- C:\windows\system32\ci.dll
2013-05-20 12:56:49 ----A---- C:\windows\system32\aitagent.exe
2013-05-20 12:56:49 ----A---- C:\windows\system32\aepdu.dll
2013-05-20 12:56:48 ----A---- C:\windows\system32\vds.exe
2013-05-20 12:56:48 ----A---- C:\windows\system32\scansetting.dll
2013-05-20 12:56:48 ----A---- C:\windows\system32\FXSSVC.exe
2013-05-20 12:56:48 ----A---- C:\windows\system32\drivers\pci.sys
2013-05-20 12:56:47 ----A---- C:\windows\system32\WMVCORE.DLL
2013-05-20 12:56:47 ----A---- C:\windows\system32\MMDevAPI.dll
2013-05-20 12:56:47 ----A---- C:\windows\system32\davclnt.dll
2013-05-20 12:56:46 ----A---- C:\windows\system32\wlangpui.dll
2013-05-20 12:56:46 ----A---- C:\windows\system32\QSHVHOST.DLL
2013-05-20 12:56:46 ----A---- C:\windows\system32\pnidui.dll
2013-05-20 12:56:46 ----A---- C:\windows\system32\IPSECSVC.DLL
2013-05-20 12:56:45 ----A---- C:\windows\system32\wpdshext.dll
2013-05-20 12:56:45 ----A---- C:\windows\system32\t2embed.dll
2013-05-20 12:56:44 ----A---- C:\windows\system32\webservices.dll
2013-05-20 12:56:44 ----A---- C:\windows\system32\netdiagfx.dll
2013-05-20 12:56:44 ----A---- C:\windows\system32\fde.dll
2013-05-20 12:56:44 ----A---- C:\windows\system32\drivers\termdd.sys
2013-05-20 12:56:44 ----A---- C:\windows\system32\drivers\sbp2port.sys
2013-05-20 12:56:43 ----A---- C:\windows\system32\wscapi.dll
2013-05-20 12:56:43 ----A---- C:\windows\system32\TsUsbGDCoInstaller.dll
2013-05-20 12:56:43 ----A---- C:\windows\system32\SyncCenter.dll
2013-05-20 12:56:43 ----A---- C:\windows\system32\sdengin2.dll
2013-05-20 12:56:42 ----A---- C:\windows\system32\wisptis.exe
2013-05-20 12:56:42 ----A---- C:\windows\system32\WinSCard.dll
2013-05-20 12:56:42 ----A---- C:\windows\system32\pla.dll
2013-05-20 12:56:42 ----A---- C:\windows\system32\msasn1.dll
2013-05-20 12:56:41 ----A---- C:\windows\system32\winsta.dll
2013-05-20 12:56:41 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2013-05-20 12:56:41 ----A---- C:\windows\system32\mcmde.dll
2013-05-20 12:56:41 ----A---- C:\windows\system32\drivers\vhdmp.sys
2013-05-20 12:56:41 ----A---- C:\windows\system32\drivers\msahci.sys
2013-05-20 12:56:40 ----A---- C:\windows\system32\wiaservc.dll
2013-05-20 12:56:40 ----A---- C:\windows\system32\setupcl.exe
2013-05-20 12:56:40 ----A---- C:\windows\system32\imapi2.dll
2013-05-20 12:56:40 ----A---- C:\windows\system32\DXPTaskRingtone.dll
2013-05-20 12:56:40 ----A---- C:\windows\system32\aeinv.dll
2013-05-20 12:56:38 ----A---- C:\windows\system32\WMPEncEn.dll
2013-05-20 12:56:38 ----A---- C:\windows\system32\shsvcs.dll
2013-05-20 12:56:38 ----A---- C:\windows\system32\rasmans.dll
2013-05-20 12:56:38 ----A---- C:\windows\system32\onex.dll
2013-05-20 12:56:38 ----A---- C:\windows\system32\dwmredir.dll
2013-05-20 12:56:38 ----A---- C:\windows\system32\drivers\acpi.sys
2013-05-20 12:56:37 ----A---- C:\windows\system32\winmm.dll
2013-05-20 12:56:37 ----A---- C:\windows\system32\vaultsvc.dll
2013-05-20 12:56:37 ----A---- C:\windows\system32\TabSvc.dll
2013-05-20 12:56:37 ----A---- C:\windows\system32\hbaapi.dll
2013-05-20 12:56:37 ----A---- C:\windows\system32\drivers\udfs.sys
2013-05-20 12:56:37 ----A---- C:\windows\system32\autofmt.exe
2013-05-20 12:56:36 ----A---- C:\windows\system32\samcli.dll
2013-05-20 12:56:36 ----A---- C:\windows\system32\proquota.exe
2013-05-20 12:56:36 ----A---- C:\windows\system32\netiohlp.dll
2013-05-20 12:56:36 ----A---- C:\windows\system32\Narrator.exe
2013-05-20 12:56:36 ----A---- C:\windows\system32\IPHLPAPI.DLL
2013-05-20 12:56:36 ----A---- C:\windows\system32\bootres.dll
2013-05-20 12:56:36 ----A---- C:\windows\system32\autochk.exe
2013-05-20 12:56:36 ----A---- C:\windows\system32\audiodg.exe
2013-05-20 12:56:35 ----A---- C:\windows\system32\thumbcache.dll
2013-05-20 12:56:35 ----A---- C:\windows\system32\regapi.dll
2013-05-20 12:56:35 ----A---- C:\windows\system32\msutb.dll
2013-05-20 12:56:35 ----A---- C:\windows\system32\msinfo32.exe
2013-05-20 12:56:35 ----A---- C:\windows\system32\mimefilt.dll
2013-05-20 12:56:35 ----A---- C:\windows\system32\halmacpi.dll
2013-05-20 12:56:35 ----A---- C:\windows\system32\hal.dll
2013-05-20 12:56:35 ----A---- C:\windows\system32\autoconv.exe
2013-05-20 12:56:35 ----A---- C:\windows\system32\AudioSes.dll
2013-05-20 12:56:34 ----A---- C:\windows\system32\tcpipcfg.dll
2013-05-20 12:56:34 ----A---- C:\windows\system32\srchadmin.dll
2013-05-20 12:56:34 ----A---- C:\windows\system32\schtasks.exe
2013-05-20 12:56:34 ----A---- C:\windows\system32\ipsmsnap.dll
2013-05-20 12:56:34 ----A---- C:\windows\system32\drivers\winusb.sys
2013-05-20 12:56:33 ----A---- C:\windows\system32\wcncsvc.dll
2013-05-20 12:56:33 ----A---- C:\windows\system32\powercpl.dll
2013-05-20 12:56:33 ----A---- C:\windows\system32\msihnd.dll
2013-05-20 12:56:33 ----A---- C:\windows\system32\framedyn.dll
2013-05-20 12:56:33 ----A---- C:\windows\system32\eapphost.dll
2013-05-20 12:56:33 ----A---- C:\windows\system32\drivers\volmgr.sys
2013-05-20 12:56:32 ----A---- C:\windows\system32\QAGENT.DLL
2013-05-20 12:56:32 ----A---- C:\windows\system32\mscorier.dll
2013-05-20 12:56:32 ----A---- C:\windows\system32\drivers\netbt.sys
2013-05-20 12:56:32 ----A---- C:\windows\system32\AuxiliaryDisplayCpl.dll
2013-05-20 12:56:31 ----A---- C:\windows\system32\wdc.dll
2013-05-20 12:56:31 ----A---- C:\windows\system32\umpo.dll
2013-05-20 12:56:31 ----A---- C:\windows\system32\netid.dll
2013-05-20 12:56:31 ----A---- C:\windows\system32\DXP.dll
2013-05-20 12:56:31 ----A---- C:\windows\system32\actxprxy.dll
2013-05-20 12:56:30 ----A---- C:\windows\system32\untfs.dll
2013-05-20 12:56:30 ----A---- C:\windows\system32\StructuredQuery.dll
2013-05-20 12:56:30 ----A---- C:\windows\system32\scesrv.dll
2013-05-20 12:56:30 ----A---- C:\windows\system32\rastls.dll
2013-05-20 12:56:30 ----A---- C:\windows\system32\drivers\ataport.sys
2013-05-20 12:56:29 ----A---- C:\windows\system32\Vault.dll
2013-05-20 12:56:29 ----A---- C:\windows\system32\sdclt.exe
2013-05-20 12:56:29 ----A---- C:\windows\system32\nci.dll
2013-05-20 12:56:28 ----A---- C:\windows\system32\wlanpref.dll
2013-05-20 12:56:28 ----A---- C:\windows\system32\sppsvc.exe
2013-05-20 12:56:28 ----A---- C:\windows\system32\ListSvc.dll
2013-05-20 12:56:27 ----A---- C:\windows\system32\WMNetMgr.dll
2013-05-20 12:56:27 ----A---- C:\windows\system32\RpcRtRemote.dll
2013-05-20 12:56:27 ----A---- C:\windows\system32\Robocopy.exe
2013-05-20 12:56:26 ----A---- C:\windows\system32\taskmgr.exe
2013-05-20 12:56:26 ----A---- C:\windows\system32\DxpTaskSync.dll
2013-05-20 12:56:25 ----A---- C:\windows\system32\mtxclu.dll
2013-05-20 12:56:25 ----A---- C:\windows\system32\msdri.dll
2013-05-20 12:56:25 ----A---- C:\windows\system32\drivers\usbvideo.sys
2013-05-20 12:56:25 ----A---- C:\windows\system32\drivers\mpio.sys
2013-05-20 12:56:25 ----A---- C:\windows\system32\drivers\mountmgr.sys
2013-05-20 12:56:25 ----A---- C:\windows\system32\Display.dll
2013-05-20 12:56:24 ----A---- C:\windows\system32\XpsRasterService.dll
2013-05-20 12:56:24 ----A---- C:\windows\system32\userinit.exe
2013-05-20 12:56:24 ----A---- C:\windows\system32\termmgr.dll
2013-05-20 12:56:24 ----A---- C:\windows\system32\sharemediacpl.dll
2013-05-20 12:56:24 ----A---- C:\windows\system32\puiobj.dll
2013-05-20 12:56:23 ----A---- C:\windows\system32\eudcedit.exe
2013-05-20 12:56:23 ----A---- C:\windows\system32\drivers\scsiport.sys
2013-05-20 12:56:23 ----A---- C:\windows\system32\DiagCpl.dll
2013-05-20 12:56:22 ----A---- C:\windows\system32\msdtctm.dll
2013-05-20 12:56:22 ----A---- C:\windows\system32\logoncli.dll
2013-05-20 12:56:21 ----A---- C:\windows\system32\wiadefui.dll
2013-05-20 12:56:21 ----A---- C:\windows\system32\sppcomapi.dll
2013-05-20 12:56:21 ----A---- C:\windows\system32\shsetup.dll
2013-05-20 12:56:21 ----A---- C:\windows\system32\rasppp.dll
2013-05-20 12:56:21 ----A---- C:\windows\system32\msconfig.exe
2013-05-20 12:56:21 ----A---- C:\windows\system32\cabview.dll
2013-05-20 12:56:21 ----A---- C:\windows\system32\biocpl.dll
2013-05-20 12:56:20 ----A---- C:\windows\system32\themecpl.dll
2013-05-20 12:56:20 ----A---- C:\windows\system32\SensorsCpl.dll
2013-05-20 12:56:20 ----A---- C:\windows\system32\FirewallControlPanel.dll
2013-05-20 12:56:19 ----A---- C:\windows\system32\wpccpl.dll
2013-05-20 12:56:19 ----A---- C:\windows\system32\FWPUCLNT.DLL
2013-05-20 12:56:19 ----A---- C:\windows\system32\drivers\rdyboost.sys
2013-05-20 12:56:19 ----A---- C:\windows\system32\dnscmmc.dll
2013-05-20 12:56:17 ----A---- C:\windows\system32\PhotoScreensaver.scr
2013-05-20 12:56:17 ----A---- C:\windows\system32\hgcpl.dll
2013-05-20 12:56:16 ----A---- C:\windows\system32\tapisrv.dll
2013-05-20 12:56:16 ----A---- C:\windows\system32\scecli.dll
2013-05-20 12:56:15 ----A---- C:\windows\system32\mscories.dll
2013-05-20 12:56:15 ----A---- C:\windows\system32\mscms.dll
2013-05-20 12:56:15 ----A---- C:\windows\system32\localsec.dll
2013-05-20 12:56:15 ----A---- C:\windows\system32\fontext.dll
2013-05-20 12:56:14 ----A---- C:\windows\system32\SndVolSSO.dll
2013-05-20 12:56:14 ----A---- C:\windows\system32\mprddm.dll
2013-05-20 12:56:14 ----A---- C:\windows\system32\iasacct.dll
2013-05-20 12:56:13 ----A---- C:\windows\system32\bcdsrv.dll
2013-05-20 12:56:12 ----A---- C:\windows\system32\wlanui.dll
2013-05-20 12:56:12 ----A---- C:\windows\system32\wkssvc.dll
2013-05-20 12:56:12 ----A---- C:\windows\system32\VAN.dll
2013-05-20 12:56:12 ----A---- C:\windows\system32\usercpl.dll
2013-05-20 12:56:12 ----A---- C:\windows\system32\qedit.dll
2013-05-20 12:56:12 ----A---- C:\windows\system32\prntvpt.dll
2013-05-20 12:56:12 ----A---- C:\windows\system32\PerfCenterCPL.dll
2013-05-20 12:56:12 ----A---- C:\windows\system32\mblctr.exe
2013-05-20 12:56:12 ----A---- C:\windows\system32\KMSVC.DLL
2013-05-20 12:56:12 ----A---- C:\windows\system32\batmeter.dll
2013-05-20 12:56:11 ----A---- C:\windows\system32\w32tm.exe
2013-05-20 12:56:11 ----A---- C:\windows\system32\SndVol.exe
2013-05-20 12:56:11 ----A---- C:\windows\system32\netcenter.dll
2013-05-20 12:56:10 ----A---- C:\windows\system32\zipfldr.dll
2013-05-20 12:56:10 ----A---- C:\windows\system32\wpdbusenum.dll
2013-05-20 12:56:10 ----A---- C:\windows\system32\wksprt.exe
2013-05-20 12:56:10 ----A---- C:\windows\system32\spwizeng.dll
2013-05-20 12:56:10 ----A---- C:\windows\system32\drivers\ks.sys
2013-05-20 12:56:10 ----A---- C:\windows\system32\azroleui.dll
2013-05-20 12:56:10 ----A---- C:\windows\system32\accessibilitycpl.dll
2013-05-20 12:56:09 ----A---- C:\windows\system32\MSAC3ENC.DLL
2013-05-20 12:56:09 ----A---- C:\windows\system32\fdeploy.dll
2013-05-20 12:56:08 ----A---- C:\windows\system32\wusa.exe
2013-05-20 12:56:08 ----A---- C:\windows\system32\networkmap.dll
2013-05-20 12:56:08 ----A---- C:\windows\system32\netjoin.dll
2013-05-20 12:56:08 ----A---- C:\windows\system32\mspbda.dll
2013-05-20 12:56:08 ----A---- C:\windows\system32\MCEWMDRMNDBootstrap.dll
2013-05-20 12:56:08 ----A---- C:\windows\system32\Faultrep.dll
2013-05-20 12:56:08 ----A---- C:\windows\system32\cryptui.dll
2013-05-20 12:56:08 ----A---- C:\windows\system32\adsldp.dll
2013-05-20 12:56:07 ----A---- C:\windows\system32\sud.dll
2013-05-20 12:56:07 ----A---- C:\windows\system32\prnfldr.dll
2013-05-20 12:56:07 ----A---- C:\windows\system32\OnLineIDCpl.dll
2013-05-20 12:56:07 ----A---- C:\windows\system32\ActionCenter.dll
2013-05-20 12:56:06 ----A---- C:\windows\system32\taskbarcpl.dll
2013-05-20 12:56:06 ----A---- C:\windows\system32\slui.exe
2013-05-20 12:56:06 ----A---- C:\windows\system32\photowiz.dll
2013-05-20 12:56:06 ----A---- C:\windows\system32\msieftp.dll
2013-05-20 12:56:06 ----A---- C:\windows\system32\MediaMetadataHandler.dll
2013-05-20 12:56:06 ----A---- C:\windows\system32\iasrad.dll
2013-05-20 12:56:06 ----A---- C:\windows\system32\credssp.dll
2013-05-20 12:56:05 ----A---- C:\windows\system32\iprtrmgr.dll
2013-05-20 12:56:05 ----A---- C:\windows\system32\drivers\hidclass.sys
2013-05-20 12:56:05 ----A---- C:\windows\system32\dot3cfg.dll
2013-05-20 12:56:05 ----A---- C:\windows\system32\defaultlocationcpl.dll
2013-05-20 12:56:04 ----A---- C:\windows\system32\wpd_ci.dll
2013-05-20 12:56:04 ----A---- C:\windows\system32\sisbkup.dll
2013-05-20 12:56:04 ----A---- C:\windows\system32\shwebsvc.dll
2013-05-20 12:56:04 ----A---- C:\windows\system32\ifsutil.dll
2013-05-20 12:56:04 ----A---- C:\windows\system32\halacpi.dll
2013-05-20 12:56:04 ----A---- C:\windows\system32\ftp.exe
2013-05-20 12:56:03 ----A---- C:\windows\system32\efscore.dll
2013-05-20 12:56:02 ----A---- C:\windows\system32\syncui.dll
2013-05-20 12:56:02 ----A---- C:\windows\system32\sdcpl.dll
2013-05-20 12:56:02 ----A---- C:\windows\system32\recovery.dll
2013-05-20 12:56:02 ----A---- C:\windows\system32\ActionCenterCPL.dll
2013-05-20 12:56:01 ----A---- C:\windows\system32\autoplay.dll
2013-05-20 12:56:00 ----A---- C:\windows\system32\wmpmde.dll
2013-05-20 12:56:00 ----A---- C:\windows\system32\sppnp.dll
2013-05-20 12:56:00 ----A---- C:\windows\system32\ntlanman.dll
2013-05-20 12:56:00 ----A---- C:\windows\system32\DeviceCenter.dll
2013-05-20 12:56:00 ----A---- C:\windows\system32\bcdedit.exe
2013-05-20 12:55:59 ----A---- C:\windows\system32\rtutils.dll
2013-05-20 12:55:59 ----A---- C:\windows\system32\dskquoui.dll
2013-05-20 12:55:58 ----A---- C:\windows\system32\vdsutil.dll
2013-05-20 12:55:58 ----A---- C:\windows\system32\systemcpl.dll
2013-05-20 12:55:58 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2013-05-20 12:55:58 ----A---- C:\windows\system32\recdisc.exe
2013-05-20 12:55:58 ----A---- C:\windows\system32\OobeFldr.dll
2013-05-20 12:55:58 ----A---- C:\windows\system32\ntprint.dll
2013-05-20 12:55:58 ----A---- C:\windows\system32\bcdboot.exe
2013-05-20 12:55:57 ----A---- C:\windows\system32\sethc.exe
2013-05-20 12:55:57 ----A---- C:\windows\system32\riched20.dll
2013-05-20 12:55:57 ----A---- C:\windows\system32\nshwfp.dll
2013-05-20 12:55:57 ----A---- C:\windows\system32\drivers\tdx.sys
2013-05-20 12:55:56 ----A---- C:\windows\system32\netplwiz.dll
2013-05-20 12:55:56 ----A---- C:\windows\system32\NAPHLPR.DLL
2013-05-20 12:55:56 ----A---- C:\windows\system32\fms.dll
2013-05-20 12:55:56 ----A---- C:\windows\system32\blackbox.dll
2013-05-20 12:55:56 ----A---- C:\windows\system32\AxInstSv.dll
2013-05-20 12:55:56 ----A---- C:\windows\system32\activeds.dll
2013-05-20 12:55:55 ----A---- C:\windows\system32\wmpsrcwp.dll
2013-05-20 12:55:55 ----A---- C:\windows\system32\migisol.dll
2013-05-20 12:55:55 ----A---- C:\windows\system32\dpx.dll
2013-05-20 12:55:55 ----A---- C:\windows\system32\AuxiliaryDisplayServices.dll
2013-05-20 12:55:54 ----A---- C:\windows\system32\nshipsec.dll
2013-05-20 12:55:54 ----A---- C:\windows\system32\httpapi.dll
2013-05-20 12:55:54 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2013-05-20 12:55:54 ----A---- C:\windows\system32\dot3svc.dll
2013-05-20 12:55:54 ----A---- C:\windows\system32\asycfilt.dll
2013-05-20 12:55:53 ----A---- C:\windows\system32\wsqmcons.exe
2013-05-20 12:55:53 ----A---- C:\windows\system32\isoburn.exe
2013-05-20 12:55:52 ----A---- C:\windows\system32\wlanmsm.dll
2013-05-20 12:55:52 ----A---- C:\windows\system32\wavemsp.dll
2013-05-20 12:55:52 ----A---- C:\windows\system32\ReAgent.dll
2013-05-20 12:55:52 ----A---- C:\windows\system32\provsvc.dll
2013-05-20 12:55:52 ----A---- C:\windows\system32\msftedit.dll
2013-05-20 12:55:52 ----A---- C:\windows\system32\dot3ui.dll
2013-05-20 12:55:51 ----A---- C:\windows\system32\dsuiext.dll
2013-05-20 12:55:51 ----A---- C:\windows\system32\dfrgui.exe
2013-05-20 12:55:50 ----A---- C:\windows\system32\wvc.dll
2013-05-20 12:55:50 ----A---- C:\windows\system32\wtsapi32.dll
2013-05-20 12:55:50 ----A---- C:\windows\system32\wimgapi.dll
2013-05-20 12:55:50 ----A---- C:\windows\system32\tzutil.exe
2013-05-20 12:55:50 ----A---- C:\windows\system32\sysclass.dll
2013-05-20 12:55:50 ----A---- C:\windows\system32\ocsetup.exe
2013-05-20 12:55:50 ----A---- C:\windows\system32\drivers\ndproxy.sys
2013-05-20 12:55:49 ----A---- C:\windows\twain_32.dll
2013-05-20 12:55:49 ----A---- C:\windows\system32\twext.dll
2013-05-20 12:55:49 ----A---- C:\windows\system32\PkgMgr.exe
2013-05-20 12:55:49 ----A---- C:\windows\system32\mstask.dll
2013-05-20 12:55:49 ----A---- C:\windows\system32\certprop.dll
2013-05-20 12:55:48 ----A---- C:\windows\system32\SmiEngine.dll
2013-05-20 12:55:48 ----A---- C:\windows\system32\setupugc.exe
2013-05-20 12:55:48 ----A---- C:\windows\system32\qcap.dll
2013-05-20 12:55:48 ----A---- C:\windows\system32\qasf.dll
2013-05-20 12:55:47 ----A---- C:\windows\system32\wwanconn.dll
2013-05-20 12:55:47 ----A---- C:\windows\system32\uxlib.dll
2013-05-20 12:55:47 ----A---- C:\windows\system32\ssText3d.scr
2013-05-20 12:55:47 ----A---- C:\windows\system32\srrstr.dll
2013-05-20 12:55:47 ----A---- C:\windows\system32\slwga.dll
2013-05-20 12:55:47 ----A---- C:\windows\system32\imm32.dll
2013-05-20 12:55:46 ----A---- C:\windows\system32\wmdrmsdk.dll
2013-05-20 12:55:46 ----A---- C:\windows\system32\nslookup.exe
2013-05-20 12:55:46 ----A---- C:\windows\system32\msvfw32.dll
2013-05-20 12:55:46 ----A---- C:\windows\system32\mciavi32.dll
2013-05-20 12:55:46 ----A---- C:\windows\system32\clusapi.dll
2013-05-20 12:55:46 ----A---- C:\windows\system32\audiodev.dll
2013-05-20 12:55:45 ----A---- C:\windows\system32\WPDShServiceObj.dll
2013-05-20 12:55:45 ----A---- C:\windows\system32\msscp.dll
2013-05-20 12:55:45 ----A---- C:\windows\system32\DevicePairingFolder.dll
2013-05-20 12:55:44 ----A---- C:\windows\system32\wimserv.exe

mamproblem · #3 Příspěvek od **mamproblem** » 12 čer 2013 19:18

DRUHA CAST logu:

2013-05-20 12:55:44 ----A---- C:\windows\system32\TSpkg.dll
2013-05-20 12:55:44 ----A---- C:\windows\system32\remotepg.dll
2013-05-20 12:55:44 ----A---- C:\windows\system32\rdpencom.dll
2013-05-20 12:55:44 ----A---- C:\windows\system32\raschap.dll
2013-05-20 12:55:44 ----A---- C:\windows\system32\perfmon.exe
2013-05-20 12:55:44 ----A---- C:\windows\system32\diskraid.exe
2013-05-20 12:55:44 ----A---- C:\windows\system32\acppage.dll
2013-05-20 12:55:43 ----A---- C:\windows\system32\QUTIL.DLL
2013-05-20 12:55:43 ----A---- C:\windows\system32\NAPCRYPT.DLL
2013-05-20 12:55:43 ----A---- C:\windows\system32\input.dll
2013-05-20 12:55:43 ----A---- C:\windows\system32\drmmgrtn.dll
2013-05-20 12:55:42 ----A---- C:\windows\system32\wmpdxm.dll
2013-05-20 12:55:42 ----A---- C:\windows\system32\WindowsAnytimeUpgradeResults.exe
2013-05-20 12:55:42 ----A---- C:\windows\system32\vpnikeapi.dll
2013-05-20 12:55:42 ----A---- C:\windows\system32\UserAccountControlSettings.dll
2013-05-20 12:55:42 ----A---- C:\windows\system32\sdrsvc.dll
2013-05-20 12:55:42 ----A---- C:\windows\system32\olepro32.dll
2013-05-20 12:55:42 ----A---- C:\windows\system32\ocsetapi.dll
2013-05-20 12:55:42 ----A---- C:\windows\system32\nltest.exe
2013-05-20 12:55:42 ----A---- C:\windows\system32\networkexplorer.dll
2013-05-20 12:55:41 ----A---- C:\windows\system32\wpdwcn.dll
2013-05-20 12:55:41 ----A---- C:\windows\system32\vdsbas.dll
2013-05-20 12:55:41 ----A---- C:\windows\system32\runonce.exe
2013-05-20 12:55:41 ----A---- C:\windows\system32\onexui.dll
2013-05-20 12:55:41 ----A---- C:\windows\system32\iTVData.dll
2013-05-20 12:55:41 ----A---- C:\windows\system32\dxdiagn.dll
2013-05-20 12:55:41 ----A---- C:\windows\bfsvc.exe
2013-05-20 12:55:40 ----A---- C:\windows\system32\Mcx2Svc.dll
2013-05-20 12:55:40 ----A---- C:\windows\system32\logagent.exe
2013-05-20 12:55:40 ----A---- C:\windows\system32\drivers\sdbus.sys
2013-05-20 12:55:39 ----A---- C:\windows\system32\msvidc32.dll
2013-05-20 12:55:39 ----A---- C:\windows\system32\msiexec.exe
2013-05-20 12:55:39 ----A---- C:\windows\system32\MFPlay.dll
2013-05-20 12:55:39 ----A---- C:\windows\system32\eapp3hst.dll
2013-05-20 12:55:39 ----A---- C:\windows\system32\drivers\rmcast.sys
2013-05-20 12:55:38 ----A---- C:\windows\system32\wmdrmdev.dll
2013-05-20 12:55:38 ----A---- C:\windows\system32\shacct.dll
2013-05-20 12:55:38 ----A---- C:\windows\system32\PnPUnattend.exe
2013-05-20 12:55:37 ----A---- C:\windows\system32\wmpshell.dll
2013-05-20 12:55:37 ----A---- C:\windows\system32\unimdmat.dll
2013-05-20 12:55:37 ----A---- C:\windows\system32\lsmproxy.dll
2013-05-20 12:55:37 ----A---- C:\windows\system32\bitsadmin.exe
2013-05-20 12:55:36 ----A---- C:\windows\system32\tabcal.exe
2013-05-20 12:55:36 ----A---- C:\windows\system32\sqlcese30.dll
2013-05-20 12:55:36 ----A---- C:\windows\system32\rdpd3d.dll
2013-05-20 12:55:36 ----A---- C:\windows\system32\mprapi.dll
2013-05-20 12:55:36 ----A---- C:\windows\system32\iscsium.dll
2013-05-20 12:55:36 ----A---- C:\windows\system32\Bubbles.scr
2013-05-20 12:55:35 ----A---- C:\windows\system32\WPDSp.dll
2013-05-20 12:55:35 ----A---- C:\windows\system32\srvcli.dll
2013-05-20 12:55:35 ----A---- C:\windows\system32\PortableDeviceSyncProvider.dll
2013-05-20 12:55:35 ----A---- C:\windows\system32\pdh.dll
2013-05-20 12:55:35 ----A---- C:\windows\system32\OpcServices.dll
2013-05-20 12:55:35 ----A---- C:\windows\system32\ncryptui.dll
2013-05-20 12:55:35 ----A---- C:\windows\system32\logman.exe
2013-05-20 12:55:35 ----A---- C:\windows\system32\djoin.exe
2013-05-20 12:55:35 ----A---- C:\windows\system32\cscapi.dll
2013-05-20 12:55:34 ----A---- C:\windows\system32\Ribbons.scr
2013-05-20 12:55:34 ----A---- C:\windows\system32\QSVRMGMT.DLL
2013-05-20 12:55:34 ----A---- C:\windows\system32\PortableDeviceStatus.dll
2013-05-20 12:55:34 ----A---- C:\windows\system32\olethk32.dll
2013-05-20 12:55:34 ----A---- C:\windows\system32\Mystify.scr
2013-05-20 12:55:34 ----A---- C:\windows\system32\MdSched.exe
2013-05-20 12:55:34 ----A---- C:\windows\system32\lpremove.exe
2013-05-20 12:55:33 ----A---- C:\windows\system32\WMADMOD.DLL
2013-05-20 12:55:33 ----A---- C:\windows\system32\utildll.dll
2013-05-20 12:55:33 ----A---- C:\windows\system32\mapistub.dll
2013-05-20 12:55:33 ----A---- C:\windows\system32\mapi32.dll
2013-05-20 12:55:33 ----A---- C:\windows\system32\ActionQueue.dll
2013-05-20 12:55:32 ----A---- C:\windows\system32\WMVSDECD.DLL
2013-05-20 12:55:32 ----A---- C:\windows\system32\WindowsAnytimeUpgrade.exe
2013-05-20 12:55:32 ----A---- C:\windows\system32\wiavideo.dll
2013-05-20 12:55:32 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-05-20 12:55:32 ----A---- C:\windows\system32\takeown.exe
2013-05-20 12:55:32 ----A---- C:\windows\system32\iyuv_32.dll
2013-05-20 12:55:32 ----A---- C:\windows\system32\fphc.dll
2013-05-20 12:55:32 ----A---- C:\windows\system32\dot3msm.dll
2013-05-20 12:55:32 ----A---- C:\windows\system32\avifil32.dll
2013-05-20 12:55:31 ----A---- C:\windows\system32\wmdrmnet.dll
2013-05-20 12:55:31 ----A---- C:\windows\system32\sppinst.dll
2013-05-20 12:55:31 ----A---- C:\windows\system32\qdv.dll
2013-05-20 12:55:31 ----A---- C:\windows\system32\msnetobj.dll
2013-05-20 12:55:31 ----A---- C:\windows\system32\EhStorAPI.dll
2013-05-20 12:55:30 ----A---- C:\windows\system32\unattend.dll
2013-05-20 12:55:30 ----A---- C:\windows\system32\QCLIPROV.DLL
2013-05-20 12:55:30 ----A---- C:\windows\system32\msyuv.dll
2013-05-20 12:55:30 ----A---- C:\windows\system32\msrle32.dll
2013-05-20 12:55:30 ----A---- C:\windows\system32\cmstp.exe
2013-05-20 12:55:30 ----A---- C:\windows\system32\cca.dll
2013-05-20 12:55:29 ----A---- C:\windows\system32\wsnmp32.dll
2013-05-20 12:55:29 ----A---- C:\windows\system32\WMSPDMOD.DLL
2013-05-20 12:55:29 ----A---- C:\windows\system32\vfwwdm32.dll
2013-05-20 12:55:29 ----A---- C:\windows\system32\setupcln.dll
2013-05-20 12:55:29 ----A---- C:\windows\system32\RelPost.exe
2013-05-20 12:55:29 ----A---- C:\windows\system32\pdhui.dll
2013-05-20 12:55:29 ----A---- C:\windows\system32\MuiUnattend.exe
2013-05-20 12:55:29 ----A---- C:\windows\system32\basesrv.dll
2013-05-20 12:55:28 ----A---- C:\windows\system32\umb.dll
2013-05-20 12:55:28 ----A---- C:\windows\system32\tsbyuv.dll
2013-05-20 12:55:28 ----A---- C:\windows\system32\msorcl32.dll
2013-05-20 12:55:28 ----A---- C:\windows\system32\iasrecst.dll
2013-05-20 12:55:28 ----A---- C:\windows\system32\drivers\ndisuio.sys
2013-05-20 12:55:28 ----A---- C:\windows\system32\AzSqlExt.dll
2013-05-20 12:55:27 ----A---- C:\windows\system32\wkscli.dll
2013-05-20 12:55:27 ----A---- C:\windows\system32\WavDest.dll
2013-05-20 12:55:27 ----A---- C:\windows\system32\sppuinotify.dll
2013-05-20 12:55:27 ----A---- C:\windows\system32\relog.exe
2013-05-20 12:55:27 ----A---- C:\windows\system32\PrintIsolationProxy.dll
2013-05-20 12:55:27 ----A---- C:\windows\system32\netiougc.exe
2013-05-20 12:55:27 ----A---- C:\windows\system32\iscsicli.exe
2013-05-20 12:55:26 ----A---- C:\windows\system32\spbcd.dll
2013-05-20 12:55:26 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2013-05-20 12:55:26 ----A---- C:\windows\system32\rastapi.dll
2013-05-20 12:55:26 ----A---- C:\windows\system32\netbtugc.exe
2013-05-20 12:55:26 ----A---- C:\windows\system32\mydocs.dll
2013-05-20 12:55:26 ----A---- C:\windows\system32\MultiDigiMon.exe
2013-05-20 12:55:26 ----A---- C:\windows\system32\diskpart.exe
2013-05-20 12:55:26 ----A---- C:\windows\system32\amstream.dll
2013-05-20 12:55:25 ----A---- C:\windows\system32\syssetup.dll
2013-05-20 12:55:25 ----A---- C:\windows\system32\setbcdlocale.dll
2013-05-20 12:55:25 ----A---- C:\windows\system32\secproc_ssp.dll
2013-05-20 12:55:25 ----A---- C:\windows\system32\resutils.dll
2013-05-20 12:55:25 ----A---- C:\windows\system32\nrpsrv.dll
2013-05-20 12:55:25 ----A---- C:\windows\system32\itircl.dll
2013-05-20 12:55:25 ----A---- C:\windows\system32\CertPolEng.dll
2013-05-20 12:55:24 ----A---- C:\windows\system32\wmpps.dll
2013-05-20 12:55:24 ----A---- C:\windows\system32\WerFaultSecure.exe
2013-05-20 12:55:24 ----A---- C:\windows\system32\FXSTIFF.dll
2013-05-20 12:55:23 ----A---- C:\windows\system32\tlscsp.dll
2013-05-20 12:55:23 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2013-05-20 12:55:23 ----A---- C:\windows\system32\ReAgentc.exe
2013-05-20 12:55:23 ----A---- C:\windows\system32\findstr.exe
2013-05-20 12:55:23 ----A---- C:\windows\system32\eappgnui.dll
2013-05-20 12:55:22 ----A---- C:\windows\system32\wiarpc.dll
2013-05-20 12:55:22 ----A---- C:\windows\system32\RMActivate_ssp.exe
2013-05-20 12:55:22 ----A---- C:\windows\system32\netutils.dll
2013-05-20 12:55:22 ----A---- C:\windows\system32\muifontsetup.dll
2013-05-20 12:55:22 ----A---- C:\windows\system32\mobsync.exe
2013-05-20 12:55:22 ----A---- C:\windows\system32\mciqtz32.dll
2013-05-20 12:55:22 ----A---- C:\windows\system32\cabinet.dll
2013-05-20 12:55:21 ----A---- C:\windows\system32\sppc.dll
2013-05-20 12:55:21 ----A---- C:\windows\system32\spopk.dll
2013-05-20 12:55:21 ----A---- C:\windows\system32\shimgvw.dll
2013-05-20 12:55:21 ----A---- C:\windows\system32\iccvid.dll
2013-05-20 12:55:21 ----A---- C:\windows\system32\drivers\tdi.sys
2013-05-20 12:55:21 ----A---- C:\windows\system32\dosx.exe
2013-05-20 12:55:20 ----A---- C:\windows\system32\wdiasqmmodule.dll
2013-05-20 12:55:20 ----A---- C:\windows\system32\unlodctr.exe
2013-05-20 12:55:20 ----A---- C:\windows\system32\repair-bde.exe
2013-05-20 12:55:20 ----A---- C:\windows\system32\netcfg.exe
2013-05-20 12:55:20 ----A---- C:\windows\system32\msdmo.dll
2013-05-20 12:55:20 ----A---- C:\windows\system32\manage-bde.exe
2013-05-20 12:55:20 ----A---- C:\windows\system32\luainstall.dll
2013-05-20 12:55:20 ----A---- C:\windows\system32\HotStartUserAgent.dll
2013-05-20 12:55:20 ----A---- C:\windows\system32\drivers\usbrpm.sys
2013-05-20 12:55:20 ----A---- C:\windows\system32\drivers\CompositeBus.sys
2013-05-20 12:55:19 ----A---- C:\windows\system32\rdprefdrvapi.dll
2013-05-20 12:55:19 ----A---- C:\windows\system32\inetmib1.dll
2013-05-20 12:55:18 ----A---- C:\windows\system32\UIRibbonRes.dll
2013-05-20 12:55:18 ----A---- C:\windows\system32\odbcconf.dll
2013-05-20 12:55:18 ----A---- C:\windows\system32\drivers\cdrom.sys
2013-05-20 12:55:17 ----A---- C:\windows\system32\perfts.dll
2013-05-20 12:55:17 ----A---- C:\windows\system32\icaapi.dll
2013-05-20 12:55:16 ----A---- C:\windows\system32\TRAPI.dll
2013-05-20 12:55:16 ----A---- C:\windows\system32\FXSMON.dll
2013-05-20 12:55:16 ----A---- C:\windows\system32\elsTrans.dll
2013-05-20 12:55:16 ----A---- C:\windows\system32\drivers\tunnel.sys
2013-05-20 12:55:16 ----A---- C:\windows\system32\drivers\dfsc.sys
2013-05-20 12:55:15 ----A---- C:\windows\system32\wshbth.dll
2013-05-20 12:55:15 ----A---- C:\windows\system32\schedcli.dll
2013-05-20 12:55:15 ----A---- C:\windows\system32\RDPENCDD.dll
2013-05-20 12:55:15 ----A---- C:\windows\system32\bitsperf.dll
2013-05-20 12:55:14 ----A---- C:\windows\system32\napdsnap.dll
2013-05-20 12:55:14 ----A---- C:\windows\system32\LogonUI.exe
2013-05-20 12:55:14 ----A---- C:\windows\system32\dsauth.dll
2013-05-20 12:55:14 ----A---- C:\windows\system32\drivers\acpipmi.sys
2013-05-20 12:55:14 ----A---- C:\windows\system32\cscdll.dll
2013-05-20 12:55:13 ----A---- C:\windows\system32\sscore.dll
2013-05-20 12:55:12 ----A---- C:\windows\system32\wsdchngr.dll
2013-05-20 12:55:12 ----A---- C:\windows\system32\shgina.dll
2013-05-20 12:55:12 ----A---- C:\windows\system32\riched32.dll
2013-05-20 12:55:12 ----A---- C:\windows\system32\drivers\ndiswan.sys
2013-05-20 12:55:10 ----A---- C:\windows\system32\rdpcfgex.dll
2013-05-20 12:55:10 ----A---- C:\windows\system32\drivers\hidusb.sys
2013-05-20 12:55:10 ----A---- C:\windows\system32\drivers\appid.sys
2013-05-20 12:55:09 ----A---- C:\windows\system32\wshirda.dll
2013-05-20 12:55:09 ----A---- C:\windows\system32\drivers\IPMIDrv.sys
2013-05-20 12:55:08 ----A---- C:\windows\system32\drivers\USBCAMD2.sys
2013-05-20 12:55:08 ----A---- C:\windows\system32\drivers\USBCAMD.sys
2013-05-20 12:55:08 ----A---- C:\windows\system32\drivers\kbdhid.sys
2013-05-20 12:55:08 ----A---- C:\windows\system32\browseui.dll
2013-05-20 12:55:07 ----A---- C:\windows\system32\spwmp.dll
2013-05-20 12:55:07 ----A---- C:\windows\system32\drivers\wanarp.sys
2013-05-20 12:55:07 ----A---- C:\windows\system32\drivers\umbus.sys
2013-05-20 12:55:07 ----A---- C:\windows\system32\drivers\HdAudio.sys
2013-05-20 12:55:07 ----A---- C:\windows\system32\drivers\hdaudbus.sys
2013-05-20 12:55:07 ----A---- C:\windows\system32\C_ISCII.DLL
2013-05-20 12:55:06 ----A---- C:\windows\system32\shunimpl.dll
2013-05-20 12:55:06 ----A---- C:\windows\system32\RDPREFDD.dll
2013-05-20 12:55:06 ----A---- C:\windows\system32\dxmasf.dll
2013-05-20 12:55:06 ----A---- C:\windows\system32\drivers\sffp_sd.sys
2013-05-20 12:55:06 ----A---- C:\windows\system32\drivers\scfilter.sys
2013-05-20 12:55:06 ----A---- C:\windows\system32\drivers\RDPCDD.sys
2013-05-20 12:55:05 ----A---- C:\windows\system32\wmploc.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDUS.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDUGHR1.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDTURME.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDTAJIK.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDSF.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDNEPR.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDMON.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDMAORI.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDLT1.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\kbdlk41a.dll
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDINTEL.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDINTAM.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDINORI.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDINKAN.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDGEO.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDBULG.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDBLR.DLL
2013-05-20 12:55:04 ----A---- C:\windows\system32\KBDBASH.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\pifmgr.dll
2013-05-20 12:55:03 ----A---- C:\windows\system32\nlsbres.dll
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDTUQ.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDTUF.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDSG.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDPO.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDINMAR.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDINHIN.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDINBEN.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDGR1.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDGKL.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\KBDCZ1.DLL
2013-05-20 12:55:03 ----A---- C:\windows\system32\BlbEvents.dll
2013-05-20 12:55:02 ----A---- C:\windows\system32\spwizres.dll
2013-05-20 12:54:47 ----A---- C:\windows\system32\wdscore.dll
2013-05-20 12:54:21 ----A---- C:\windows\system32\wbemcomn.dll
2013-05-20 12:54:01 ----A---- C:\windows\system32\sqmapi.dll
2013-05-20 12:18:43 ----A---- C:\windows\system32\drivers\usbport.sys
2013-05-20 12:18:43 ----A---- C:\windows\system32\drivers\usbehci.sys
2013-05-20 12:18:42 ----A---- C:\windows\system32\drivers\usbuhci.sys
2013-05-20 12:18:42 ----A---- C:\windows\system32\drivers\usbohci.sys
2013-05-20 12:18:42 ----A---- C:\windows\system32\drivers\usbhub.sys
2013-05-20 12:18:42 ----A---- C:\windows\system32\drivers\usbd.sys
2013-05-20 12:18:42 ----A---- C:\windows\system32\drivers\usbccgp.sys
2013-05-20 12:18:26 ----A---- C:\windows\system32\esent.dll
2013-05-20 12:18:25 ----A---- C:\windows\system32\drivers\nvstor.sys
2013-05-20 12:18:25 ----A---- C:\windows\system32\drivers\nvraid.sys
2013-05-20 12:18:25 ----A---- C:\windows\system32\drivers\amdsata.sys
2013-05-20 12:18:24 ----A---- C:\windows\system32\fsutil.exe
2013-05-20 12:18:24 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2013-05-20 12:18:24 ----A---- C:\windows\system32\drivers\storport.sys
2013-05-20 12:18:24 ----A---- C:\windows\system32\drivers\iaStorV.sys
2013-05-20 12:18:24 ----A---- C:\windows\system32\drivers\amdxata.sys
2013-05-20 12:18:10 ----A---- C:\windows\system32\fsquirt.exe
2013-05-20 12:18:10 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2013-05-20 12:18:10 ----A---- C:\windows\system32\drivers\bthport.sys
2013-05-20 03:02:20 ----A---- C:\windows\system32\msfeedsbs(38).dll
2013-05-19 06:34:55 ----D---- C:\windows\system32\Wat
2013-05-19 06:16:12 ----A---- C:\windows\system32\fontsub.dll
2013-05-19 06:16:12 ----A---- C:\windows\system32\atmlib.dll
2013-05-19 06:16:12 ----A---- C:\windows\system32\atmfd.dll
2013-05-19 05:42:45 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2013-05-19 05:42:45 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2013-05-19 05:42:44 ----A---- C:\windows\system32\Wdfres.dll
2013-05-19 05:41:22 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2013-05-19 05:41:22 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2013-05-19 05:41:21 ----A---- C:\windows\system32\WUDFSvc.dll
2013-05-19 05:41:21 ----A---- C:\windows\system32\WUDFPlatform.dll
2013-05-19 05:41:19 ----A---- C:\windows\system32\WUDFx.dll
2013-05-19 05:41:19 ----A---- C:\windows\system32\WUDFHost.exe
2013-05-19 05:41:19 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2013-05-19 05:40:02 ----A---- C:\windows\system32\wmi.dll
2013-05-19 05:40:02 ----A---- C:\windows\system32\imagehlp.dll
2013-05-19 05:40:02 ----A---- C:\windows\system32\drivers\fs_rec.sys
2013-05-19 05:38:35 ----A---- C:\windows\system32\browserchoice.exe
2013-05-18 19:08:20 ----D---- C:\Users\cashgen\AppData\Roaming\Skype
2013-05-18 19:08:04 ----RD---- C:\Program Files\Skype
2013-05-18 19:08:04 ----D---- C:\Program Files\Common Files\Skype
2013-05-18 19:07:49 ----D---- C:\ProgramData\Skype
2013-05-18 18:45:09 ----A---- C:\windows\system32\spoolsv.exe
2013-05-18 18:45:05 ----A---- C:\windows\system32\drivers\ntfs.sys
2013-05-18 18:45:04 ----A---- C:\windows\system32\usp10.dll
2013-05-18 18:45:03 ----A---- C:\windows\system32\drivers\usb8023.sys
2013-05-18 18:44:59 ----A---- C:\windows\system32\wintrust.dll
2013-05-18 18:44:13 ----A---- C:\windows\system32\dpnet.dll
2013-05-18 18:44:13 ----A---- C:\windows\system32\dpnaddr.dll
2013-05-18 18:44:00 ----A---- C:\windows\system32\drivers\fvevol.sys
2013-05-18 18:43:57 ----A---- C:\windows\system32\smss.exe
2013-05-18 18:43:57 ----A---- C:\windows\system32\csrsrv.dll
2013-05-18 18:42:53 ----A---- C:\windows\system32\schannel.dll
2013-05-18 18:42:53 ----A---- C:\windows\system32\lsasrv.dll
2013-05-18 18:42:53 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2013-05-18 18:42:53 ----A---- C:\windows\system32\drivers\cng.sys
2013-05-18 18:42:52 ----A---- C:\windows\system32\drivers\ksecdd.sys
2013-05-18 18:42:51 ----A---- C:\windows\system32\sspisrv.dll
2013-05-18 18:42:51 ----A---- C:\windows\system32\sspicli.dll
2013-05-18 18:42:51 ----A---- C:\windows\system32\secur32.dll
2013-05-18 18:42:51 ----A---- C:\windows\system32\lsass.exe
2013-05-18 18:42:45 ----A---- C:\windows\system32\msxml3r.dll
2013-05-18 18:42:45 ----A---- C:\windows\system32\msxml3.dll
2013-05-18 18:42:39 ----A---- C:\windows\system32\mstscax.dll
2013-05-18 18:42:38 ----A---- C:\windows\system32\tsgqec.dll
2013-05-18 18:42:38 ----A---- C:\windows\system32\aaclient.dll
2013-05-18 18:42:25 ----A---- C:\windows\system32\msxml6.dll
2013-05-18 18:42:17 ----A---- C:\windows\system32\drivers\netio.sys
2013-05-18 18:42:17 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2013-05-18 18:42:02 ----A---- C:\windows\system32\KernelBase.dll
2013-05-18 18:42:02 ----A---- C:\windows\system32\kernel32.dll
2013-05-18 18:42:02 ----A---- C:\windows\system32\conhost.exe
2013-05-18 18:42:00 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-05-18 18:42:00 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-05-18 18:42:00 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-05-18 18:42:00 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-05-18 18:42:00 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-05-18 18:42:00 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-05-18 18:42:00 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-05-18 18:42:00 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-05-18 18:42:00 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-05-18 18:41:59 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-05-18 18:41:29 ----A---- C:\windows\system32\cdosys.dll
2013-05-18 18:41:20 ----A---- C:\windows\system32\srcore.dll
2013-05-18 18:41:20 ----A---- C:\windows\system32\rstrui.exe
2013-05-18 18:41:18 ----A---- C:\windows\system32\drivers\srvnet.sys
2013-05-18 18:41:18 ----A---- C:\windows\system32\drivers\srv2.sys
2013-05-18 18:41:18 ----A---- C:\windows\system32\drivers\srv.sys
2013-05-18 18:41:16 ----A---- C:\windows\system32\dnsrslvr.dll
2013-05-18 18:41:16 ----A---- C:\windows\system32\dnscacheugc.exe
2013-05-18 18:41:16 ----A---- C:\windows\system32\dnsapi.dll
2013-05-18 18:40:59 ----A---- C:\windows\system32\drivers\afd.sys
2013-05-18 18:40:55 ----A---- C:\windows\system32\ntdll.dll
2013-05-18 18:40:44 ----A---- C:\windows\system32\prevhost.exe
2013-05-18 18:40:43 ----A---- C:\windows\system32\xmllite.dll
2013-05-18 18:40:40 ----A---- C:\windows\system32\psisdecd.dll
2013-05-18 18:40:35 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2013-05-18 18:40:34 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2013-05-18 18:40:34 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2013-05-18 18:40:19 ----A---- C:\windows\system32\packager.dll
2013-05-18 18:40:17 ----A---- C:\windows\system32\drivers\rdpwd.sys
2013-05-18 18:40:11 ----A---- C:\windows\system32\umpnpmgr.dll
2013-05-18 18:40:11 ----A---- C:\windows\system32\cfgmgr32.dll
2013-05-18 18:40:09 ----A---- C:\windows\system32\inetcomm.dll
2013-05-18 18:40:05 ----A---- C:\windows\system32\WFS.exe
2013-05-18 18:40:05 ----A---- C:\windows\system32\FXSCOVER.exe
2013-05-18 18:40:01 ----A---- C:\windows\system32\oleaut32.dll
2013-05-18 18:40:01 ----A---- C:\windows\system32\oleacc.dll
2013-05-18 18:39:57 ----A---- C:\windows\system32\tquery.dll
2013-05-18 18:39:57 ----A---- C:\windows\system32\mssrch.dll
2013-05-18 18:39:56 ----A---- C:\windows\system32\SearchProtocolHost.exe
2013-05-18 18:39:56 ----A---- C:\windows\system32\SearchIndexer.exe
2013-05-18 18:39:56 ----A---- C:\windows\system32\SearchFilterHost.exe
2013-05-18 18:39:56 ----A---- C:\windows\system32\mssvp.dll
2013-05-18 18:39:56 ----A---- C:\windows\system32\mssphtb.dll
2013-05-18 18:39:56 ----A---- C:\windows\system32\mssph.dll
2013-05-18 18:39:55 ----A---- C:\windows\system32\msscntrs.dll
2013-05-18 18:39:53 ----A---- C:\windows\system32\EncDec.dll
2013-05-18 18:39:51 ----A---- C:\windows\system32\netapi32.dll
2013-05-18 18:39:51 ----A---- C:\windows\system32\browser.dll
2013-05-18 18:39:51 ----A---- C:\windows\system32\browcli.dll
2013-05-18 18:39:26 ----A---- C:\windows\system32\sbe.dll
2013-05-18 18:39:26 ----A---- C:\windows\system32\CPFilters.dll
2013-05-18 18:39:04 ----A---- C:\windows\system32\quartz.dll
2013-05-18 18:39:04 ----A---- C:\windows\system32\qdvd.dll
2013-05-18 18:39:01 ----A---- C:\windows\system32\kerberos.dll
2013-05-18 18:38:57 ----A---- C:\windows\explorer.exe
2013-05-18 18:38:54 ----A---- C:\windows\system32\msi.dll
2013-05-18 18:38:24 ----A---- C:\windows\system32\Wpc.dll
2013-05-18 18:38:24 ----A---- C:\windows\system32\gameux.dll
2013-05-18 18:38:01 ----A---- C:\windows\system32\ncrypt.dll
2013-05-18 18:37:59 ----A---- C:\windows\system32\webio.dll
2013-05-18 18:37:55 ----A---- C:\windows\system32\odbctrac.dll
2013-05-18 18:37:55 ----A---- C:\windows\system32\odbcjt32.dll
2013-05-18 18:37:55 ----A---- C:\windows\system32\odbccu32.dll
2013-05-18 18:37:55 ----A---- C:\windows\system32\odbccr32.dll
2013-05-18 18:37:55 ----A---- C:\windows\system32\odbccp32.dll
2013-05-18 18:37:49 ----A---- C:\windows\system32\rdrmemptylst.exe
2013-05-18 18:37:49 ----A---- C:\windows\system32\rdpwsx.dll
2013-05-18 18:37:49 ----A---- C:\windows\system32\rdpcorekmts.dll
2013-05-18 18:37:47 ----A---- C:\windows\system32\msvcrt.dll
2013-05-18 18:37:45 ----A---- C:\windows\system32\drivers\partmgr.sys
2013-05-18 18:37:43 ----A---- C:\windows\system32\profsvc.dll
2013-05-18 18:37:43 ----A---- C:\windows\system32\profprov.dll
2013-05-18 18:37:42 ----A---- C:\windows\system32\synceng.dll
2013-05-18 18:37:24 ----A---- C:\windows\system32\localspl.dll
2013-05-18 18:37:18 ----A---- C:\windows\system32\ntshrui.dll
2013-05-18 18:37:09 ----A---- C:\windows\system32\drivers\bowser.sys
2013-05-18 18:37:08 ----A---- C:\windows\system32\mfc42.dll
2013-05-18 18:37:07 ----A---- C:\windows\system32\mfc42u.dll
2013-05-18 18:36:57 ----A---- C:\windows\system32\poqexec.exe
2013-05-18 18:36:56 ----A---- C:\windows\system32\drivers\Diskdump.sys
2013-05-18 18:36:36 ----A---- C:\windows\system32\tzres.dll
2013-05-18 18:35:56 ----A---- C:\windows\system32\winsrv.dll
2013-05-18 18:35:48 ----A---- C:\windows\system32\cdd.dll
2013-05-18 18:06:18 ----A---- C:\windows\system32\rdpcore.dll
2013-05-18 18:06:18 ----A---- C:\windows\system32\drivers\tdtcp.sys
2013-05-18 18:06:18 ----A---- C:\windows\system32\drivers\tdpipe.sys
2013-05-18 18:01:27 ----A---- C:\windows\system32\wups2.dll
2013-05-18 18:01:27 ----A---- C:\windows\system32\wucltux.dll
2013-05-18 18:01:27 ----A---- C:\windows\system32\wuaueng.dll
2013-05-18 18:01:27 ----A---- C:\windows\system32\wuauclt.exe
2013-05-18 18:01:16 ----A---- C:\windows\system32\wups.dll
2013-05-18 18:01:16 ----A---- C:\windows\system32\wudriver.dll
2013-05-18 18:01:16 ----A---- C:\windows\system32\wuapi.dll
2013-05-18 18:01:02 ----A---- C:\windows\system32\wuwebv.dll
2013-05-18 18:01:02 ----A---- C:\windows\system32\wuapp.exe

======List of files/folders modified in the last 1 month======

2013-06-12 19:14:12 ----D---- C:\windows\Temp
2013-06-12 19:10:08 ----SHD---- C:\windows\Installer
2013-06-12 19:09:10 ----D---- C:\windows\system32\drivers
2013-06-12 19:09:09 ----D---- C:\windows\system32\DriverStore
2013-06-12 19:09:09 ----D---- C:\windows\system32\catroot
2013-06-12 19:09:09 ----D---- C:\windows\inf
2013-06-12 19:07:08 ----HD---- C:\ProgramData
2013-06-12 19:05:15 ----SHD---- C:\System Volume Information
2013-06-12 18:50:18 ----RD---- C:\Program Files
2013-06-12 18:32:00 ----D---- C:\windows\system32\config
2013-06-12 18:21:08 ----D---- C:\windows\winsxs
2013-06-12 18:02:29 ----D---- C:\Program Files\Windows Live
2013-06-12 18:02:12 ----D---- C:\windows\System32
2013-06-12 17:36:07 ----SD---- C:\Users\cashgen\AppData\Roaming\Microsoft
2013-06-12 17:36:07 ----D---- C:\Program Files\Microsoft Works
2013-06-12 17:36:07 ----D---- C:\Program Files\Common Files\microsoft shared
2013-06-12 16:55:23 ----D---- C:\windows\system32\Tasks
2013-06-11 21:22:47 ----D---- C:\windows\system32\en-US
2013-06-11 21:22:45 ----D---- C:\Program Files\Internet Explorer
2013-06-11 21:20:04 ----D---- C:\windows\system32\catroot2
2013-06-11 18:53:00 ----D---- C:\windows\Tasks
2013-06-11 18:53:00 ----D---- C:\windows\system32\wfp
2013-06-11 18:52:55 ----D---- C:\windows\system32\wbem
2013-06-11 18:52:55 ----D---- C:\Windows
2013-06-11 18:52:03 ----D---- C:\windows\system32\NDF
2013-06-11 18:52:03 ----D---- C:\windows\system32\CodeIntegrity
2013-06-11 18:52:02 ----D---- C:\windows\AppCompat
2013-06-11 18:50:48 ----D---- C:\windows\registration
2013-06-11 18:50:01 ----D---- C:\Program Files\Common Files
2013-06-11 17:15:54 ----D---- C:\windows\Prefetch
2013-06-10 22:15:23 ----D---- C:\windows\SoftwareDistribution
2013-06-06 05:02:04 ----A---- C:\windows\system32\PerfStringBackup.INI
2013-06-05 17:13:16 ----D---- C:\ProgramData\NVIDIA
2013-06-05 17:10:36 ----D---- C:\windows\Help
2013-06-05 17:10:04 ----HD---- C:\Program Files\InstallShield Installation Information
2013-06-05 17:10:04 ----D---- C:\Program Files\NVIDIA Corporation
2013-06-05 17:10:03 ----D---- C:\Program Files\Common Files\ArcSoft
2013-06-05 17:10:03 ----D---- C:\Program Files\Common Files\Adobe
2013-06-05 17:10:01 ----D---- C:\Program Files\ArcSoft
2013-06-05 17:08:31 ----D---- C:\Users\cashgen\AppData\Roaming\Adobe
2013-06-05 17:07:36 ----D---- C:\Program Files\Adobe
2013-06-05 13:40:14 ----D---- C:\ProgramData\Adobe
2013-06-04 09:22:50 ----D---- C:\Users\cashgen\AppData\Roaming\ArcSoft
2013-06-03 17:49:38 ----D---- C:\windows\system32\wdi
2013-06-02 19:37:20 ----SHD---- C:\$Recycle.Bin
2013-06-01 19:01:17 ----SD---- C:\windows\system32\Microsoft
2013-06-01 15:08:53 ----D---- C:\windows\rescache
2013-06-01 12:50:24 ----SD---- C:\ProgramData\Microsoft
2013-05-30 05:37:53 ----D---- C:\windows\system32\migration
2013-05-30 05:37:53 ----D---- C:\windows\PolicyDefinitions
2013-05-30 05:37:49 ----D---- C:\windows\system32\zh-TW
2013-05-30 05:37:49 ----D---- C:\windows\system32\zh-HK
2013-05-30 05:37:49 ----D---- C:\windows\system32\zh-CN
2013-05-30 05:37:49 ----D---- C:\windows\system32\tr-TR
2013-05-30 05:37:49 ----D---- C:\windows\system32\sv-SE
2013-05-30 05:37:49 ----D---- C:\windows\system32\pt-PT
2013-05-30 05:37:49 ----D---- C:\windows\system32\pt-BR
2013-05-30 05:37:49 ----D---- C:\windows\system32\pl-PL
2013-05-30 05:37:49 ----D---- C:\windows\system32\nl-NL
2013-05-30 05:37:49 ----D---- C:\windows\system32\ko-KR
2013-05-30 05:37:49 ----D---- C:\windows\system32\it-IT
2013-05-30 05:37:49 ----D---- C:\windows\system32\hu-HU
2013-05-30 05:37:49 ----D---- C:\windows\system32\fr-FR
2013-05-30 05:37:49 ----D---- C:\windows\system32\fi-FI
2013-05-30 05:37:49 ----D---- C:\windows\system32\es-ES
2013-05-30 05:37:49 ----D---- C:\windows\system32\el-GR
2013-05-30 05:37:49 ----D---- C:\windows\system32\de-DE
2013-05-30 05:37:49 ----D---- C:\windows\system32\cs-CZ
2013-05-30 05:37:48 ----D---- C:\windows\system32\ru-RU
2013-05-30 05:37:48 ----D---- C:\windows\system32\nb-NO
2013-05-30 05:37:48 ----D---- C:\windows\system32\ja-JP
2013-05-30 05:37:48 ----D---- C:\windows\system32\da-DK
2013-05-30 05:15:02 ----D---- C:\windows\Offline Web Pages
2013-05-30 05:15:02 ----D---- C:\windows\Downloaded Program Files
2013-05-30 05:15:01 ----RSD---- C:\windows\Media
2013-05-30 05:12:00 ----D---- C:\windows\system32\LogFiles
2013-05-29 22:41:14 ----D---- C:\windows\Logs
2013-05-25 17:51:45 ----D---- C:\windows\Microsoft.NET
2013-05-25 17:51:44 ----RSD---- C:\windows\assembly
2013-05-24 21:46:49 ----D---- C:\windows\debug
2013-05-24 21:02:22 ----D---- C:\ProgramData\Norton
2013-05-24 21:00:58 ----D---- C:\ProgramData\NortonInstaller
2013-05-24 18:37:48 ----D---- C:\ProgramData\Microsoft Help
2013-05-24 17:48:02 ----RSD---- C:\windows\Fonts
2013-05-24 03:02:58 ----D---- C:\Program Files\Microsoft.NET
2013-05-23 03:18:28 ----D---- C:\windows\AppPatch
2013-05-22 10:06:40 ----HD---- C:\windows\system32\GroupPolicy
2013-05-22 07:55:56 ----D---- C:\Program Files\Windows Sidebar
2013-05-22 07:55:56 ----D---- C:\Program Files\Windows Mail
2013-05-22 07:55:56 ----D---- C:\Program Files\DVD Maker
2013-05-22 07:55:55 ----D---- C:\Program Files\Windows Portable Devices
2013-05-22 07:55:55 ----D---- C:\Program Files\Windows Photo Viewer
2013-05-22 07:55:55 ----D---- C:\Program Files\Windows Media Player
2013-05-22 07:55:55 ----D---- C:\Program Files\Windows Journal
2013-05-22 07:55:54 ----D---- C:\windows\servicing
2013-05-22 07:55:54 ----D---- C:\Program Files\Windows Defender
2013-05-22 07:55:54 ----D---- C:\Program Files\Common Files\System
2013-05-22 07:55:53 ----D---- C:\windows\ehome
2013-05-22 07:55:40 ----D---- C:\windows\system32\sysprep
2013-05-22 07:55:40 ----D---- C:\windows\system32\oobe
2013-05-22 07:55:39 ----D---- C:\windows\system32\sppui
2013-05-22 07:55:39 ----D---- C:\windows\system32\Setup
2013-05-22 07:55:39 ----D---- C:\windows\system32\manifeststore
2013-05-22 07:55:39 ----D---- C:\windows\system32\en
2013-05-22 07:55:39 ----D---- C:\windows\system32\AdvancedInstallers
2013-05-22 07:55:38 ----D---- C:\windows\system32\drivers\en-US
2013-05-22 07:55:37 ----D---- C:\windows\system32\migwiz
2013-05-22 07:55:37 ----D---- C:\windows\system32\Dism
2013-05-22 07:54:51 ----D---- C:\windows\system32\Boot
2013-05-22 07:40:41 ----A---- C:\windows\system32\msclmd.dll
2013-05-18 18:07:57 ----D---- C:\ProgramData\Symantec
2013-05-13 23:24:59 ----D---- C:\windows\RE_DRIVE
2013-05-13 15:34:32 ----D---- C:\ProgramData\ArcSoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvstor32;nvstor32; C:\windows\system32\DRIVERS\nvstor32.sys [2009-08-04 213024]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2013-02-14 171680]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2013-01-10 122240]
R1 nod32drv;nod32drv; C:\windows\system32\drivers\nod32drv.sys [2013-05-24 15424]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2013-01-10 105760]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect; C:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 17408]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2009-07-16 1176064]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2009-05-22 2361952]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda32v.sys [2009-04-30 64032]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\windows\system32\DRIVERS\nvmf6232.sys [2009-07-30 287392]
R3 nvsmu;nvsmu; C:\windows\system32\DRIVERS\nvsmu.sys [2009-06-28 17920]
S2 AMON;AMON; C:\windows\system32\drivers\amon.sys [2013-05-24 512096]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 netr28;Ralink 802.11n Extensible Wireless Driver; C:\windows\system32\DRIVERS\netr28.sys [2009-09-11 626688]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-06-04 166912]
S3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
S3 RtsUIR;Realtek IR Driver; C:\windows\system32\DRIVERS\Rts516xIR.sys []
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 84992]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 smserial;smserial; C:\windows\system32\DRIVERS\smserial.sys [2009-07-13 1068032]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\windows\system32\DRIVERS\taphss6.sys [2013-04-24 37064]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\windows\system32\DRIVERS\RtsUCcid.sys []
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 DefaultTabUpdate;DefaultTabUpdate; C:\Users\cashgen\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [2013-06-07 107520]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2013-03-21 1341664]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-08-10 387616]
R2 Micro Star SCM;Micro Star SCM; C:\Program Files\System Control Manager\MSIService.exe [2009-07-09 160768]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2013-05-24 552064]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-08-10 178720]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2009-06-07 211488]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-05-14 3289208]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-24 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-06-03 162408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-11 256904]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-24 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-05-11 117144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-27 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2013-05-19 1343400]

-----------------EOF-----------------

#4 Příspěvek od **vyosek** » 13 čer 2013 05:53

Zdravim

A proc se hrnete nekomu do oprav, kdyz tomu nerozumite

My jsme tu zdarma a ve svem VOLNEM case, jak psal kolega

Na ten ESET je zakoupena licence

Navic je tam nainstalova 2x

#5 Příspěvek od **vyosek** » 14 čer 2013 18:48

Tak co bude, nejprve hrrr honeeem a ted nic

#6 Příspěvek od **Mc_Murphy** » 15 čer 2013 06:19

vyosek píše:Tak co bude, nejprve hrrr honeeem a ted nic

No jo, to bylo spěchu, odpovědi sám sobě, zakládání duplicitních témat a pak kde nic tu nic. Takový mám nejradši.

#7 Příspěvek od **vyosek** » 15 čer 2013 06:39

VIRY.CZ

zavirovany system

zavirovany system

Re: zavirovany system

Re: zavirovany system

Re: zavirovany system

Re: zavirovany system

Re: zavirovany system

Re: zavirovany system