Dobrý den,
prosím o kontrolu tohoto logu. V další zprávě ještě pošlu log AdwCleaneru a MBAMu.
Je to studentský ntb a určitě v něm bude "černý" sw (když vidím autocad a hry).
Tak mi prosím dejte vědět, co je v něm ilegální, abychom mohli pokračovat.
Možná bude moje první odpověď déle trvat, musím s dcerou do zverimexu (v noci jí pošel osmák a je z toho hotová).
Zatím děkuji.
Logfile of random's system information tool 1.08 (written by random/random)
Run by Ondra at 2013-09-06 14:06:01
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 484 GB (82%) free of 588 GB
Total RAM: 4030 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:06:13, on 6.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16502)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Ondra.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [NUSB3MON] "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [HP HD Webcam [Fixed]_Monitor] C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: DraftSight API Service - Dassault Systemes - C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Správce úloh aplikace Autodesk Moldflow Inventor Tool Suite Integration 2012 (mitsijm2012) - Autodesk, Inc. - C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 12066 bytes
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Conduit, PriceGong - 4xlog
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Conduit, PriceGong - 4xlog
Naposledy upravil(a) vitkova_vitek dne 06 zář 2013 17:38, celkem upraveno 1 x.
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Re: Conduit, PriceGong
pokračování RSIT
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\Hpservice.exe
atieclxx
C:\windows\system32\vcsFPService.exe
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe" C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
C:\windows\SysWOW64\PnkBstrA.exe
C:\windows\system32\svchost.exe -k imgsvc
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe"
WLIDSvcM.exe 3220
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSdkHelperx64.exe"
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\windows\system32\igfxext.exe -Embedding
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5072.0.2083990837\1795703457" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19 --disable-image-transport-surface --reduce-gpu-sandbox --gpu-vendor-id=0x8086 --gpu-device-id=0x0116 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.840.7.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="D3D11Experiment/Enabled/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Control13 pct:10c m29stable:pp2/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_47/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5072.2.1030903005\2126006465" /prefetch:673131151
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 892 896 904 65536 900
"C:\Users\Ondra\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\HPCeeScheduleForONDRA-HP$.job
C:\windows\tasks\HPCeeScheduleForOndra.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-19 64640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2011-01-27 167960]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2011-01-27 391704]
"Persistence"=C:\windows\system32\igfxpers.exe [2011-01-27 418328]
"BtTray"=C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [2012-08-19 764032]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-08-19 127616]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-08-04 1664000]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-04 3011824]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2013-06-18 1497816]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-02-01 656920]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-29 299576]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"NUSB3MON"=c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]
"HP HD Webcam [Fixed]_Monitor"=C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe [2010-11-26 267128]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-03-28 336384]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-01-27 385024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2013-09-06 14:06:01 ----D---- C:\rsit
2013-09-06 14:06:01 ----D---- C:\Program Files\trend micro
2013-09-06 13:05:32 ----D---- C:\Program Files\Blender Foundation
2013-09-06 12:57:06 ----D---- C:\Users\Ondra\AppData\Roaming\DraftSight
2013-09-06 12:56:51 ----D---- C:\ProgramData\Dassault Systemes
2013-09-06 12:56:51 ----D---- C:\Program Files\Dassault Systemes
2013-09-06 12:56:49 ----SHD---- C:\Config.Msi
2013-09-06 11:13:28 ----SD---- C:\ProgramData\Shared Space
2013-09-06 11:13:19 ----D---- C:\Program Files\COMODO
2013-09-06 11:13:15 ----D---- C:\ProgramData\Comodo
2013-09-06 11:13:12 ----D---- C:\ProgramData\Comodo Downloader
2013-09-06 10:50:13 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-09-06 10:50:13 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-09-06 10:50:12 ----A---- C:\windows\system32\RdpGroupPolicyExtension.dll
2013-09-06 10:50:05 ----A---- C:\windows\system32\drivers\rdpvideominiport.sys
2013-09-06 10:50:04 ----A---- C:\windows\system32\drivers\TsUsbFlt.sys
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\wksprtPS.dll
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\tsgqec.dll
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\rdpendp_winip.dll
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\MsRdpWebAccess.dll
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\aaclient.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\wksprtPS.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\TsUsbGDCoInstaller.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\tsgqec.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\MsRdpWebAccess.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\aaclient.dll
2013-09-06 10:49:57 ----A---- C:\windows\SYSWOW64\mstsc.exe
2013-09-06 10:49:57 ----A---- C:\windows\system32\wksprt.exe
2013-09-06 10:49:57 ----A---- C:\windows\system32\TSWbPrxy.exe
2013-09-06 10:49:57 ----A---- C:\windows\system32\rdpudd.dll
2013-09-06 10:49:57 ----A---- C:\windows\system32\rdpendp_winip.dll
2013-09-06 10:49:56 ----A---- C:\windows\system32\rdpcorets.dll
2013-09-06 10:49:56 ----A---- C:\windows\system32\mstsc.exe
2013-09-06 10:49:55 ----A---- C:\windows\SYSWOW64\mstscax.dll
2013-09-06 10:49:55 ----A---- C:\windows\system32\mstscax.dll
2013-09-06 10:49:29 ----A---- C:\windows\SYSWOW64\schannel.dll
2013-09-06 10:49:29 ----A---- C:\windows\system32\schannel.dll
2013-09-06 10:49:29 ----A---- C:\windows\system32\lsasrv.dll
2013-09-06 10:49:29 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2013-09-06 10:49:29 ----A---- C:\windows\system32\drivers\cng.sys
2013-09-06 10:49:28 ----A---- C:\windows\SYSWOW64\sspicli.dll
2013-09-06 10:49:28 ----A---- C:\windows\SYSWOW64\secur32.dll
2013-09-06 10:49:27 ----A---- C:\windows\SYSWOW64\qdvd.dll
2013-09-06 10:49:27 ----A---- C:\windows\system32\qdvd.dll
2013-09-06 10:30:30 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2013-09-06 10:30:29 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2013-09-06 10:30:29 ----A---- C:\windows\system32\ntoskrnl.exe
2013-09-06 10:30:29 ----A---- C:\windows\system32\ntdll.dll
2013-09-06 10:30:28 ----A---- C:\windows\SYSWOW64\ntdll.dll
2013-09-06 10:30:28 ----A---- C:\windows\system32\wow64.dll
2013-09-06 10:30:27 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2013-09-06 10:30:25 ----A---- C:\windows\SYSWOW64\wow32.dll
2013-09-06 10:30:25 ----A---- C:\windows\SYSWOW64\setup16.exe
2013-09-06 10:30:24 ----A---- C:\windows\SYSWOW64\user.exe
2013-09-06 10:30:24 ----A---- C:\windows\SYSWOW64\instnm.exe
2013-09-06 09:11:15 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2013-09-06 09:11:15 ----A---- C:\windows\system32\mshtmled.dll
2013-09-06 09:11:12 ----A---- C:\windows\SYSWOW64\vbscript.dll
2013-09-06 09:11:11 ----A---- C:\windows\SYSWOW64\ieui.dll
2013-09-06 09:11:11 ----A---- C:\windows\system32\ieui.dll
2013-09-06 09:11:10 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2013-09-06 09:11:10 ----A---- C:\windows\system32\ieUnatt.exe
2013-09-06 09:11:09 ----A---- C:\windows\SYSWOW64\wininet.dll
2013-09-06 09:11:09 ----A---- C:\windows\SYSWOW64\url.dll
2013-09-06 09:11:09 ----A---- C:\windows\system32\url.dll
2013-09-06 09:11:08 ----A---- C:\windows\system32\wininet.dll
2013-09-06 09:11:06 ----A---- C:\windows\SYSWOW64\urlmon.dll
2013-09-06 09:11:06 ----A---- C:\windows\system32\urlmon.dll
2013-09-06 09:11:04 ----A---- C:\windows\system32\msfeeds.dll
2013-09-06 09:11:04 ----A---- C:\windows\system32\jscript9.dll
2013-09-06 09:11:02 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2013-09-06 09:11:01 ----A---- C:\windows\system32\jsproxy.dll
2013-09-06 09:11:00 ----A---- C:\windows\SYSWOW64\jscript9.dll
2013-09-06 09:11:00 ----A---- C:\windows\SYSWOW64\jscript.dll
2013-09-06 09:11:00 ----A---- C:\windows\system32\vbscript.dll
2013-09-06 09:10:59 ----A---- C:\windows\system32\jscript.dll
2013-09-06 09:10:58 ----A---- C:\windows\SYSWOW64\iertutil.dll
2013-09-06 09:10:58 ----A---- C:\windows\system32\iertutil.dll
2013-09-06 09:10:55 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2013-09-06 09:10:52 ----A---- C:\windows\SYSWOW64\mshtml.dll
2013-09-06 09:10:48 ----A---- C:\windows\system32\mshtml.dll
2013-09-06 09:10:42 ----A---- C:\windows\SYSWOW64\ieframe.dll
2013-09-06 09:10:42 ----A---- C:\windows\system32\ieframe.dll
2013-09-06 09:09:39 ----A---- C:\windows\SYSWOW64\ncsi.dll
2013-09-06 09:09:39 ----A---- C:\windows\system32\nlasvc.dll
2013-09-06 09:09:39 ----A---- C:\windows\system32\netcorehc.dll
2013-09-06 09:09:39 ----A---- C:\windows\system32\ncsi.dll
2013-09-06 09:09:39 ----A---- C:\windows\system32\iphlpsvc.dll
2013-09-06 09:09:38 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2013-09-06 09:09:38 ----A---- C:\windows\SYSWOW64\netevent.dll
2013-09-06 09:09:38 ----A---- C:\windows\SYSWOW64\netcorehc.dll
2013-09-06 09:09:38 ----A---- C:\windows\system32\nlaapi.dll
2013-09-06 09:09:38 ----A---- C:\windows\system32\netevent.dll
2013-09-06 09:09:38 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2013-09-06 09:06:24 ----A---- C:\windows\system32\WMVDECOD.DLL
2013-09-06 09:06:23 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2013-09-06 09:06:19 ----A---- C:\windows\system32\shell32.dll
2013-09-06 09:06:18 ----A---- C:\windows\system32\authui.dll
2013-09-06 09:06:17 ----A---- C:\windows\SYSWOW64\shell32.dll
2013-09-06 09:06:17 ----A---- C:\windows\system32\shdocvw.dll
2013-09-06 09:06:16 ----A---- C:\windows\SYSWOW64\authui.dll
2013-09-06 09:06:16 ----A---- C:\windows\system32\consent.exe
2013-09-06 09:06:15 ----A---- C:\windows\SYSWOW64\shdocvw.dll
2013-09-06 09:06:15 ----A---- C:\windows\system32\appinfo.dll
2013-09-06 09:05:39 ----A---- C:\windows\SYSWOW64\wintrust.dll
2013-09-06 09:05:39 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2013-09-06 09:05:39 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2013-09-06 09:05:39 ----A---- C:\windows\SYSWOW64\crypt32.dll
2013-09-06 09:05:39 ----A---- C:\windows\system32\wintrust.dll
2013-09-06 09:05:39 ----A---- C:\windows\system32\cryptsvc.dll
2013-09-06 09:05:39 ----A---- C:\windows\system32\cryptnet.dll
2013-09-06 09:05:39 ----A---- C:\windows\system32\crypt32.dll
2013-09-06 09:05:35 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2013-09-06 09:05:24 ----A---- C:\windows\system32\OxpsConverter.exe
2013-09-06 09:05:19 ----A---- C:\windows\system32\drivers\ndis.sys
2013-09-06 09:05:18 ----A---- C:\windows\system32\drivers\RNDISMP.sys
2013-09-06 09:05:15 ----A---- C:\windows\system32\win32spl.dll
2013-09-06 09:05:15 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2013-09-06 09:05:15 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2013-09-06 09:05:14 ----A---- C:\windows\SYSWOW64\win32spl.dll
2013-09-06 09:05:14 ----A---- C:\windows\system32\rpcrt4.dll
2013-09-06 09:05:13 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2013-09-06 09:05:11 ----A---- C:\windows\system32\win32k.sys
2013-09-06 09:05:10 ----A---- C:\windows\SYSWOW64\dhcpcsvc6.dll
2013-09-06 09:05:10 ----A---- C:\windows\SYSWOW64\dhcpcore6.dll
2013-09-06 09:05:10 ----A---- C:\windows\system32\dhcpcsvc6.dll
2013-09-06 09:05:10 ----A---- C:\windows\system32\dhcpcore6.dll
2013-09-06 09:05:04 ----A---- C:\windows\SYSWOW64\tzres.dll
2013-09-06 09:05:04 ----A---- C:\windows\system32\tzres.dll
2013-09-06 09:05:01 ----A---- C:\windows\SYSWOW64\qedit.dll
2013-09-06 09:05:01 ----A---- C:\windows\system32\taskhost.exe
2013-09-06 09:05:01 ----A---- C:\windows\system32\qedit.dll
2013-09-06 09:05:00 ----A---- C:\windows\system32\wwansvc.dll
2013-09-06 09:05:00 ----A---- C:\windows\system32\wwanprotdim.dll
2013-09-06 09:04:22 ----A---- C:\windows\system32\certutil.exe
2013-09-06 09:04:21 ----A---- C:\windows\SYSWOW64\certutil.exe
2013-09-06 09:04:20 ----A---- C:\windows\SYSWOW64\certenc.dll
2013-09-06 09:04:20 ----A---- C:\windows\system32\certenc.dll
2013-09-06 09:03:59 ----A---- C:\windows\SYSWOW64\cryptdlg.dll
2013-09-06 09:03:59 ----A---- C:\windows\system32\cryptdlg.dll
2013-09-06 09:03:53 ----A---- C:\windows\system32\DWrite.dll
2013-09-06 09:03:52 ----A---- C:\windows\SYSWOW64\DWrite.dll
2013-09-06 09:00:16 ----A---- C:\windows\system32\drivers\tcpip.sys
2013-09-05 23:48:56 ----D---- C:\windows\system32\MRT
2013-09-05 23:48:53 ----A---- C:\windows\system32\MRT.exe
2013-09-05 23:44:00 ----D---- C:\windows\system32\SPReview
2013-09-05 23:43:33 ----D---- C:\windows\system32\EventProviders
2013-09-05 23:35:35 ----A---- C:\windows\system32\netfxperf.dll
2013-09-05 23:35:35 ----A---- C:\windows\system32\dfshim.dll
2013-09-05 23:35:30 ----A---- C:\windows\SYSWOW64\dfshim.dll
2013-09-05 23:35:26 ----A---- C:\windows\system32\d3d10warp.dll
2013-09-05 23:35:21 ----A---- C:\windows\SYSWOW64\d3d10warp.dll
2013-09-05 23:35:20 ----A---- C:\windows\SYSWOW64\mfc40u.dll
2013-09-05 23:35:20 ----A---- C:\windows\SYSWOW64\mfc40.dll
2013-09-05 23:35:20 ----A---- C:\windows\system32\sysmain.dll
2013-09-05 23:35:18 ----A---- C:\windows\system32\MSVidCtl.dll
2013-09-05 23:35:16 ----A---- C:\windows\system32\wmp.dll
2013-09-05 23:35:15 ----A---- C:\windows\system32\mscoree.dll
2013-09-05 23:35:15 ----A---- C:\windows\system32\mmcndmgr.dll
2013-09-05 23:35:14 ----A---- C:\windows\system32\secproc_isv.dll
2013-09-05 23:35:14 ----A---- C:\windows\system32\RMActivate_isv.exe
2013-09-05 23:35:14 ----A---- C:\windows\system32\mf.dll
2013-09-05 23:35:13 ----A---- C:\windows\SYSWOW64\secproc_isv.dll
2013-09-05 23:35:13 ----A---- C:\windows\system32\xpsservices.dll
2013-09-05 23:35:13 ----A---- C:\windows\system32\secproc.dll
2013-09-05 23:35:13 ----A---- C:\windows\system32\RMActivate.exe
2013-09-05 23:35:12 ----A---- C:\windows\SYSWOW64\secproc.dll
2013-09-05 23:35:12 ----A---- C:\windows\SYSWOW64\RMActivate_isv.exe
2013-09-05 23:35:11 ----A---- C:\windows\SYSWOW64\RMActivate.exe
2013-09-05 23:35:11 ----A---- C:\windows\system32\schedsvc.dll
2013-09-05 23:35:11 ----A---- C:\windows\system32\ole32.dll
2013-09-05 23:35:10 ----A---- C:\windows\SYSWOW64\mscoree.dll
2013-09-05 23:35:10 ----A---- C:\windows\system32\spwizui.dll
2013-09-05 23:35:09 ----A---- C:\windows\system32\taskschd.dll
2013-09-05 23:35:09 ----A---- C:\windows\system32\RacEngn.dll
2013-09-05 23:35:09 ----A---- C:\windows\system32\diagperf.dll
2013-09-05 23:35:08 ----A---- C:\windows\SYSWOW64\mf.dll
2013-09-05 23:35:08 ----A---- C:\windows\system32\wevtsvc.dll
2013-09-05 23:35:08 ----A---- C:\windows\system32\ExplorerFrame.dll
2013-09-05 23:35:07 ----A---- C:\windows\SYSWOW64\CertEnroll.dll
2013-09-05 23:35:07 ----A---- C:\windows\system32\vssapi.dll
2013-09-05 23:35:07 ----A---- C:\windows\system32\NaturalLanguage6.dll
2013-09-05 23:35:07 ----A---- C:\windows\system32\drivers\msiscsi.sys
2013-09-05 23:35:06 ----A---- C:\windows\system32\UIRibbon.dll
2013-09-05 23:35:06 ----A---- C:\windows\system32\mcupdate_GenuineIntel.dll
2013-09-05 23:35:05 ----A---- C:\windows\SYSWOW64\wmp.dll
2013-09-05 23:35:04 ----A---- C:\windows\SYSWOW64\PresentationHostProxy.dll
2013-09-05 23:35:04 ----A---- C:\windows\SYSWOW64\PresentationHost.exe
2013-09-05 23:35:04 ----A---- C:\windows\system32\WsmSvc.dll
2013-09-05 23:35:04 ----A---- C:\windows\system32\WMVCORE.DLL
2013-09-05 23:35:03 ----A---- C:\windows\system32\spreview.exe
2013-09-05 23:35:03 ----A---- C:\windows\system32\spinstall.exe
2013-09-05 23:35:03 ----A---- C:\windows\system32\rdpdd.dll
2013-09-05 23:35:03 ----A---- C:\windows\system32\PresentationHostProxy.dll
2013-09-05 23:35:03 ----A---- C:\windows\system32\PresentationHost.exe
2013-09-05 23:35:03 ----A---- C:\windows\system32\MPSSVC.dll
2013-09-05 23:35:02 ----A---- C:\windows\system32\WinSAT.exe
2013-09-05 23:35:02 ----A---- C:\windows\system32\CertEnroll.dll
2013-09-05 23:35:01 ----A---- C:\windows\system32\d3d9.dll
2013-09-05 23:35:00 ----A---- C:\windows\SYSWOW64\RacEngn.dll
2013-09-05 23:35:00 ----A---- C:\windows\SYSWOW64\AuthFWSnapin.dll
2013-09-05 23:35:00 ----A---- C:\windows\system32\SearchFolder.dll
2013-09-05 23:35:00 ----A---- C:\windows\system32\IKEEXT.DLL
2013-09-05 23:35:00 ----A---- C:\windows\system32\AuthFWSnapin.dll
2013-09-05 23:34:59 ----A---- C:\windows\system32\VSSVC.exe
2013-09-05 23:34:59 ----A---- C:\windows\system32\gpsvc.dll
2013-09-05 23:34:59 ----A---- C:\windows\system32\dwmcore.dll
2013-09-05 23:34:58 ----A---- C:\windows\system32\drivers\http.sys
2013-09-05 23:34:58 ----A---- C:\windows\system32\dbgeng.dll
2013-09-05 23:34:57 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2013-09-05 23:34:56 ----A---- C:\windows\SYSWOW64\ole32.dll
2013-09-05 23:34:56 ----A---- C:\windows\system32\TSWorkspace.dll
2013-09-05 23:34:56 ----A---- C:\windows\system32\qmgr.dll
2013-09-05 23:34:56 ----A---- C:\windows\system32\audiosrv.dll
2013-09-05 23:34:56 ----A---- C:\windows\system32\actxprxy.dll
2013-09-05 23:34:55 ----A---- C:\windows\system32\termsrv.dll
2013-09-05 23:34:54 ----A---- C:\windows\SYSWOW64\vssapi.dll
2013-09-05 23:34:54 ----A---- C:\windows\system32\netlogon.dll
2013-09-05 23:34:54 ----A---- C:\windows\system32\imapi2fs.dll
2013-09-05 23:34:54 ----A---- C:\windows\system32\d3d11.dll
2013-09-05 23:34:53 ----A---- C:\windows\SYSWOW64\SearchFolder.dll
2013-09-05 23:34:53 ----A---- C:\windows\SYSWOW64\d3d9.dll
2013-09-05 23:34:53 ----A---- C:\windows\system32\winhttp.dll
2013-09-05 23:34:53 ----A---- C:\windows\system32\QAGENTRT.DLL
2013-09-05 23:34:53 ----A---- C:\windows\system32\propsys.dll
2013-09-05 23:34:53 ----A---- C:\windows\system32\msv1_0.dll
2013-09-05 23:34:52 ----A---- C:\windows\SYSWOW64\taskschd.dll
2013-09-05 23:34:52 ----A---- C:\windows\system32\wbengine.exe
2013-09-05 23:34:52 ----A---- C:\windows\system32\setupapi.dll
2013-09-05 23:34:52 ----A---- C:\windows\system32\rpcss.dll
2013-09-05 23:34:51 ----A---- C:\windows\system32\werconcpl.dll
2013-09-05 23:34:51 ----A---- C:\windows\system32\taskeng.exe
2013-09-05 23:34:51 ----A---- C:\windows\system32\odbc32.dll
2013-09-05 23:34:50 ----A---- C:\windows\system32\WSDApi.dll
2013-09-05 23:34:50 ----A---- C:\windows\system32\user32.dll
2013-09-05 23:34:50 ----A---- C:\windows\system32\dhcpcore.dll
2013-09-05 23:34:50 ----A---- C:\windows\system32\certmgr.dll
2013-09-05 23:34:49 ----A---- C:\windows\SYSWOW64\wer.dll
2013-09-05 23:34:49 ----A---- C:\windows\SYSWOW64\certcli.dll
2013-09-05 23:34:49 ----A---- C:\windows\system32\scavengeui.dll
2013-09-05 23:34:49 ----A---- C:\windows\system32\drivers\tdx.sys
2013-09-05 23:34:49 ----A---- C:\windows\system32\drivers\netbt.sys
2013-09-05 23:34:48 ----A---- C:\windows\SYSWOW64\dwmcore.dll
2013-09-05 23:34:48 ----A---- C:\windows\system32\tsmf.dll
2013-09-05 23:34:48 ----A---- C:\windows\system32\shlwapi.dll
2013-09-05 23:34:48 ----A---- C:\windows\system32\PortableDeviceApi.dll
2013-09-05 23:34:48 ----A---- C:\windows\system32\msdrm.dll
2013-09-05 23:34:47 ----A---- C:\windows\SYSWOW64\odbc32.dll
2013-09-05 23:34:47 ----A---- C:\windows\system32\netshell.dll
2013-09-05 23:34:47 ----A---- C:\windows\system32\msdtctm.dll
2013-09-05 23:34:47 ----A---- C:\windows\system32\framedynos.dll
2013-09-05 23:34:46 ----A---- C:\windows\SYSWOW64\tcpmonui.dll
2013-09-05 23:34:46 ----A---- C:\windows\system32\ws2_32.dll
2013-09-05 23:34:46 ----A---- C:\windows\system32\winlogon.exe
2013-09-05 23:34:46 ----A---- C:\windows\system32\netcfgx.dll
2013-09-05 23:34:46 ----A---- C:\windows\system32\lsm.exe
2013-09-05 23:34:46 ----A---- C:\windows\system32\dxgi.dll
2013-09-05 23:34:46 ----A---- C:\windows\system32\comdlg32.dll
2013-09-05 23:34:45 ----A---- C:\windows\SYSWOW64\TSWorkspace.dll
2013-09-05 23:34:45 ----A---- C:\windows\SYSWOW64\tsmf.dll
2013-09-05 23:34:45 ----A---- C:\windows\SYSWOW64\dot3api.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\wpdshext.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\wmpps.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\Query.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\mswsock.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\azroles.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\apphelp.dll
2013-09-05 23:34:44 ----A---- C:\windows\SYSWOW64\winhttp.dll
2013-09-05 23:34:44 ----A---- C:\windows\SYSWOW64\setupapi.dll
2013-09-05 23:34:44 ----A---- C:\windows\SYSWOW64\apphelp.dll
2013-09-05 23:34:44 ----A---- C:\windows\system32\Vault.dll
2013-09-05 23:34:44 ----A---- C:\windows\system32\samsrv.dll
2013-09-05 23:34:44 ----A---- C:\windows\system32\QAGENT.DLL
2013-09-05 23:34:44 ----A---- C:\windows\system32\cmd.exe
2013-09-05 23:34:44 ----A---- C:\windows\system32\BFE.DLL
2013-09-05 23:34:43 ----A---- C:\windows\SYSWOW64\netlogon.dll
2013-09-05 23:34:43 ----A---- C:\windows\SYSWOW64\MSVidCtl.dll
2013-09-05 23:34:43 ----A---- C:\windows\SYSWOW64\dbgeng.dll
2013-09-05 23:34:43 ----A---- C:\windows\system32\lpksetup.exe
2013-09-05 23:34:43 ----A---- C:\windows\system32\DShowRdpFilter.dll
2013-09-05 23:34:42 ----A---- C:\windows\SYSWOW64\WindowsCodecs.dll
2013-09-05 23:34:42 ----A---- C:\windows\SYSWOW64\netcfgx.dll
2013-09-05 23:34:42 ----A---- C:\windows\SYSWOW64\d3d11.dll
2013-09-05 23:34:42 ----A---- C:\windows\system32\WebClnt.dll
2013-09-05 23:34:41 ----A---- C:\windows\SYSWOW64\WsmSvc.dll
2013-09-05 23:34:41 ----A---- C:\windows\SYSWOW64\Query.dll
2013-09-05 23:34:41 ----A---- C:\windows\SYSWOW64\advapi32.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\Wldap32.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\WindowsCodecs.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\taskcomp.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\sxs.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\mfds.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\mcbuilder.exe
2013-09-05 23:34:41 ----A---- C:\windows\system32\drivers\vhdmp.sys
2013-09-05 23:34:40 ----A---- C:\windows\SYSWOW64\upnp.dll
2013-09-05 23:34:40 ----A---- C:\windows\SYSWOW64\mmcndmgr.dll
2013-09-05 23:34:40 ----A---- C:\windows\SYSWOW64\DShowRdpFilter.dll
2013-09-05 23:34:40 ----A---- C:\windows\system32\pnidui.dll
2013-09-05 23:34:40 ----A---- C:\windows\system32\ipsmsnap.dll
2013-09-05 23:34:40 ----A---- C:\windows\system32\hgprint.dll
2013-09-05 23:34:39 ----A---- C:\windows\SYSWOW64\netfxperf.dll
2013-09-05 23:34:39 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2013-09-05 23:34:39 ----A---- C:\windows\SYSWOW64\imapi2fs.dll
2013-09-05 23:34:39 ----A---- C:\windows\system32\webservices.dll
2013-09-05 23:34:39 ----A---- C:\windows\system32\SessEnv.dll
2013-09-05 23:34:38 ----A---- C:\windows\SYSWOW64\SessEnv.dll
2013-09-05 23:34:38 ----A---- C:\windows\SYSWOW64\PortableDeviceApi.dll
2013-09-05 23:34:38 ----A---- C:\windows\SYSWOW64\msdrm.dll
2013-09-05 23:34:38 ----A---- C:\windows\system32\winsta.dll
2013-09-05 23:34:38 ----A---- C:\windows\system32\sqlsrv32.dll
2013-09-05 23:34:38 ----A---- C:\windows\system32\fveapi.dll
2013-09-05 23:34:38 ----A---- C:\windows\system32\dot3api.dll
2013-09-05 23:34:37 ----A---- C:\windows\SYSWOW64\shlwapi.dll
2013-09-05 23:34:37 ----A---- C:\windows\SYSWOW64\mcbuilder.exe
2013-09-05 23:34:37 ----A---- C:\windows\system32\prncache.dll
2013-09-05 23:34:37 ----A---- C:\windows\system32\mcmde.dll
2013-09-05 23:34:37 ----A---- C:\windows\system32\gdi32.dll
2013-09-05 23:34:37 ----A---- C:\windows\system32\drivers\volsnap.sys
2013-09-05 23:34:37 ----A---- C:\windows\system32\drivers\msrpc.sys
2013-09-05 23:34:36 ----A---- C:\windows\SYSWOW64\userenv.dll
2013-09-05 23:34:36 ----A---- C:\windows\SYSWOW64\certmgr.dll
2013-09-05 23:34:36 ----A---- C:\windows\system32\WMNetMgr.dll
2013-09-05 23:34:36 ----A---- C:\windows\system32\wlanpref.dll
2013-09-05 23:34:36 ----A---- C:\windows\system32\vpnike.dll
2013-09-05 23:34:36 ----A---- C:\windows\system32\schtasks.exe
2013-09-05 23:34:35 ----A---- C:\windows\SYSWOW64\xpsservices.dll
2013-09-05 23:34:35 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2013-09-05 23:34:35 ----A---- C:\windows\SYSWOW64\comdlg32.dll
2013-09-05 23:34:35 ----A---- C:\windows\system32\userenv.dll
2013-09-05 23:34:35 ----A---- C:\windows\system32\photowiz.dll
2013-09-05 23:34:35 ----A---- C:\windows\system32\evr.dll
2013-09-05 23:34:35 ----A---- C:\windows\system32\drivers\rdbss.sys
2013-09-05 23:34:35 ----A---- C:\windows\system32\drivers\1394ohci.sys
2013-09-05 23:34:34 ----A---- C:\windows\SYSWOW64\cmd.exe
2013-09-05 23:34:34 ----A---- C:\windows\system32\wmpmde.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\SyncCenter.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\sppobjs.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\IPSECSVC.DLL
2013-09-05 23:34:34 ----A---- C:\windows\system32\FXSSVC.exe
2013-09-05 23:34:34 ----A---- C:\windows\system32\framedyn.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\AudioSes.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\aepdu.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\WMPEncEn.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\wmpeffects.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\srvsvc.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\shsvcs.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\mfreadwrite.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\aeinv.dll
2013-09-05 23:34:32 ----A---- C:\windows\SYSWOW64\Wldap32.dll
2013-09-05 23:34:32 ----A---- C:\windows\SYSWOW64\propsys.dll
2013-09-05 23:34:32 ----A---- C:\windows\SYSWOW64\mfds.dll
2013-09-05 23:34:32 ----A---- C:\windows\SYSWOW64\framedynos.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\WinSATAPI.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\stobject.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\localsec.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\imapi2.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\fde.dll
2013-09-05 23:34:31 ----A---- C:\windows\SYSWOW64\user32.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\netid.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\netdiagfx.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\inetpp.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\drivers\udfs.sys
2013-09-05 23:34:31 ----A---- C:\windows\system32\drivers\fltMgr.sys
2013-09-05 23:34:31 ----A---- C:\windows\system32\credui.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\bcryptprimitives.dll
2013-09-05 23:34:30 ----A---- C:\windows\SYSWOW64\azroles.dll
2013-09-05 23:34:30 ----A---- C:\windows\system32\tcpipcfg.dll
2013-09-05 23:34:30 ----A---- C:\windows\system32\spp.dll
2013-09-05 23:34:30 ----A---- C:\windows\system32\QSHVHOST.DLL
2013-09-05 23:34:30 ----A---- C:\windows\system32\davclnt.dll
2013-09-05 23:34:30 ----A---- C:\windows\system32\biocpl.dll
2013-09-05 23:34:29 ----A---- C:\windows\SYSWOW64\themeui.dll
2013-09-05 23:34:29 ----A---- C:\windows\SYSWOW64\credui.dll
2013-09-05 23:34:29 ----A---- C:\windows\system32\scansetting.dll
2013-09-05 23:34:29 ----A---- C:\windows\system32\printui.dll
2013-09-05 23:34:29 ----A---- C:\windows\system32\mspbda.dll
2013-09-05 23:34:29 ----A---- C:\windows\system32\msinfo32.exe
2013-09-05 23:34:28 ----A---- C:\windows\SYSWOW64\taskeng.exe
2013-09-05 23:34:28 ----A---- C:\windows\SYSWOW64\spp.dll
2013-09-05 23:34:28 ----A---- C:\windows\SYSWOW64\mswsock.dll
2013-09-05 23:34:28 ----A---- C:\windows\SYSWOW64\dhcpcore.dll
2013-09-05 23:34:28 ----A---- C:\windows\system32\wusa.exe
2013-09-05 23:34:28 ----A---- C:\windows\system32\pla.dll
2013-09-05 23:34:28 ----A---- C:\windows\system32\msdri.dll
2013-09-05 23:34:28 ----A---- C:\windows\system32\IPHLPAPI.DLL
2013-09-05 23:34:28 ----A---- C:\windows\system32\aitagent.exe
2013-09-05 23:34:27 ----A---- C:\windows\SYSWOW64\basecsp.dll
2013-09-05 23:34:27 ----A---- C:\windows\system32\wiaservc.dll
2013-09-05 23:34:27 ----A---- C:\windows\system32\vds.exe
2013-09-05 23:34:27 ----A---- C:\windows\system32\rpchttp.dll
2013-09-05 23:34:27 ----A---- C:\windows\system32\drivers\pci.sys
2013-09-05 23:34:26 ----A---- C:\windows\SYSWOW64\NaturalLanguage6.dll
2013-09-05 23:34:26 ----A---- C:\windows\SYSWOW64\mfreadwrite.dll
2013-09-05 23:34:26 ----A---- C:\windows\SYSWOW64\dxgi.dll
2013-09-05 23:34:26 ----A---- C:\windows\SYSWOW64\dbghelp.dll
2013-09-05 23:34:26 ----A---- C:\windows\system32\XpsRasterService.dll
2013-09-05 23:34:26 ----A---- C:\windows\system32\wisptis.exe
2013-09-05 23:34:26 ----A---- C:\windows\system32\mscms.dll
2013-09-05 23:34:26 ----A---- C:\windows\system32\FirewallControlPanel.dll
2013-09-05 23:34:26 ----A---- C:\windows\system32\drivers\rasl2tp.sys
2013-09-05 23:34:25 ----A---- C:\windows\SYSWOW64\taskcomp.dll
2013-09-05 23:34:25 ----A---- C:\windows\SYSWOW64\evr.dll
2013-09-05 23:34:25 ----A---- C:\windows\system32\sppwinob.dll
2013-09-05 23:34:25 ----A---- C:\windows\system32\ocsetup.exe
2013-09-05 23:34:25 ----A---- C:\windows\system32\drivers\mrxdav.sys
2013-09-05 23:34:24 ----A---- C:\windows\SYSWOW64\WinSATAPI.dll
2013-09-05 23:34:24 ----A---- C:\windows\SYSWOW64\calc.exe
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\Hpservice.exe
atieclxx
C:\windows\system32\vcsFPService.exe
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe" C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
C:\windows\SysWOW64\PnkBstrA.exe
C:\windows\system32\svchost.exe -k imgsvc
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe"
WLIDSvcM.exe 3220
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSdkHelperx64.exe"
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\windows\system32\igfxext.exe -Embedding
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5072.0.2083990837\1795703457" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19 --disable-image-transport-surface --reduce-gpu-sandbox --gpu-vendor-id=0x8086 --gpu-device-id=0x0116 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.840.7.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="D3D11Experiment/Enabled/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Control13 pct:10c m29stable:pp2/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_47/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5072.2.1030903005\2126006465" /prefetch:673131151
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 892 896 904 65536 900
"C:\Users\Ondra\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\HPCeeScheduleForONDRA-HP$.job
C:\windows\tasks\HPCeeScheduleForOndra.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-19 64640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2011-01-27 167960]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2011-01-27 391704]
"Persistence"=C:\windows\system32\igfxpers.exe [2011-01-27 418328]
"BtTray"=C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [2012-08-19 764032]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-08-19 127616]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-08-04 1664000]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-04 3011824]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2013-06-18 1497816]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-02-01 656920]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-29 299576]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"NUSB3MON"=c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]
"HP HD Webcam [Fixed]_Monitor"=C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe [2010-11-26 267128]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-03-28 336384]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-01-27 385024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2013-09-06 14:06:01 ----D---- C:\rsit
2013-09-06 14:06:01 ----D---- C:\Program Files\trend micro
2013-09-06 13:05:32 ----D---- C:\Program Files\Blender Foundation
2013-09-06 12:57:06 ----D---- C:\Users\Ondra\AppData\Roaming\DraftSight
2013-09-06 12:56:51 ----D---- C:\ProgramData\Dassault Systemes
2013-09-06 12:56:51 ----D---- C:\Program Files\Dassault Systemes
2013-09-06 12:56:49 ----SHD---- C:\Config.Msi
2013-09-06 11:13:28 ----SD---- C:\ProgramData\Shared Space
2013-09-06 11:13:19 ----D---- C:\Program Files\COMODO
2013-09-06 11:13:15 ----D---- C:\ProgramData\Comodo
2013-09-06 11:13:12 ----D---- C:\ProgramData\Comodo Downloader
2013-09-06 10:50:13 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-09-06 10:50:13 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-09-06 10:50:12 ----A---- C:\windows\system32\RdpGroupPolicyExtension.dll
2013-09-06 10:50:05 ----A---- C:\windows\system32\drivers\rdpvideominiport.sys
2013-09-06 10:50:04 ----A---- C:\windows\system32\drivers\TsUsbFlt.sys
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\wksprtPS.dll
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\tsgqec.dll
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\rdpendp_winip.dll
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\MsRdpWebAccess.dll
2013-09-06 10:49:58 ----A---- C:\windows\SYSWOW64\aaclient.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\wksprtPS.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\TsUsbGDCoInstaller.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\tsgqec.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\MsRdpWebAccess.dll
2013-09-06 10:49:58 ----A---- C:\windows\system32\aaclient.dll
2013-09-06 10:49:57 ----A---- C:\windows\SYSWOW64\mstsc.exe
2013-09-06 10:49:57 ----A---- C:\windows\system32\wksprt.exe
2013-09-06 10:49:57 ----A---- C:\windows\system32\TSWbPrxy.exe
2013-09-06 10:49:57 ----A---- C:\windows\system32\rdpudd.dll
2013-09-06 10:49:57 ----A---- C:\windows\system32\rdpendp_winip.dll
2013-09-06 10:49:56 ----A---- C:\windows\system32\rdpcorets.dll
2013-09-06 10:49:56 ----A---- C:\windows\system32\mstsc.exe
2013-09-06 10:49:55 ----A---- C:\windows\SYSWOW64\mstscax.dll
2013-09-06 10:49:55 ----A---- C:\windows\system32\mstscax.dll
2013-09-06 10:49:29 ----A---- C:\windows\SYSWOW64\schannel.dll
2013-09-06 10:49:29 ----A---- C:\windows\system32\schannel.dll
2013-09-06 10:49:29 ----A---- C:\windows\system32\lsasrv.dll
2013-09-06 10:49:29 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2013-09-06 10:49:29 ----A---- C:\windows\system32\drivers\cng.sys
2013-09-06 10:49:28 ----A---- C:\windows\SYSWOW64\sspicli.dll
2013-09-06 10:49:28 ----A---- C:\windows\SYSWOW64\secur32.dll
2013-09-06 10:49:27 ----A---- C:\windows\SYSWOW64\qdvd.dll
2013-09-06 10:49:27 ----A---- C:\windows\system32\qdvd.dll
2013-09-06 10:30:30 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2013-09-06 10:30:29 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2013-09-06 10:30:29 ----A---- C:\windows\system32\ntoskrnl.exe
2013-09-06 10:30:29 ----A---- C:\windows\system32\ntdll.dll
2013-09-06 10:30:28 ----A---- C:\windows\SYSWOW64\ntdll.dll
2013-09-06 10:30:28 ----A---- C:\windows\system32\wow64.dll
2013-09-06 10:30:27 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2013-09-06 10:30:25 ----A---- C:\windows\SYSWOW64\wow32.dll
2013-09-06 10:30:25 ----A---- C:\windows\SYSWOW64\setup16.exe
2013-09-06 10:30:24 ----A---- C:\windows\SYSWOW64\user.exe
2013-09-06 10:30:24 ----A---- C:\windows\SYSWOW64\instnm.exe
2013-09-06 09:11:15 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2013-09-06 09:11:15 ----A---- C:\windows\system32\mshtmled.dll
2013-09-06 09:11:12 ----A---- C:\windows\SYSWOW64\vbscript.dll
2013-09-06 09:11:11 ----A---- C:\windows\SYSWOW64\ieui.dll
2013-09-06 09:11:11 ----A---- C:\windows\system32\ieui.dll
2013-09-06 09:11:10 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2013-09-06 09:11:10 ----A---- C:\windows\system32\ieUnatt.exe
2013-09-06 09:11:09 ----A---- C:\windows\SYSWOW64\wininet.dll
2013-09-06 09:11:09 ----A---- C:\windows\SYSWOW64\url.dll
2013-09-06 09:11:09 ----A---- C:\windows\system32\url.dll
2013-09-06 09:11:08 ----A---- C:\windows\system32\wininet.dll
2013-09-06 09:11:06 ----A---- C:\windows\SYSWOW64\urlmon.dll
2013-09-06 09:11:06 ----A---- C:\windows\system32\urlmon.dll
2013-09-06 09:11:04 ----A---- C:\windows\system32\msfeeds.dll
2013-09-06 09:11:04 ----A---- C:\windows\system32\jscript9.dll
2013-09-06 09:11:02 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2013-09-06 09:11:01 ----A---- C:\windows\system32\jsproxy.dll
2013-09-06 09:11:00 ----A---- C:\windows\SYSWOW64\jscript9.dll
2013-09-06 09:11:00 ----A---- C:\windows\SYSWOW64\jscript.dll
2013-09-06 09:11:00 ----A---- C:\windows\system32\vbscript.dll
2013-09-06 09:10:59 ----A---- C:\windows\system32\jscript.dll
2013-09-06 09:10:58 ----A---- C:\windows\SYSWOW64\iertutil.dll
2013-09-06 09:10:58 ----A---- C:\windows\system32\iertutil.dll
2013-09-06 09:10:55 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2013-09-06 09:10:52 ----A---- C:\windows\SYSWOW64\mshtml.dll
2013-09-06 09:10:48 ----A---- C:\windows\system32\mshtml.dll
2013-09-06 09:10:42 ----A---- C:\windows\SYSWOW64\ieframe.dll
2013-09-06 09:10:42 ----A---- C:\windows\system32\ieframe.dll
2013-09-06 09:09:39 ----A---- C:\windows\SYSWOW64\ncsi.dll
2013-09-06 09:09:39 ----A---- C:\windows\system32\nlasvc.dll
2013-09-06 09:09:39 ----A---- C:\windows\system32\netcorehc.dll
2013-09-06 09:09:39 ----A---- C:\windows\system32\ncsi.dll
2013-09-06 09:09:39 ----A---- C:\windows\system32\iphlpsvc.dll
2013-09-06 09:09:38 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2013-09-06 09:09:38 ----A---- C:\windows\SYSWOW64\netevent.dll
2013-09-06 09:09:38 ----A---- C:\windows\SYSWOW64\netcorehc.dll
2013-09-06 09:09:38 ----A---- C:\windows\system32\nlaapi.dll
2013-09-06 09:09:38 ----A---- C:\windows\system32\netevent.dll
2013-09-06 09:09:38 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2013-09-06 09:06:24 ----A---- C:\windows\system32\WMVDECOD.DLL
2013-09-06 09:06:23 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2013-09-06 09:06:19 ----A---- C:\windows\system32\shell32.dll
2013-09-06 09:06:18 ----A---- C:\windows\system32\authui.dll
2013-09-06 09:06:17 ----A---- C:\windows\SYSWOW64\shell32.dll
2013-09-06 09:06:17 ----A---- C:\windows\system32\shdocvw.dll
2013-09-06 09:06:16 ----A---- C:\windows\SYSWOW64\authui.dll
2013-09-06 09:06:16 ----A---- C:\windows\system32\consent.exe
2013-09-06 09:06:15 ----A---- C:\windows\SYSWOW64\shdocvw.dll
2013-09-06 09:06:15 ----A---- C:\windows\system32\appinfo.dll
2013-09-06 09:05:39 ----A---- C:\windows\SYSWOW64\wintrust.dll
2013-09-06 09:05:39 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2013-09-06 09:05:39 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2013-09-06 09:05:39 ----A---- C:\windows\SYSWOW64\crypt32.dll
2013-09-06 09:05:39 ----A---- C:\windows\system32\wintrust.dll
2013-09-06 09:05:39 ----A---- C:\windows\system32\cryptsvc.dll
2013-09-06 09:05:39 ----A---- C:\windows\system32\cryptnet.dll
2013-09-06 09:05:39 ----A---- C:\windows\system32\crypt32.dll
2013-09-06 09:05:35 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2013-09-06 09:05:24 ----A---- C:\windows\system32\OxpsConverter.exe
2013-09-06 09:05:19 ----A---- C:\windows\system32\drivers\ndis.sys
2013-09-06 09:05:18 ----A---- C:\windows\system32\drivers\RNDISMP.sys
2013-09-06 09:05:15 ----A---- C:\windows\system32\win32spl.dll
2013-09-06 09:05:15 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2013-09-06 09:05:15 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2013-09-06 09:05:14 ----A---- C:\windows\SYSWOW64\win32spl.dll
2013-09-06 09:05:14 ----A---- C:\windows\system32\rpcrt4.dll
2013-09-06 09:05:13 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2013-09-06 09:05:11 ----A---- C:\windows\system32\win32k.sys
2013-09-06 09:05:10 ----A---- C:\windows\SYSWOW64\dhcpcsvc6.dll
2013-09-06 09:05:10 ----A---- C:\windows\SYSWOW64\dhcpcore6.dll
2013-09-06 09:05:10 ----A---- C:\windows\system32\dhcpcsvc6.dll
2013-09-06 09:05:10 ----A---- C:\windows\system32\dhcpcore6.dll
2013-09-06 09:05:04 ----A---- C:\windows\SYSWOW64\tzres.dll
2013-09-06 09:05:04 ----A---- C:\windows\system32\tzres.dll
2013-09-06 09:05:01 ----A---- C:\windows\SYSWOW64\qedit.dll
2013-09-06 09:05:01 ----A---- C:\windows\system32\taskhost.exe
2013-09-06 09:05:01 ----A---- C:\windows\system32\qedit.dll
2013-09-06 09:05:00 ----A---- C:\windows\system32\wwansvc.dll
2013-09-06 09:05:00 ----A---- C:\windows\system32\wwanprotdim.dll
2013-09-06 09:04:22 ----A---- C:\windows\system32\certutil.exe
2013-09-06 09:04:21 ----A---- C:\windows\SYSWOW64\certutil.exe
2013-09-06 09:04:20 ----A---- C:\windows\SYSWOW64\certenc.dll
2013-09-06 09:04:20 ----A---- C:\windows\system32\certenc.dll
2013-09-06 09:03:59 ----A---- C:\windows\SYSWOW64\cryptdlg.dll
2013-09-06 09:03:59 ----A---- C:\windows\system32\cryptdlg.dll
2013-09-06 09:03:53 ----A---- C:\windows\system32\DWrite.dll
2013-09-06 09:03:52 ----A---- C:\windows\SYSWOW64\DWrite.dll
2013-09-06 09:00:16 ----A---- C:\windows\system32\drivers\tcpip.sys
2013-09-05 23:48:56 ----D---- C:\windows\system32\MRT
2013-09-05 23:48:53 ----A---- C:\windows\system32\MRT.exe
2013-09-05 23:44:00 ----D---- C:\windows\system32\SPReview
2013-09-05 23:43:33 ----D---- C:\windows\system32\EventProviders
2013-09-05 23:35:35 ----A---- C:\windows\system32\netfxperf.dll
2013-09-05 23:35:35 ----A---- C:\windows\system32\dfshim.dll
2013-09-05 23:35:30 ----A---- C:\windows\SYSWOW64\dfshim.dll
2013-09-05 23:35:26 ----A---- C:\windows\system32\d3d10warp.dll
2013-09-05 23:35:21 ----A---- C:\windows\SYSWOW64\d3d10warp.dll
2013-09-05 23:35:20 ----A---- C:\windows\SYSWOW64\mfc40u.dll
2013-09-05 23:35:20 ----A---- C:\windows\SYSWOW64\mfc40.dll
2013-09-05 23:35:20 ----A---- C:\windows\system32\sysmain.dll
2013-09-05 23:35:18 ----A---- C:\windows\system32\MSVidCtl.dll
2013-09-05 23:35:16 ----A---- C:\windows\system32\wmp.dll
2013-09-05 23:35:15 ----A---- C:\windows\system32\mscoree.dll
2013-09-05 23:35:15 ----A---- C:\windows\system32\mmcndmgr.dll
2013-09-05 23:35:14 ----A---- C:\windows\system32\secproc_isv.dll
2013-09-05 23:35:14 ----A---- C:\windows\system32\RMActivate_isv.exe
2013-09-05 23:35:14 ----A---- C:\windows\system32\mf.dll
2013-09-05 23:35:13 ----A---- C:\windows\SYSWOW64\secproc_isv.dll
2013-09-05 23:35:13 ----A---- C:\windows\system32\xpsservices.dll
2013-09-05 23:35:13 ----A---- C:\windows\system32\secproc.dll
2013-09-05 23:35:13 ----A---- C:\windows\system32\RMActivate.exe
2013-09-05 23:35:12 ----A---- C:\windows\SYSWOW64\secproc.dll
2013-09-05 23:35:12 ----A---- C:\windows\SYSWOW64\RMActivate_isv.exe
2013-09-05 23:35:11 ----A---- C:\windows\SYSWOW64\RMActivate.exe
2013-09-05 23:35:11 ----A---- C:\windows\system32\schedsvc.dll
2013-09-05 23:35:11 ----A---- C:\windows\system32\ole32.dll
2013-09-05 23:35:10 ----A---- C:\windows\SYSWOW64\mscoree.dll
2013-09-05 23:35:10 ----A---- C:\windows\system32\spwizui.dll
2013-09-05 23:35:09 ----A---- C:\windows\system32\taskschd.dll
2013-09-05 23:35:09 ----A---- C:\windows\system32\RacEngn.dll
2013-09-05 23:35:09 ----A---- C:\windows\system32\diagperf.dll
2013-09-05 23:35:08 ----A---- C:\windows\SYSWOW64\mf.dll
2013-09-05 23:35:08 ----A---- C:\windows\system32\wevtsvc.dll
2013-09-05 23:35:08 ----A---- C:\windows\system32\ExplorerFrame.dll
2013-09-05 23:35:07 ----A---- C:\windows\SYSWOW64\CertEnroll.dll
2013-09-05 23:35:07 ----A---- C:\windows\system32\vssapi.dll
2013-09-05 23:35:07 ----A---- C:\windows\system32\NaturalLanguage6.dll
2013-09-05 23:35:07 ----A---- C:\windows\system32\drivers\msiscsi.sys
2013-09-05 23:35:06 ----A---- C:\windows\system32\UIRibbon.dll
2013-09-05 23:35:06 ----A---- C:\windows\system32\mcupdate_GenuineIntel.dll
2013-09-05 23:35:05 ----A---- C:\windows\SYSWOW64\wmp.dll
2013-09-05 23:35:04 ----A---- C:\windows\SYSWOW64\PresentationHostProxy.dll
2013-09-05 23:35:04 ----A---- C:\windows\SYSWOW64\PresentationHost.exe
2013-09-05 23:35:04 ----A---- C:\windows\system32\WsmSvc.dll
2013-09-05 23:35:04 ----A---- C:\windows\system32\WMVCORE.DLL
2013-09-05 23:35:03 ----A---- C:\windows\system32\spreview.exe
2013-09-05 23:35:03 ----A---- C:\windows\system32\spinstall.exe
2013-09-05 23:35:03 ----A---- C:\windows\system32\rdpdd.dll
2013-09-05 23:35:03 ----A---- C:\windows\system32\PresentationHostProxy.dll
2013-09-05 23:35:03 ----A---- C:\windows\system32\PresentationHost.exe
2013-09-05 23:35:03 ----A---- C:\windows\system32\MPSSVC.dll
2013-09-05 23:35:02 ----A---- C:\windows\system32\WinSAT.exe
2013-09-05 23:35:02 ----A---- C:\windows\system32\CertEnroll.dll
2013-09-05 23:35:01 ----A---- C:\windows\system32\d3d9.dll
2013-09-05 23:35:00 ----A---- C:\windows\SYSWOW64\RacEngn.dll
2013-09-05 23:35:00 ----A---- C:\windows\SYSWOW64\AuthFWSnapin.dll
2013-09-05 23:35:00 ----A---- C:\windows\system32\SearchFolder.dll
2013-09-05 23:35:00 ----A---- C:\windows\system32\IKEEXT.DLL
2013-09-05 23:35:00 ----A---- C:\windows\system32\AuthFWSnapin.dll
2013-09-05 23:34:59 ----A---- C:\windows\system32\VSSVC.exe
2013-09-05 23:34:59 ----A---- C:\windows\system32\gpsvc.dll
2013-09-05 23:34:59 ----A---- C:\windows\system32\dwmcore.dll
2013-09-05 23:34:58 ----A---- C:\windows\system32\drivers\http.sys
2013-09-05 23:34:58 ----A---- C:\windows\system32\dbgeng.dll
2013-09-05 23:34:57 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2013-09-05 23:34:56 ----A---- C:\windows\SYSWOW64\ole32.dll
2013-09-05 23:34:56 ----A---- C:\windows\system32\TSWorkspace.dll
2013-09-05 23:34:56 ----A---- C:\windows\system32\qmgr.dll
2013-09-05 23:34:56 ----A---- C:\windows\system32\audiosrv.dll
2013-09-05 23:34:56 ----A---- C:\windows\system32\actxprxy.dll
2013-09-05 23:34:55 ----A---- C:\windows\system32\termsrv.dll
2013-09-05 23:34:54 ----A---- C:\windows\SYSWOW64\vssapi.dll
2013-09-05 23:34:54 ----A---- C:\windows\system32\netlogon.dll
2013-09-05 23:34:54 ----A---- C:\windows\system32\imapi2fs.dll
2013-09-05 23:34:54 ----A---- C:\windows\system32\d3d11.dll
2013-09-05 23:34:53 ----A---- C:\windows\SYSWOW64\SearchFolder.dll
2013-09-05 23:34:53 ----A---- C:\windows\SYSWOW64\d3d9.dll
2013-09-05 23:34:53 ----A---- C:\windows\system32\winhttp.dll
2013-09-05 23:34:53 ----A---- C:\windows\system32\QAGENTRT.DLL
2013-09-05 23:34:53 ----A---- C:\windows\system32\propsys.dll
2013-09-05 23:34:53 ----A---- C:\windows\system32\msv1_0.dll
2013-09-05 23:34:52 ----A---- C:\windows\SYSWOW64\taskschd.dll
2013-09-05 23:34:52 ----A---- C:\windows\system32\wbengine.exe
2013-09-05 23:34:52 ----A---- C:\windows\system32\setupapi.dll
2013-09-05 23:34:52 ----A---- C:\windows\system32\rpcss.dll
2013-09-05 23:34:51 ----A---- C:\windows\system32\werconcpl.dll
2013-09-05 23:34:51 ----A---- C:\windows\system32\taskeng.exe
2013-09-05 23:34:51 ----A---- C:\windows\system32\odbc32.dll
2013-09-05 23:34:50 ----A---- C:\windows\system32\WSDApi.dll
2013-09-05 23:34:50 ----A---- C:\windows\system32\user32.dll
2013-09-05 23:34:50 ----A---- C:\windows\system32\dhcpcore.dll
2013-09-05 23:34:50 ----A---- C:\windows\system32\certmgr.dll
2013-09-05 23:34:49 ----A---- C:\windows\SYSWOW64\wer.dll
2013-09-05 23:34:49 ----A---- C:\windows\SYSWOW64\certcli.dll
2013-09-05 23:34:49 ----A---- C:\windows\system32\scavengeui.dll
2013-09-05 23:34:49 ----A---- C:\windows\system32\drivers\tdx.sys
2013-09-05 23:34:49 ----A---- C:\windows\system32\drivers\netbt.sys
2013-09-05 23:34:48 ----A---- C:\windows\SYSWOW64\dwmcore.dll
2013-09-05 23:34:48 ----A---- C:\windows\system32\tsmf.dll
2013-09-05 23:34:48 ----A---- C:\windows\system32\shlwapi.dll
2013-09-05 23:34:48 ----A---- C:\windows\system32\PortableDeviceApi.dll
2013-09-05 23:34:48 ----A---- C:\windows\system32\msdrm.dll
2013-09-05 23:34:47 ----A---- C:\windows\SYSWOW64\odbc32.dll
2013-09-05 23:34:47 ----A---- C:\windows\system32\netshell.dll
2013-09-05 23:34:47 ----A---- C:\windows\system32\msdtctm.dll
2013-09-05 23:34:47 ----A---- C:\windows\system32\framedynos.dll
2013-09-05 23:34:46 ----A---- C:\windows\SYSWOW64\tcpmonui.dll
2013-09-05 23:34:46 ----A---- C:\windows\system32\ws2_32.dll
2013-09-05 23:34:46 ----A---- C:\windows\system32\winlogon.exe
2013-09-05 23:34:46 ----A---- C:\windows\system32\netcfgx.dll
2013-09-05 23:34:46 ----A---- C:\windows\system32\lsm.exe
2013-09-05 23:34:46 ----A---- C:\windows\system32\dxgi.dll
2013-09-05 23:34:46 ----A---- C:\windows\system32\comdlg32.dll
2013-09-05 23:34:45 ----A---- C:\windows\SYSWOW64\TSWorkspace.dll
2013-09-05 23:34:45 ----A---- C:\windows\SYSWOW64\tsmf.dll
2013-09-05 23:34:45 ----A---- C:\windows\SYSWOW64\dot3api.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\wpdshext.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\wmpps.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\Query.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\mswsock.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\azroles.dll
2013-09-05 23:34:45 ----A---- C:\windows\system32\apphelp.dll
2013-09-05 23:34:44 ----A---- C:\windows\SYSWOW64\winhttp.dll
2013-09-05 23:34:44 ----A---- C:\windows\SYSWOW64\setupapi.dll
2013-09-05 23:34:44 ----A---- C:\windows\SYSWOW64\apphelp.dll
2013-09-05 23:34:44 ----A---- C:\windows\system32\Vault.dll
2013-09-05 23:34:44 ----A---- C:\windows\system32\samsrv.dll
2013-09-05 23:34:44 ----A---- C:\windows\system32\QAGENT.DLL
2013-09-05 23:34:44 ----A---- C:\windows\system32\cmd.exe
2013-09-05 23:34:44 ----A---- C:\windows\system32\BFE.DLL
2013-09-05 23:34:43 ----A---- C:\windows\SYSWOW64\netlogon.dll
2013-09-05 23:34:43 ----A---- C:\windows\SYSWOW64\MSVidCtl.dll
2013-09-05 23:34:43 ----A---- C:\windows\SYSWOW64\dbgeng.dll
2013-09-05 23:34:43 ----A---- C:\windows\system32\lpksetup.exe
2013-09-05 23:34:43 ----A---- C:\windows\system32\DShowRdpFilter.dll
2013-09-05 23:34:42 ----A---- C:\windows\SYSWOW64\WindowsCodecs.dll
2013-09-05 23:34:42 ----A---- C:\windows\SYSWOW64\netcfgx.dll
2013-09-05 23:34:42 ----A---- C:\windows\SYSWOW64\d3d11.dll
2013-09-05 23:34:42 ----A---- C:\windows\system32\WebClnt.dll
2013-09-05 23:34:41 ----A---- C:\windows\SYSWOW64\WsmSvc.dll
2013-09-05 23:34:41 ----A---- C:\windows\SYSWOW64\Query.dll
2013-09-05 23:34:41 ----A---- C:\windows\SYSWOW64\advapi32.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\Wldap32.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\WindowsCodecs.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\taskcomp.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\sxs.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\mfds.dll
2013-09-05 23:34:41 ----A---- C:\windows\system32\mcbuilder.exe
2013-09-05 23:34:41 ----A---- C:\windows\system32\drivers\vhdmp.sys
2013-09-05 23:34:40 ----A---- C:\windows\SYSWOW64\upnp.dll
2013-09-05 23:34:40 ----A---- C:\windows\SYSWOW64\mmcndmgr.dll
2013-09-05 23:34:40 ----A---- C:\windows\SYSWOW64\DShowRdpFilter.dll
2013-09-05 23:34:40 ----A---- C:\windows\system32\pnidui.dll
2013-09-05 23:34:40 ----A---- C:\windows\system32\ipsmsnap.dll
2013-09-05 23:34:40 ----A---- C:\windows\system32\hgprint.dll
2013-09-05 23:34:39 ----A---- C:\windows\SYSWOW64\netfxperf.dll
2013-09-05 23:34:39 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2013-09-05 23:34:39 ----A---- C:\windows\SYSWOW64\imapi2fs.dll
2013-09-05 23:34:39 ----A---- C:\windows\system32\webservices.dll
2013-09-05 23:34:39 ----A---- C:\windows\system32\SessEnv.dll
2013-09-05 23:34:38 ----A---- C:\windows\SYSWOW64\SessEnv.dll
2013-09-05 23:34:38 ----A---- C:\windows\SYSWOW64\PortableDeviceApi.dll
2013-09-05 23:34:38 ----A---- C:\windows\SYSWOW64\msdrm.dll
2013-09-05 23:34:38 ----A---- C:\windows\system32\winsta.dll
2013-09-05 23:34:38 ----A---- C:\windows\system32\sqlsrv32.dll
2013-09-05 23:34:38 ----A---- C:\windows\system32\fveapi.dll
2013-09-05 23:34:38 ----A---- C:\windows\system32\dot3api.dll
2013-09-05 23:34:37 ----A---- C:\windows\SYSWOW64\shlwapi.dll
2013-09-05 23:34:37 ----A---- C:\windows\SYSWOW64\mcbuilder.exe
2013-09-05 23:34:37 ----A---- C:\windows\system32\prncache.dll
2013-09-05 23:34:37 ----A---- C:\windows\system32\mcmde.dll
2013-09-05 23:34:37 ----A---- C:\windows\system32\gdi32.dll
2013-09-05 23:34:37 ----A---- C:\windows\system32\drivers\volsnap.sys
2013-09-05 23:34:37 ----A---- C:\windows\system32\drivers\msrpc.sys
2013-09-05 23:34:36 ----A---- C:\windows\SYSWOW64\userenv.dll
2013-09-05 23:34:36 ----A---- C:\windows\SYSWOW64\certmgr.dll
2013-09-05 23:34:36 ----A---- C:\windows\system32\WMNetMgr.dll
2013-09-05 23:34:36 ----A---- C:\windows\system32\wlanpref.dll
2013-09-05 23:34:36 ----A---- C:\windows\system32\vpnike.dll
2013-09-05 23:34:36 ----A---- C:\windows\system32\schtasks.exe
2013-09-05 23:34:35 ----A---- C:\windows\SYSWOW64\xpsservices.dll
2013-09-05 23:34:35 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2013-09-05 23:34:35 ----A---- C:\windows\SYSWOW64\comdlg32.dll
2013-09-05 23:34:35 ----A---- C:\windows\system32\userenv.dll
2013-09-05 23:34:35 ----A---- C:\windows\system32\photowiz.dll
2013-09-05 23:34:35 ----A---- C:\windows\system32\evr.dll
2013-09-05 23:34:35 ----A---- C:\windows\system32\drivers\rdbss.sys
2013-09-05 23:34:35 ----A---- C:\windows\system32\drivers\1394ohci.sys
2013-09-05 23:34:34 ----A---- C:\windows\SYSWOW64\cmd.exe
2013-09-05 23:34:34 ----A---- C:\windows\system32\wmpmde.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\SyncCenter.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\sppobjs.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\IPSECSVC.DLL
2013-09-05 23:34:34 ----A---- C:\windows\system32\FXSSVC.exe
2013-09-05 23:34:34 ----A---- C:\windows\system32\framedyn.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\AudioSes.dll
2013-09-05 23:34:34 ----A---- C:\windows\system32\aepdu.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\WMPEncEn.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\wmpeffects.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\srvsvc.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\shsvcs.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\mfreadwrite.dll
2013-09-05 23:34:33 ----A---- C:\windows\system32\aeinv.dll
2013-09-05 23:34:32 ----A---- C:\windows\SYSWOW64\Wldap32.dll
2013-09-05 23:34:32 ----A---- C:\windows\SYSWOW64\propsys.dll
2013-09-05 23:34:32 ----A---- C:\windows\SYSWOW64\mfds.dll
2013-09-05 23:34:32 ----A---- C:\windows\SYSWOW64\framedynos.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\WinSATAPI.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\stobject.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\localsec.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\imapi2.dll
2013-09-05 23:34:32 ----A---- C:\windows\system32\fde.dll
2013-09-05 23:34:31 ----A---- C:\windows\SYSWOW64\user32.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\netid.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\netdiagfx.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\inetpp.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\drivers\udfs.sys
2013-09-05 23:34:31 ----A---- C:\windows\system32\drivers\fltMgr.sys
2013-09-05 23:34:31 ----A---- C:\windows\system32\credui.dll
2013-09-05 23:34:31 ----A---- C:\windows\system32\bcryptprimitives.dll
2013-09-05 23:34:30 ----A---- C:\windows\SYSWOW64\azroles.dll
2013-09-05 23:34:30 ----A---- C:\windows\system32\tcpipcfg.dll
2013-09-05 23:34:30 ----A---- C:\windows\system32\spp.dll
2013-09-05 23:34:30 ----A---- C:\windows\system32\QSHVHOST.DLL
2013-09-05 23:34:30 ----A---- C:\windows\system32\davclnt.dll
2013-09-05 23:34:30 ----A---- C:\windows\system32\biocpl.dll
2013-09-05 23:34:29 ----A---- C:\windows\SYSWOW64\themeui.dll
2013-09-05 23:34:29 ----A---- C:\windows\SYSWOW64\credui.dll
2013-09-05 23:34:29 ----A---- C:\windows\system32\scansetting.dll
2013-09-05 23:34:29 ----A---- C:\windows\system32\printui.dll
2013-09-05 23:34:29 ----A---- C:\windows\system32\mspbda.dll
2013-09-05 23:34:29 ----A---- C:\windows\system32\msinfo32.exe
2013-09-05 23:34:28 ----A---- C:\windows\SYSWOW64\taskeng.exe
2013-09-05 23:34:28 ----A---- C:\windows\SYSWOW64\spp.dll
2013-09-05 23:34:28 ----A---- C:\windows\SYSWOW64\mswsock.dll
2013-09-05 23:34:28 ----A---- C:\windows\SYSWOW64\dhcpcore.dll
2013-09-05 23:34:28 ----A---- C:\windows\system32\wusa.exe
2013-09-05 23:34:28 ----A---- C:\windows\system32\pla.dll
2013-09-05 23:34:28 ----A---- C:\windows\system32\msdri.dll
2013-09-05 23:34:28 ----A---- C:\windows\system32\IPHLPAPI.DLL
2013-09-05 23:34:28 ----A---- C:\windows\system32\aitagent.exe
2013-09-05 23:34:27 ----A---- C:\windows\SYSWOW64\basecsp.dll
2013-09-05 23:34:27 ----A---- C:\windows\system32\wiaservc.dll
2013-09-05 23:34:27 ----A---- C:\windows\system32\vds.exe
2013-09-05 23:34:27 ----A---- C:\windows\system32\rpchttp.dll
2013-09-05 23:34:27 ----A---- C:\windows\system32\drivers\pci.sys
2013-09-05 23:34:26 ----A---- C:\windows\SYSWOW64\NaturalLanguage6.dll
2013-09-05 23:34:26 ----A---- C:\windows\SYSWOW64\mfreadwrite.dll
2013-09-05 23:34:26 ----A---- C:\windows\SYSWOW64\dxgi.dll
2013-09-05 23:34:26 ----A---- C:\windows\SYSWOW64\dbghelp.dll
2013-09-05 23:34:26 ----A---- C:\windows\system32\XpsRasterService.dll
2013-09-05 23:34:26 ----A---- C:\windows\system32\wisptis.exe
2013-09-05 23:34:26 ----A---- C:\windows\system32\mscms.dll
2013-09-05 23:34:26 ----A---- C:\windows\system32\FirewallControlPanel.dll
2013-09-05 23:34:26 ----A---- C:\windows\system32\drivers\rasl2tp.sys
2013-09-05 23:34:25 ----A---- C:\windows\SYSWOW64\taskcomp.dll
2013-09-05 23:34:25 ----A---- C:\windows\SYSWOW64\evr.dll
2013-09-05 23:34:25 ----A---- C:\windows\system32\sppwinob.dll
2013-09-05 23:34:25 ----A---- C:\windows\system32\ocsetup.exe
2013-09-05 23:34:25 ----A---- C:\windows\system32\drivers\mrxdav.sys
2013-09-05 23:34:24 ----A---- C:\windows\SYSWOW64\WinSATAPI.dll
2013-09-05 23:34:24 ----A---- C:\windows\SYSWOW64\calc.exe
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Re: Conduit, PriceGong
a dokončení RSIT (to jsem to nějak divně rozdělil)
NTB mi donesl jeden kolega student s tím, že mu padá wifi. NTB nebyl vůbec aktualizovaný, ovladač wifi jsem aktualizoval (Atheros AR9285 z verze 10.0.0.222 na 10.0.0.251). Start NTB strašně pomalý, jako staré jednojádro. A to v něm je i5 na 2,4GHz a 4GB RAM.
2013-09-05 23:34:24 ----A---- C:\windows\system32\ocsetapi.dll
2013-09-05 23:34:24 ----A---- C:\windows\system32\DXP.dll
2013-09-05 23:34:24 ----A---- C:\windows\system32\drivers\volmgr.sys
2013-09-05 23:34:23 ----A---- C:\windows\SYSWOW64\sqlsrv32.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\wpdbusenum.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\wcncsvc.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\upnp.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\Robocopy.exe
2013-09-05 23:34:23 ----A---- C:\windows\system32\mprapi.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\eapphost.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\eapp3hst.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\drivers\msdsm.sys
2013-09-05 23:34:23 ----A---- C:\windows\system32\ci.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\ws2_32.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\UIRibbon.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\sxs.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\stobject.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\netshell.dll
2013-09-05 23:34:22 ----A---- C:\windows\system32\thumbcache.dll
2013-09-05 23:34:22 ----A---- C:\windows\system32\t2embed.dll
2013-09-05 23:34:22 ----A---- C:\windows\system32\hal.dll
2013-09-05 23:34:22 ----A---- C:\windows\system32\drivers\HpSAMD.sys
2013-09-05 23:34:21 ----A---- C:\windows\SYSWOW64\gdi32.dll
2013-09-05 23:34:21 ----A---- C:\windows\system32\scecli.dll
2013-09-05 23:34:21 ----A---- C:\windows\system32\PerfCenterCPL.dll
2013-09-05 23:34:21 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2013-09-05 23:34:21 ----A---- C:\windows\system32\DxpTaskSync.dll
2013-09-05 23:34:21 ----A---- C:\windows\system32\dwmredir.dll
2013-09-05 23:34:20 ----A---- C:\windows\SYSWOW64\prncache.dll
2013-09-05 23:34:20 ----A---- C:\windows\SYSWOW64\comctl32.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\themeui.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\puiobj.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\onex.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\msasn1.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\iasrad.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\DXPTaskRingtone.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\drivers\ipfltdrv.sys
2013-09-05 23:34:20 ----A---- C:\windows\system32\drivers\Classpnp.sys
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\WSDApi.dll
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\wmpeffects.dll
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\printui.dll
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\net1.exe
2013-09-05 23:34:18 ----A---- C:\windows\SYSWOW64\scansetting.dll
2013-09-05 23:34:18 ----A---- C:\windows\system32\wdc.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\wlangpui.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\VAN.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\StructuredQuery.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\sdengin2.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\scesrv.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\rasmans.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\msftedit.dll
2013-09-05 23:34:16 ----A---- C:\windows\SYSWOW64\WMVCORE.DLL
2013-09-05 23:34:16 ----A---- C:\windows\SYSWOW64\wlangpui.dll
2013-09-05 23:34:16 ----A---- C:\windows\SYSWOW64\MMDevAPI.dll
2013-09-05 23:34:16 ----A---- C:\windows\SYSWOW64\davclnt.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\wscapi.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\wiadefui.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\SndVol.exe
2013-09-05 23:34:16 ----A---- C:\windows\system32\samcli.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\netcenter.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\iasacct.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\dskquoui.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\drivers\ndiswan.sys
2013-09-05 23:34:15 ----A---- C:\windows\SYSWOW64\QSHVHOST.DLL
2013-09-05 23:34:15 ----A---- C:\windows\system32\TabSvc.dll
2013-09-05 23:34:15 ----A---- C:\windows\system32\srchadmin.dll
2013-09-05 23:34:15 ----A---- C:\windows\system32\regapi.dll
2013-09-05 23:34:15 ----A---- C:\windows\system32\QUTIL.DLL
2013-09-05 23:34:15 ----A---- C:\windows\system32\drivers\termdd.sys
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\wpdshext.dll
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\webservices.dll
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\t2embed.dll
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\pnidui.dll
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\fde.dll
2013-09-05 23:34:14 ----A---- C:\windows\system32\setupcl.exe
2013-09-05 23:34:14 ----A---- C:\windows\system32\drivers\msahci.sys
2013-09-05 23:34:13 ----A---- C:\windows\SYSWOW64\wuapi.dll
2013-09-05 23:34:13 ----A---- C:\windows\SYSWOW64\wscapi.dll
2013-09-05 23:34:13 ----A---- C:\windows\SYSWOW64\SyncCenter.dll
2013-09-05 23:34:13 ----A---- C:\windows\SYSWOW64\netdiagfx.dll
2013-09-05 23:34:13 ----A---- C:\windows\system32\rastls.dll
2013-09-05 23:34:13 ----A---- C:\windows\system32\drivers\acpi.sys
2013-09-05 23:34:12 ----A---- C:\windows\SYSWOW64\WinSCard.dll
2013-09-05 23:34:12 ----A---- C:\windows\SYSWOW64\pla.dll
2013-09-05 23:34:12 ----A---- C:\windows\SYSWOW64\msasn1.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\tapisrv.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\netiohlp.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\msconfig.exe
2013-09-05 23:34:12 ----A---- C:\windows\system32\mimefilt.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\ListSvc.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\hgcpl.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\drivers\raspptp.sys
2013-09-05 23:34:11 ----A---- C:\windows\system32\lsmproxy.dll
2013-09-05 23:34:11 ----A---- C:\windows\system32\drivers\ks.sys
2013-09-05 23:34:11 ----A---- C:\windows\system32\clusapi.dll
2013-09-05 23:34:11 ----A---- C:\windows\system32\basecsp.dll
2013-09-05 23:34:10 ----A---- C:\windows\SYSWOW64\winsta.dll
2013-09-05 23:34:10 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2013-09-05 23:34:10 ----A---- C:\windows\system32\mtxclu.dll
2013-09-05 23:34:10 ----A---- C:\windows\system32\fdeploy.dll
2013-09-05 23:34:10 ----A---- C:\windows\system32\drivers\sbp2port.sys
2013-09-05 23:34:10 ----A---- C:\windows\system32\AuxiliaryDisplayCpl.dll
2013-09-05 23:34:09 ----A---- C:\windows\SYSWOW64\imapi2.dll
2013-09-05 23:34:09 ----A---- C:\windows\SYSWOW64\DXPTaskRingtone.dll
2013-09-05 23:34:09 ----A---- C:\windows\system32\riched20.dll
2013-09-05 23:34:09 ----A---- C:\windows\system32\dnscmmc.dll
2013-09-05 23:34:08 ----A---- C:\windows\SYSWOW64\WMPEncEn.dll
2013-09-05 23:34:08 ----A---- C:\windows\SYSWOW64\onex.dll
2013-09-05 23:34:08 ----A---- C:\windows\system32\sharemediacpl.dll
2013-09-05 23:34:08 ----A---- C:\windows\system32\RpcRtRemote.dll
2013-09-05 23:34:08 ----A---- C:\windows\system32\powercpl.dll
2013-09-05 23:34:08 ----A---- C:\windows\system32\logoncli.dll
2013-09-05 23:34:07 ----A---- C:\windows\SYSWOW64\winmm.dll
2013-09-05 23:34:07 ----A---- C:\windows\SYSWOW64\shsvcs.dll
2013-09-05 23:34:07 ----A---- C:\windows\SYSWOW64\hbaapi.dll
2013-09-05 23:34:07 ----A---- C:\windows\SYSWOW64\autofmt.exe
2013-09-05 23:34:07 ----A---- C:\windows\system32\themecpl.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\SensorsCpl.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\netjoin.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\nci.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\Narrator.exe
2013-09-05 23:34:07 ----A---- C:\windows\system32\Faultrep.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\eudcedit.exe
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\samcli.dll
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\proquota.exe
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\netiohlp.dll
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\IPHLPAPI.DLL
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\autochk.exe
2013-09-05 23:34:06 ----A---- C:\windows\system32\wkssvc.dll
2013-09-05 23:34:06 ----A---- C:\windows\system32\vpnikeapi.dll
2013-09-05 23:34:06 ----A---- C:\windows\system32\sppcomapi.dll
2013-09-05 23:34:06 ----A---- C:\windows\system32\comctl32.dll
2013-09-05 23:34:06 ----A---- C:\windows\system32\cabview.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\thumbcache.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\regapi.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\msutb.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\msinfo32.exe
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\mimefilt.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\ipsmsnap.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\autoconv.exe
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2013-09-05 23:34:05 ----A---- C:\windows\system32\nshipsec.dll
2013-09-05 23:34:05 ----A---- C:\windows\system32\autochk.exe
2013-09-05 23:34:05 ----A---- C:\windows\system32\autofmt.exe
2013-09-05 23:34:05 ----A---- C:\windows\system32\autoconv.exe
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\wcncsvc.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\tcpipcfg.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\srchadmin.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\schtasks.exe
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\powercpl.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\msihnd.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\framedyn.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\eapphost.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\wpd_ci.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\shsetup.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\sdclt.exe
2013-09-05 23:34:04 ----A---- C:\windows\system32\fms.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\bcdsrv.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\audiodg.exe
2013-09-05 23:34:03 ----A---- C:\windows\SYSWOW64\mscorier.dll
2013-09-05 23:34:03 ----A---- C:\windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\wwanconn.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\wlanui.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\prntvpt.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\mscorier.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\winusb.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\wanarp.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\volmgrx.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\usbvideo.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\scsiport.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\dps.dll
2013-09-05 23:34:02 ----A---- C:\windows\SYSWOW64\QAGENT.DLL
2013-09-05 23:34:02 ----A---- C:\windows\SYSWOW64\netid.dll
2013-09-05 23:34:02 ----A---- C:\windows\SYSWOW64\actxprxy.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\mprddm.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\fontext.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\drivers\hidclass.sys
2013-09-05 23:34:02 ----A---- C:\windows\system32\Display.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\credssp.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\batmeter.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\AxInstSv.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\wdc.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\Vault.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\untfs.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\StructuredQuery.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\scesrv.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\rastls.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\nci.dll
2013-09-05 23:34:01 ----A---- C:\windows\system32\wmpsrcwp.dll
2013-09-05 23:34:01 ----A---- C:\windows\system32\mblctr.exe
2013-09-05 23:34:00 ----A---- C:\windows\SYSWOW64\WMNetMgr.dll
2013-09-05 23:34:00 ----A---- C:\windows\SYSWOW64\wlanpref.dll
2013-09-05 23:34:00 ----A---- C:\windows\SYSWOW64\RpcRtRemote.dll
2013-09-05 23:34:00 ----A---- C:\windows\SYSWOW64\Robocopy.exe
2013-09-05 23:34:00 ----A---- C:\windows\system32\usercpl.dll
2013-09-05 23:34:00 ----A---- C:\windows\system32\rtutils.dll
2013-09-05 23:34:00 ----A---- C:\windows\system32\DiagCpl.dll
2013-09-05 23:33:59 ----A---- C:\windows\system32\wpccpl.dll
2013-09-05 23:33:59 ----A---- C:\windows\system32\sppsvc.exe
2013-09-05 23:33:59 ----A---- C:\windows\system32\provsvc.dll
2013-09-05 23:33:59 ----A---- C:\windows\system32\MCEWMDRMNDBootstrap.dll
2013-09-05 23:33:59 ----A---- C:\windows\system32\bootres.dll
2013-09-05 23:33:58 ----A---- C:\windows\SYSWOW64\taskmgr.exe
2013-09-05 23:33:58 ----A---- C:\windows\SYSWOW64\mtxclu.dll
2013-09-05 23:33:58 ----A---- C:\windows\SYSWOW64\DxpTaskSync.dll
2013-09-05 23:33:58 ----A---- C:\windows\SYSWOW64\Display.dll
2013-09-05 23:33:58 ----A---- C:\windows\system32\SndVolSSO.dll
2013-09-05 23:33:58 ----A---- C:\windows\system32\rasppp.dll
2013-09-05 23:33:58 ----A---- C:\windows\system32\drivers\rdyboost.sys
2013-09-05 23:33:58 ----A---- C:\windows\system32\dot3cfg.dll
2013-09-05 23:33:57 ----A---- C:\windows\system32\dxdiagn.dll
2013-09-05 23:33:56 ----A---- C:\windows\SYSWOW64\XpsRasterService.dll
2013-09-05 23:33:56 ----A---- C:\windows\SYSWOW64\userinit.exe
2013-09-05 23:33:56 ----A---- C:\windows\SYSWOW64\termmgr.dll
2013-09-05 23:33:56 ----A---- C:\windows\SYSWOW64\puiobj.dll
2013-09-05 23:33:56 ----A---- C:\windows\system32\taskmgr.exe
2013-09-05 23:33:56 ----A---- C:\windows\system32\prnfldr.dll
2013-09-05 23:33:56 ----A---- C:\windows\system32\hbaapi.dll
2013-09-05 23:33:55 ----A---- C:\windows\SYSWOW64\eudcedit.exe
2013-09-05 23:33:55 ----A---- C:\windows\system32\WPDShServiceObj.dll
2013-09-05 23:33:55 ----A---- C:\windows\system32\proquota.exe
2013-09-05 23:33:55 ----A---- C:\windows\system32\pdh.dll
2013-09-05 23:33:55 ----A---- C:\windows\system32\drivers\mountmgr.sys
2013-09-05 23:33:55 ----A---- C:\windows\system32\drivers\ataport.sys
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\wiadefui.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\sppcomapi.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\shsetup.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\rasppp.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\logoncli.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\cabview.dll
2013-09-05 23:33:54 ----A---- C:\windows\system32\userinit.exe
2013-09-05 23:33:54 ----A---- C:\windows\system32\untfs.dll
2013-09-05 23:33:54 ----A---- C:\windows\system32\MSAC3ENC.DLL
2013-09-05 23:33:54 ----A---- C:\windows\system32\accessibilitycpl.dll
2013-09-05 23:33:53 ----A---- C:\windows\SYSWOW64\themecpl.dll
2013-09-05 23:33:53 ----A---- C:\windows\SYSWOW64\SensorsCpl.dll
2013-09-05 23:33:53 ----A---- C:\windows\SYSWOW64\FirewallControlPanel.dll
2013-09-05 23:33:52 ----A---- C:\windows\SYSWOW64\FWPUCLNT.DLL
2013-09-05 23:33:52 ----A---- C:\windows\SYSWOW64\dnscmmc.dll
2013-09-05 23:33:52 ----A---- C:\windows\system32\zipfldr.dll
2013-09-05 23:33:52 ----A---- C:\windows\system32\slui.exe
2013-09-05 23:33:52 ----A---- C:\windows\system32\defaultlocationcpl.dll
2013-09-05 23:33:51 ----A---- C:\windows\SYSWOW64\hgcpl.dll
2013-09-05 23:33:51 ----A---- C:\windows\system32\msieftp.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\tapisrv.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\scecli.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\mscories.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\mscms.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\mprddm.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\localsec.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\fontext.dll
2013-09-05 23:33:50 ----A---- C:\windows\system32\sud.dll
2013-09-05 23:33:50 ----A---- C:\windows\system32\dot3svc.dll
2013-09-05 23:33:50 ----A---- C:\windows\system32\DeviceCenter.dll
2013-09-05 23:33:49 ----A---- C:\windows\SYSWOW64\SndVolSSO.dll
2013-09-05 23:33:49 ----A---- C:\windows\SYSWOW64\iasacct.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\taskbarcpl.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\OnLineIDCpl.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\networkmap.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\cryptui.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\ActionCenter.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\wlanui.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\VAN.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\usercpl.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\SndVol.exe
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\prntvpt.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\PerfCenterCPL.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\netcenter.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\batmeter.dll
2013-09-05 23:33:48 ----A---- C:\windows\system32\twext.dll
2013-09-05 23:33:47 ----A---- C:\windows\SYSWOW64\w32tm.exe
2013-09-05 23:33:47 ----A---- C:\windows\system32\uxlib.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\recovery.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\OobeFldr.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\isoburn.exe
2013-09-05 23:33:47 ----A---- C:\windows\system32\dsuiext.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\drivers\hwpolicy.sys
2013-09-05 23:33:47 ----A---- C:\windows\system32\cca.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\bcdedit.exe
2013-09-05 23:33:47 ----A---- C:\windows\system32\azroleui.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\asycfilt.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\zipfldr.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\spwizeng.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\fdeploy.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\azroleui.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\accessibilitycpl.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\tzutil.exe
2013-09-05 23:33:46 ----A---- C:\windows\system32\syncui.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\sisbkup.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\sdcpl.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\MediaMetadataHandler.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\efscore.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\drivers\sdbus.sys
2013-09-05 23:33:45 ----A---- C:\windows\SYSWOW64\netjoin.dll
2013-09-05 23:33:45 ----A---- C:\windows\SYSWOW64\MSAC3ENC.DLL
2013-09-05 23:33:45 ----A---- C:\windows\SYSWOW64\cryptui.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\systemcpl.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\shwebsvc.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\recdisc.exe
2013-09-05 23:33:45 ----A---- C:\windows\system32\netplwiz.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\httpapi.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\drivers\mpio.sys
2013-09-05 23:33:45 ----A---- C:\windows\system32\autoplay.dll
2013-09-05 23:33:44 ----A---- C:\windows\SYSWOW64\networkmap.dll
2013-09-05 23:33:44 ----A---- C:\windows\SYSWOW64\Faultrep.dll
2013-09-05 23:33:44 ----A---- C:\windows\SYSWOW64\adsldp.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\wlanmsm.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\sysclass.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\sdrsvc.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\ncryptui.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\certcli.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\ActionCenterCPL.dll
2013-09-05 23:33:43 ----A---- C:\windows\SYSWOW64\wusa.exe
2013-09-05 23:33:43 ----A---- C:\windows\SYSWOW64\prnfldr.dll
2013-09-05 23:33:43 ----A---- C:\windows\SYSWOW64\OnLineIDCpl.dll
2013-09-05 23:33:43 ----A---- C:\windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2013-09-05 23:33:43 ----A---- C:\windows\system32\spwizeng.dll
2013-09-05 23:33:43 ----A---- C:\windows\system32\msvidc32.dll
2013-09-05 23:33:43 ----A---- C:\windows\system32\AuxiliaryDisplayServices.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\sud.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\photowiz.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\msieftp.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\MediaMetadataHandler.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\credssp.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\ActionCenter.dll
2013-09-05 23:33:42 ----A---- C:\windows\system32\vdsutil.dll
2013-09-05 23:33:42 ----A---- C:\windows\system32\termmgr.dll
2013-09-05 23:33:42 ----A---- C:\windows\system32\MFPlay.dll
2013-09-05 23:33:41 ----A---- C:\windows\SYSWOW64\iprtrmgr.dll
2013-09-05 23:33:41 ----A---- C:\windows\SYSWOW64\iasrad.dll
2013-09-05 23:33:41 ----A---- C:\windows\SYSWOW64\dot3cfg.dll
2013-09-05 23:33:41 ----A---- C:\windows\SYSWOW64\defaultlocationcpl.dll
2013-09-05 23:33:41 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2013-09-05 23:33:41 ----A---- C:\windows\system32\sethc.exe
2013-09-05 23:33:41 ----A---- C:\windows\system32\ReAgent.dll
2013-09-05 23:33:41 ----A---- C:\windows\system32\ntlanman.dll
2013-09-05 23:33:41 ----A---- C:\windows\system32\msscp.dll
2013-09-05 23:33:40 ----A---- C:\windows\SYSWOW64\sisbkup.dll
2013-09-05 23:33:40 ----A---- C:\windows\SYSWOW64\shwebsvc.dll
2013-09-05 23:33:40 ----A---- C:\windows\SYSWOW64\ifsutil.dll
2013-09-05 23:33:40 ----A---- C:\windows\SYSWOW64\ftp.exe
2013-09-05 23:33:40 ----A---- C:\windows\system32\sqlcese30.dll
2013-09-05 23:33:40 ----A---- C:\windows\system32\drivers\ndproxy.sys
2013-09-05 23:33:39 ----A---- C:\windows\SYSWOW64\efscore.dll
2013-09-05 23:33:39 ----A---- C:\windows\SYSWOW64\ActionCenterCPL.dll
2013-09-05 23:33:39 ----A---- C:\windows\system32\UserAccountControlSettings.dll
2013-09-05 23:33:39 ----A---- C:\windows\system32\rdpd3d.dll
2013-09-05 23:33:39 ----A---- C:\windows\system32\iTVData.dll
2013-09-05 23:33:39 ----A---- C:\windows\system32\iprtrmgr.dll
2013-09-05 23:33:38 ----A---- C:\windows\SYSWOW64\syncui.dll
2013-09-05 23:33:38 ----A---- C:\windows\SYSWOW64\autoplay.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\wmdrmsdk.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\srvcli.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\slwga.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\iyuv_32.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\drmmgrtn.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\rtutils.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\OobeFldr.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\ntlanman.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\dskquoui.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\DeviceCenter.dll
2013-09-05 23:33:37 ----A---- C:\windows\system32\wavemsp.dll
2013-09-05 23:33:37 ----A---- C:\windows\system32\nslookup.exe
2013-09-05 23:33:37 ----A---- C:\windows\system32\msiexec.exe
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\systemcpl.dll
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\sethc.exe
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\riched20.dll
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\ntprint.dll
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2013-09-05 23:33:36 ----A---- C:\windows\system32\srrstr.dll
2013-09-05 23:33:36 ----A---- C:\windows\system32\ntprint.dll
2013-09-05 23:33:36 ----A---- C:\windows\system32\NAPHLPR.DLL
2013-09-05 23:33:36 ----A---- C:\windows\system32\DevicePairingFolder.dll
2013-09-05 23:33:36 ----A---- C:\windows\system32\bcdboot.exe
2013-09-05 23:33:36 ----A---- C:\windows\system32\acppage.dll
2013-09-05 23:33:35 ----A---- C:\windows\SYSWOW64\NAPHLPR.DLL
2013-09-05 23:33:35 ----A---- C:\windows\SYSWOW64\blackbox.dll
2013-09-05 23:33:35 ----A---- C:\windows\system32\sppnp.dll
2013-09-05 23:33:35 ----A---- C:\windows\system32\certprop.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\wmpsrcwp.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\netplwiz.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\migisol.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\fms.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\activeds.dll
2013-09-05 23:33:34 ----A---- C:\windows\system32\TSpkg.dll
2013-09-05 23:33:34 ----A---- C:\windows\system32\networkexplorer.dll
2013-09-05 23:33:34 ----A---- C:\windows\system32\cabinet.dll
2013-09-05 23:33:33 ----A---- C:\windows\SYSWOW64\nshipsec.dll
2013-09-05 23:33:33 ----A---- C:\windows\SYSWOW64\isoburn.exe
2013-09-05 23:33:33 ----A---- C:\windows\SYSWOW64\httpapi.dll
2013-09-05 23:33:33 ----A---- C:\windows\SYSWOW64\asycfilt.dll
2013-09-05 23:33:33 ----A---- C:\windows\system32\wkscli.dll
2013-09-05 23:33:33 ----A---- C:\windows\system32\remotepg.dll
2013-09-05 23:33:33 ----A---- C:\windows\system32\dfrgui.exe
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\wlanmsm.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\wavemsp.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\ReAgent.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\provsvc.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\msftedit.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\dot3ui.dll
2013-09-05 23:33:32 ----A---- C:\windows\system32\wsnmp32.dll
2013-09-05 23:33:32 ----A---- C:\windows\system32\wmpdxm.dll
2013-09-05 23:33:32 ----A---- C:\windows\system32\WinSCard.dll
2013-09-05 23:33:32 ----A---- C:\windows\system32\net1.exe
2013-09-05 23:33:32 ----A---- C:\windows\system32\ftp.exe
2013-09-05 23:33:31 ----A---- C:\windows\SYSWOW64\tzutil.exe
2013-09-05 23:33:31 ----A---- C:\windows\SYSWOW64\ocsetup.exe
2013-09-05 23:33:31 ----A---- C:\windows\SYSWOW64\dsuiext.dll
2013-09-05 23:33:31 ----A---- C:\windows\SYSWOW64\dfrgui.exe
2013-09-05 23:33:31 ----A---- C:\windows\system32\wvc.dll
2013-09-05 23:33:31 ----A---- C:\windows\system32\wsqmcons.exe
2013-09-05 23:33:31 ----A---- C:\windows\system32\wmdrmdev.dll
2013-09-05 23:33:31 ----A---- C:\windows\system32\WerFaultSecure.exe
2013-09-05 23:33:31 ----A---- C:\windows\system32\blackbox.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\wvc.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\wtsapi32.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\wimgapi.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\twext.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\mstask.dll
2013-09-05 23:33:30 ----A---- C:\windows\system32\msyuv.dll
2013-09-05 23:33:30 ----A---- C:\windows\system32\mfps.dll
2013-09-05 23:33:29 ----A---- C:\windows\twain_32.dll
2013-09-05 23:33:29 ----A---- C:\windows\SYSWOW64\setupugc.exe
2013-09-05 23:33:29 ----A---- C:\windows\SYSWOW64\qcap.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\unimdmat.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\OpcServices.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\msrle32.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\mapistub.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\mapi32.dll
2013-09-05 23:33:28 ----A---- C:\windows\SYSWOW64\uxlib.dll
2013-09-05 23:33:28 ----A---- C:\windows\SYSWOW64\slwga.dll
2013-09-05 23:33:28 ----A---- C:\windows\SYSWOW64\qasf.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\tsbyuv.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\seclogon.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\iscsium.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\ifsutil.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\diskraid.exe
2013-09-05 23:33:27 ----A---- C:\windows\SYSWOW64\msvfw32.dll
2013-09-05 23:33:27 ----A---- C:\windows\SYSWOW64\mciavi32.dll
2013-09-05 23:33:27 ----A---- C:\windows\SYSWOW64\audiodev.dll
2013-09-05 23:33:27 ----A---- C:\windows\system32\drivers\umbus.sys
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\WPDShServiceObj.dll
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\wmdrmsdk.dll
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\nslookup.exe
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\DevicePairingFolder.dll
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\clusapi.dll
2013-09-05 23:33:26 ----A---- C:\windows\system32\wmpshell.dll
2013-09-05 23:33:26 ----A---- C:\windows\system32\WindowsAnytimeUpgradeResults.exe
2013-09-05 23:33:26 ----A---- C:\windows\system32\rdpencom.dll
2013-09-05 23:33:26 ----A---- C:\windows\system32\perfmon.exe
2013-09-05 23:33:26 ----A---- C:\windows\system32\muifontsetup.dll
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\wimserv.exe
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\rdpencom.dll
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\perfmon.exe
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\msscp.dll
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\diskraid.exe
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\acppage.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\umb.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\tlscsp.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\qasf.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\netutils.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\NAPCRYPT.DLL
2013-09-05 23:33:25 ----A---- C:\windows\system32\FXSAPI.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\dbghelp.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\AzSqlExt.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\ActionQueue.dll
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\remotepg.dll
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\raschap.dll
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\QUTIL.DLL
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\NAPCRYPT.DLL
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\input.dll
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\drmmgrtn.dll
2013-09-05 23:33:24 ----A---- C:\windows\system32\wiavideo.dll
2013-09-05 23:33:24 ----A---- C:\windows\system32\runonce.exe
2013-09-05 23:33:24 ----A---- C:\windows\system32\raschap.dll
2013-09-05 23:33:24 ----A---- C:\windows\bfsvc.exe
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\wmpdxm.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\vpnikeapi.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\UserAccountControlSettings.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\olepro32.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\ocsetapi.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\networkexplorer.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\wpdwcn.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\WMVSDECD.DLL
2013-09-05 23:33:23 ----A---- C:\windows\system32\WMADMOD.DLL
2013-09-05 23:33:23 ----A---- C:\windows\system32\vdsbas.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\syssetup.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\PrintIsolationProxy.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\MdSched.exe
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\wpdwcn.dll
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\vdsbas.dll
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\runonce.exe
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\onexui.dll
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\iTVData.dll
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\dxdiagn.dll
2013-09-05 23:33:22 ----A---- C:\windows\system32\mstask.dll
2013-09-05 23:33:22 ----A---- C:\windows\system32\Mcx2Svc.dll
2013-09-05 23:33:21 ----A---- C:\windows\SYSWOW64\msvidc32.dll
2013-09-05 23:33:21 ----A---- C:\windows\SYSWOW64\MFPlay.dll
2013-09-05 23:33:21 ----A---- C:\windows\SYSWOW64\logagent.exe
2013-09-05 23:33:21 ----A---- C:\windows\SYSWOW64\eapp3hst.dll
2013-09-05 23:33:21 ----A---- C:\windows\system32\nltest.exe
2013-09-05 23:33:21 ----A---- C:\windows\system32\drivers\rmcast.sys
2013-09-05 23:33:21 ----A---- C:\windows\system32\bitsadmin.exe
2013-09-05 23:33:20 ----A---- C:\windows\SYSWOW64\wmdrmdev.dll
2013-09-05 23:33:20 ----A---- C:\windows\SYSWOW64\shacct.dll
2013-09-05 23:33:20 ----A---- C:\windows\SYSWOW64\msiexec.exe
2013-09-05 23:33:20 ----A---- C:\windows\system32\vss_ps.dll
2013-09-05 23:33:20 ----A---- C:\windows\system32\tabcal.exe
2013-09-05 23:33:20 ----A---- C:\windows\system32\shacct.dll
2013-09-05 23:33:20 ----A---- C:\windows\system32\QSVRMGMT.DLL
2013-09-05 23:33:20 ----A---- C:\windows\system32\cscapi.dll
2013-09-05 23:33:19 ----A---- C:\windows\SYSWOW64\wudriver.dll
2013-09-05 23:33:19 ----A---- C:\windows\SYSWOW64\wmpshell.dll
2013-09-05 23:33:19 ----A---- C:\windows\SYSWOW64\lsmproxy.dll
2013-09-05 23:33:19 ----A---- C:\windows\SYSWOW64\bitsadmin.exe
2013-09-05 23:33:19 ----A---- C:\windows\system32\WPDSp.dll
2013-09-05 23:33:19 ----A---- C:\windows\system32\wmdrmnet.dll
2013-09-05 23:33:19 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2013-09-05 23:33:19 ----A---- C:\windows\system32\qcap.dll
2013-09-05 23:33:19 ----A---- C:\windows\system32\logman.exe
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\unimdmat.dll
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\sqlcese30.dll
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\rdpd3d.dll
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\mprapi.dll
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\iscsium.dll
2013-09-05 23:33:18 ----A---- C:\windows\system32\WMSPDMOD.DLL
2013-09-05 23:33:18 ----A---- C:\windows\system32\secproc_ssp.dll
2013-09-05 23:33:18 ----A---- C:\windows\system32\qdv.dll
2013-09-05 23:33:18 ----A---- C:\windows\system32\PortableDeviceSyncProvider.dll
2013-09-05 23:33:18 ----A---- C:\windows\system32\msnetobj.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\WPDSp.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\srvcli.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\PortableDeviceSyncProvider.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\pdh.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\OpcServices.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\olethk32.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\ncryptui.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\logman.exe
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\cscapi.dll
2013-09-05 23:33:17 ----A---- C:\windows\system32\spbcd.dll
2013-09-05 23:33:17 ----A---- C:\windows\system32\PortableDeviceStatus.dll
2013-09-05 23:33:17 ----A---- C:\windows\system32\fphc.dll
2013-09-05 23:33:17 ----A---- C:\windows\system32\drivers\ndisuio.sys
2013-09-05 23:33:16 ----A---- C:\windows\SYSWOW64\QSVRMGMT.DLL
2013-09-05 23:33:16 ----A---- C:\windows\SYSWOW64\PortableDeviceStatus.dll
2013-09-05 23:33:16 ----A---- C:\windows\SYSWOW64\mapi32.dll
2013-09-05 23:33:16 ----A---- C:\windows\system32\takeown.exe
2013-09-05 23:33:16 ----A---- C:\windows\system32\PnPUnattend.exe
2013-09-05 23:33:16 ----A---- C:\windows\system32\dot3ui.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\WMPhoto.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\wiavideo.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\utildll.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\mapistub.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\fphc.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\dot3msm.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\avifil32.dll
2013-09-05 23:33:15 ----A---- C:\windows\system32\WMPhoto.dll
2013-09-05 23:33:15 ----A---- C:\windows\system32\amstream.dll
2013-09-05 23:33:14 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2013-09-05 23:33:14 ----A---- C:\windows\SYSWOW64\wmdrmnet.dll
2013-09-05 23:33:14 ----A---- C:\windows\SYSWOW64\takeown.exe
2013-09-05 23:33:14 ----A---- C:\windows\SYSWOW64\iyuv_32.dll
2013-09-05 23:33:14 ----A---- C:\windows\system32\vfwwdm32.dll
2013-09-05 23:33:14 ----A---- C:\windows\system32\shimgvw.dll
2013-09-05 23:33:14 ----A---- C:\windows\system32\HotStartUserAgent.dll
2013-09-05 23:33:14 ----A---- C:\windows\system32\EhStorAPI.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\sppinst.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\qdv.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\QCLIPROV.DLL
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\msyuv.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\msnetobj.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\EhStorAPI.dll
2013-09-05 23:33:13 ----A---- C:\windows\system32\WavDest.dll
2013-09-05 23:33:13 ----A---- C:\windows\system32\QCLIPROV.DLL
2013-09-05 23:33:13 ----A---- C:\windows\system32\nrpsrv.dll
2013-09-05 23:33:13 ----A---- C:\windows\system32\iasrecst.dll
2013-09-05 23:33:13 ----A---- C:\windows\system32\djoin.exe
2013-09-05 23:33:13 ----A---- C:\windows\system32\cmstp.exe
2013-09-05 23:33:13 ----A---- C:\windows\system32\CertPolEng.dll
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\vfwwdm32.dll
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\pdhui.dll
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\MuiUnattend.exe
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\msrle32.dll
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\cmstp.exe
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\cca.dll
2013-09-05 23:33:12 ----A---- C:\windows\system32\MultiDigiMon.exe
2013-09-05 23:33:12 ----A---- C:\windows\system32\KMSVC.DLL
2013-09-05 23:33:12 ----A---- C:\windows\system32\fdProxy.dll
2013-09-05 23:33:12 ----A---- C:\windows\system32\drivers\pacer.sys
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\wsnmp32.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\tsbyuv.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\setupcln.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\msorcl32.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\iasrecst.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\AzSqlExt.dll
2013-09-05 23:33:11 ----A---- C:\windows\system32\sscore.dll
2013-09-05 23:33:11 ----A---- C:\windows\system32\relog.exe
2013-09-05 23:33:11 ----A---- C:\windows\system32\mydocs.dll
2013-09-05 23:33:11 ----A---- C:\windows\system32\iscsicli.exe
2013-09-05 23:33:11 ----A---- C:\windows\system32\diskpart.exe
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\wkscli.dll
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\spbcd.dll
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\relog.exe
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\netiougc.exe
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\iscsicli.exe
2013-09-05 23:33:10 ----A---- C:\windows\system32\mobsync.exe
2013-09-05 23:33:10 ----A---- C:\windows\system32\itircl.dll
2013-09-05 23:33:10 ----A---- C:\windows\system32\BWUnpairElevated.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\secproc_ssp_isv.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\secproc_ssp.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\resutils.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\rastapi.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\netbtugc.exe
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\mydocs.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\itircl.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\diskpart.exe
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\amstream.dll
2013-09-05 23:33:09 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2013-09-05 23:33:09 ----A---- C:\windows\system32\RMActivate_ssp.exe
2013-09-05 23:33:09 ----A---- C:\windows\system32\msdmo.dll
2013-09-05 23:33:09 ----A---- C:\windows\system32\dot3msm.dll
2013-09-05 23:33:08 ----A---- C:\windows\SYSWOW64\wmpps.dll
2013-09-05 23:33:08 ----A---- C:\windows\SYSWOW64\syssetup.dll
2013-09-05 23:33:08 ----A---- C:\windows\SYSWOW64\CertPolEng.dll
2013-09-05 23:33:08 ----A---- C:\windows\system32\FXSTIFF.dll
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\wuapp.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\WerFaultSecure.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\tlscsp.dll
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\RMActivate_ssp_isv.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\RMActivate_ssp.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\ReAgentc.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\findstr.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\eappgnui.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\sppc.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\mciqtz32.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\luainstall.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\choice.exe
2013-09-05 23:33:07 ----A---- C:\windows\system32\findstr.exe
2013-09-05 23:33:07 ----A---- C:\windows\system32\eappgnui.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\drivers\tunnel.sys
2013-09-05 23:33:06 ----A---- C:\windows\SYSWOW64\netutils.dll
2013-09-05 23:33:06 ----A---- C:\windows\SYSWOW64\mobsync.exe
2013-09-05 23:33:06 ----A---- C:\windows\SYSWOW64\mciqtz32.dll
2013-09-05 23:33:06 ----A---- C:\windows\system32\schedcli.dll
2013-09-05 23:33:06 ----A---- C:\windows\system32\onexui.dll
2013-09-05 23:33:06 ----A---- C:\windows\system32\drivers\dfsc.sys
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\sppc.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\spopk.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\shimgvw.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\muifontsetup.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\iccvid.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\cabinet.dll
2013-09-05 23:33:05 ----A---- C:\windows\system32\wdiasqmmodule.dll
2013-09-05 23:33:05 ----A---- C:\windows\system32\spopk.dll
2013-09-05 23:33:05 ----A---- C:\windows\system32\repair-bde.exe
2013-09-05 23:33:05 ----A---- C:\windows\system32\manage-bde.exe
2013-09-05 23:33:05 ----A---- C:\windows\system32\inetmib1.dll
2013-09-05 23:33:04 ----A---- C:\windows\SYSWOW64\unlodctr.exe
2013-09-05 23:33:04 ----A---- C:\windows\SYSWOW64\msdmo.dll
2013-09-05 23:33:04 ----A---- C:\windows\SYSWOW64\luainstall.dll
2013-09-05 23:33:04 ----A---- C:\windows\system32\RDPENCDD.dll
2013-09-05 23:33:04 ----A---- C:\windows\system32\odbcconf.dll
2013-09-05 23:33:03 ----A---- C:\windows\SYSWOW64\rdprefdrvapi.dll
2013-09-05 23:33:03 ----A---- C:\windows\SYSWOW64\inetmib1.dll
2013-09-05 23:33:03 ----A---- C:\windows\system32\fixmapi.exe
2013-09-05 23:33:02 ----A---- C:\windows\SYSWOW64\UIRibbonRes.dll
2013-09-05 23:33:02 ----A---- C:\windows\SYSWOW64\odbcconf.dll
2013-09-05 23:33:02 ----A---- C:\windows\system32\UIRibbonRes.dll
2013-09-05 23:33:02 ----A---- C:\windows\system32\FXSMON.dll
2013-09-05 23:33:02 ----A---- C:\windows\system32\elsTrans.dll
2013-09-05 23:33:01 ----A---- C:\windows\SYSWOW64\wups.dll
2013-09-05 23:33:01 ----A---- C:\windows\SYSWOW64\perfts.dll
2013-09-05 23:33:01 ----A---- C:\windows\system32\wshbth.dll
2013-09-05 23:33:01 ----A---- C:\windows\system32\TRAPI.dll
2013-09-05 23:33:01 ----A---- C:\windows\system32\drivers\tdi.sys
2013-09-05 23:33:00 ----A---- C:\windows\SYSWOW64\imm32.dll
2013-09-05 23:33:00 ----A---- C:\windows\system32\napdsnap.dll
2013-09-05 23:33:00 ----A---- C:\windows\system32\LogonUI.exe
2013-09-05 23:33:00 ----A---- C:\windows\system32\dsauth.dll
2013-09-05 23:32:59 ----A---- C:\windows\SYSWOW64\TRAPI.dll
2013-09-05 23:32:59 ----A---- C:\windows\SYSWOW64\elsTrans.dll
2013-09-05 23:32:59 ----A---- C:\windows\system32\rdprefdrvapi.dll
2013-09-05 23:32:59 ----A---- C:\windows\system32\FXSUNATD.exe
2013-09-05 23:32:59 ----A---- C:\windows\system32\cscdll.dll
2013-09-05 23:32:58 ----A---- C:\windows\SYSWOW64\wshbth.dll
2013-09-05 23:32:58 ----A---- C:\windows\SYSWOW64\schedcli.dll
2013-09-05 23:32:58 ----A---- C:\windows\SYSWOW64\bitsperf.dll
2013-09-05 23:32:58 ----A---- C:\windows\system32\drivers\usbrpm.sys
2013-09-05 23:32:58 ----A---- C:\windows\system32\bitsperf.dll
2013-09-05 23:32:57 ----A---- C:\windows\SYSWOW64\napdsnap.dll
2013-09-05 23:32:57 ----A---- C:\windows\SYSWOW64\dsauth.dll
2013-09-05 23:32:57 ----A---- C:\windows\SYSWOW64\cscdll.dll
2013-09-05 23:32:57 ----A---- C:\windows\system32\drivers\acpipmi.sys
2013-09-05 23:32:56 ----A---- C:\windows\SYSWOW64\sscore.dll
2013-09-05 23:32:56 ----A---- C:\windows\system32\wsdchngr.dll
2013-09-05 23:32:56 ----A---- C:\windows\system32\shgina.dll
2013-09-05 23:32:55 ----A---- C:\windows\SYSWOW64\wsdchngr.dll
2013-09-05 23:32:55 ----A---- C:\windows\SYSWOW64\shgina.dll
2013-09-05 23:32:55 ----A---- C:\windows\SYSWOW64\riched32.dll
2013-09-05 23:32:54 ----A---- C:\windows\system32\drivers\USBCAMD2.sys
2013-09-05 23:32:54 ----A---- C:\windows\system32\drivers\CompositeBus.sys
2013-09-05 23:32:53 ----A---- C:\windows\system32\wshirda.dll
2013-09-05 23:32:53 ----A---- C:\windows\system32\drivers\hidusb.sys
2013-09-05 23:32:53 ----A---- C:\windows\system32\drivers\appid.sys
2013-09-05 23:32:52 ----A---- C:\windows\SYSWOW64\wshirda.dll
2013-09-05 23:32:52 ----A---- C:\windows\system32\riched32.dll
2013-09-05 23:32:52 ----A---- C:\windows\system32\rdpcfgex.dll
2013-09-05 23:32:52 ----A---- C:\windows\system32\drivers\kbdhid.sys
2013-09-05 23:32:51 ----A---- C:\windows\system32\spwmp.dll
2013-09-05 23:32:51 ----A---- C:\windows\system32\drivers\IPMIDrv.sys
2013-09-05 23:32:51 ----A---- C:\windows\system32\browseui.dll
2013-09-05 23:32:50 ----A---- C:\windows\SYSWOW64\spwmp.dll
2013-09-05 23:32:50 ----A---- C:\windows\SYSWOW64\browseui.dll
2013-09-05 23:32:50 ----A---- C:\windows\system32\C_ISCII.DLL
2013-09-05 23:32:49 ----A---- C:\windows\SYSWOW64\C_ISCII.DLL
2013-09-05 23:32:49 ----A---- C:\windows\system32\dxmasf.dll
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\sffp_sd.sys
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\scfilter.sys
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\HdAudio.sys
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\hdaudbus.sys
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\cdrom.sys
2013-09-05 23:32:48 ----AH---- C:\windows\system32\api-ms-win-core-ums-l1-1-0.dll
2013-09-05 23:32:48 ----A---- C:\windows\SYSWOW64\shunimpl.dll
2013-09-05 23:32:48 ----A---- C:\windows\SYSWOW64\dxmasf.dll
2013-09-05 23:32:48 ----A---- C:\windows\system32\shunimpl.dll
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\KBDTUQ.DLL
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\KBDTUF.DLL
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\KBDSG.DLL
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\kbdlk41a.dll
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\KBDGR1.DLL
2013-09-05 23:32:47 ----A---- C:\windows\system32\KBDTUQ.DLL
2013-09-05 23:32:47 ----A---- C:\windows\system32\KBDTUF.DLL
2013-09-05 23:32:47 ----A---- C:\windows\system32\KBDSF.DLL
2013-09-05 23:32:47 ----A---- C:\windows\system32\KBDPO.DLL
2013-09-05 23:32:46 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2013-09-05 23:32:46 ----A---- C:\windows\SYSWOW64\KBDGKL.DLL
2013-09-05 23:32:46 ----A---- C:\windows\system32\KBDSG.DLL
2013-09-05 23:32:46 ----A---- C:\windows\system32\KBDNEPR.DLL
2013-09-05 23:32:46 ----A---- C:\windows\system32\kbdlk41a.dll
2013-09-05 23:32:46 ----A---- C:\windows\system32\KBDGR1.DLL
2013-09-05 23:32:46 ----A---- C:\windows\system32\KBDGKL.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDUS.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDTURME.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDTAJIK.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDMON.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDGEO.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDCZ1.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDBLR.DLL
2013-09-05 23:32:45 ----A---- C:\windows\system32\wmploc.DLL
2013-09-05 23:32:45 ----A---- C:\windows\system32\KBDGEO.DLL
2013-09-05 23:32:45 ----A---- C:\windows\system32\KBDCZ1.DLL
2013-09-05 23:32:44 ----A---- C:\windows\SYSWOW64\KBDUGHR1.DLL
2013-09-05 23:32:44 ----A---- C:\windows\SYSWOW64\KBDMAORI.DLL
2013-09-05 23:32:44 ----A---- C:\windows\SYSWOW64\KBDLT1.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDUS.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDUGHR1.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDTAJIK.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDMON.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDLT1.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\nlsbres.dll
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDSF.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDPO.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDNEPR.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDBULG.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDBASH.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\nlsbres.dll
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDTURME.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDMAORI.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDBULG.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDBLR.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDBASH.DLL
2013-09-05 23:32:42 ----A---- C:\windows\SYSWOW64\spwizres.dll
2013-09-05 23:32:42 ----A---- C:\windows\SYSWOW64\pifmgr.dll
2013-09-05 23:32:42 ----A---- C:\windows\system32\spwizres.dll
2013-09-05 23:32:42 ----A---- C:\windows\system32\pifmgr.dll
2013-09-05 23:32:42 ----A---- C:\windows\system32\BlbEvents.dll
2013-09-05 23:32:08 ----A---- C:\windows\SYSWOW64\wdscore.dll
2013-09-05 23:32:08 ----A---- C:\windows\SYSWOW64\sqmapi.dll
2013-09-05 23:32:08 ----A---- C:\windows\SYSWOW64\PkgMgr.exe
2013-09-05 23:32:05 ----A---- C:\windows\SYSWOW64\drvstore.dll
2013-09-05 23:32:05 ----A---- C:\windows\SYSWOW64\dpx.dll
2013-09-05 23:32:04 ----A---- C:\windows\SYSWOW64\wbemcomn.dll
2013-09-05 23:30:56 ----A---- C:\windows\system32\wmicmiplugin.dll
2013-09-05 23:30:56 ----A---- C:\windows\system32\wbemcomn.dll
2013-09-05 23:30:53 ----A---- C:\windows\system32\sqmapi.dll
2013-09-05 23:30:53 ----A---- C:\windows\system32\SmiEngine.dll
2013-09-05 23:30:51 ----A---- C:\windows\system32\PkgMgr.exe
2013-09-05 23:30:39 ----A---- C:\windows\system32\drvstore.dll
2013-09-05 23:30:39 ----A---- C:\windows\system32\dpx.dll
2013-09-05 23:09:14 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2013-09-05 23:09:14 ----A---- C:\windows\system32\smss.exe
2013-09-05 23:09:14 ----A---- C:\windows\system32\csrsrv.dll
2013-09-05 23:08:33 ----A---- C:\windows\system32\drivers\ntfs.sys
2013-09-05 23:08:17 ----A---- C:\windows\system32\drivers\fvevol.sys
2013-09-05 21:48:09 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-05 20:18:49 ----D---- C:\Users\Ondra\AppData\Roaming\Malwarebytes
2013-09-05 20:18:40 ----D---- C:\ProgramData\Malwarebytes
2013-09-05 19:25:25 ----D---- C:\Program Files\CCleaner
2013-09-05 19:22:31 ----A---- C:\windows\system32\drivers\athrx.sys
2013-08-14 10:32:19 ----D---- C:\Users\Ondra\AppData\Roaming\Atheros
======List of files/folders modified in the last 1 months======
2013-09-06 14:06:14 ----D---- C:\windows\Prefetch
2013-09-06 14:06:01 ----RD---- C:\Program Files
2013-09-06 13:32:50 ----D---- C:\windows\system32\config
2013-09-06 13:27:02 ----D---- C:\windows\Microsoft.NET
2013-09-06 13:27:01 ----RSD---- C:\windows\assembly
2013-09-06 13:21:36 ----A---- C:\windows\SYSWOW64\log.txt
2013-09-06 13:20:40 ----D---- C:\windows\Temp
2013-09-06 13:19:51 ----D---- C:\ProgramData\PDFC
2013-09-06 12:57:15 ----SHD---- C:\windows\Installer
2013-09-06 12:57:08 ----D---- C:\windows\System32
2013-09-06 12:56:51 ----HD---- C:\ProgramData
2013-09-06 12:50:17 ----D---- C:\Users\Ondra\AppData\Roaming\Autodesk
2013-09-06 12:50:17 ----D---- C:\ProgramData\Autodesk
2013-09-06 12:33:57 ----D---- C:\windows\inf
2013-09-06 11:59:50 ----D---- C:\Windows
2013-09-06 11:29:15 ----D---- C:\windows\debug
2013-09-06 11:14:17 ----D---- C:\windows\system32\Tasks
2013-09-06 11:13:53 ----D---- C:\windows\system32\drivers
2013-09-06 11:13:51 ----D---- C:\windows\system32\DriverStore
2013-09-06 11:13:51 ----D---- C:\windows\system32\catroot
2013-09-06 11:13:45 ----SHD---- C:\System Volume Information
2013-09-06 11:13:21 ----D---- C:\windows\SysWOW64
2013-09-06 10:59:47 ----D---- C:\windows\winsxs
2013-09-06 10:56:49 ----D---- C:\windows\SYSWOW64\wbem
2013-09-06 10:56:49 ----D---- C:\windows\SYSWOW64\en-US
2013-09-06 10:56:49 ----D---- C:\windows\SYSWOW64\cs-CZ
2013-09-06 10:56:49 ----D---- C:\windows\system32\wbem
2013-09-06 10:56:49 ----D---- C:\windows\system32\en-US
2013-09-06 10:56:49 ----D---- C:\windows\system32\drivers\en-US
2013-09-06 10:56:49 ----D---- C:\windows\system32\cs-CZ
2013-09-06 10:56:49 ----D---- C:\windows\PolicyDefinitions
2013-09-06 10:50:37 ----D---- C:\windows\system32\catroot2
2013-09-06 10:36:46 ----D---- C:\windows\AppPatch
2013-09-06 10:34:44 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2013-09-06 10:34:35 ----A---- C:\windows\system32\PerfStringBackup.INI
2013-09-06 09:32:09 ----D---- C:\windows\SYSWOW64\migration
2013-09-06 09:32:09 ----D---- C:\windows\system32\migration
2013-09-06 09:32:09 ----D---- C:\Program Files\Windows Defender
2013-09-06 09:32:09 ----D---- C:\Program Files (x86)\Windows Defender
2013-09-06 09:32:08 ----D---- C:\Program Files\Windows Journal
2013-09-06 09:32:08 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-06 09:32:07 ----D---- C:\Program Files\Internet Explorer
2013-09-06 08:40:48 ----D---- C:\windows\rescache
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Portable Devices
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Media Player
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Mail
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Sidebar
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Portable Devices
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Photo Viewer
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Media Player
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Mail
2013-09-06 07:05:54 ----D---- C:\Program Files\DVD Maker
2013-09-06 07:05:54 ----D---- C:\Program Files\Common Files\System
2013-09-06 07:05:52 ----D---- C:\windows\servicing
2013-09-06 07:05:51 ----D---- C:\windows\ehome
2013-09-06 07:05:50 ----D---- C:\windows\SYSWOW64\oobe
2013-09-06 07:05:50 ----D---- C:\windows\SYSWOW64\da-DK
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\sppui
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\Setup
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\migwiz
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\manifeststore
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\es-ES
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\Dism
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\cs
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\AdvancedInstallers
2013-09-06 07:05:41 ----D---- C:\windows\system32\Setup
2013-09-06 07:05:41 ----D---- C:\windows\system32\oobe
2013-09-06 07:05:41 ----D---- C:\windows\system32\da-DK
2013-09-06 07:05:41 ----D---- C:\windows\system32\cs
2013-09-06 07:05:41 ----D---- C:\windows\system32\AdvancedInstallers
2013-09-06 07:05:40 ----D---- C:\windows\system32\sppui
2013-09-06 07:05:40 ----D---- C:\windows\system32\migwiz
2013-09-06 07:05:40 ----D---- C:\windows\system32\manifeststore
2013-09-06 07:05:40 ----D---- C:\windows\system32\es-ES
2013-09-06 07:05:40 ----D---- C:\windows\system32\drivers\cs-CZ
2013-09-06 07:05:40 ----D---- C:\windows\system32\Dism
2013-09-06 07:05:32 ----RSD---- C:\windows\Fonts
2013-09-06 07:05:24 ----D---- C:\windows\system32\Boot
2013-09-06 07:02:35 ----A---- C:\windows\SYSWOW64\msclmd.dll
2013-09-06 07:02:35 ----A---- C:\windows\system32\msclmd.dll
2013-09-06 06:55:13 ----D---- C:\Program Files\Microsoft Silverlight
2013-09-06 06:55:12 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-09-05 23:50:56 ----D---- C:\ProgramData\Microsoft Help
2013-09-05 23:50:22 ----D---- C:\Program Files (x86)\Microsoft Office
2013-09-05 22:06:03 ----D---- C:\Program Files (x86)
2013-09-05 19:28:38 ----D---- C:\Users\Ondra\AppData\Roaming\DAEMON Tools Lite
2013-09-05 19:28:23 ----D---- C:\windows\Panther
2013-09-05 19:28:23 ----D---- C:\windows\Logs
2013-09-05 19:21:54 ----D---- C:\ProgramData\Hewlett-Packard
2013-09-05 19:21:54 ----D---- C:\Program Files\Hewlett-Packard
2013-09-05 19:14:47 ----D---- C:\Program Files (x86)\Hewlett-Packard
2013-09-05 19:14:34 ----D---- C:\windows\SYSWOW64\pt-BR
2013-09-05 19:14:34 ----D---- C:\windows\system32\pt-BR
2013-09-05 19:14:23 ----D---- C:\ProgramData\DigitalPersona
2013-09-05 19:12:44 ----D---- C:\Program Files (x86)\Intel
2013-09-05 18:54:43 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-05 18:30:55 ----D---- C:\Program Files (x86)\Common Files
2013-09-05 18:29:05 ----D---- C:\swsetup
2013-09-05 18:18:53 ----D---- C:\Users\Ondra\AppData\Roaming\hpqLog
2013-09-05 18:16:44 ----AD---- C:\ProgramData\TEMP
2013-09-05 18:11:36 ----D---- C:\ProgramData\Atheros
2013-09-05 18:04:03 ----AHD---- C:\SYSTEM.SAV
2013-09-05 17:54:22 ----D---- C:\windows\system32\zh-TW
2013-09-05 17:54:22 ----D---- C:\windows\system32\zh-CN
2013-09-05 17:54:22 ----D---- C:\windows\system32\tr-TR
2013-09-05 17:54:22 ----D---- C:\windows\system32\sv-SE
2013-09-05 17:54:22 ----D---- C:\windows\system32\ru-RU
2013-09-05 17:54:22 ----D---- C:\windows\system32\pt-PT
2013-09-05 17:54:22 ----D---- C:\windows\system32\pl-PL
2013-09-05 17:54:22 ----D---- C:\windows\system32\nl-NL
2013-09-05 17:54:22 ----D---- C:\windows\system32\ko-KR
2013-09-05 17:54:22 ----D---- C:\windows\system32\ja-JP
2013-09-05 17:54:22 ----D---- C:\windows\system32\it-IT
2013-09-05 17:54:22 ----D---- C:\windows\system32\hu-HU
2013-09-05 17:54:22 ----D---- C:\windows\system32\fr-FR
2013-09-05 17:54:22 ----D---- C:\windows\system32\fi-FI
2013-09-05 17:54:22 ----D---- C:\windows\system32\el-GR
2013-09-05 17:54:22 ----D---- C:\windows\system32\de-DE
2013-09-05 17:39:10 ----SD---- C:\ProgramData\Microsoft
2013-09-04 21:15:07 ----D---- C:\windows\system32\NDF
2013-09-01 10:28:57 ----A---- C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-08-18 11:02:38 ----D---- C:\windows\Tasks
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2013-07-01 189936]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2013-07-01 1030952]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2013-07-01 378944]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\windows\System32\DRIVERS\cmderd.sys [2013-06-18 23168]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\windows\system32\DRIVERS\cmdguard.sys [2013-06-18 708632]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\windows\System32\DRIVERS\cmdhlp.sys [2013-06-18 48360]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-29 279616]
R1 inspect;COMODO Internet Security Firewall Driver; C:\windows\system32\DRIVERS\inspect.sys [2013-06-18 96800]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\windows\system32\DRIVERS\RMCAST.sys [2010-11-20 146432]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-03-28 9319424]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-03-28 303616]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-08-19 88728]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2013-05-23 3948544]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-08-19 344216]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-08-19 114840]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2012-08-19 33944]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2012-08-19 178840]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-08-19 77464]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2012-08-19 135832]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-08-19 567808]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\windows\system32\DRIVERS\igdpmd64.sys [2011-01-27 12273408]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2013-08-04 708200]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2011-02-12 2612728]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-08-04 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2013-08-04 468720]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 ALSysIO;ALSysIO; \??\C:\Users\Ondra\AppData\Local\Temp\ALSysIO64.sys []
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\windows\system32\DRIVERS\ewusbnet.sys [2009-07-23 132608]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2009-07-23 116992]
S3 hwusbfake;Huawei DataCard USB Fake; C:\windows\system32\DRIVERS\ewusbfake.sys [2009-07-23 113792]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2013-08-04 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-03-28 203264]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-08-19 211584]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2013-06-18 6181504]
R2 DraftSight API Service;DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [2013-06-28 123392]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-29 281656]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-13 30520]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 mitsijm2012;Správce úloh aplikace Autodesk Moldflow Inventor Tool Suite Integration 2012; C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe [2010-12-08 848184]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2011-12-29 66872]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-08-04 323072]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
R2 VMCService;Vodafone Mobile Connect Service; C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-09-18 9216]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-10 116648]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-19 44376]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2013-06-18 158936]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-12-01 1431888]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-10 116648]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2013-04-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
NTB mi donesl jeden kolega student s tím, že mu padá wifi. NTB nebyl vůbec aktualizovaný, ovladač wifi jsem aktualizoval (Atheros AR9285 z verze 10.0.0.222 na 10.0.0.251). Start NTB strašně pomalý, jako staré jednojádro. A to v něm je i5 na 2,4GHz a 4GB RAM.
2013-09-05 23:34:24 ----A---- C:\windows\system32\ocsetapi.dll
2013-09-05 23:34:24 ----A---- C:\windows\system32\DXP.dll
2013-09-05 23:34:24 ----A---- C:\windows\system32\drivers\volmgr.sys
2013-09-05 23:34:23 ----A---- C:\windows\SYSWOW64\sqlsrv32.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\wpdbusenum.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\wcncsvc.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\upnp.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\Robocopy.exe
2013-09-05 23:34:23 ----A---- C:\windows\system32\mprapi.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\eapphost.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\eapp3hst.dll
2013-09-05 23:34:23 ----A---- C:\windows\system32\drivers\msdsm.sys
2013-09-05 23:34:23 ----A---- C:\windows\system32\ci.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\ws2_32.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\UIRibbon.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\sxs.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\stobject.dll
2013-09-05 23:34:22 ----A---- C:\windows\SYSWOW64\netshell.dll
2013-09-05 23:34:22 ----A---- C:\windows\system32\thumbcache.dll
2013-09-05 23:34:22 ----A---- C:\windows\system32\t2embed.dll
2013-09-05 23:34:22 ----A---- C:\windows\system32\hal.dll
2013-09-05 23:34:22 ----A---- C:\windows\system32\drivers\HpSAMD.sys
2013-09-05 23:34:21 ----A---- C:\windows\SYSWOW64\gdi32.dll
2013-09-05 23:34:21 ----A---- C:\windows\system32\scecli.dll
2013-09-05 23:34:21 ----A---- C:\windows\system32\PerfCenterCPL.dll
2013-09-05 23:34:21 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2013-09-05 23:34:21 ----A---- C:\windows\system32\DxpTaskSync.dll
2013-09-05 23:34:21 ----A---- C:\windows\system32\dwmredir.dll
2013-09-05 23:34:20 ----A---- C:\windows\SYSWOW64\prncache.dll
2013-09-05 23:34:20 ----A---- C:\windows\SYSWOW64\comctl32.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\themeui.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\puiobj.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\onex.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\msasn1.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\iasrad.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\DXPTaskRingtone.dll
2013-09-05 23:34:20 ----A---- C:\windows\system32\drivers\ipfltdrv.sys
2013-09-05 23:34:20 ----A---- C:\windows\system32\drivers\Classpnp.sys
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\WSDApi.dll
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\wmpeffects.dll
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\printui.dll
2013-09-05 23:34:19 ----A---- C:\windows\SYSWOW64\net1.exe
2013-09-05 23:34:18 ----A---- C:\windows\SYSWOW64\scansetting.dll
2013-09-05 23:34:18 ----A---- C:\windows\system32\wdc.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\wlangpui.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\VAN.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\StructuredQuery.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\sdengin2.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\scesrv.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\rasmans.dll
2013-09-05 23:34:17 ----A---- C:\windows\system32\msftedit.dll
2013-09-05 23:34:16 ----A---- C:\windows\SYSWOW64\WMVCORE.DLL
2013-09-05 23:34:16 ----A---- C:\windows\SYSWOW64\wlangpui.dll
2013-09-05 23:34:16 ----A---- C:\windows\SYSWOW64\MMDevAPI.dll
2013-09-05 23:34:16 ----A---- C:\windows\SYSWOW64\davclnt.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\wscapi.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\wiadefui.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\SndVol.exe
2013-09-05 23:34:16 ----A---- C:\windows\system32\samcli.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\netcenter.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\iasacct.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\dskquoui.dll
2013-09-05 23:34:16 ----A---- C:\windows\system32\drivers\ndiswan.sys
2013-09-05 23:34:15 ----A---- C:\windows\SYSWOW64\QSHVHOST.DLL
2013-09-05 23:34:15 ----A---- C:\windows\system32\TabSvc.dll
2013-09-05 23:34:15 ----A---- C:\windows\system32\srchadmin.dll
2013-09-05 23:34:15 ----A---- C:\windows\system32\regapi.dll
2013-09-05 23:34:15 ----A---- C:\windows\system32\QUTIL.DLL
2013-09-05 23:34:15 ----A---- C:\windows\system32\drivers\termdd.sys
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\wpdshext.dll
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\webservices.dll
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\t2embed.dll
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\pnidui.dll
2013-09-05 23:34:14 ----A---- C:\windows\SYSWOW64\fde.dll
2013-09-05 23:34:14 ----A---- C:\windows\system32\setupcl.exe
2013-09-05 23:34:14 ----A---- C:\windows\system32\drivers\msahci.sys
2013-09-05 23:34:13 ----A---- C:\windows\SYSWOW64\wuapi.dll
2013-09-05 23:34:13 ----A---- C:\windows\SYSWOW64\wscapi.dll
2013-09-05 23:34:13 ----A---- C:\windows\SYSWOW64\SyncCenter.dll
2013-09-05 23:34:13 ----A---- C:\windows\SYSWOW64\netdiagfx.dll
2013-09-05 23:34:13 ----A---- C:\windows\system32\rastls.dll
2013-09-05 23:34:13 ----A---- C:\windows\system32\drivers\acpi.sys
2013-09-05 23:34:12 ----A---- C:\windows\SYSWOW64\WinSCard.dll
2013-09-05 23:34:12 ----A---- C:\windows\SYSWOW64\pla.dll
2013-09-05 23:34:12 ----A---- C:\windows\SYSWOW64\msasn1.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\tapisrv.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\netiohlp.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\msconfig.exe
2013-09-05 23:34:12 ----A---- C:\windows\system32\mimefilt.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\ListSvc.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\hgcpl.dll
2013-09-05 23:34:12 ----A---- C:\windows\system32\drivers\raspptp.sys
2013-09-05 23:34:11 ----A---- C:\windows\system32\lsmproxy.dll
2013-09-05 23:34:11 ----A---- C:\windows\system32\drivers\ks.sys
2013-09-05 23:34:11 ----A---- C:\windows\system32\clusapi.dll
2013-09-05 23:34:11 ----A---- C:\windows\system32\basecsp.dll
2013-09-05 23:34:10 ----A---- C:\windows\SYSWOW64\winsta.dll
2013-09-05 23:34:10 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2013-09-05 23:34:10 ----A---- C:\windows\system32\mtxclu.dll
2013-09-05 23:34:10 ----A---- C:\windows\system32\fdeploy.dll
2013-09-05 23:34:10 ----A---- C:\windows\system32\drivers\sbp2port.sys
2013-09-05 23:34:10 ----A---- C:\windows\system32\AuxiliaryDisplayCpl.dll
2013-09-05 23:34:09 ----A---- C:\windows\SYSWOW64\imapi2.dll
2013-09-05 23:34:09 ----A---- C:\windows\SYSWOW64\DXPTaskRingtone.dll
2013-09-05 23:34:09 ----A---- C:\windows\system32\riched20.dll
2013-09-05 23:34:09 ----A---- C:\windows\system32\dnscmmc.dll
2013-09-05 23:34:08 ----A---- C:\windows\SYSWOW64\WMPEncEn.dll
2013-09-05 23:34:08 ----A---- C:\windows\SYSWOW64\onex.dll
2013-09-05 23:34:08 ----A---- C:\windows\system32\sharemediacpl.dll
2013-09-05 23:34:08 ----A---- C:\windows\system32\RpcRtRemote.dll
2013-09-05 23:34:08 ----A---- C:\windows\system32\powercpl.dll
2013-09-05 23:34:08 ----A---- C:\windows\system32\logoncli.dll
2013-09-05 23:34:07 ----A---- C:\windows\SYSWOW64\winmm.dll
2013-09-05 23:34:07 ----A---- C:\windows\SYSWOW64\shsvcs.dll
2013-09-05 23:34:07 ----A---- C:\windows\SYSWOW64\hbaapi.dll
2013-09-05 23:34:07 ----A---- C:\windows\SYSWOW64\autofmt.exe
2013-09-05 23:34:07 ----A---- C:\windows\system32\themecpl.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\SensorsCpl.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\netjoin.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\nci.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\Narrator.exe
2013-09-05 23:34:07 ----A---- C:\windows\system32\Faultrep.dll
2013-09-05 23:34:07 ----A---- C:\windows\system32\eudcedit.exe
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\samcli.dll
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\proquota.exe
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\netiohlp.dll
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\IPHLPAPI.DLL
2013-09-05 23:34:06 ----A---- C:\windows\SYSWOW64\autochk.exe
2013-09-05 23:34:06 ----A---- C:\windows\system32\wkssvc.dll
2013-09-05 23:34:06 ----A---- C:\windows\system32\vpnikeapi.dll
2013-09-05 23:34:06 ----A---- C:\windows\system32\sppcomapi.dll
2013-09-05 23:34:06 ----A---- C:\windows\system32\comctl32.dll
2013-09-05 23:34:06 ----A---- C:\windows\system32\cabview.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\thumbcache.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\regapi.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\msutb.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\msinfo32.exe
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\mimefilt.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\ipsmsnap.dll
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\autoconv.exe
2013-09-05 23:34:05 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2013-09-05 23:34:05 ----A---- C:\windows\system32\nshipsec.dll
2013-09-05 23:34:05 ----A---- C:\windows\system32\autochk.exe
2013-09-05 23:34:05 ----A---- C:\windows\system32\autofmt.exe
2013-09-05 23:34:05 ----A---- C:\windows\system32\autoconv.exe
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\wcncsvc.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\tcpipcfg.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\srchadmin.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\schtasks.exe
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\powercpl.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\msihnd.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\framedyn.dll
2013-09-05 23:34:04 ----A---- C:\windows\SYSWOW64\eapphost.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\wpd_ci.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\shsetup.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\sdclt.exe
2013-09-05 23:34:04 ----A---- C:\windows\system32\fms.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\bcdsrv.dll
2013-09-05 23:34:04 ----A---- C:\windows\system32\audiodg.exe
2013-09-05 23:34:03 ----A---- C:\windows\SYSWOW64\mscorier.dll
2013-09-05 23:34:03 ----A---- C:\windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\wwanconn.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\wlanui.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\prntvpt.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\mscorier.dll
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\winusb.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\wanarp.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\volmgrx.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\usbvideo.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\drivers\scsiport.sys
2013-09-05 23:34:03 ----A---- C:\windows\system32\dps.dll
2013-09-05 23:34:02 ----A---- C:\windows\SYSWOW64\QAGENT.DLL
2013-09-05 23:34:02 ----A---- C:\windows\SYSWOW64\netid.dll
2013-09-05 23:34:02 ----A---- C:\windows\SYSWOW64\actxprxy.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\mprddm.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\fontext.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\drivers\hidclass.sys
2013-09-05 23:34:02 ----A---- C:\windows\system32\Display.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\credssp.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\batmeter.dll
2013-09-05 23:34:02 ----A---- C:\windows\system32\AxInstSv.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\wdc.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\Vault.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\untfs.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\StructuredQuery.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\scesrv.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\rastls.dll
2013-09-05 23:34:01 ----A---- C:\windows\SYSWOW64\nci.dll
2013-09-05 23:34:01 ----A---- C:\windows\system32\wmpsrcwp.dll
2013-09-05 23:34:01 ----A---- C:\windows\system32\mblctr.exe
2013-09-05 23:34:00 ----A---- C:\windows\SYSWOW64\WMNetMgr.dll
2013-09-05 23:34:00 ----A---- C:\windows\SYSWOW64\wlanpref.dll
2013-09-05 23:34:00 ----A---- C:\windows\SYSWOW64\RpcRtRemote.dll
2013-09-05 23:34:00 ----A---- C:\windows\SYSWOW64\Robocopy.exe
2013-09-05 23:34:00 ----A---- C:\windows\system32\usercpl.dll
2013-09-05 23:34:00 ----A---- C:\windows\system32\rtutils.dll
2013-09-05 23:34:00 ----A---- C:\windows\system32\DiagCpl.dll
2013-09-05 23:33:59 ----A---- C:\windows\system32\wpccpl.dll
2013-09-05 23:33:59 ----A---- C:\windows\system32\sppsvc.exe
2013-09-05 23:33:59 ----A---- C:\windows\system32\provsvc.dll
2013-09-05 23:33:59 ----A---- C:\windows\system32\MCEWMDRMNDBootstrap.dll
2013-09-05 23:33:59 ----A---- C:\windows\system32\bootres.dll
2013-09-05 23:33:58 ----A---- C:\windows\SYSWOW64\taskmgr.exe
2013-09-05 23:33:58 ----A---- C:\windows\SYSWOW64\mtxclu.dll
2013-09-05 23:33:58 ----A---- C:\windows\SYSWOW64\DxpTaskSync.dll
2013-09-05 23:33:58 ----A---- C:\windows\SYSWOW64\Display.dll
2013-09-05 23:33:58 ----A---- C:\windows\system32\SndVolSSO.dll
2013-09-05 23:33:58 ----A---- C:\windows\system32\rasppp.dll
2013-09-05 23:33:58 ----A---- C:\windows\system32\drivers\rdyboost.sys
2013-09-05 23:33:58 ----A---- C:\windows\system32\dot3cfg.dll
2013-09-05 23:33:57 ----A---- C:\windows\system32\dxdiagn.dll
2013-09-05 23:33:56 ----A---- C:\windows\SYSWOW64\XpsRasterService.dll
2013-09-05 23:33:56 ----A---- C:\windows\SYSWOW64\userinit.exe
2013-09-05 23:33:56 ----A---- C:\windows\SYSWOW64\termmgr.dll
2013-09-05 23:33:56 ----A---- C:\windows\SYSWOW64\puiobj.dll
2013-09-05 23:33:56 ----A---- C:\windows\system32\taskmgr.exe
2013-09-05 23:33:56 ----A---- C:\windows\system32\prnfldr.dll
2013-09-05 23:33:56 ----A---- C:\windows\system32\hbaapi.dll
2013-09-05 23:33:55 ----A---- C:\windows\SYSWOW64\eudcedit.exe
2013-09-05 23:33:55 ----A---- C:\windows\system32\WPDShServiceObj.dll
2013-09-05 23:33:55 ----A---- C:\windows\system32\proquota.exe
2013-09-05 23:33:55 ----A---- C:\windows\system32\pdh.dll
2013-09-05 23:33:55 ----A---- C:\windows\system32\drivers\mountmgr.sys
2013-09-05 23:33:55 ----A---- C:\windows\system32\drivers\ataport.sys
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\wiadefui.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\sppcomapi.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\shsetup.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\rasppp.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\logoncli.dll
2013-09-05 23:33:54 ----A---- C:\windows\SYSWOW64\cabview.dll
2013-09-05 23:33:54 ----A---- C:\windows\system32\userinit.exe
2013-09-05 23:33:54 ----A---- C:\windows\system32\untfs.dll
2013-09-05 23:33:54 ----A---- C:\windows\system32\MSAC3ENC.DLL
2013-09-05 23:33:54 ----A---- C:\windows\system32\accessibilitycpl.dll
2013-09-05 23:33:53 ----A---- C:\windows\SYSWOW64\themecpl.dll
2013-09-05 23:33:53 ----A---- C:\windows\SYSWOW64\SensorsCpl.dll
2013-09-05 23:33:53 ----A---- C:\windows\SYSWOW64\FirewallControlPanel.dll
2013-09-05 23:33:52 ----A---- C:\windows\SYSWOW64\FWPUCLNT.DLL
2013-09-05 23:33:52 ----A---- C:\windows\SYSWOW64\dnscmmc.dll
2013-09-05 23:33:52 ----A---- C:\windows\system32\zipfldr.dll
2013-09-05 23:33:52 ----A---- C:\windows\system32\slui.exe
2013-09-05 23:33:52 ----A---- C:\windows\system32\defaultlocationcpl.dll
2013-09-05 23:33:51 ----A---- C:\windows\SYSWOW64\hgcpl.dll
2013-09-05 23:33:51 ----A---- C:\windows\system32\msieftp.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\tapisrv.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\scecli.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\mscories.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\mscms.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\mprddm.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\localsec.dll
2013-09-05 23:33:50 ----A---- C:\windows\SYSWOW64\fontext.dll
2013-09-05 23:33:50 ----A---- C:\windows\system32\sud.dll
2013-09-05 23:33:50 ----A---- C:\windows\system32\dot3svc.dll
2013-09-05 23:33:50 ----A---- C:\windows\system32\DeviceCenter.dll
2013-09-05 23:33:49 ----A---- C:\windows\SYSWOW64\SndVolSSO.dll
2013-09-05 23:33:49 ----A---- C:\windows\SYSWOW64\iasacct.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\taskbarcpl.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\OnLineIDCpl.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\networkmap.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\cryptui.dll
2013-09-05 23:33:49 ----A---- C:\windows\system32\ActionCenter.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\wlanui.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\VAN.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\usercpl.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\SndVol.exe
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\prntvpt.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\PerfCenterCPL.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\netcenter.dll
2013-09-05 23:33:48 ----A---- C:\windows\SYSWOW64\batmeter.dll
2013-09-05 23:33:48 ----A---- C:\windows\system32\twext.dll
2013-09-05 23:33:47 ----A---- C:\windows\SYSWOW64\w32tm.exe
2013-09-05 23:33:47 ----A---- C:\windows\system32\uxlib.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\recovery.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\OobeFldr.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\isoburn.exe
2013-09-05 23:33:47 ----A---- C:\windows\system32\dsuiext.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\drivers\hwpolicy.sys
2013-09-05 23:33:47 ----A---- C:\windows\system32\cca.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\bcdedit.exe
2013-09-05 23:33:47 ----A---- C:\windows\system32\azroleui.dll
2013-09-05 23:33:47 ----A---- C:\windows\system32\asycfilt.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\zipfldr.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\spwizeng.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\fdeploy.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\azroleui.dll
2013-09-05 23:33:46 ----A---- C:\windows\SYSWOW64\accessibilitycpl.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\tzutil.exe
2013-09-05 23:33:46 ----A---- C:\windows\system32\syncui.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\sisbkup.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\sdcpl.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\MediaMetadataHandler.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\efscore.dll
2013-09-05 23:33:46 ----A---- C:\windows\system32\drivers\sdbus.sys
2013-09-05 23:33:45 ----A---- C:\windows\SYSWOW64\netjoin.dll
2013-09-05 23:33:45 ----A---- C:\windows\SYSWOW64\MSAC3ENC.DLL
2013-09-05 23:33:45 ----A---- C:\windows\SYSWOW64\cryptui.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\systemcpl.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\shwebsvc.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\recdisc.exe
2013-09-05 23:33:45 ----A---- C:\windows\system32\netplwiz.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\httpapi.dll
2013-09-05 23:33:45 ----A---- C:\windows\system32\drivers\mpio.sys
2013-09-05 23:33:45 ----A---- C:\windows\system32\autoplay.dll
2013-09-05 23:33:44 ----A---- C:\windows\SYSWOW64\networkmap.dll
2013-09-05 23:33:44 ----A---- C:\windows\SYSWOW64\Faultrep.dll
2013-09-05 23:33:44 ----A---- C:\windows\SYSWOW64\adsldp.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\wlanmsm.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\sysclass.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\sdrsvc.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\ncryptui.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\certcli.dll
2013-09-05 23:33:44 ----A---- C:\windows\system32\ActionCenterCPL.dll
2013-09-05 23:33:43 ----A---- C:\windows\SYSWOW64\wusa.exe
2013-09-05 23:33:43 ----A---- C:\windows\SYSWOW64\prnfldr.dll
2013-09-05 23:33:43 ----A---- C:\windows\SYSWOW64\OnLineIDCpl.dll
2013-09-05 23:33:43 ----A---- C:\windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2013-09-05 23:33:43 ----A---- C:\windows\system32\spwizeng.dll
2013-09-05 23:33:43 ----A---- C:\windows\system32\msvidc32.dll
2013-09-05 23:33:43 ----A---- C:\windows\system32\AuxiliaryDisplayServices.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\sud.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\photowiz.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\msieftp.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\MediaMetadataHandler.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\credssp.dll
2013-09-05 23:33:42 ----A---- C:\windows\SYSWOW64\ActionCenter.dll
2013-09-05 23:33:42 ----A---- C:\windows\system32\vdsutil.dll
2013-09-05 23:33:42 ----A---- C:\windows\system32\termmgr.dll
2013-09-05 23:33:42 ----A---- C:\windows\system32\MFPlay.dll
2013-09-05 23:33:41 ----A---- C:\windows\SYSWOW64\iprtrmgr.dll
2013-09-05 23:33:41 ----A---- C:\windows\SYSWOW64\iasrad.dll
2013-09-05 23:33:41 ----A---- C:\windows\SYSWOW64\dot3cfg.dll
2013-09-05 23:33:41 ----A---- C:\windows\SYSWOW64\defaultlocationcpl.dll
2013-09-05 23:33:41 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2013-09-05 23:33:41 ----A---- C:\windows\system32\sethc.exe
2013-09-05 23:33:41 ----A---- C:\windows\system32\ReAgent.dll
2013-09-05 23:33:41 ----A---- C:\windows\system32\ntlanman.dll
2013-09-05 23:33:41 ----A---- C:\windows\system32\msscp.dll
2013-09-05 23:33:40 ----A---- C:\windows\SYSWOW64\sisbkup.dll
2013-09-05 23:33:40 ----A---- C:\windows\SYSWOW64\shwebsvc.dll
2013-09-05 23:33:40 ----A---- C:\windows\SYSWOW64\ifsutil.dll
2013-09-05 23:33:40 ----A---- C:\windows\SYSWOW64\ftp.exe
2013-09-05 23:33:40 ----A---- C:\windows\system32\sqlcese30.dll
2013-09-05 23:33:40 ----A---- C:\windows\system32\drivers\ndproxy.sys
2013-09-05 23:33:39 ----A---- C:\windows\SYSWOW64\efscore.dll
2013-09-05 23:33:39 ----A---- C:\windows\SYSWOW64\ActionCenterCPL.dll
2013-09-05 23:33:39 ----A---- C:\windows\system32\UserAccountControlSettings.dll
2013-09-05 23:33:39 ----A---- C:\windows\system32\rdpd3d.dll
2013-09-05 23:33:39 ----A---- C:\windows\system32\iTVData.dll
2013-09-05 23:33:39 ----A---- C:\windows\system32\iprtrmgr.dll
2013-09-05 23:33:38 ----A---- C:\windows\SYSWOW64\syncui.dll
2013-09-05 23:33:38 ----A---- C:\windows\SYSWOW64\autoplay.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\wmdrmsdk.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\srvcli.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\slwga.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\iyuv_32.dll
2013-09-05 23:33:38 ----A---- C:\windows\system32\drmmgrtn.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\rtutils.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\OobeFldr.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\ntlanman.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\dskquoui.dll
2013-09-05 23:33:37 ----A---- C:\windows\SYSWOW64\DeviceCenter.dll
2013-09-05 23:33:37 ----A---- C:\windows\system32\wavemsp.dll
2013-09-05 23:33:37 ----A---- C:\windows\system32\nslookup.exe
2013-09-05 23:33:37 ----A---- C:\windows\system32\msiexec.exe
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\systemcpl.dll
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\sethc.exe
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\riched20.dll
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\ntprint.dll
2013-09-05 23:33:36 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2013-09-05 23:33:36 ----A---- C:\windows\system32\srrstr.dll
2013-09-05 23:33:36 ----A---- C:\windows\system32\ntprint.dll
2013-09-05 23:33:36 ----A---- C:\windows\system32\NAPHLPR.DLL
2013-09-05 23:33:36 ----A---- C:\windows\system32\DevicePairingFolder.dll
2013-09-05 23:33:36 ----A---- C:\windows\system32\bcdboot.exe
2013-09-05 23:33:36 ----A---- C:\windows\system32\acppage.dll
2013-09-05 23:33:35 ----A---- C:\windows\SYSWOW64\NAPHLPR.DLL
2013-09-05 23:33:35 ----A---- C:\windows\SYSWOW64\blackbox.dll
2013-09-05 23:33:35 ----A---- C:\windows\system32\sppnp.dll
2013-09-05 23:33:35 ----A---- C:\windows\system32\certprop.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\wmpsrcwp.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\netplwiz.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\migisol.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\fms.dll
2013-09-05 23:33:34 ----A---- C:\windows\SYSWOW64\activeds.dll
2013-09-05 23:33:34 ----A---- C:\windows\system32\TSpkg.dll
2013-09-05 23:33:34 ----A---- C:\windows\system32\networkexplorer.dll
2013-09-05 23:33:34 ----A---- C:\windows\system32\cabinet.dll
2013-09-05 23:33:33 ----A---- C:\windows\SYSWOW64\nshipsec.dll
2013-09-05 23:33:33 ----A---- C:\windows\SYSWOW64\isoburn.exe
2013-09-05 23:33:33 ----A---- C:\windows\SYSWOW64\httpapi.dll
2013-09-05 23:33:33 ----A---- C:\windows\SYSWOW64\asycfilt.dll
2013-09-05 23:33:33 ----A---- C:\windows\system32\wkscli.dll
2013-09-05 23:33:33 ----A---- C:\windows\system32\remotepg.dll
2013-09-05 23:33:33 ----A---- C:\windows\system32\dfrgui.exe
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\wlanmsm.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\wavemsp.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\ReAgent.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\provsvc.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\msftedit.dll
2013-09-05 23:33:32 ----A---- C:\windows\SYSWOW64\dot3ui.dll
2013-09-05 23:33:32 ----A---- C:\windows\system32\wsnmp32.dll
2013-09-05 23:33:32 ----A---- C:\windows\system32\wmpdxm.dll
2013-09-05 23:33:32 ----A---- C:\windows\system32\WinSCard.dll
2013-09-05 23:33:32 ----A---- C:\windows\system32\net1.exe
2013-09-05 23:33:32 ----A---- C:\windows\system32\ftp.exe
2013-09-05 23:33:31 ----A---- C:\windows\SYSWOW64\tzutil.exe
2013-09-05 23:33:31 ----A---- C:\windows\SYSWOW64\ocsetup.exe
2013-09-05 23:33:31 ----A---- C:\windows\SYSWOW64\dsuiext.dll
2013-09-05 23:33:31 ----A---- C:\windows\SYSWOW64\dfrgui.exe
2013-09-05 23:33:31 ----A---- C:\windows\system32\wvc.dll
2013-09-05 23:33:31 ----A---- C:\windows\system32\wsqmcons.exe
2013-09-05 23:33:31 ----A---- C:\windows\system32\wmdrmdev.dll
2013-09-05 23:33:31 ----A---- C:\windows\system32\WerFaultSecure.exe
2013-09-05 23:33:31 ----A---- C:\windows\system32\blackbox.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\wvc.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\wtsapi32.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\wimgapi.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\twext.dll
2013-09-05 23:33:30 ----A---- C:\windows\SYSWOW64\mstask.dll
2013-09-05 23:33:30 ----A---- C:\windows\system32\msyuv.dll
2013-09-05 23:33:30 ----A---- C:\windows\system32\mfps.dll
2013-09-05 23:33:29 ----A---- C:\windows\twain_32.dll
2013-09-05 23:33:29 ----A---- C:\windows\SYSWOW64\setupugc.exe
2013-09-05 23:33:29 ----A---- C:\windows\SYSWOW64\qcap.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\unimdmat.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\OpcServices.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\msrle32.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\mapistub.dll
2013-09-05 23:33:29 ----A---- C:\windows\system32\mapi32.dll
2013-09-05 23:33:28 ----A---- C:\windows\SYSWOW64\uxlib.dll
2013-09-05 23:33:28 ----A---- C:\windows\SYSWOW64\slwga.dll
2013-09-05 23:33:28 ----A---- C:\windows\SYSWOW64\qasf.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\tsbyuv.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\seclogon.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\iscsium.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\ifsutil.dll
2013-09-05 23:33:28 ----A---- C:\windows\system32\diskraid.exe
2013-09-05 23:33:27 ----A---- C:\windows\SYSWOW64\msvfw32.dll
2013-09-05 23:33:27 ----A---- C:\windows\SYSWOW64\mciavi32.dll
2013-09-05 23:33:27 ----A---- C:\windows\SYSWOW64\audiodev.dll
2013-09-05 23:33:27 ----A---- C:\windows\system32\drivers\umbus.sys
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\WPDShServiceObj.dll
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\wmdrmsdk.dll
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\nslookup.exe
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\DevicePairingFolder.dll
2013-09-05 23:33:26 ----A---- C:\windows\SYSWOW64\clusapi.dll
2013-09-05 23:33:26 ----A---- C:\windows\system32\wmpshell.dll
2013-09-05 23:33:26 ----A---- C:\windows\system32\WindowsAnytimeUpgradeResults.exe
2013-09-05 23:33:26 ----A---- C:\windows\system32\rdpencom.dll
2013-09-05 23:33:26 ----A---- C:\windows\system32\perfmon.exe
2013-09-05 23:33:26 ----A---- C:\windows\system32\muifontsetup.dll
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\wimserv.exe
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\rdpencom.dll
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\perfmon.exe
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\msscp.dll
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\diskraid.exe
2013-09-05 23:33:25 ----A---- C:\windows\SYSWOW64\acppage.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\umb.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\tlscsp.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\qasf.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\netutils.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\NAPCRYPT.DLL
2013-09-05 23:33:25 ----A---- C:\windows\system32\FXSAPI.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\dbghelp.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\AzSqlExt.dll
2013-09-05 23:33:25 ----A---- C:\windows\system32\ActionQueue.dll
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\remotepg.dll
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\raschap.dll
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\QUTIL.DLL
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\NAPCRYPT.DLL
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\input.dll
2013-09-05 23:33:24 ----A---- C:\windows\SYSWOW64\drmmgrtn.dll
2013-09-05 23:33:24 ----A---- C:\windows\system32\wiavideo.dll
2013-09-05 23:33:24 ----A---- C:\windows\system32\runonce.exe
2013-09-05 23:33:24 ----A---- C:\windows\system32\raschap.dll
2013-09-05 23:33:24 ----A---- C:\windows\bfsvc.exe
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\wmpdxm.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\vpnikeapi.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\UserAccountControlSettings.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\olepro32.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\ocsetapi.dll
2013-09-05 23:33:23 ----A---- C:\windows\SYSWOW64\networkexplorer.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\wpdwcn.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\WMVSDECD.DLL
2013-09-05 23:33:23 ----A---- C:\windows\system32\WMADMOD.DLL
2013-09-05 23:33:23 ----A---- C:\windows\system32\vdsbas.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\syssetup.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\PrintIsolationProxy.dll
2013-09-05 23:33:23 ----A---- C:\windows\system32\MdSched.exe
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\wpdwcn.dll
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\vdsbas.dll
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\runonce.exe
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\onexui.dll
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\iTVData.dll
2013-09-05 23:33:22 ----A---- C:\windows\SYSWOW64\dxdiagn.dll
2013-09-05 23:33:22 ----A---- C:\windows\system32\mstask.dll
2013-09-05 23:33:22 ----A---- C:\windows\system32\Mcx2Svc.dll
2013-09-05 23:33:21 ----A---- C:\windows\SYSWOW64\msvidc32.dll
2013-09-05 23:33:21 ----A---- C:\windows\SYSWOW64\MFPlay.dll
2013-09-05 23:33:21 ----A---- C:\windows\SYSWOW64\logagent.exe
2013-09-05 23:33:21 ----A---- C:\windows\SYSWOW64\eapp3hst.dll
2013-09-05 23:33:21 ----A---- C:\windows\system32\nltest.exe
2013-09-05 23:33:21 ----A---- C:\windows\system32\drivers\rmcast.sys
2013-09-05 23:33:21 ----A---- C:\windows\system32\bitsadmin.exe
2013-09-05 23:33:20 ----A---- C:\windows\SYSWOW64\wmdrmdev.dll
2013-09-05 23:33:20 ----A---- C:\windows\SYSWOW64\shacct.dll
2013-09-05 23:33:20 ----A---- C:\windows\SYSWOW64\msiexec.exe
2013-09-05 23:33:20 ----A---- C:\windows\system32\vss_ps.dll
2013-09-05 23:33:20 ----A---- C:\windows\system32\tabcal.exe
2013-09-05 23:33:20 ----A---- C:\windows\system32\shacct.dll
2013-09-05 23:33:20 ----A---- C:\windows\system32\QSVRMGMT.DLL
2013-09-05 23:33:20 ----A---- C:\windows\system32\cscapi.dll
2013-09-05 23:33:19 ----A---- C:\windows\SYSWOW64\wudriver.dll
2013-09-05 23:33:19 ----A---- C:\windows\SYSWOW64\wmpshell.dll
2013-09-05 23:33:19 ----A---- C:\windows\SYSWOW64\lsmproxy.dll
2013-09-05 23:33:19 ----A---- C:\windows\SYSWOW64\bitsadmin.exe
2013-09-05 23:33:19 ----A---- C:\windows\system32\WPDSp.dll
2013-09-05 23:33:19 ----A---- C:\windows\system32\wmdrmnet.dll
2013-09-05 23:33:19 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2013-09-05 23:33:19 ----A---- C:\windows\system32\qcap.dll
2013-09-05 23:33:19 ----A---- C:\windows\system32\logman.exe
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\unimdmat.dll
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\sqlcese30.dll
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\rdpd3d.dll
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\mprapi.dll
2013-09-05 23:33:18 ----A---- C:\windows\SYSWOW64\iscsium.dll
2013-09-05 23:33:18 ----A---- C:\windows\system32\WMSPDMOD.DLL
2013-09-05 23:33:18 ----A---- C:\windows\system32\secproc_ssp.dll
2013-09-05 23:33:18 ----A---- C:\windows\system32\qdv.dll
2013-09-05 23:33:18 ----A---- C:\windows\system32\PortableDeviceSyncProvider.dll
2013-09-05 23:33:18 ----A---- C:\windows\system32\msnetobj.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\WPDSp.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\srvcli.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\PortableDeviceSyncProvider.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\pdh.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\OpcServices.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\olethk32.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\ncryptui.dll
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\logman.exe
2013-09-05 23:33:17 ----A---- C:\windows\SYSWOW64\cscapi.dll
2013-09-05 23:33:17 ----A---- C:\windows\system32\spbcd.dll
2013-09-05 23:33:17 ----A---- C:\windows\system32\PortableDeviceStatus.dll
2013-09-05 23:33:17 ----A---- C:\windows\system32\fphc.dll
2013-09-05 23:33:17 ----A---- C:\windows\system32\drivers\ndisuio.sys
2013-09-05 23:33:16 ----A---- C:\windows\SYSWOW64\QSVRMGMT.DLL
2013-09-05 23:33:16 ----A---- C:\windows\SYSWOW64\PortableDeviceStatus.dll
2013-09-05 23:33:16 ----A---- C:\windows\SYSWOW64\mapi32.dll
2013-09-05 23:33:16 ----A---- C:\windows\system32\takeown.exe
2013-09-05 23:33:16 ----A---- C:\windows\system32\PnPUnattend.exe
2013-09-05 23:33:16 ----A---- C:\windows\system32\dot3ui.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\WMPhoto.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\wiavideo.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\utildll.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\mapistub.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\fphc.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\dot3msm.dll
2013-09-05 23:33:15 ----A---- C:\windows\SYSWOW64\avifil32.dll
2013-09-05 23:33:15 ----A---- C:\windows\system32\WMPhoto.dll
2013-09-05 23:33:15 ----A---- C:\windows\system32\amstream.dll
2013-09-05 23:33:14 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2013-09-05 23:33:14 ----A---- C:\windows\SYSWOW64\wmdrmnet.dll
2013-09-05 23:33:14 ----A---- C:\windows\SYSWOW64\takeown.exe
2013-09-05 23:33:14 ----A---- C:\windows\SYSWOW64\iyuv_32.dll
2013-09-05 23:33:14 ----A---- C:\windows\system32\vfwwdm32.dll
2013-09-05 23:33:14 ----A---- C:\windows\system32\shimgvw.dll
2013-09-05 23:33:14 ----A---- C:\windows\system32\HotStartUserAgent.dll
2013-09-05 23:33:14 ----A---- C:\windows\system32\EhStorAPI.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\sppinst.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\qdv.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\QCLIPROV.DLL
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\msyuv.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\msnetobj.dll
2013-09-05 23:33:13 ----A---- C:\windows\SYSWOW64\EhStorAPI.dll
2013-09-05 23:33:13 ----A---- C:\windows\system32\WavDest.dll
2013-09-05 23:33:13 ----A---- C:\windows\system32\QCLIPROV.DLL
2013-09-05 23:33:13 ----A---- C:\windows\system32\nrpsrv.dll
2013-09-05 23:33:13 ----A---- C:\windows\system32\iasrecst.dll
2013-09-05 23:33:13 ----A---- C:\windows\system32\djoin.exe
2013-09-05 23:33:13 ----A---- C:\windows\system32\cmstp.exe
2013-09-05 23:33:13 ----A---- C:\windows\system32\CertPolEng.dll
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\vfwwdm32.dll
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\pdhui.dll
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\MuiUnattend.exe
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\msrle32.dll
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\cmstp.exe
2013-09-05 23:33:12 ----A---- C:\windows\SYSWOW64\cca.dll
2013-09-05 23:33:12 ----A---- C:\windows\system32\MultiDigiMon.exe
2013-09-05 23:33:12 ----A---- C:\windows\system32\KMSVC.DLL
2013-09-05 23:33:12 ----A---- C:\windows\system32\fdProxy.dll
2013-09-05 23:33:12 ----A---- C:\windows\system32\drivers\pacer.sys
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\wsnmp32.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\tsbyuv.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\setupcln.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\msorcl32.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\iasrecst.dll
2013-09-05 23:33:11 ----A---- C:\windows\SYSWOW64\AzSqlExt.dll
2013-09-05 23:33:11 ----A---- C:\windows\system32\sscore.dll
2013-09-05 23:33:11 ----A---- C:\windows\system32\relog.exe
2013-09-05 23:33:11 ----A---- C:\windows\system32\mydocs.dll
2013-09-05 23:33:11 ----A---- C:\windows\system32\iscsicli.exe
2013-09-05 23:33:11 ----A---- C:\windows\system32\diskpart.exe
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\wkscli.dll
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\spbcd.dll
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\relog.exe
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\netiougc.exe
2013-09-05 23:33:10 ----A---- C:\windows\SYSWOW64\iscsicli.exe
2013-09-05 23:33:10 ----A---- C:\windows\system32\mobsync.exe
2013-09-05 23:33:10 ----A---- C:\windows\system32\itircl.dll
2013-09-05 23:33:10 ----A---- C:\windows\system32\BWUnpairElevated.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\secproc_ssp_isv.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\secproc_ssp.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\resutils.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\rastapi.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\netbtugc.exe
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\mydocs.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\itircl.dll
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\diskpart.exe
2013-09-05 23:33:09 ----A---- C:\windows\SYSWOW64\amstream.dll
2013-09-05 23:33:09 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2013-09-05 23:33:09 ----A---- C:\windows\system32\RMActivate_ssp.exe
2013-09-05 23:33:09 ----A---- C:\windows\system32\msdmo.dll
2013-09-05 23:33:09 ----A---- C:\windows\system32\dot3msm.dll
2013-09-05 23:33:08 ----A---- C:\windows\SYSWOW64\wmpps.dll
2013-09-05 23:33:08 ----A---- C:\windows\SYSWOW64\syssetup.dll
2013-09-05 23:33:08 ----A---- C:\windows\SYSWOW64\CertPolEng.dll
2013-09-05 23:33:08 ----A---- C:\windows\system32\FXSTIFF.dll
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\wuapp.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\WerFaultSecure.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\tlscsp.dll
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\RMActivate_ssp_isv.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\RMActivate_ssp.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\ReAgentc.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\findstr.exe
2013-09-05 23:33:07 ----A---- C:\windows\SYSWOW64\eappgnui.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\sppc.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\mciqtz32.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\luainstall.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\choice.exe
2013-09-05 23:33:07 ----A---- C:\windows\system32\findstr.exe
2013-09-05 23:33:07 ----A---- C:\windows\system32\eappgnui.dll
2013-09-05 23:33:07 ----A---- C:\windows\system32\drivers\tunnel.sys
2013-09-05 23:33:06 ----A---- C:\windows\SYSWOW64\netutils.dll
2013-09-05 23:33:06 ----A---- C:\windows\SYSWOW64\mobsync.exe
2013-09-05 23:33:06 ----A---- C:\windows\SYSWOW64\mciqtz32.dll
2013-09-05 23:33:06 ----A---- C:\windows\system32\schedcli.dll
2013-09-05 23:33:06 ----A---- C:\windows\system32\onexui.dll
2013-09-05 23:33:06 ----A---- C:\windows\system32\drivers\dfsc.sys
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\sppc.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\spopk.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\shimgvw.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\muifontsetup.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\iccvid.dll
2013-09-05 23:33:05 ----A---- C:\windows\SYSWOW64\cabinet.dll
2013-09-05 23:33:05 ----A---- C:\windows\system32\wdiasqmmodule.dll
2013-09-05 23:33:05 ----A---- C:\windows\system32\spopk.dll
2013-09-05 23:33:05 ----A---- C:\windows\system32\repair-bde.exe
2013-09-05 23:33:05 ----A---- C:\windows\system32\manage-bde.exe
2013-09-05 23:33:05 ----A---- C:\windows\system32\inetmib1.dll
2013-09-05 23:33:04 ----A---- C:\windows\SYSWOW64\unlodctr.exe
2013-09-05 23:33:04 ----A---- C:\windows\SYSWOW64\msdmo.dll
2013-09-05 23:33:04 ----A---- C:\windows\SYSWOW64\luainstall.dll
2013-09-05 23:33:04 ----A---- C:\windows\system32\RDPENCDD.dll
2013-09-05 23:33:04 ----A---- C:\windows\system32\odbcconf.dll
2013-09-05 23:33:03 ----A---- C:\windows\SYSWOW64\rdprefdrvapi.dll
2013-09-05 23:33:03 ----A---- C:\windows\SYSWOW64\inetmib1.dll
2013-09-05 23:33:03 ----A---- C:\windows\system32\fixmapi.exe
2013-09-05 23:33:02 ----A---- C:\windows\SYSWOW64\UIRibbonRes.dll
2013-09-05 23:33:02 ----A---- C:\windows\SYSWOW64\odbcconf.dll
2013-09-05 23:33:02 ----A---- C:\windows\system32\UIRibbonRes.dll
2013-09-05 23:33:02 ----A---- C:\windows\system32\FXSMON.dll
2013-09-05 23:33:02 ----A---- C:\windows\system32\elsTrans.dll
2013-09-05 23:33:01 ----A---- C:\windows\SYSWOW64\wups.dll
2013-09-05 23:33:01 ----A---- C:\windows\SYSWOW64\perfts.dll
2013-09-05 23:33:01 ----A---- C:\windows\system32\wshbth.dll
2013-09-05 23:33:01 ----A---- C:\windows\system32\TRAPI.dll
2013-09-05 23:33:01 ----A---- C:\windows\system32\drivers\tdi.sys
2013-09-05 23:33:00 ----A---- C:\windows\SYSWOW64\imm32.dll
2013-09-05 23:33:00 ----A---- C:\windows\system32\napdsnap.dll
2013-09-05 23:33:00 ----A---- C:\windows\system32\LogonUI.exe
2013-09-05 23:33:00 ----A---- C:\windows\system32\dsauth.dll
2013-09-05 23:32:59 ----A---- C:\windows\SYSWOW64\TRAPI.dll
2013-09-05 23:32:59 ----A---- C:\windows\SYSWOW64\elsTrans.dll
2013-09-05 23:32:59 ----A---- C:\windows\system32\rdprefdrvapi.dll
2013-09-05 23:32:59 ----A---- C:\windows\system32\FXSUNATD.exe
2013-09-05 23:32:59 ----A---- C:\windows\system32\cscdll.dll
2013-09-05 23:32:58 ----A---- C:\windows\SYSWOW64\wshbth.dll
2013-09-05 23:32:58 ----A---- C:\windows\SYSWOW64\schedcli.dll
2013-09-05 23:32:58 ----A---- C:\windows\SYSWOW64\bitsperf.dll
2013-09-05 23:32:58 ----A---- C:\windows\system32\drivers\usbrpm.sys
2013-09-05 23:32:58 ----A---- C:\windows\system32\bitsperf.dll
2013-09-05 23:32:57 ----A---- C:\windows\SYSWOW64\napdsnap.dll
2013-09-05 23:32:57 ----A---- C:\windows\SYSWOW64\dsauth.dll
2013-09-05 23:32:57 ----A---- C:\windows\SYSWOW64\cscdll.dll
2013-09-05 23:32:57 ----A---- C:\windows\system32\drivers\acpipmi.sys
2013-09-05 23:32:56 ----A---- C:\windows\SYSWOW64\sscore.dll
2013-09-05 23:32:56 ----A---- C:\windows\system32\wsdchngr.dll
2013-09-05 23:32:56 ----A---- C:\windows\system32\shgina.dll
2013-09-05 23:32:55 ----A---- C:\windows\SYSWOW64\wsdchngr.dll
2013-09-05 23:32:55 ----A---- C:\windows\SYSWOW64\shgina.dll
2013-09-05 23:32:55 ----A---- C:\windows\SYSWOW64\riched32.dll
2013-09-05 23:32:54 ----A---- C:\windows\system32\drivers\USBCAMD2.sys
2013-09-05 23:32:54 ----A---- C:\windows\system32\drivers\CompositeBus.sys
2013-09-05 23:32:53 ----A---- C:\windows\system32\wshirda.dll
2013-09-05 23:32:53 ----A---- C:\windows\system32\drivers\hidusb.sys
2013-09-05 23:32:53 ----A---- C:\windows\system32\drivers\appid.sys
2013-09-05 23:32:52 ----A---- C:\windows\SYSWOW64\wshirda.dll
2013-09-05 23:32:52 ----A---- C:\windows\system32\riched32.dll
2013-09-05 23:32:52 ----A---- C:\windows\system32\rdpcfgex.dll
2013-09-05 23:32:52 ----A---- C:\windows\system32\drivers\kbdhid.sys
2013-09-05 23:32:51 ----A---- C:\windows\system32\spwmp.dll
2013-09-05 23:32:51 ----A---- C:\windows\system32\drivers\IPMIDrv.sys
2013-09-05 23:32:51 ----A---- C:\windows\system32\browseui.dll
2013-09-05 23:32:50 ----A---- C:\windows\SYSWOW64\spwmp.dll
2013-09-05 23:32:50 ----A---- C:\windows\SYSWOW64\browseui.dll
2013-09-05 23:32:50 ----A---- C:\windows\system32\C_ISCII.DLL
2013-09-05 23:32:49 ----A---- C:\windows\SYSWOW64\C_ISCII.DLL
2013-09-05 23:32:49 ----A---- C:\windows\system32\dxmasf.dll
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\sffp_sd.sys
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\scfilter.sys
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\HdAudio.sys
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\hdaudbus.sys
2013-09-05 23:32:49 ----A---- C:\windows\system32\drivers\cdrom.sys
2013-09-05 23:32:48 ----AH---- C:\windows\system32\api-ms-win-core-ums-l1-1-0.dll
2013-09-05 23:32:48 ----A---- C:\windows\SYSWOW64\shunimpl.dll
2013-09-05 23:32:48 ----A---- C:\windows\SYSWOW64\dxmasf.dll
2013-09-05 23:32:48 ----A---- C:\windows\system32\shunimpl.dll
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\KBDTUQ.DLL
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\KBDTUF.DLL
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\KBDSG.DLL
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\kbdlk41a.dll
2013-09-05 23:32:47 ----A---- C:\windows\SYSWOW64\KBDGR1.DLL
2013-09-05 23:32:47 ----A---- C:\windows\system32\KBDTUQ.DLL
2013-09-05 23:32:47 ----A---- C:\windows\system32\KBDTUF.DLL
2013-09-05 23:32:47 ----A---- C:\windows\system32\KBDSF.DLL
2013-09-05 23:32:47 ----A---- C:\windows\system32\KBDPO.DLL
2013-09-05 23:32:46 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2013-09-05 23:32:46 ----A---- C:\windows\SYSWOW64\KBDGKL.DLL
2013-09-05 23:32:46 ----A---- C:\windows\system32\KBDSG.DLL
2013-09-05 23:32:46 ----A---- C:\windows\system32\KBDNEPR.DLL
2013-09-05 23:32:46 ----A---- C:\windows\system32\kbdlk41a.dll
2013-09-05 23:32:46 ----A---- C:\windows\system32\KBDGR1.DLL
2013-09-05 23:32:46 ----A---- C:\windows\system32\KBDGKL.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDUS.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDTURME.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDTAJIK.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDMON.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDGEO.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDCZ1.DLL
2013-09-05 23:32:45 ----A---- C:\windows\SYSWOW64\KBDBLR.DLL
2013-09-05 23:32:45 ----A---- C:\windows\system32\wmploc.DLL
2013-09-05 23:32:45 ----A---- C:\windows\system32\KBDGEO.DLL
2013-09-05 23:32:45 ----A---- C:\windows\system32\KBDCZ1.DLL
2013-09-05 23:32:44 ----A---- C:\windows\SYSWOW64\KBDUGHR1.DLL
2013-09-05 23:32:44 ----A---- C:\windows\SYSWOW64\KBDMAORI.DLL
2013-09-05 23:32:44 ----A---- C:\windows\SYSWOW64\KBDLT1.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDUS.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDUGHR1.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDTAJIK.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDMON.DLL
2013-09-05 23:32:44 ----A---- C:\windows\system32\KBDLT1.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\nlsbres.dll
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDSF.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDPO.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDNEPR.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDBULG.DLL
2013-09-05 23:32:43 ----A---- C:\windows\SYSWOW64\KBDBASH.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\nlsbres.dll
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDTURME.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDMAORI.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDBULG.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDBLR.DLL
2013-09-05 23:32:43 ----A---- C:\windows\system32\KBDBASH.DLL
2013-09-05 23:32:42 ----A---- C:\windows\SYSWOW64\spwizres.dll
2013-09-05 23:32:42 ----A---- C:\windows\SYSWOW64\pifmgr.dll
2013-09-05 23:32:42 ----A---- C:\windows\system32\spwizres.dll
2013-09-05 23:32:42 ----A---- C:\windows\system32\pifmgr.dll
2013-09-05 23:32:42 ----A---- C:\windows\system32\BlbEvents.dll
2013-09-05 23:32:08 ----A---- C:\windows\SYSWOW64\wdscore.dll
2013-09-05 23:32:08 ----A---- C:\windows\SYSWOW64\sqmapi.dll
2013-09-05 23:32:08 ----A---- C:\windows\SYSWOW64\PkgMgr.exe
2013-09-05 23:32:05 ----A---- C:\windows\SYSWOW64\drvstore.dll
2013-09-05 23:32:05 ----A---- C:\windows\SYSWOW64\dpx.dll
2013-09-05 23:32:04 ----A---- C:\windows\SYSWOW64\wbemcomn.dll
2013-09-05 23:30:56 ----A---- C:\windows\system32\wmicmiplugin.dll
2013-09-05 23:30:56 ----A---- C:\windows\system32\wbemcomn.dll
2013-09-05 23:30:53 ----A---- C:\windows\system32\sqmapi.dll
2013-09-05 23:30:53 ----A---- C:\windows\system32\SmiEngine.dll
2013-09-05 23:30:51 ----A---- C:\windows\system32\PkgMgr.exe
2013-09-05 23:30:39 ----A---- C:\windows\system32\drvstore.dll
2013-09-05 23:30:39 ----A---- C:\windows\system32\dpx.dll
2013-09-05 23:09:14 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2013-09-05 23:09:14 ----A---- C:\windows\system32\smss.exe
2013-09-05 23:09:14 ----A---- C:\windows\system32\csrsrv.dll
2013-09-05 23:08:33 ----A---- C:\windows\system32\drivers\ntfs.sys
2013-09-05 23:08:17 ----A---- C:\windows\system32\drivers\fvevol.sys
2013-09-05 21:48:09 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-05 20:18:49 ----D---- C:\Users\Ondra\AppData\Roaming\Malwarebytes
2013-09-05 20:18:40 ----D---- C:\ProgramData\Malwarebytes
2013-09-05 19:25:25 ----D---- C:\Program Files\CCleaner
2013-09-05 19:22:31 ----A---- C:\windows\system32\drivers\athrx.sys
2013-08-14 10:32:19 ----D---- C:\Users\Ondra\AppData\Roaming\Atheros
======List of files/folders modified in the last 1 months======
2013-09-06 14:06:14 ----D---- C:\windows\Prefetch
2013-09-06 14:06:01 ----RD---- C:\Program Files
2013-09-06 13:32:50 ----D---- C:\windows\system32\config
2013-09-06 13:27:02 ----D---- C:\windows\Microsoft.NET
2013-09-06 13:27:01 ----RSD---- C:\windows\assembly
2013-09-06 13:21:36 ----A---- C:\windows\SYSWOW64\log.txt
2013-09-06 13:20:40 ----D---- C:\windows\Temp
2013-09-06 13:19:51 ----D---- C:\ProgramData\PDFC
2013-09-06 12:57:15 ----SHD---- C:\windows\Installer
2013-09-06 12:57:08 ----D---- C:\windows\System32
2013-09-06 12:56:51 ----HD---- C:\ProgramData
2013-09-06 12:50:17 ----D---- C:\Users\Ondra\AppData\Roaming\Autodesk
2013-09-06 12:50:17 ----D---- C:\ProgramData\Autodesk
2013-09-06 12:33:57 ----D---- C:\windows\inf
2013-09-06 11:59:50 ----D---- C:\Windows
2013-09-06 11:29:15 ----D---- C:\windows\debug
2013-09-06 11:14:17 ----D---- C:\windows\system32\Tasks
2013-09-06 11:13:53 ----D---- C:\windows\system32\drivers
2013-09-06 11:13:51 ----D---- C:\windows\system32\DriverStore
2013-09-06 11:13:51 ----D---- C:\windows\system32\catroot
2013-09-06 11:13:45 ----SHD---- C:\System Volume Information
2013-09-06 11:13:21 ----D---- C:\windows\SysWOW64
2013-09-06 10:59:47 ----D---- C:\windows\winsxs
2013-09-06 10:56:49 ----D---- C:\windows\SYSWOW64\wbem
2013-09-06 10:56:49 ----D---- C:\windows\SYSWOW64\en-US
2013-09-06 10:56:49 ----D---- C:\windows\SYSWOW64\cs-CZ
2013-09-06 10:56:49 ----D---- C:\windows\system32\wbem
2013-09-06 10:56:49 ----D---- C:\windows\system32\en-US
2013-09-06 10:56:49 ----D---- C:\windows\system32\drivers\en-US
2013-09-06 10:56:49 ----D---- C:\windows\system32\cs-CZ
2013-09-06 10:56:49 ----D---- C:\windows\PolicyDefinitions
2013-09-06 10:50:37 ----D---- C:\windows\system32\catroot2
2013-09-06 10:36:46 ----D---- C:\windows\AppPatch
2013-09-06 10:34:44 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2013-09-06 10:34:35 ----A---- C:\windows\system32\PerfStringBackup.INI
2013-09-06 09:32:09 ----D---- C:\windows\SYSWOW64\migration
2013-09-06 09:32:09 ----D---- C:\windows\system32\migration
2013-09-06 09:32:09 ----D---- C:\Program Files\Windows Defender
2013-09-06 09:32:09 ----D---- C:\Program Files (x86)\Windows Defender
2013-09-06 09:32:08 ----D---- C:\Program Files\Windows Journal
2013-09-06 09:32:08 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-06 09:32:07 ----D---- C:\Program Files\Internet Explorer
2013-09-06 08:40:48 ----D---- C:\windows\rescache
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Portable Devices
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Media Player
2013-09-06 07:05:55 ----D---- C:\Program Files (x86)\Windows Mail
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Sidebar
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Portable Devices
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Photo Viewer
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Media Player
2013-09-06 07:05:54 ----D---- C:\Program Files\Windows Mail
2013-09-06 07:05:54 ----D---- C:\Program Files\DVD Maker
2013-09-06 07:05:54 ----D---- C:\Program Files\Common Files\System
2013-09-06 07:05:52 ----D---- C:\windows\servicing
2013-09-06 07:05:51 ----D---- C:\windows\ehome
2013-09-06 07:05:50 ----D---- C:\windows\SYSWOW64\oobe
2013-09-06 07:05:50 ----D---- C:\windows\SYSWOW64\da-DK
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\sppui
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\Setup
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\migwiz
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\manifeststore
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\es-ES
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\Dism
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\cs
2013-09-06 07:05:49 ----D---- C:\windows\SYSWOW64\AdvancedInstallers
2013-09-06 07:05:41 ----D---- C:\windows\system32\Setup
2013-09-06 07:05:41 ----D---- C:\windows\system32\oobe
2013-09-06 07:05:41 ----D---- C:\windows\system32\da-DK
2013-09-06 07:05:41 ----D---- C:\windows\system32\cs
2013-09-06 07:05:41 ----D---- C:\windows\system32\AdvancedInstallers
2013-09-06 07:05:40 ----D---- C:\windows\system32\sppui
2013-09-06 07:05:40 ----D---- C:\windows\system32\migwiz
2013-09-06 07:05:40 ----D---- C:\windows\system32\manifeststore
2013-09-06 07:05:40 ----D---- C:\windows\system32\es-ES
2013-09-06 07:05:40 ----D---- C:\windows\system32\drivers\cs-CZ
2013-09-06 07:05:40 ----D---- C:\windows\system32\Dism
2013-09-06 07:05:32 ----RSD---- C:\windows\Fonts
2013-09-06 07:05:24 ----D---- C:\windows\system32\Boot
2013-09-06 07:02:35 ----A---- C:\windows\SYSWOW64\msclmd.dll
2013-09-06 07:02:35 ----A---- C:\windows\system32\msclmd.dll
2013-09-06 06:55:13 ----D---- C:\Program Files\Microsoft Silverlight
2013-09-06 06:55:12 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-09-05 23:50:56 ----D---- C:\ProgramData\Microsoft Help
2013-09-05 23:50:22 ----D---- C:\Program Files (x86)\Microsoft Office
2013-09-05 22:06:03 ----D---- C:\Program Files (x86)
2013-09-05 19:28:38 ----D---- C:\Users\Ondra\AppData\Roaming\DAEMON Tools Lite
2013-09-05 19:28:23 ----D---- C:\windows\Panther
2013-09-05 19:28:23 ----D---- C:\windows\Logs
2013-09-05 19:21:54 ----D---- C:\ProgramData\Hewlett-Packard
2013-09-05 19:21:54 ----D---- C:\Program Files\Hewlett-Packard
2013-09-05 19:14:47 ----D---- C:\Program Files (x86)\Hewlett-Packard
2013-09-05 19:14:34 ----D---- C:\windows\SYSWOW64\pt-BR
2013-09-05 19:14:34 ----D---- C:\windows\system32\pt-BR
2013-09-05 19:14:23 ----D---- C:\ProgramData\DigitalPersona
2013-09-05 19:12:44 ----D---- C:\Program Files (x86)\Intel
2013-09-05 18:54:43 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-05 18:30:55 ----D---- C:\Program Files (x86)\Common Files
2013-09-05 18:29:05 ----D---- C:\swsetup
2013-09-05 18:18:53 ----D---- C:\Users\Ondra\AppData\Roaming\hpqLog
2013-09-05 18:16:44 ----AD---- C:\ProgramData\TEMP
2013-09-05 18:11:36 ----D---- C:\ProgramData\Atheros
2013-09-05 18:04:03 ----AHD---- C:\SYSTEM.SAV
2013-09-05 17:54:22 ----D---- C:\windows\system32\zh-TW
2013-09-05 17:54:22 ----D---- C:\windows\system32\zh-CN
2013-09-05 17:54:22 ----D---- C:\windows\system32\tr-TR
2013-09-05 17:54:22 ----D---- C:\windows\system32\sv-SE
2013-09-05 17:54:22 ----D---- C:\windows\system32\ru-RU
2013-09-05 17:54:22 ----D---- C:\windows\system32\pt-PT
2013-09-05 17:54:22 ----D---- C:\windows\system32\pl-PL
2013-09-05 17:54:22 ----D---- C:\windows\system32\nl-NL
2013-09-05 17:54:22 ----D---- C:\windows\system32\ko-KR
2013-09-05 17:54:22 ----D---- C:\windows\system32\ja-JP
2013-09-05 17:54:22 ----D---- C:\windows\system32\it-IT
2013-09-05 17:54:22 ----D---- C:\windows\system32\hu-HU
2013-09-05 17:54:22 ----D---- C:\windows\system32\fr-FR
2013-09-05 17:54:22 ----D---- C:\windows\system32\fi-FI
2013-09-05 17:54:22 ----D---- C:\windows\system32\el-GR
2013-09-05 17:54:22 ----D---- C:\windows\system32\de-DE
2013-09-05 17:39:10 ----SD---- C:\ProgramData\Microsoft
2013-09-04 21:15:07 ----D---- C:\windows\system32\NDF
2013-09-01 10:28:57 ----A---- C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-08-18 11:02:38 ----D---- C:\windows\Tasks
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2013-07-01 189936]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2013-07-01 1030952]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2013-07-01 378944]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\windows\System32\DRIVERS\cmderd.sys [2013-06-18 23168]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\windows\system32\DRIVERS\cmdguard.sys [2013-06-18 708632]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\windows\System32\DRIVERS\cmdhlp.sys [2013-06-18 48360]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-29 279616]
R1 inspect;COMODO Internet Security Firewall Driver; C:\windows\system32\DRIVERS\inspect.sys [2013-06-18 96800]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\windows\system32\DRIVERS\RMCAST.sys [2010-11-20 146432]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-03-28 9319424]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-03-28 303616]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-08-19 88728]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2013-05-23 3948544]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-08-19 344216]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-08-19 114840]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2012-08-19 33944]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2012-08-19 178840]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-08-19 77464]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2012-08-19 135832]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-08-19 567808]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\windows\system32\DRIVERS\igdpmd64.sys [2011-01-27 12273408]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2013-08-04 708200]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2011-02-12 2612728]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-08-04 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2013-08-04 468720]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 ALSysIO;ALSysIO; \??\C:\Users\Ondra\AppData\Local\Temp\ALSysIO64.sys []
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\windows\system32\DRIVERS\ewusbnet.sys [2009-07-23 132608]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2009-07-23 116992]
S3 hwusbfake;Huawei DataCard USB Fake; C:\windows\system32\DRIVERS\ewusbfake.sys [2009-07-23 113792]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2013-08-04 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-03-28 203264]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-08-19 211584]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2013-06-18 6181504]
R2 DraftSight API Service;DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [2013-06-28 123392]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-29 281656]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-13 30520]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 mitsijm2012;Správce úloh aplikace Autodesk Moldflow Inventor Tool Suite Integration 2012; C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe [2010-12-08 848184]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2011-12-29 66872]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-08-04 323072]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
R2 VMCService;Vodafone Mobile Connect Service; C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-09-18 9216]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-10 116648]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-19 44376]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2013-06-18 158936]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-12-01 1431888]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-10 116648]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2013-04-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Re: Conduit, PriceGong
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.09.05.07
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Ondra :: ONDRA-HP [administrátor]
Ochrana: Povolena
5.9.2013 20:36:31
MBAM-log-2013-09-05 (21-45-06).txt
Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 394204
Uplynulý čas: 1 hodin, 52 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 3
C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\rzr-cd4f.001 (Trojan.Agent.CK) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\rzr-cod4.exe (Trojan.Agent.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Ondra\Documents\já\Autodesk Inventor 2012 Key-gen\001\xf-adesk2012x64.exe (Trojan.Agent.ck) -> Nebyla provedena žádná instrukce.
(konec)
www.malwarebytes.org
Verze: v2013.09.05.07
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Ondra :: ONDRA-HP [administrátor]
Ochrana: Povolena
5.9.2013 20:36:31
MBAM-log-2013-09-05 (21-45-06).txt
Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 394204
Uplynulý čas: 1 hodin, 52 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 3
C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\rzr-cd4f.001 (Trojan.Agent.CK) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\rzr-cod4.exe (Trojan.Agent.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Ondra\Documents\já\Autodesk Inventor 2012 Key-gen\001\xf-adesk2012x64.exe (Trojan.Agent.ck) -> Nebyla provedena žádná instrukce.
(konec)
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Re: Conduit, PriceGong
RogueKiller V8.6.9 _x64_ [Sep 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Ondra [Práva správce]
Mód : Kontrola -- Datum : 09/05/2013 19:48:48
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HM641JI +++++
--- User ---
[MBR] dad88bf6fedd171deb340c3b7707bc75
[BSP] d4065d26e0ae07e47fc70680adf8d2e7 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 587697 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1204219904 | Size: 17359 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 1239771136 | Size: 5115 Mo
User = LL1 ... OK!
User != LL2 ... KO!
--- LL2 ---
[MBR] 8d7c17ec0ab52f8d4bc5cb08cd1bc581
[BSP] d4065d26e0ae07e47fc70680adf8d2e7 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 61440 Mo
2 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 167999488 | Size: 1001 Mo
3 - [XXXXXX] FAT16 (0x06) [VISIBLE] Offset (sectors): 171999232 | Size: 2000 Mo
Dokončeno : << RKreport[0]_S_09052013_194848.txt >>
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Ondra [Práva správce]
Mód : Kontrola -- Datum : 09/05/2013 19:48:48
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HM641JI +++++
--- User ---
[MBR] dad88bf6fedd171deb340c3b7707bc75
[BSP] d4065d26e0ae07e47fc70680adf8d2e7 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 587697 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1204219904 | Size: 17359 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 1239771136 | Size: 5115 Mo
User = LL1 ... OK!
User != LL2 ... KO!
--- LL2 ---
[MBR] 8d7c17ec0ab52f8d4bc5cb08cd1bc581
[BSP] d4065d26e0ae07e47fc70680adf8d2e7 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 61440 Mo
2 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 167999488 | Size: 1001 Mo
3 - [XXXXXX] FAT16 (0x06) [VISIBLE] Offset (sectors): 171999232 | Size: 2000 Mo
Dokončeno : << RKreport[0]_S_09052013_194848.txt >>
Re: Conduit, PriceGong - 4xlog
Zdravim 
Kdyz si takhle budete sam odpovidat, muze se stat, ze se pomoci nedockate, nebo jo, ale pozdeji. Protoze to pak vypada, ze uz tema nekdo resi.
Takze priste vkladejte logy, az si o ne nekdo rekne
Nalezy MBAM nechte odstranit, pak MBAM odinstalujte.
U toho Comoda je zapnuty jen firewall?
Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Kdyz si takhle budete sam odpovidat, muze se stat, ze se pomoci nedockate, nebo jo, ale pozdeji. Protoze to pak vypada, ze uz tema nekdo resi.
Takze priste vkladejte logy, az si o ne nekdo rekne
Nalezy MBAM nechte odstranit, pak MBAM odinstalujte. U toho Comoda je zapnuty jen firewall? Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Re: Conduit, PriceGong - 4xlog
Díky za pomoc. Mě to napadlo včera večer, když jsem viděl, jak moje téma klesá níž a níž.
Comodo - je zapnutý firewall a auto sandbox.
RogueKiller V8.6.9 _x64_ [Sep 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Ondra [Práva správce]
Mód : Odebrat -- Datum : 09/05/2013 19:59:54
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HM641JI +++++
--- User ---
[MBR] dad88bf6fedd171deb340c3b7707bc75
[BSP] d4065d26e0ae07e47fc70680adf8d2e7 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 587697 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1204219904 | Size: 17359 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 1239771136 | Size: 5115 Mo
User = LL1 ... OK!
User != LL2 ... KO!
--- LL2 ---
[MBR] 8d7c17ec0ab52f8d4bc5cb08cd1bc581
[BSP] d4065d26e0ae07e47fc70680adf8d2e7 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 61440 Mo
2 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 167999488 | Size: 1001 Mo
3 - [XXXXXX] FAT16 (0x06) [VISIBLE] Offset (sectors): 171999232 | Size: 2000 Mo
Dokončeno : << RKreport[0]_D_09052013_195954.txt >>
RKreport[0]_S_09052013_194848.txt
Comodo - je zapnutý firewall a auto sandbox.
RogueKiller V8.6.9 _x64_ [Sep 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7600 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Ondra [Práva správce]
Mód : Odebrat -- Datum : 09/05/2013 19:59:54
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HM641JI +++++
--- User ---
[MBR] dad88bf6fedd171deb340c3b7707bc75
[BSP] d4065d26e0ae07e47fc70680adf8d2e7 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 587697 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1204219904 | Size: 17359 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 1239771136 | Size: 5115 Mo
User = LL1 ... OK!
User != LL2 ... KO!
--- LL2 ---
[MBR] 8d7c17ec0ab52f8d4bc5cb08cd1bc581
[BSP] d4065d26e0ae07e47fc70680adf8d2e7 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 300 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 616448 | Size: 61440 Mo
2 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 167999488 | Size: 1001 Mo
3 - [XXXXXX] FAT16 (0x06) [VISIBLE] Offset (sectors): 171999232 | Size: 2000 Mo
Dokončeno : << RKreport[0]_D_09052013_195954.txt >>
RKreport[0]_S_09052013_194848.txt
Re: Conduit, PriceGong - 4xlog
No hledame prednostne temata bez odpovedi. A jelikoz jsme tu jen ve svem volnem case a toho bohuzel moc neni, neni cas procitat vsechna temata
Druhy log z RK je kde?
Druhy log z RK je kde?Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Re: Conduit, PriceGong - 4xlog
Oběd mě vyrušil a zůstal pod oknem prohlížeče.
Takže je tady. To já vím, jak tady fungujete. Taky jsem trpělivě čekal, jestli si toho někdo všimne. Když už jsem to nedomyslel.
RogueKiller V8.6.9 _x64_ [Sep 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Ondra [Práva správce]
Mód : Oprava HOSTS -- Datum : 09/07/2013 12:03:42
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončeno : << RKreport[0]_H_09072013_120342.txt >>
RKreport[0]_S_09072013_120310.txt
Takže je tady. To já vím, jak tady fungujete. Taky jsem trpělivě čekal, jestli si toho někdo všimne. Když už jsem to nedomyslel.
RogueKiller V8.6.9 _x64_ [Sep 3 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Ondra [Práva správce]
Mód : Oprava HOSTS -- Datum : 09/07/2013 12:03:42
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončeno : << RKreport[0]_H_09072013_120342.txt >>
RKreport[0]_S_09072013_120310.txt
Re: Conduit, PriceGong - 4xlog
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Re: Conduit, PriceGong - 4xlog
Po naběhnutí systému trvá několik minut, než se připojí síťová karta. Těsně před tím "probliknou" všechny ikony na ploše.
# AdwCleaner v3.003 - Report created 07/09/2013 at 22:12:12
# Updated 07/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Ondra - ONDRA-HP
# Running from : C:\Users\Ondra\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16502
-\\ Mozilla Firefox v
[ File : C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\prefs.js ]
-\\ Google Chrome v29.0.1547.66
[ File : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R2].txt - [744 octets] - [07/09/2013 22:12:12]
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [803 octets] ##########
# AdwCleaner v3.003 - Report created 07/09/2013 at 22:12:12
# Updated 07/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Ondra - ONDRA-HP
# Running from : C:\Users\Ondra\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16502
-\\ Mozilla Firefox v
[ File : C:\Users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\prefs.js ]
-\\ Google Chrome v29.0.1547.66
[ File : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R2].txt - [744 octets] - [07/09/2013 22:12:12]
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [803 octets] ##########
Re: Conduit, PriceGong - 4xlog
To delalo i predtim? Nebo to zaclo po nekterem z kroku?vitkova_vitek píše:Po naběhnutí systému trvá několik minut, než se připojí síťová karta. Těsně před tím "probliknou" všechny ikony na ploše.
Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.) Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc! Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradkuPokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Re: Conduit, PriceGong - 4xlog
Dělalo to od začátku. Jen start systému se po zásahu MBAMu zlepšil.
ComboFix 13-09-06.01 - Ondra 07.09.2013 23:39:17.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4030.2029 [GMT 2:00]
Spuštěný z: c:\users\Ondra\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: COMODO Firewall *Disabled* {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: COMODO Antivirus *Disabled/Outdated* {0C2D2636-923D-EE52-2A83-E643204A8275}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\Downloaded Program Files\IDropPTB.dll
.
c:\windows\SysWow64\Version.dll . . . je infikován!!
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-07 do 2013-09-07 )))))))))))))))))))))))))))))))
.
.
2013-09-07 20:12 . 2013-09-07 20:12 -------- d-----w- C:\AdwCleaner
2013-09-07 13:03 . 2013-09-07 13:03 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-09-07 13:03 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-09-06 12:06 . 2013-09-06 12:06 -------- d-----w- C:\rsit
2013-09-06 12:06 . 2013-09-06 12:06 -------- d-----w- c:\program files\trend micro
2013-09-06 11:05 . 2013-09-06 11:05 -------- d-----w- c:\program files\Blender Foundation
2013-09-06 11:00 . 2013-09-06 11:00 -------- d-----w- c:\users\Ondra\AppData\Local\CrashRpt
2013-09-06 10:57 . 2013-09-06 11:00 -------- d-----w- c:\users\Ondra\AppData\Roaming\DraftSight
2013-09-06 10:56 . 2013-09-06 10:56 -------- d-----w- c:\programdata\Dassault Systemes
2013-09-06 10:56 . 2013-09-06 10:56 -------- d-----w- c:\program files\Dassault Systemes
2013-09-06 09:13 . 2013-09-06 09:14 -------- d-s---w- c:\programdata\Shared Space
2013-09-06 09:13 . 2013-09-06 09:13 -------- d-----w- c:\program files\COMODO
2013-09-06 09:13 . 2013-09-06 09:13 -------- d-----w- c:\programdata\Comodo
2013-09-06 09:13 . 2013-09-06 09:13 -------- d-----w- c:\programdata\Comodo Downloader
2013-09-06 08:50 . 2012-08-23 15:09 3072 ----a-w- c:\windows\system32\drivers\en-US\tsusbflt.sys.mui
2013-09-06 08:50 . 2012-08-23 13:41 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-09-06 08:50 . 2012-08-23 13:40 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-09-06 08:50 . 2012-08-23 13:24 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2013-09-06 08:50 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2013-09-06 08:50 . 2012-08-23 14:07 57856 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2013-09-06 08:30 . 2013-07-09 05:03 3913664 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-09-06 08:30 . 2013-07-09 06:03 5550528 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-09-06 08:30 . 2013-07-09 05:54 1732032 ----a-w- c:\windows\system32\ntdll.dll
2013-09-06 08:30 . 2013-07-09 05:03 3968960 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-09-06 08:30 . 2013-07-09 05:53 243712 ----a-w- c:\windows\system32\wow64.dll
2013-09-06 08:30 . 2013-07-09 04:53 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2013-09-06 08:30 . 2013-07-09 02:49 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-09-06 08:30 . 2013-07-09 04:52 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-09-06 08:30 . 2013-07-09 02:49 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-09-06 08:30 . 2013-07-09 02:49 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-09-06 08:30 . 2013-07-09 02:49 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-09-06 07:10 . 2013-07-25 03:28 816640 ----a-w- c:\windows\system32\jscript.dll
2013-09-06 07:10 . 2013-07-25 03:28 2147840 ----a-w- c:\windows\system32\iertutil.dll
2013-09-06 07:10 . 2013-07-25 02:25 104448 ----a-w- c:\program files (x86)\Internet Explorer\jsdebuggeride.dll
2013-09-06 07:10 . 2013-07-25 02:25 387584 ----a-w- c:\program files (x86)\Internet Explorer\jsdbgui.dll
2013-09-06 07:10 . 2013-07-25 03:30 499200 ----a-w- c:\program files\Internet Explorer\jsdbgui.dll
2013-09-06 07:10 . 2013-07-25 02:25 678912 ----a-w- c:\program files (x86)\Internet Explorer\iedvtool.dll
2013-09-06 07:10 . 2013-07-25 03:30 887808 ----a-w- c:\program files\Internet Explorer\iedvtool.dll
2013-09-06 07:10 . 2013-07-25 03:54 17830400 ----a-w- c:\windows\system32\mshtml.dll
2013-09-06 07:10 . 2013-07-25 03:35 10926080 ----a-w- c:\windows\system32\ieframe.dll
2013-09-06 07:09 . 2012-10-03 17:44 303104 ----a-w- c:\windows\system32\nlasvc.dll
2013-09-06 07:09 . 2012-10-03 17:44 246272 ----a-w- c:\windows\system32\netcorehc.dll
2013-09-06 07:09 . 2012-10-03 17:44 216576 ----a-w- c:\windows\system32\ncsi.dll
2013-09-06 07:09 . 2012-10-03 17:42 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2013-09-06 07:09 . 2012-10-03 16:42 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2013-09-06 07:09 . 2012-10-03 17:44 70656 ----a-w- c:\windows\system32\nlaapi.dll
2013-09-06 07:09 . 2012-10-03 17:44 18944 ----a-w- c:\windows\system32\netevent.dll
2013-09-06 07:09 . 2012-10-03 16:42 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2013-09-06 07:09 . 2012-10-03 16:42 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2013-09-06 07:09 . 2012-10-03 16:07 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2013-09-06 07:09 . 2012-01-13 07:12 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2013-09-06 07:06 . 2013-07-25 09:25 1888768 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-09-06 07:06 . 2013-07-25 08:57 1620992 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2013-09-06 07:06 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll
2013-09-06 07:06 . 2013-02-27 05:48 1930752 ----a-w- c:\windows\system32\authui.dll
2013-09-06 07:06 . 2013-02-27 05:52 197120 ----a-w- c:\windows\system32\shdocvw.dll
2013-09-06 07:06 . 2013-02-27 06:02 111448 ----a-w- c:\windows\system32\consent.exe
2013-09-06 07:06 . 2013-02-27 04:49 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2013-09-06 07:06 . 2013-02-27 05:47 70144 ----a-w- c:\windows\system32\appinfo.dll
2013-09-06 07:04 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-09-06 07:04 . 2013-05-13 03:08 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2013-09-06 07:04 . 2013-05-13 05:50 52224 ----a-w- c:\windows\system32\certenc.dll
2013-09-06 07:04 . 2013-05-13 03:08 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2013-09-06 07:04 . 2013-04-10 05:48 1732608 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2013-09-06 07:04 . 2013-04-10 05:46 1393152 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2013-09-06 07:04 . 2013-04-10 05:46 1367040 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-09-06 07:04 . 2013-04-10 05:46 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2013-09-06 07:04 . 2013-04-10 05:03 936448 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-09-06 07:03 . 2013-05-10 05:49 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-09-06 07:03 . 2013-05-10 03:20 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-09-06 07:03 . 2013-04-10 05:45 1545728 ----a-w- c:\windows\system32\DWrite.dll
2013-09-06 07:03 . 2013-04-10 05:02 1077760 ----a-w- c:\windows\SysWow64\DWrite.dll
2013-09-06 07:00 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-09-05 21:48 . 2013-09-05 21:50 -------- d-----w- c:\windows\system32\MRT
2013-09-05 21:44 . 2013-09-05 21:44 -------- d-----w- c:\windows\system32\SPReview
2013-09-05 21:43 . 2013-09-05 21:43 -------- d-----w- c:\windows\system32\EventProviders
2013-09-05 21:34 . 2010-11-20 13:26 777728 ----a-w- c:\windows\system32\gpsvc.dll
2013-09-05 21:33 . 2010-11-20 13:32 2217856 ----a-w- c:\windows\system32\bootres.dll
2013-09-05 21:32 . 2010-11-20 13:27 23040 ----a-w- c:\windows\system32\rdprefdrvapi.dll
2013-09-05 21:30 . 2010-11-20 13:27 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll
2013-09-05 21:30 . 2010-11-20 13:27 529408 ----a-w- c:\windows\system32\wbemcomn.dll
2013-09-05 21:30 . 2010-11-20 13:27 1225216 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2013-09-05 21:30 . 2010-11-20 13:27 244736 ----a-w- c:\program files\Windows Portable Devices\sqmapi.dll
2013-09-05 21:30 . 2010-11-20 13:27 244736 ----a-w- c:\windows\system32\sqmapi.dll
2013-09-05 21:30 . 2010-11-20 13:27 933376 ----a-w- c:\windows\system32\SmiEngine.dll
2013-09-05 21:30 . 2010-11-20 13:25 199168 ----a-w- c:\windows\system32\PkgMgr.exe
2013-09-05 21:30 . 2010-11-20 13:26 422912 ----a-w- c:\windows\system32\drvstore.dll
2013-09-05 21:30 . 2010-11-20 13:26 399872 ----a-w- c:\windows\system32\dpx.dll
2013-09-05 21:09 . 2013-03-19 05:46 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-09-05 21:09 . 2013-03-19 04:47 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-09-05 21:09 . 2013-03-19 03:06 112640 ----a-w- c:\windows\system32\smss.exe
2013-09-05 21:08 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-09-05 21:08 . 2013-01-24 06:01 223752 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-09-05 19:48 . 2013-09-05 19:59 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2013-09-05 18:18 . 2013-09-05 18:18 -------- d-----w- c:\users\Ondra\AppData\Roaming\Malwarebytes
2013-09-05 18:18 . 2013-09-05 18:18 -------- d-----w- c:\programdata\Malwarebytes
2013-09-05 17:25 . 2013-09-05 17:25 -------- d-----w- c:\program files\CCleaner
2013-09-05 17:22 . 2013-05-23 08:00 3948544 ----a-w- c:\windows\system32\drivers\athrx.sys
2013-08-14 08:32 . 2013-09-05 16:11 -------- d-----w- c:\users\Ondra\AppData\Roaming\Atheros
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-06 05:02 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2013-09-06 05:02 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2013-08-04 17:19 . 2013-08-04 17:20 468720 ----a-w- c:\windows\system32\drivers\SynTP.sys
2013-08-04 17:19 . 2013-08-04 17:20 229616 ----a-w- c:\windows\system32\SynTPAPI.dll
2013-08-04 17:19 . 2013-08-04 17:20 180464 ----a-w- c:\windows\system32\SynTPCo16.dll
2013-08-04 17:19 . 2013-08-04 17:20 114416 ----a-w- c:\windows\SysWow64\SynTPCOM.dll
2013-08-04 17:19 . 2013-08-04 17:20 532208 ----a-w- c:\windows\SysWow64\SynCOM.dll
2013-08-04 17:19 . 2013-08-04 17:20 1048576 ----a-w- c:\windows\system32\syndata.bin
2013-08-04 17:19 . 2013-08-04 17:20 1035504 ----a-w- c:\windows\system32\SynCOM.dll
2013-08-04 09:54 . 2013-08-04 09:54 74344 ----a-w- c:\windows\system32\RtNicProp64.dll
2013-08-04 09:54 . 2013-08-04 09:54 708200 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2013-08-04 09:54 . 2011-05-10 20:35 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2013-08-04 09:49 . 2013-08-04 09:49 543744 ----a-w- c:\windows\system32\drivers\stwrt64.sys
2013-08-04 09:49 . 2011-11-07 23:27 1664000 ----a-w- c:\windows\sttray64.exe
2013-08-04 09:48 . 2013-08-04 09:49 499200 ----a-w- c:\windows\system32\stcplx64.dll
2013-08-04 09:48 . 2013-08-04 09:49 2188800 ----a-w- c:\windows\system32\stapo64.dll
2013-08-04 09:48 . 2011-11-07 23:27 6102016 ----a-w- c:\windows\system32\stlang64.dll
2013-08-04 09:48 . 2013-08-04 09:49 672256 ------w- c:\windows\system32\stapi64.dll
2013-08-04 09:48 . 2013-08-04 09:49 255488 ----a-w- c:\windows\system32\st646428.dll
2013-08-04 09:48 . 2011-11-07 23:27 8013312 ----a-w- c:\windows\system32\IDTNHP.dll
2013-08-04 09:48 . 2011-11-07 23:27 8003072 ----a-w- c:\windows\system32\IDTNGUI.exe
2013-08-04 09:48 . 2011-11-07 23:27 253952 ----a-w- c:\windows\system32\IDTNJ.exe
2013-08-04 09:48 . 2011-11-07 23:27 2214912 ----a-w- c:\windows\system32\IDTNX.dll
2013-08-04 09:48 . 2011-11-07 23:27 1821184 ----a-w- c:\windows\system32\IDTNC64.cpl
2013-08-04 09:48 . 2011-11-07 23:27 74336 ----a-w- c:\windows\system32\AESTAR64.dll
2013-08-04 09:48 . 2011-11-07 23:27 442368 ----a-w- c:\windows\system32\AESTEC64.dll
2013-08-04 09:48 . 2011-11-07 23:27 224256 ----a-w- c:\windows\system32\HPToneCtrls64.dll
2013-08-04 09:48 . 2011-11-07 23:27 200288 ----a-w- c:\windows\system32\AESTAC64.dll
2013-08-04 09:48 . 2011-11-07 23:27 90624 ----a-w- c:\windows\system32\AESTCo64.dll
2013-07-09 04:45 . 2013-09-06 08:30 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-07-08 20:59 . 2013-06-18 14:16 708632 ----a-w- c:\windows\system32\drivers\cmdguard.sys
2013-07-01 13:39 . 2013-06-02 06:39 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-07-01 13:39 . 2011-11-18 14:48 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-07-01 13:39 . 2011-11-18 14:48 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-06-18 14:16 . 2013-06-18 14:16 96800 ----a-w- c:\windows\system32\drivers\inspect.sys
2013-06-18 14:16 . 2013-06-18 14:16 48360 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2013-06-18 14:16 . 2013-06-18 14:16 23168 ----a-w- c:\windows\system32\drivers\cmderd.sys
2013-06-18 14:15 . 2013-06-18 14:15 43216 ----a-w- c:\windows\system32\cmdcsr.dll
2013-06-18 14:15 . 2013-06-18 14:15 437688 ----a-w- c:\windows\system32\guard64.dll
2013-06-18 14:15 . 2013-06-18 14:15 348584 ----a-w- c:\windows\SysWow64\guard32.dll
2013-06-18 14:15 . 2013-06-18 14:15 45784 ----a-w- c:\windows\system32\cmdkbd64.dll
2013-06-18 14:15 . 2013-06-18 14:15 344792 ----a-w- c:\windows\system32\cmdvrt64.dll
2013-06-18 14:15 . 2013-06-18 14:15 40664 ----a-w- c:\windows\SysWow64\cmdkbd32.dll
2013-06-18 14:15 . 2013-06-18 14:15 278232 ----a-w- c:\windows\SysWow64\cmdvrt32.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"="c:\program files (x86)\PDF Complete\pdfsty.exe" [2011-02-01 656920]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2011-01-28 299576]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-01-26 283160]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"HP HD Webcam [Fixed]_Monitor"="c:\program files (x86)\HP HD Webcam [Fixed]\monitor.exe" [2010-11-26 11:31 267128]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-03-28 336384]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 XobniService;XobniService;c:\program files (x86)\Xobni\XobniService.exe;c:\program files (x86)\Xobni\XobniService.exe [x]
R3 ALSysIO;ALSysIO;c:\users\Ondra\AppData\Local\Temp\ALSysIO64.sys;c:\users\Ondra\AppData\Local\Temp\ALSysIO64.sys [x]
R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [x]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbnet.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbfake.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys;c:\windows\SYSNATIVE\DRIVERS\cmderd.sys [x]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys;c:\windows\SYSNATIVE\DRIVERS\cmdguard.sys [x]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys;c:\windows\SYSNATIVE\DRIVERS\cmdhlp.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 DraftSight API Service;DraftSight API Service;c:\program files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe;c:\program files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [x]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [x]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 mitsijm2012;Správce úloh aplikace Autodesk Moldflow Inventor Tool Suite Integration 2012;c:\program files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe;c:\program files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [x]
S2 uArcCapture;ArcCapture;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
S2 VMCService;Vodafone Mobile Connect Service;c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe;c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [x]
S2 ZAtheros Bt&Wlan Coex Agent;ZAtheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys;c:\windows\SYSNATIVE\DRIVERS\ArcSoftVCapture.sys [x]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 SPUVCbv;SPUVCb Driver Service;c:\windows\system32\Drivers\SPUVCbv_x64.sys;c:\windows\SYSNATIVE\Drivers\SPUVCbv_x64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-05 15:39 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-09-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-10 13:19]
.
2013-09-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-10 13:19]
.
2013-09-07 c:\windows\Tasks\HPCeeScheduleForONDRA-HP$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
2013-09-05 c:\windows\Tasks\HPCeeScheduleForOndra.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" [2011-01-27 13880]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-27 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-27 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-27 418328]
"BtTray"="c:\program files (x86)\Bluetooth Suite\BtTray.exe" [2012-08-19 764032]
"BtvStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2012-08-19 127616]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-08-04 1664000]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cistray.exe" [2013-07-08 1502424]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.bing.com?pc=CMNTDF
mStart Page = hxxp://www.bing.com?pc=CMNTDF
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.93.0.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-09-07 23:53:03
ComboFix-quarantined-files.txt 2013-09-07 21:53
.
Před spuštěním: Volných bajtů: 507 410 800 640
Po spuštění: Volných bajtů: 507 311 374 336
.
- - End Of File - - 7A3DFE1CA2A9B5EF30F7E3240562E22C
ComboFix 13-09-06.01 - Ondra 07.09.2013 23:39:17.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4030.2029 [GMT 2:00]
Spuštěný z: c:\users\Ondra\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: COMODO Firewall *Disabled* {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: COMODO Antivirus *Disabled/Outdated* {0C2D2636-923D-EE52-2A83-E643204A8275}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\Downloaded Program Files\IDropPTB.dll
.
c:\windows\SysWow64\Version.dll . . . je infikován!!
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-07 do 2013-09-07 )))))))))))))))))))))))))))))))
.
.
2013-09-07 20:12 . 2013-09-07 20:12 -------- d-----w- C:\AdwCleaner
2013-09-07 13:03 . 2013-09-07 13:03 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-09-07 13:03 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-09-06 12:06 . 2013-09-06 12:06 -------- d-----w- C:\rsit
2013-09-06 12:06 . 2013-09-06 12:06 -------- d-----w- c:\program files\trend micro
2013-09-06 11:05 . 2013-09-06 11:05 -------- d-----w- c:\program files\Blender Foundation
2013-09-06 11:00 . 2013-09-06 11:00 -------- d-----w- c:\users\Ondra\AppData\Local\CrashRpt
2013-09-06 10:57 . 2013-09-06 11:00 -------- d-----w- c:\users\Ondra\AppData\Roaming\DraftSight
2013-09-06 10:56 . 2013-09-06 10:56 -------- d-----w- c:\programdata\Dassault Systemes
2013-09-06 10:56 . 2013-09-06 10:56 -------- d-----w- c:\program files\Dassault Systemes
2013-09-06 09:13 . 2013-09-06 09:14 -------- d-s---w- c:\programdata\Shared Space
2013-09-06 09:13 . 2013-09-06 09:13 -------- d-----w- c:\program files\COMODO
2013-09-06 09:13 . 2013-09-06 09:13 -------- d-----w- c:\programdata\Comodo
2013-09-06 09:13 . 2013-09-06 09:13 -------- d-----w- c:\programdata\Comodo Downloader
2013-09-06 08:50 . 2012-08-23 15:09 3072 ----a-w- c:\windows\system32\drivers\en-US\tsusbflt.sys.mui
2013-09-06 08:50 . 2012-08-23 13:41 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-09-06 08:50 . 2012-08-23 13:40 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-09-06 08:50 . 2012-08-23 13:24 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2013-09-06 08:50 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2013-09-06 08:50 . 2012-08-23 14:07 57856 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2013-09-06 08:30 . 2013-07-09 05:03 3913664 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-09-06 08:30 . 2013-07-09 06:03 5550528 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-09-06 08:30 . 2013-07-09 05:54 1732032 ----a-w- c:\windows\system32\ntdll.dll
2013-09-06 08:30 . 2013-07-09 05:03 3968960 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-09-06 08:30 . 2013-07-09 05:53 243712 ----a-w- c:\windows\system32\wow64.dll
2013-09-06 08:30 . 2013-07-09 04:53 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2013-09-06 08:30 . 2013-07-09 02:49 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-09-06 08:30 . 2013-07-09 04:52 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-09-06 08:30 . 2013-07-09 02:49 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-09-06 08:30 . 2013-07-09 02:49 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-09-06 08:30 . 2013-07-09 02:49 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-09-06 07:10 . 2013-07-25 03:28 816640 ----a-w- c:\windows\system32\jscript.dll
2013-09-06 07:10 . 2013-07-25 03:28 2147840 ----a-w- c:\windows\system32\iertutil.dll
2013-09-06 07:10 . 2013-07-25 02:25 104448 ----a-w- c:\program files (x86)\Internet Explorer\jsdebuggeride.dll
2013-09-06 07:10 . 2013-07-25 02:25 387584 ----a-w- c:\program files (x86)\Internet Explorer\jsdbgui.dll
2013-09-06 07:10 . 2013-07-25 03:30 499200 ----a-w- c:\program files\Internet Explorer\jsdbgui.dll
2013-09-06 07:10 . 2013-07-25 02:25 678912 ----a-w- c:\program files (x86)\Internet Explorer\iedvtool.dll
2013-09-06 07:10 . 2013-07-25 03:30 887808 ----a-w- c:\program files\Internet Explorer\iedvtool.dll
2013-09-06 07:10 . 2013-07-25 03:54 17830400 ----a-w- c:\windows\system32\mshtml.dll
2013-09-06 07:10 . 2013-07-25 03:35 10926080 ----a-w- c:\windows\system32\ieframe.dll
2013-09-06 07:09 . 2012-10-03 17:44 303104 ----a-w- c:\windows\system32\nlasvc.dll
2013-09-06 07:09 . 2012-10-03 17:44 246272 ----a-w- c:\windows\system32\netcorehc.dll
2013-09-06 07:09 . 2012-10-03 17:44 216576 ----a-w- c:\windows\system32\ncsi.dll
2013-09-06 07:09 . 2012-10-03 17:42 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2013-09-06 07:09 . 2012-10-03 16:42 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2013-09-06 07:09 . 2012-10-03 17:44 70656 ----a-w- c:\windows\system32\nlaapi.dll
2013-09-06 07:09 . 2012-10-03 17:44 18944 ----a-w- c:\windows\system32\netevent.dll
2013-09-06 07:09 . 2012-10-03 16:42 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2013-09-06 07:09 . 2012-10-03 16:42 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2013-09-06 07:09 . 2012-10-03 16:07 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2013-09-06 07:09 . 2012-01-13 07:12 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2013-09-06 07:06 . 2013-07-25 09:25 1888768 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-09-06 07:06 . 2013-07-25 08:57 1620992 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2013-09-06 07:06 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll
2013-09-06 07:06 . 2013-02-27 05:48 1930752 ----a-w- c:\windows\system32\authui.dll
2013-09-06 07:06 . 2013-02-27 05:52 197120 ----a-w- c:\windows\system32\shdocvw.dll
2013-09-06 07:06 . 2013-02-27 06:02 111448 ----a-w- c:\windows\system32\consent.exe
2013-09-06 07:06 . 2013-02-27 04:49 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2013-09-06 07:06 . 2013-02-27 05:47 70144 ----a-w- c:\windows\system32\appinfo.dll
2013-09-06 07:04 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-09-06 07:04 . 2013-05-13 03:08 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2013-09-06 07:04 . 2013-05-13 05:50 52224 ----a-w- c:\windows\system32\certenc.dll
2013-09-06 07:04 . 2013-05-13 03:08 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2013-09-06 07:04 . 2013-04-10 05:48 1732608 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2013-09-06 07:04 . 2013-04-10 05:46 1393152 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2013-09-06 07:04 . 2013-04-10 05:46 1367040 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-09-06 07:04 . 2013-04-10 05:46 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2013-09-06 07:04 . 2013-04-10 05:03 936448 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-09-06 07:03 . 2013-05-10 05:49 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-09-06 07:03 . 2013-05-10 03:20 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-09-06 07:03 . 2013-04-10 05:45 1545728 ----a-w- c:\windows\system32\DWrite.dll
2013-09-06 07:03 . 2013-04-10 05:02 1077760 ----a-w- c:\windows\SysWow64\DWrite.dll
2013-09-06 07:00 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-09-05 21:48 . 2013-09-05 21:50 -------- d-----w- c:\windows\system32\MRT
2013-09-05 21:44 . 2013-09-05 21:44 -------- d-----w- c:\windows\system32\SPReview
2013-09-05 21:43 . 2013-09-05 21:43 -------- d-----w- c:\windows\system32\EventProviders
2013-09-05 21:34 . 2010-11-20 13:26 777728 ----a-w- c:\windows\system32\gpsvc.dll
2013-09-05 21:33 . 2010-11-20 13:32 2217856 ----a-w- c:\windows\system32\bootres.dll
2013-09-05 21:32 . 2010-11-20 13:27 23040 ----a-w- c:\windows\system32\rdprefdrvapi.dll
2013-09-05 21:30 . 2010-11-20 13:27 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll
2013-09-05 21:30 . 2010-11-20 13:27 529408 ----a-w- c:\windows\system32\wbemcomn.dll
2013-09-05 21:30 . 2010-11-20 13:27 1225216 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2013-09-05 21:30 . 2010-11-20 13:27 244736 ----a-w- c:\program files\Windows Portable Devices\sqmapi.dll
2013-09-05 21:30 . 2010-11-20 13:27 244736 ----a-w- c:\windows\system32\sqmapi.dll
2013-09-05 21:30 . 2010-11-20 13:27 933376 ----a-w- c:\windows\system32\SmiEngine.dll
2013-09-05 21:30 . 2010-11-20 13:25 199168 ----a-w- c:\windows\system32\PkgMgr.exe
2013-09-05 21:30 . 2010-11-20 13:26 422912 ----a-w- c:\windows\system32\drvstore.dll
2013-09-05 21:30 . 2010-11-20 13:26 399872 ----a-w- c:\windows\system32\dpx.dll
2013-09-05 21:09 . 2013-03-19 05:46 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-09-05 21:09 . 2013-03-19 04:47 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-09-05 21:09 . 2013-03-19 03:06 112640 ----a-w- c:\windows\system32\smss.exe
2013-09-05 21:08 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-09-05 21:08 . 2013-01-24 06:01 223752 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-09-05 19:48 . 2013-09-05 19:59 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2013-09-05 18:18 . 2013-09-05 18:18 -------- d-----w- c:\users\Ondra\AppData\Roaming\Malwarebytes
2013-09-05 18:18 . 2013-09-05 18:18 -------- d-----w- c:\programdata\Malwarebytes
2013-09-05 17:25 . 2013-09-05 17:25 -------- d-----w- c:\program files\CCleaner
2013-09-05 17:22 . 2013-05-23 08:00 3948544 ----a-w- c:\windows\system32\drivers\athrx.sys
2013-08-14 08:32 . 2013-09-05 16:11 -------- d-----w- c:\users\Ondra\AppData\Roaming\Atheros
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-06 05:02 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2013-09-06 05:02 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2013-08-04 17:19 . 2013-08-04 17:20 468720 ----a-w- c:\windows\system32\drivers\SynTP.sys
2013-08-04 17:19 . 2013-08-04 17:20 229616 ----a-w- c:\windows\system32\SynTPAPI.dll
2013-08-04 17:19 . 2013-08-04 17:20 180464 ----a-w- c:\windows\system32\SynTPCo16.dll
2013-08-04 17:19 . 2013-08-04 17:20 114416 ----a-w- c:\windows\SysWow64\SynTPCOM.dll
2013-08-04 17:19 . 2013-08-04 17:20 532208 ----a-w- c:\windows\SysWow64\SynCOM.dll
2013-08-04 17:19 . 2013-08-04 17:20 1048576 ----a-w- c:\windows\system32\syndata.bin
2013-08-04 17:19 . 2013-08-04 17:20 1035504 ----a-w- c:\windows\system32\SynCOM.dll
2013-08-04 09:54 . 2013-08-04 09:54 74344 ----a-w- c:\windows\system32\RtNicProp64.dll
2013-08-04 09:54 . 2013-08-04 09:54 708200 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2013-08-04 09:54 . 2011-05-10 20:35 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2013-08-04 09:49 . 2013-08-04 09:49 543744 ----a-w- c:\windows\system32\drivers\stwrt64.sys
2013-08-04 09:49 . 2011-11-07 23:27 1664000 ----a-w- c:\windows\sttray64.exe
2013-08-04 09:48 . 2013-08-04 09:49 499200 ----a-w- c:\windows\system32\stcplx64.dll
2013-08-04 09:48 . 2013-08-04 09:49 2188800 ----a-w- c:\windows\system32\stapo64.dll
2013-08-04 09:48 . 2011-11-07 23:27 6102016 ----a-w- c:\windows\system32\stlang64.dll
2013-08-04 09:48 . 2013-08-04 09:49 672256 ------w- c:\windows\system32\stapi64.dll
2013-08-04 09:48 . 2013-08-04 09:49 255488 ----a-w- c:\windows\system32\st646428.dll
2013-08-04 09:48 . 2011-11-07 23:27 8013312 ----a-w- c:\windows\system32\IDTNHP.dll
2013-08-04 09:48 . 2011-11-07 23:27 8003072 ----a-w- c:\windows\system32\IDTNGUI.exe
2013-08-04 09:48 . 2011-11-07 23:27 253952 ----a-w- c:\windows\system32\IDTNJ.exe
2013-08-04 09:48 . 2011-11-07 23:27 2214912 ----a-w- c:\windows\system32\IDTNX.dll
2013-08-04 09:48 . 2011-11-07 23:27 1821184 ----a-w- c:\windows\system32\IDTNC64.cpl
2013-08-04 09:48 . 2011-11-07 23:27 74336 ----a-w- c:\windows\system32\AESTAR64.dll
2013-08-04 09:48 . 2011-11-07 23:27 442368 ----a-w- c:\windows\system32\AESTEC64.dll
2013-08-04 09:48 . 2011-11-07 23:27 224256 ----a-w- c:\windows\system32\HPToneCtrls64.dll
2013-08-04 09:48 . 2011-11-07 23:27 200288 ----a-w- c:\windows\system32\AESTAC64.dll
2013-08-04 09:48 . 2011-11-07 23:27 90624 ----a-w- c:\windows\system32\AESTCo64.dll
2013-07-09 04:45 . 2013-09-06 08:30 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-07-08 20:59 . 2013-06-18 14:16 708632 ----a-w- c:\windows\system32\drivers\cmdguard.sys
2013-07-01 13:39 . 2013-06-02 06:39 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-07-01 13:39 . 2011-11-18 14:48 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-07-01 13:39 . 2011-11-18 14:48 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-06-18 14:16 . 2013-06-18 14:16 96800 ----a-w- c:\windows\system32\drivers\inspect.sys
2013-06-18 14:16 . 2013-06-18 14:16 48360 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2013-06-18 14:16 . 2013-06-18 14:16 23168 ----a-w- c:\windows\system32\drivers\cmderd.sys
2013-06-18 14:15 . 2013-06-18 14:15 43216 ----a-w- c:\windows\system32\cmdcsr.dll
2013-06-18 14:15 . 2013-06-18 14:15 437688 ----a-w- c:\windows\system32\guard64.dll
2013-06-18 14:15 . 2013-06-18 14:15 348584 ----a-w- c:\windows\SysWow64\guard32.dll
2013-06-18 14:15 . 2013-06-18 14:15 45784 ----a-w- c:\windows\system32\cmdkbd64.dll
2013-06-18 14:15 . 2013-06-18 14:15 344792 ----a-w- c:\windows\system32\cmdvrt64.dll
2013-06-18 14:15 . 2013-06-18 14:15 40664 ----a-w- c:\windows\SysWow64\cmdkbd32.dll
2013-06-18 14:15 . 2013-06-18 14:15 278232 ----a-w- c:\windows\SysWow64\cmdvrt32.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"="c:\program files (x86)\PDF Complete\pdfsty.exe" [2011-02-01 656920]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2011-01-28 299576]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-01-26 283160]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"HP HD Webcam [Fixed]_Monitor"="c:\program files (x86)\HP HD Webcam [Fixed]\monitor.exe" [2010-11-26 11:31 267128]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-03-28 336384]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 XobniService;XobniService;c:\program files (x86)\Xobni\XobniService.exe;c:\program files (x86)\Xobni\XobniService.exe [x]
R3 ALSysIO;ALSysIO;c:\users\Ondra\AppData\Local\Temp\ALSysIO64.sys;c:\users\Ondra\AppData\Local\Temp\ALSysIO64.sys [x]
R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [x]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbnet.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbfake.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys;c:\windows\SYSNATIVE\DRIVERS\cmderd.sys [x]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys;c:\windows\SYSNATIVE\DRIVERS\cmdguard.sys [x]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys;c:\windows\SYSNATIVE\DRIVERS\cmdhlp.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 DraftSight API Service;DraftSight API Service;c:\program files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe;c:\program files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [x]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [x]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 mitsijm2012;Správce úloh aplikace Autodesk Moldflow Inventor Tool Suite Integration 2012;c:\program files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe;c:\program files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [x]
S2 uArcCapture;ArcCapture;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
S2 VMCService;Vodafone Mobile Connect Service;c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe;c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [x]
S2 ZAtheros Bt&Wlan Coex Agent;ZAtheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys;c:\windows\SYSNATIVE\DRIVERS\ArcSoftVCapture.sys [x]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 SPUVCbv;SPUVCb Driver Service;c:\windows\system32\Drivers\SPUVCbv_x64.sys;c:\windows\SYSNATIVE\Drivers\SPUVCbv_x64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-05 15:39 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-09-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-10 13:19]
.
2013-09-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-10 13:19]
.
2013-09-07 c:\windows\Tasks\HPCeeScheduleForONDRA-HP$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
2013-09-05 c:\windows\Tasks\HPCeeScheduleForOndra.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" [2011-01-27 13880]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-27 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-27 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-27 418328]
"BtTray"="c:\program files (x86)\Bluetooth Suite\BtTray.exe" [2012-08-19 764032]
"BtvStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2012-08-19 127616]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-08-04 1664000]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cistray.exe" [2013-07-08 1502424]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.bing.com?pc=CMNTDF
mStart Page = hxxp://www.bing.com?pc=CMNTDF
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.93.0.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-09-07 23:53:03
ComboFix-quarantined-files.txt 2013-09-07 21:53
.
Před spuštěním: Volných bajtů: 507 410 800 640
Po spuštění: Volných bajtů: 507 311 374 336
.
- - End Of File - - 7A3DFE1CA2A9B5EF30F7E3240562E22C
Re: Conduit, PriceGong - 4xlog
Najdete tento soubor c:\windows\SysWow64\Version.dll a otestujte ho na virustotal a jotti http://forum.viry.cz/viewtopic.php?f=29&t=5846 Vysledky sem zkopirujte, nebo dejte odkaz.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
vitkova_vitek
- Návštěvník
- Příspěvky: 45
- Registrován: 30 srp 2013 08:49
Přispějete na provoz fóra?