Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Vir v PC se vrátil

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Pheliox
Návštěvník
Návštěvník
Příspěvky: 85
Registrován: 06 srp 2012 11:28

Vir v PC se vrátil

#1 Příspěvek od Pheliox »

Dobrý den, nedávno jsem vás dvakrát prosil o radu s tím samým problémem, ale nikdy jsme se nedobrali k řešení. Poprvé mi nikdo neodpověděl, podruhé mi byl poskytnutý příkaz do řádky, který opravoval knihovny, ale problém nevyřešil, poté už se mnou nikdo nekomunikoval. Jde o to, že na mě po reinstalaci operačního systému windows 7, tento při stahování občas vychrlil nějaké textové dokumenty v notepadu, stažený program nešel otevřít, a nešel otevřít nástroj možnosti internetu.

Po tom, co jsem se zde dvakrát nedobral k řešení jsem reinstaloval windows po druhé, chyba se nevyskytovala, a považoval jsem problém za vyřešený. Bohužel před 5ti minutami se opět vynořily stalé známe notepad dokumenty, a poté, co jsem neúspěšně zkusil otevřít panel možnosti internetu, je mi jasné, že starý známý je opět zpět. Musí to být nějaká havěť, nebo aktualizace, protože cca 3 týdny vše fungovalo OK.

Prosím Vás tak potřetí o kontrolu logu z RSIT. Jestli nebudete vědět, co je špatně, nebo se tím nebudete chtít zabývat, napište mi, prosím, že téma zavíráte, abych tu nečekal na odpověď, která nikdy nepřijde jako posledně.
Moc děkuji.


Logfile of random's system information tool 1.09 (written by random/random)
Run by Viktor at 2014-05-16 00:44:38
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 356 GB (78%) free of 456 GB
Total RAM: 3894 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:44:48, on 16.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\BitComet\BitComet.exe
C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
C:\Program Files (x86)\Opera\21.0.1432.67\opera_crashreporter.exe
C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
C:\Program Files\trend micro\Viktor.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-137 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files (x86)\BitComet\tools\BitCometService.exe
O23 - Service: Bluetooth Device Manager - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
O23 - Service: Bluetooth Media Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\audiosrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\obexsrv.exe
O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11142 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files\DigitalPersona\Bin\DpHostW.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\SysWOW64\ezSharedSvcHost.exe
"C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2836
"C:\Program Files\Motorola\Bluetooth\obexsrv.exe"
"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\DigitalPersona\Bin\DPAgent.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Motorola\Bluetooth\audiosrv.exe"
taskeng.exe {82B7AB49-D37E-454C-906C-EB35A50715DD}
"C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe" -Embedding
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Wireless Assistant</Title><Text>Combo: On</Text><IconPath>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WA_tray_32_on.ico</IconPath><ID>811327497</ID><Path>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe</Path><Parameters></Parameters></Toast></hpNotification>"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\CPUID\HWMonitor\HWMonitor.exe"
"C:\Program Files (x86)\Steam\steam.exe" "steam://rungameid/570"
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /prefetch:1
"C:\Windows\system32\cmd.exe"
\??\C:\Windows\system32\conhost.exe "6764024001830518190-10275030702295203081453627549-2087468065-1933426483-1200868213
"C:\Program Files (x86)\BitComet\BitComet.exe" /url "magnet:?xt=urn:btih:d1eb2b5cf80e286a7f848ab0c31638856db102d4&dn=Beethoven+-+The+Very+Best+Of+Beethoven+%282005%29+%5BFLAC%5D+dussin&tr=udp%3A%2F%2Ftracker.openbittorrent.com%3A80&tr=udp%3A%2F%2Ftracker.publicbt.com%3A80&tr=udp%3A%2F%2Ftracker.istole.it%3A6969&tr=udp%3A%2F%2Ftracker-ccc.de%3A6969&tr=udp%3A%2F%2Fopen.demonii.com%3A1337"
"C:\Program Files (x86)\BitComet\tools\BitCometService.exe" -service
"C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe" --ran-launcher /crash-reporter-parent-id=4300
"C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe" --type=gpu-process --channel="4300.0.1246677503\1235001728" --crash-reporter-pid=6772 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,29 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x68c1 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.961.0.0 --crash-reporter-pid=6772 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --crash-reporter-pid=6772 --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --disable-accelerated-video-decode --enable-software-compositing --channel="4300.2.1725735871\1231637313" /prefetch:673131151
"C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --crash-reporter-pid=6772 --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --disable-accelerated-video-decode --enable-software-compositing --channel="4300.3.1127628417\705843711" /prefetch:673131151
"C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --crash-reporter-pid=6772 --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --disable-accelerated-video-decode --enable-software-compositing --channel="4300.11.450790507\1018069753" /prefetch:673131151
"C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --crash-reporter-pid=6772 --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --disable-accelerated-video-decode --enable-software-compositing --channel="4300.12.568246769\1530703691" /prefetch:673131151
"C:\Users\Viktor\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-02 581824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-17 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-02 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-08-17 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-28 2096424]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-06-18 487424]
"BTMTrayAgent"=C:\Program Files\Motorola\Bluetooth\btmshell.dll [2010-06-10 24783624]
"SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2010-01-20 611896]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-06-18 8192]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-07-27 161304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-07-27 386584]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-07-27 415256]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-06-16 2736128]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-06-29 602168]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-02 3873704]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-04-06 641664]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-07-27 271360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DpHost]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-05-16 00:44:39 ----D---- C:\Program Files\trend micro
2014-05-16 00:44:38 ----D---- C:\rsit
2014-05-11 21:44:40 ----D---- C:\Users\Viktor\AppData\Roaming\Fatshark
2014-05-11 15:56:50 ----SD---- C:\Windows\system32\CompatTel
2014-05-11 15:52:53 ----A---- C:\Windows\system32\wmploc.DLL
2014-05-11 15:52:52 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-05-11 15:52:52 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-05-11 15:52:50 ----A---- C:\Windows\system32\wmp.dll
2014-05-11 15:47:47 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-05-11 15:44:58 ----D---- C:\Windows\Migration
2014-05-11 14:41:33 ----A---- C:\Windows\system32\consent.exe
2014-05-11 14:41:33 ----A---- C:\Windows\system32\appinfo.dll
2014-05-11 14:41:29 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-05-11 14:41:29 ----A---- C:\Windows\system32\crypt32.dll
2014-05-11 14:41:28 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-05-11 14:41:28 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-05-11 14:41:28 ----A---- C:\Windows\system32\cryptsvc.dll
2014-05-11 14:41:28 ----A---- C:\Windows\system32\cryptnet.dll
2014-05-11 14:41:24 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-05-11 14:41:24 ----A---- C:\Windows\system32\tzres.dll
2014-05-11 14:41:15 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-05-11 14:41:15 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-05-11 14:41:15 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-05-11 14:41:15 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-11 14:41:15 ----A---- C:\Windows\system32\credui.dll
2014-05-11 14:41:15 ----A---- C:\Windows\system32\authui.dll
2014-05-11 14:41:07 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2014-05-11 14:41:07 ----A---- C:\Windows\system32\cryptdlg.dll
2014-05-11 14:40:57 ----A---- C:\Windows\system32\shell32.dll
2014-05-11 14:40:56 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-11 14:40:53 ----A---- C:\Windows\system32\shdocvw.dll
2014-05-11 14:40:51 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-05-11 14:40:50 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-05-11 14:40:50 ----A---- C:\Windows\system32\imagehlp.dll
2014-05-11 14:40:49 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-05-11 14:40:49 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-05-11 14:40:49 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-05-11 14:40:49 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-05-11 14:40:49 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-05-11 14:40:49 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-05-11 14:40:49 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-05-11 14:40:35 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-05-11 14:40:35 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-05-11 14:40:35 ----A---- C:\Windows\system32\RMActivate.exe
2014-05-11 14:40:34 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-05-11 14:40:34 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-05-11 14:40:34 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-05-11 14:40:34 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-11 14:40:34 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-05-11 14:40:33 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-05-11 14:40:33 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-05-11 14:40:33 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-05-11 14:40:33 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-05-11 14:40:33 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-05-11 14:40:33 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-05-11 14:40:33 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-05-11 14:40:33 ----A---- C:\Windows\system32\secproc_isv.dll
2014-05-11 14:40:33 ----A---- C:\Windows\system32\secproc.dll
2014-05-11 14:40:33 ----A---- C:\Windows\system32\msdrm.dll
2014-05-11 14:40:31 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-05-11 14:40:31 ----A---- C:\Windows\system32\mswsock.dll
2014-05-11 14:40:30 ----A---- C:\Windows\system32\aepdu.dll
2014-05-11 14:40:30 ----A---- C:\Windows\system32\aeinv.dll
2014-05-11 14:40:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-11 14:40:21 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-11 14:40:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-11 14:40:21 ----A---- C:\Windows\system32\ntdll.dll
2014-05-11 14:40:21 ----A---- C:\Windows\system32\advapi32.dll
2014-05-11 14:40:20 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-05-11 14:40:20 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-05-11 14:40:20 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-05-11 14:40:20 ----A---- C:\Windows\system32\tdh.dll
2014-05-11 14:40:17 ----A---- C:\Windows\system32\mshtml.dll
2014-05-11 14:40:15 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-11 14:40:14 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-05-11 14:40:08 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-05-11 14:40:06 ----A---- C:\Windows\system32\taskhost.exe
2014-05-11 14:40:05 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-05-11 14:40:05 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-05-11 14:40:05 ----A---- C:\Windows\system32\WebClnt.dll
2014-05-11 14:40:05 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-05-11 14:40:05 ----A---- C:\Windows\system32\davclnt.dll
2014-05-11 14:40:04 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-05-11 14:40:04 ----A---- C:\Windows\system32\msieftp.dll
2014-05-11 14:40:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-11 14:40:03 ----A---- C:\Windows\system32\vbscript.dll
2014-05-11 14:40:03 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-05-11 14:40:03 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2014-05-11 14:40:03 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-05-11 14:39:55 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-05-11 14:39:55 ----A---- C:\Windows\system32\wintrust.dll
2014-05-11 14:39:30 ----A---- C:\Windows\system32\msxml3.dll
2014-05-11 14:39:29 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-05-11 14:39:29 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-05-11 14:39:29 ----A---- C:\Windows\system32\msxml3r.dll
2014-05-11 14:39:26 ----A---- C:\Windows\system32\OxpsConverter.exe
2014-05-11 14:39:24 ----A---- C:\Windows\system32\wwansvc.dll
2014-05-11 14:39:24 ----A---- C:\Windows\system32\wwanprotdim.dll
2014-05-11 14:39:24 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2014-05-11 14:39:24 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-05-11 14:39:21 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-05-11 14:39:20 ----A---- C:\Windows\system32\comctl32.dll
2014-05-11 14:39:19 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-05-11 14:39:19 ----A---- C:\Windows\system32\drivers\afd.sys
2014-05-11 14:39:06 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-05-11 14:39:06 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-05-11 14:39:06 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-05-11 14:39:06 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-05-11 14:39:06 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-05-11 14:39:06 ----A---- C:\Windows\system32\lpk.dll
2014-05-11 14:39:06 ----A---- C:\Windows\system32\fontsub.dll
2014-05-11 14:39:06 ----A---- C:\Windows\system32\dciman32.dll
2014-05-11 14:39:06 ----A---- C:\Windows\system32\atmlib.dll
2014-05-11 14:39:06 ----A---- C:\Windows\system32\atmfd.dll
2014-05-11 14:38:57 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-05-11 14:38:57 ----A---- C:\Windows\system32\gdi32.dll
2014-05-11 14:38:57 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-05-11 14:38:56 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-05-11 14:38:56 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-05-11 14:38:53 ----A---- C:\Windows\system32\smss.exe
2014-05-11 14:38:53 ----A---- C:\Windows\system32\csrsrv.dll
2014-05-11 14:38:51 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-05-11 14:38:51 ----A---- C:\Windows\system32\apisetschema.dll
2014-05-11 14:37:34 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-11 14:37:34 ----A---- C:\Windows\system32\schannel.dll
2014-05-11 14:37:34 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-11 14:37:34 ----A---- C:\Windows\system32\drivers\cng.sys
2014-05-11 14:37:33 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-11 14:37:33 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-11 14:37:33 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-05-11 14:37:33 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-11 14:37:33 ----A---- C:\Windows\system32\sspicli.dll
2014-05-11 14:37:33 ----A---- C:\Windows\system32\secur32.dll
2014-05-11 14:37:33 ----A---- C:\Windows\system32\ncrypt.dll
2014-05-11 14:37:33 ----A---- C:\Windows\system32\lsass.exe
2014-05-11 14:37:33 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-11 14:37:33 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-11 14:37:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-11 14:37:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-11 14:37:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-11 14:37:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-11 14:37:29 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-11 14:37:29 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-11 14:37:29 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-11 14:37:29 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-11 14:37:29 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-11 14:37:29 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-05-11 14:37:29 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-05-11 14:37:29 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-05-11 14:37:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-11 14:37:29 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-05-11 14:37:29 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-05-11 14:37:29 ----A---- C:\Windows\system32\wow64win.dll
2014-05-11 14:37:29 ----A---- C:\Windows\system32\wow64cpu.dll
2014-05-11 14:37:29 ----A---- C:\Windows\system32\wow64.dll
2014-05-11 14:37:29 ----A---- C:\Windows\system32\winsrv.dll
2014-05-11 14:37:29 ----A---- C:\Windows\system32\ntvdm64.dll
2014-05-11 14:37:29 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-11 14:37:29 ----A---- C:\Windows\system32\kernel32.dll
2014-05-11 14:37:29 ----A---- C:\Windows\system32\conhost.exe
2014-05-11 14:37:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-11 14:37:28 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-11 14:37:27 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-11 14:37:27 ----A---- C:\Windows\SYSWOW64\user.exe
2014-05-11 14:37:22 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-05-11 14:37:06 ----A---- C:\Windows\system32\win32k.sys
2014-05-11 14:37:06 ----A---- C:\Windows\system32\drivers\netio.sys
2014-05-11 14:37:05 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-05-11 14:37:05 ----A---- C:\Windows\system32\rpcrt4.dll
2014-05-11 14:37:04 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2014-05-11 14:37:04 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2014-05-11 14:37:04 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2014-05-11 14:37:04 ----A---- C:\Windows\system32\dhcpcore6.dll
2014-05-11 14:36:31 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2014-05-11 14:36:31 ----A---- C:\Windows\system32\netcorehc.dll
2014-05-11 14:36:31 ----A---- C:\Windows\system32\ncsi.dll
2014-05-11 14:36:31 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-05-11 14:36:30 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2014-05-11 14:36:30 ----A---- C:\Windows\SYSWOW64\netevent.dll
2014-05-11 14:36:30 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2014-05-11 14:36:30 ----A---- C:\Windows\system32\nlasvc.dll
2014-05-11 14:36:30 ----A---- C:\Windows\system32\nlaapi.dll
2014-05-11 14:36:30 ----A---- C:\Windows\system32\netevent.dll
2014-05-11 14:36:30 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2014-05-11 14:35:38 ----A---- C:\Windows\system32\drivers\storport.sys
2014-05-11 14:35:38 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-05-11 14:35:38 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-05-11 14:35:37 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-05-11 14:35:37 ----A---- C:\Windows\system32\iologmsg.dll
2014-05-11 14:35:31 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2014-05-11 14:35:31 ----A---- C:\Windows\system32\win32spl.dll
2014-05-11 14:35:30 ----A---- C:\Windows\system32\wer.dll
2014-05-11 14:35:29 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-05-11 14:35:29 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-05-11 14:35:29 ----A---- C:\Windows\system32\qedit.dll
2014-05-11 14:35:29 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-05-11 14:35:29 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-05-11 14:35:28 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-11 14:35:28 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-11 14:34:01 ----A---- C:\Windows\SYSWOW64\certutil.exe
2014-05-11 14:34:01 ----A---- C:\Windows\system32\certutil.exe
2014-05-11 14:34:00 ----A---- C:\Windows\SYSWOW64\certenc.dll
2014-05-11 14:34:00 ----A---- C:\Windows\system32\certenc.dll
2014-05-11 14:30:31 ----A---- C:\Windows\system32\DWrite.dll
2014-05-11 14:30:31 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-05-11 14:30:30 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-05-11 14:30:30 ----A---- C:\Windows\system32\FntCache.dll
2014-05-11 14:30:27 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-05-11 14:30:27 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-05-11 14:30:27 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-05-11 14:30:27 ----A---- C:\Windows\system32\wscript.exe
2014-05-11 14:30:27 ----A---- C:\Windows\system32\scrrun.dll
2014-05-11 14:30:27 ----A---- C:\Windows\system32\cscript.exe
2014-05-11 14:27:33 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-05-11 14:27:33 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-05-11 14:27:32 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-05-11 14:27:32 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-05-11 14:27:32 ----A---- C:\Windows\system32\nshwfp.dll
2014-05-11 14:26:41 ----A---- C:\Windows\system32\scavengeui.dll
2014-05-11 14:26:40 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-05-11 14:26:40 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-05-11 14:26:39 ----A---- C:\Windows\system32\cdd.dll
2014-05-11 03:37:01 ----A---- C:\Automatické Vypnutí PC.exe
2014-05-08 14:49:41 ----D---- C:\ProgramData\ATI
2014-05-08 14:46:23 ----D---- C:\ProgramData\AMD
2014-05-08 14:46:21 ----D---- C:\Program Files (x86)\AMD AVT
2014-05-08 14:46:19 ----D---- C:\Program Files (x86)\AMD APP
2014-05-08 14:46:16 ----D---- C:\Program Files\Common Files\ATI Technologies
2014-05-08 14:12:50 ----D---- C:\Users\Viktor\AppData\Roaming\Windows Live Writer
2014-05-05 00:54:19 ----D---- C:\Windows\cs
2014-05-05 00:52:03 ----D---- C:\Program Files\Windows Live
2014-05-05 00:40:52 ----D---- C:\Windows\system32\SPReview
2014-05-05 00:38:23 ----D---- C:\Windows\system32\EventProviders
2014-05-05 00:35:39 ----D---- C:\ProgramData\Freemake
2014-05-05 00:35:17 ----D---- C:\Program Files (x86)\Freemake
2014-05-05 00:34:27 ----D---- C:\Windows\system32\MRT
2014-05-05 00:34:23 ----A---- C:\Windows\system32\MRT.exe
2014-05-05 00:30:37 ----A---- C:\Windows\system32\netfxperf.dll
2014-05-05 00:30:37 ----A---- C:\Windows\system32\dfshim.dll
2014-05-05 00:30:30 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-05-05 00:30:25 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-05 00:30:25 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-05-05 00:30:24 ----A---- C:\Windows\system32\d3d10warp.dll
2014-05-05 00:30:23 ----A---- C:\Windows\system32\ieframe.dll
2014-05-05 00:30:18 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2014-05-05 00:30:18 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-05-05 00:30:17 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2014-05-05 00:30:17 ----A---- C:\Windows\system32\sysmain.dll
2014-05-05 00:30:14 ----A---- C:\Windows\system32\MSVidCtl.dll
2014-05-05 00:30:11 ----A---- C:\Windows\system32\mscoree.dll
2014-05-05 00:30:11 ----A---- C:\Windows\system32\d2d1.dll
2014-05-05 00:30:10 ----A---- C:\Windows\system32\mmcndmgr.dll
2014-05-05 00:30:09 ----A---- C:\Windows\system32\mf.dll
2014-05-05 00:30:08 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-05-05 00:30:07 ----A---- C:\Windows\system32\xpsservices.dll
2014-05-05 00:30:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-05 00:30:02 ----A---- C:\Windows\system32\schedsvc.dll
2014-05-05 00:30:01 ----A---- C:\Windows\system32\ole32.dll
2014-05-05 00:30:00 ----A---- C:\Windows\system32\iertutil.dll
2014-05-05 00:29:59 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2014-05-05 00:29:59 ----A---- C:\Windows\system32\wininet.dll
2014-05-05 00:29:59 ----A---- C:\Windows\system32\urlmon.dll
2014-05-05 00:29:59 ----A---- C:\Windows\system32\spwizui.dll
2014-05-05 00:29:58 ----A---- C:\Windows\system32\wevtsvc.dll
2014-05-05 00:29:58 ----A---- C:\Windows\system32\taskschd.dll
2014-05-05 00:29:58 ----A---- C:\Windows\system32\RacEngn.dll
2014-05-05 00:29:58 ----A---- C:\Windows\system32\diagperf.dll
2014-05-05 00:29:57 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-05-05 00:29:57 ----A---- C:\Windows\system32\vssapi.dll
2014-05-05 00:29:57 ----A---- C:\Windows\system32\ExplorerFrame.dll
2014-05-05 00:29:56 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2014-05-05 00:29:56 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2014-05-05 00:29:55 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-05 00:29:55 ----A---- C:\Windows\system32\UIRibbon.dll
2014-05-05 00:29:55 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2014-05-05 00:29:54 ----A---- C:\Windows\explorer.exe
2014-05-05 00:29:52 ----A---- C:\Windows\system32\WsmSvc.dll
2014-05-05 00:29:51 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2014-05-05 00:29:51 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2014-05-05 00:29:51 ----A---- C:\Windows\system32\WMVCORE.DLL
2014-05-05 00:29:51 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2014-05-05 00:29:51 ----A---- C:\Windows\system32\PresentationHost.exe
2014-05-05 00:29:50 ----A---- C:\Windows\system32\rdpdd.dll
2014-05-05 00:29:50 ----A---- C:\Windows\system32\MPSSVC.dll
2014-05-05 00:29:49 ----A---- C:\Windows\system32\WinSAT.exe
2014-05-05 00:29:49 ----A---- C:\Windows\system32\spreview.exe
2014-05-05 00:29:49 ----A---- C:\Windows\system32\spinstall.exe
2014-05-05 00:29:49 ----A---- C:\Windows\system32\CertEnroll.dll
2014-05-05 00:29:47 ----A---- C:\Windows\system32\d3d9.dll
2014-05-05 00:29:46 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2014-05-05 00:29:46 ----A---- C:\Windows\system32\SearchFolder.dll
2014-05-05 00:29:45 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2014-05-05 00:29:45 ----A---- C:\Windows\system32\VSSVC.exe
2014-05-05 00:29:45 ----A---- C:\Windows\system32\gpsvc.dll
2014-05-05 00:29:45 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2014-05-05 00:29:44 ----A---- C:\Windows\system32\dwmcore.dll
2014-05-05 00:29:44 ----A---- C:\Windows\system32\dbgeng.dll
2014-05-05 00:29:43 ----A---- C:\Windows\system32\mstime.dll
2014-05-05 00:29:43 ----A---- C:\Windows\system32\drivers\http.sys
2014-05-05 00:29:42 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-05 00:29:41 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2014-05-05 00:29:40 ----A---- C:\Windows\SYSWOW64\ole32.dll
2014-05-05 00:29:40 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-05-05 00:29:40 ----A---- C:\Windows\system32\audiosrv.dll
2014-05-05 00:29:40 ----A---- C:\Windows\system32\actxprxy.dll
2014-05-05 00:29:39 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-05 00:29:39 ----A---- C:\Windows\system32\termsrv.dll
2014-05-05 00:29:39 ----A---- C:\Windows\system32\qmgr.dll
2014-05-05 00:29:38 ----A---- C:\Windows\system32\sqmapi.dll
2014-05-05 00:29:38 ----A---- C:\Windows\system32\mstsc.exe
2014-05-05 00:29:37 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2014-05-05 00:29:37 ----A---- C:\Windows\system32\netlogon.dll
2014-05-05 00:29:37 ----A---- C:\Windows\system32\imapi2fs.dll
2014-05-05 00:29:36 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2014-05-05 00:29:36 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2014-05-05 00:29:36 ----A---- C:\Windows\system32\winhttp.dll
2014-05-05 00:29:36 ----A---- C:\Windows\system32\d3d11.dll
2014-05-05 00:29:35 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2014-05-05 00:29:35 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-05-05 00:29:35 ----A---- C:\Windows\system32\wbengine.exe
2014-05-05 00:29:35 ----A---- C:\Windows\system32\setupapi.dll
2014-05-05 00:29:35 ----A---- C:\Windows\system32\rpcss.dll
2014-05-05 00:29:35 ----A---- C:\Windows\system32\QAGENTRT.DLL
2014-05-05 00:29:35 ----A---- C:\Windows\system32\propsys.dll
2014-05-05 00:29:35 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-05 00:29:33 ----A---- C:\Windows\system32\werconcpl.dll
2014-05-05 00:29:32 ----A---- C:\Windows\system32\taskeng.exe
2014-05-05 00:29:32 ----A---- C:\Windows\system32\odbc32.dll
2014-05-05 00:29:31 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-05-05 00:29:31 ----A---- C:\Windows\system32\WSDApi.dll
2014-05-05 00:29:31 ----A---- C:\Windows\system32\user32.dll
2014-05-05 00:29:31 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-05 00:29:30 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-05-05 00:29:30 ----A---- C:\Windows\system32\dhcpcore.dll
2014-05-05 00:29:30 ----A---- C:\Windows\system32\certmgr.dll
2014-05-05 00:29:29 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-05-05 00:29:29 ----A---- C:\Windows\system32\tsmf.dll
2014-05-05 00:29:29 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2014-05-05 00:29:29 ----A---- C:\Windows\system32\drivers\netbt.sys
2014-05-05 00:29:28 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2014-05-05 00:29:27 ----A---- C:\Windows\system32\shlwapi.dll
2014-05-05 00:29:25 ----A---- C:\Windows\system32\netshell.dll
2014-05-05 00:29:25 ----A---- C:\Windows\system32\msdtctm.dll
2014-05-05 00:29:25 ----A---- C:\Windows\system32\framedynos.dll
2014-05-05 00:29:24 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2014-05-05 00:29:23 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2014-05-05 00:29:23 ----A---- C:\Windows\SYSWOW64\mstime.dll
2014-05-05 00:29:23 ----A---- C:\Windows\system32\ws2_32.dll
2014-05-05 00:29:23 ----A---- C:\Windows\system32\wmicmiplugin.dll
2014-05-05 00:29:23 ----A---- C:\Windows\system32\winlogon.exe
2014-05-05 00:29:23 ----A---- C:\Windows\system32\netcfgx.dll
2014-05-05 00:29:22 ----A---- C:\Windows\system32\lsm.exe
2014-05-05 00:29:22 ----A---- C:\Windows\system32\dxgi.dll
2014-05-05 00:29:22 ----A---- C:\Windows\system32\comdlg32.dll
2014-05-05 00:29:21 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-05-05 00:29:21 ----A---- C:\Windows\system32\wmpps.dll
2014-05-05 00:29:21 ----A---- C:\Windows\system32\apphelp.dll
2014-05-05 00:29:20 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2014-05-05 00:29:20 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2014-05-05 00:29:20 ----A---- C:\Windows\system32\wpdshext.dll
2014-05-05 00:29:20 ----A---- C:\Windows\system32\Query.dll
2014-05-05 00:29:20 ----A---- C:\Windows\system32\drvstore.dll
2014-05-05 00:29:19 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2014-05-05 00:29:19 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2014-05-05 00:29:19 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-05 00:29:19 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-05-05 00:29:19 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2014-05-05 00:29:19 ----A---- C:\Windows\system32\QAGENT.DLL
2014-05-05 00:29:19 ----A---- C:\Windows\system32\BFE.DLL
2014-05-05 00:29:19 ----A---- C:\Windows\system32\azroles.dll
2014-05-05 00:29:18 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2014-05-05 00:29:18 ----A---- C:\Windows\system32\Vault.dll
2014-05-05 00:29:18 ----A---- C:\Windows\system32\samsrv.dll
2014-05-05 00:29:18 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2014-05-05 00:29:18 ----A---- C:\Windows\system32\cmd.exe
2014-05-05 00:29:17 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2014-05-05 00:29:17 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2014-05-05 00:29:17 ----A---- C:\Windows\system32\lpksetup.exe
2014-05-05 00:29:16 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-05-05 00:29:15 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-05-05 00:29:15 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2014-05-05 00:29:15 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-05-05 00:29:15 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2014-05-05 00:29:14 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-05-05 00:29:14 ----A---- C:\Windows\SYSWOW64\Query.dll
2014-05-05 00:29:14 ----A---- C:\Windows\system32\Wldap32.dll
2014-05-05 00:29:14 ----A---- C:\Windows\system32\sxs.dll
2014-05-05 00:29:14 ----A---- C:\Windows\system32\mcbuilder.exe
2014-05-05 00:29:13 ----A---- C:\Windows\SYSWOW64\upnp.dll
2014-05-05 00:29:13 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2014-05-05 00:29:13 ----A---- C:\Windows\system32\taskcomp.dll
2014-05-05 00:29:13 ----A---- C:\Windows\system32\pnidui.dll
2014-05-05 00:29:13 ----A---- C:\Windows\system32\mfds.dll
2014-05-05 00:29:13 ----A---- C:\Windows\system32\ipsmsnap.dll
2014-05-05 00:29:12 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2014-05-05 00:29:12 ----A---- C:\Windows\system32\webservices.dll
2014-05-05 00:29:12 ----A---- C:\Windows\system32\hgprint.dll
2014-05-05 00:29:11 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2014-05-05 00:29:11 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-05 00:29:11 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2014-05-05 00:29:11 ----A---- C:\Windows\system32\winsta.dll
2014-05-05 00:29:11 ----A---- C:\Windows\system32\spoolsv.exe
2014-05-05 00:29:11 ----A---- C:\Windows\system32\SessEnv.dll
2014-05-05 00:29:10 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2014-05-05 00:29:10 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2014-05-05 00:29:10 ----A---- C:\Windows\system32\sqlsrv32.dll
2014-05-05 00:29:10 ----A---- C:\Windows\system32\iepeers.dll
2014-05-05 00:29:10 ----A---- C:\Windows\system32\fveapi.dll
2014-05-05 00:29:10 ----A---- C:\Windows\system32\dot3api.dll
2014-05-05 00:29:09 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2014-05-05 00:29:09 ----A---- C:\Windows\system32\drivers\volsnap.sys
2014-05-05 00:29:09 ----A---- C:\Windows\system32\drivers\msrpc.sys
2014-05-05 00:29:08 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2014-05-05 00:29:08 ----A---- C:\Windows\system32\prncache.dll
2014-05-05 00:29:08 ----A---- C:\Windows\system32\mcmde.dll
2014-05-05 00:29:07 ----A---- C:\Windows\SYSWOW64\userenv.dll
2014-05-05 00:29:07 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2014-05-05 00:29:07 ----A---- C:\Windows\system32\WMNetMgr.dll
2014-05-05 00:29:07 ----A---- C:\Windows\system32\wlanpref.dll
2014-05-05 00:29:07 ----A---- C:\Windows\system32\vpnike.dll
2014-05-05 00:29:07 ----A---- C:\Windows\system32\schtasks.exe
2014-05-05 00:29:06 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2014-05-05 00:29:06 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2014-05-05 00:29:06 ----A---- C:\Windows\system32\userenv.dll
2014-05-05 00:29:06 ----A---- C:\Windows\system32\drivers\rdbss.sys
2014-05-05 00:29:05 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2014-05-05 00:29:05 ----A---- C:\Windows\system32\photowiz.dll
2014-05-05 00:29:05 ----A---- C:\Windows\system32\evr.dll
2014-05-05 00:29:05 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2014-05-05 00:29:04 ----A---- C:\Windows\system32\IPSECSVC.DLL
2014-05-05 00:29:04 ----A---- C:\Windows\system32\FXSSVC.exe
2014-05-05 00:29:04 ----A---- C:\Windows\system32\framedyn.dll
2014-05-05 00:29:04 ----A---- C:\Windows\system32\AudioSes.dll
2014-05-05 00:29:03 ----A---- C:\Windows\SYSWOW64\cmd.exe
2014-05-05 00:29:03 ----A---- C:\Windows\system32\wmpmde.dll
2014-05-05 00:29:03 ----A---- C:\Windows\system32\WMPEncEn.dll
2014-05-05 00:29:03 ----A---- C:\Windows\system32\wmpeffects.dll
2014-05-05 00:29:03 ----A---- C:\Windows\system32\SyncCenter.dll
2014-05-05 00:29:03 ----A---- C:\Windows\system32\srvsvc.dll
2014-05-05 00:29:03 ----A---- C:\Windows\system32\sppobjs.dll
2014-05-05 00:29:03 ----A---- C:\Windows\system32\mfreadwrite.dll
2014-05-05 00:29:02 ----A---- C:\Windows\system32\shsvcs.dll
2014-05-05 00:29:01 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2014-05-05 00:29:01 ----A---- C:\Windows\SYSWOW64\propsys.dll
2014-05-05 00:29:01 ----A---- C:\Windows\SYSWOW64\mfds.dll
2014-05-05 00:29:01 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2014-05-05 00:29:01 ----A---- C:\Windows\system32\WinSATAPI.dll
2014-05-05 00:29:01 ----A---- C:\Windows\system32\fde.dll
2014-05-05 00:29:00 ----A---- C:\Windows\system32\stobject.dll
2014-05-05 00:29:00 ----A---- C:\Windows\system32\netdiagfx.dll
2014-05-05 00:29:00 ----A---- C:\Windows\system32\localsec.dll
2014-05-05 00:29:00 ----A---- C:\Windows\system32\imapi2.dll
2014-05-05 00:29:00 ----A---- C:\Windows\system32\bcryptprimitives.dll
2014-05-05 00:28:59 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-05-05 00:28:59 ----A---- C:\Windows\system32\tcpipcfg.dll
2014-05-05 00:28:59 ----A---- C:\Windows\system32\QSHVHOST.DLL
2014-05-05 00:28:59 ----A---- C:\Windows\system32\netid.dll
2014-05-05 00:28:59 ----A---- C:\Windows\system32\inetpp.dll
2014-05-05 00:28:59 ----A---- C:\Windows\system32\drivers\udfs.sys
2014-05-05 00:28:59 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2014-05-05 00:28:58 ----A---- C:\Windows\SYSWOW64\azroles.dll
2014-05-05 00:28:58 ----A---- C:\Windows\system32\spp.dll
2014-05-05 00:28:58 ----A---- C:\Windows\system32\biocpl.dll
2014-05-05 00:28:57 ----A---- C:\Windows\SYSWOW64\themeui.dll
2014-05-05 00:28:57 ----A---- C:\Windows\system32\scansetting.dll
2014-05-05 00:28:57 ----A---- C:\Windows\system32\printui.dll
2014-05-05 00:28:57 ----A---- C:\Windows\system32\mspbda.dll
2014-05-05 00:28:57 ----A---- C:\Windows\system32\msinfo32.exe
2014-05-05 00:28:56 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2014-05-05 00:28:56 ----A---- C:\Windows\SYSWOW64\spp.dll
2014-05-05 00:28:56 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2014-05-05 00:28:56 ----A---- C:\Windows\system32\pla.dll
2014-05-05 00:28:56 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2014-05-05 00:28:56 ----A---- C:\Windows\splwow64.exe
2014-05-05 00:28:55 ----A---- C:\Windows\system32\wusa.exe
2014-05-05 00:28:55 ----A---- C:\Windows\system32\wiaservc.dll
2014-05-05 00:28:55 ----A---- C:\Windows\system32\vds.exe
2014-05-05 00:28:55 ----A---- C:\Windows\system32\msdri.dll
2014-05-05 00:28:55 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2014-05-05 00:28:55 ----A---- C:\Windows\system32\aitagent.exe
2014-05-05 00:28:54 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2014-05-05 00:28:54 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2014-05-05 00:28:54 ----A---- C:\Windows\system32\rpchttp.dll
2014-05-05 00:28:54 ----A---- C:\Windows\system32\drivers\pci.sys
2014-05-05 00:28:53 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2014-05-05 00:28:53 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-05-05 00:28:53 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2014-05-05 00:28:53 ----A---- C:\Windows\system32\PkgMgr.exe
2014-05-05 00:28:53 ----A---- C:\Windows\system32\mscms.dll
2014-05-05 00:28:53 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2014-05-05 00:28:52 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2014-05-05 00:28:52 ----A---- C:\Windows\system32\XpsRasterService.dll
2014-05-05 00:28:52 ----A---- C:\Windows\system32\wisptis.exe
2014-05-05 00:28:52 ----A---- C:\Windows\system32\ocsetup.exe
2014-05-05 00:28:52 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2014-05-05 00:28:51 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2014-05-05 00:28:51 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-05-05 00:28:51 ----A---- C:\Windows\SYSWOW64\calc.exe
2014-05-05 00:28:51 ----A---- C:\Windows\system32\sppwinob.dll
2014-05-05 00:28:51 ----A---- C:\Windows\system32\ocsetapi.dll
2014-05-05 00:28:50 ----A---- C:\Windows\system32\wpdbusenum.dll
2014-05-05 00:28:50 ----A---- C:\Windows\system32\eapp3hst.dll
2014-05-05 00:28:50 ----A---- C:\Windows\system32\DXP.dll
2014-05-05 00:28:50 ----A---- C:\Windows\system32\drivers\volmgr.sys
2014-05-05 00:28:49 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2014-05-05 00:28:49 ----A---- C:\Windows\system32\wcncsvc.dll
2014-05-05 00:28:49 ----A---- C:\Windows\system32\upnp.dll
2014-05-05 00:28:49 ----A---- C:\Windows\system32\Robocopy.exe
2014-05-05 00:28:49 ----A---- C:\Windows\system32\mprapi.dll
2014-05-05 00:28:49 ----A---- C:\Windows\system32\eapphost.dll
2014-05-05 00:28:49 ----A---- C:\Windows\system32\drivers\msdsm.sys
2014-05-05 00:28:49 ----A---- C:\Windows\system32\ci.dll
2014-05-05 00:28:48 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2014-05-05 00:28:48 ----A---- C:\Windows\system32\t2embed.dll
2014-05-05 00:28:48 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2014-05-05 00:28:47 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2014-05-05 00:28:47 ----A---- C:\Windows\SYSWOW64\sxs.dll
2014-05-05 00:28:47 ----A---- C:\Windows\SYSWOW64\stobject.dll
2014-05-05 00:28:47 ----A---- C:\Windows\SYSWOW64\netshell.dll
2014-05-05 00:28:47 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2014-05-05 00:28:47 ----A---- C:\Windows\system32\thumbcache.dll
2014-05-05 00:28:47 ----A---- C:\Windows\system32\scecli.dll
2014-05-05 00:28:47 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2014-05-05 00:28:47 ----A---- C:\Windows\system32\hal.dll
2014-05-05 00:28:47 ----A---- C:\Windows\system32\DxpTaskSync.dll
2014-05-05 00:28:46 ----A---- C:\Windows\system32\puiobj.dll
2014-05-05 00:28:46 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2014-05-05 00:28:46 ----A---- C:\Windows\system32\msasn1.dll
2014-05-05 00:28:46 ----A---- C:\Windows\system32\dwmredir.dll
2014-05-05 00:28:46 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2014-05-05 00:28:45 ----A---- C:\Windows\SYSWOW64\prncache.dll
2014-05-05 00:28:45 ----A---- C:\Windows\SYSWOW64\printui.dll
2014-05-05 00:28:45 ----A---- C:\Windows\system32\themeui.dll
2014-05-05 00:28:45 ----A---- C:\Windows\system32\onex.dll
2014-05-05 00:28:45 ----A---- C:\Windows\system32\iasrad.dll
2014-05-05 00:28:45 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2014-05-05 00:28:45 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2014-05-05 00:28:44 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2014-05-05 00:28:44 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2014-05-05 00:28:44 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2014-05-05 00:28:44 ----A---- C:\Windows\SYSWOW64\net1.exe
2014-05-05 00:28:44 ----A---- C:\Windows\system32\iedkcs32.dll
2014-05-05 00:28:43 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2014-05-05 00:28:43 ----A---- C:\Windows\system32\wdc.dll
2014-05-05 00:28:43 ----A---- C:\Windows\system32\scesrv.dll
2014-05-05 00:28:42 ----A---- C:\Windows\system32\rasmans.dll
2014-05-05 00:28:41 ----A---- C:\Windows\system32\wlangpui.dll
2014-05-05 00:28:41 ----A---- C:\Windows\system32\sdengin2.dll
2014-05-05 00:28:41 ----A---- C:\Windows\system32\msftedit.dll
2014-05-05 00:28:40 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2014-05-05 00:28:40 ----A---- C:\Windows\system32\wiadefui.dll
2014-05-05 00:28:40 ----A---- C:\Windows\system32\VAN.dll
2014-05-05 00:28:40 ----A---- C:\Windows\system32\StructuredQuery.dll
2014-05-05 00:28:40 ----A---- C:\Windows\system32\netcenter.dll
2014-05-05 00:28:40 ----A---- C:\Windows\system32\dskquoui.dll
2014-05-05 00:28:39 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2014-05-05 00:28:39 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2014-05-05 00:28:39 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2014-05-05 00:28:39 ----A---- C:\Windows\system32\wscapi.dll
2014-05-05 00:28:39 ----A---- C:\Windows\system32\SndVol.exe
2014-05-05 00:28:39 ----A---- C:\Windows\system32\samcli.dll
2014-05-05 00:28:39 ----A---- C:\Windows\system32\regapi.dll
2014-05-05 00:28:39 ----A---- C:\Windows\system32\iasacct.dll
2014-05-05 00:28:39 ----A---- C:\Windows\system32\drivers\termdd.sys
2014-05-05 00:28:39 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2014-05-05 00:28:38 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2014-05-05 00:28:38 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2014-05-05 00:28:38 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2014-05-05 00:28:38 ----A---- C:\Windows\system32\TabSvc.dll
2014-05-05 00:28:38 ----A---- C:\Windows\system32\srchadmin.dll
2014-05-05 00:28:38 ----A---- C:\Windows\system32\QUTIL.DLL
2014-05-05 00:28:37 ----A---- C:\Windows\SYSWOW64\webservices.dll
2014-05-05 00:28:37 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2014-05-05 00:28:37 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2014-05-05 00:28:37 ----A---- C:\Windows\SYSWOW64\fde.dll
2014-05-05 00:28:37 ----A---- C:\Windows\system32\wksprt.exe
2014-05-05 00:28:37 ----A---- C:\Windows\system32\setupcl.exe
2014-05-05 00:28:37 ----A---- C:\Windows\system32\rastls.dll
2014-05-05 00:28:37 ----A---- C:\Windows\system32\drivers\msahci.sys
2014-05-05 00:28:36 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-05-05 00:28:36 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2014-05-05 00:28:35 ----A---- C:\Windows\system32\drivers\acpi.sys
2014-05-05 00:28:34 ----A---- C:\Windows\system32\tapisrv.dll
2014-05-05 00:28:34 ----A---- C:\Windows\system32\netiohlp.dll
2014-05-05 00:28:34 ----A---- C:\Windows\system32\msconfig.exe
2014-05-05 00:28:34 ----A---- C:\Windows\system32\mimefilt.dll
2014-05-05 00:28:34 ----A---- C:\Windows\system32\ListSvc.dll
2014-05-05 00:28:34 ----A---- C:\Windows\system32\drivers\raspptp.sys
2014-05-05 00:28:33 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2014-05-05 00:28:33 ----A---- C:\Windows\SYSWOW64\pla.dll
2014-05-05 00:28:33 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2014-05-05 00:28:33 ----A---- C:\Windows\system32\hgcpl.dll
2014-05-05 00:28:33 ----A---- C:\Windows\system32\basecsp.dll
2014-05-05 00:28:32 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2014-05-05 00:28:32 ----A---- C:\Windows\system32\lsmproxy.dll
2014-05-05 00:28:32 ----A---- C:\Windows\system32\fdeploy.dll
2014-05-05 00:28:32 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2014-05-05 00:28:32 ----A---- C:\Windows\system32\drivers\ks.sys
2014-05-05 00:28:32 ----A---- C:\Windows\system32\clusapi.dll
2014-05-05 00:28:31 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-05-05 00:28:31 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-05-05 00:28:31 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-05 00:28:31 ----A---- C:\Windows\system32\mtxclu.dll
2014-05-05 00:28:31 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2014-05-05 00:28:30 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2014-05-05 00:28:30 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2014-05-05 00:28:30 ----A---- C:\Windows\system32\riched20.dll
2014-05-05 00:28:29 ----A---- C:\Windows\system32\RpcRtRemote.dll
2014-05-05 00:28:29 ----A---- C:\Windows\system32\logoncli.dll
2014-05-05 00:28:29 ----A---- C:\Windows\system32\dnscmmc.dll
2014-05-05 00:28:28 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2014-05-05 00:28:28 ----A---- C:\Windows\SYSWOW64\onex.dll
2014-05-05 00:28:28 ----A---- C:\Windows\system32\sharemediacpl.dll
2014-05-05 00:28:28 ----A---- C:\Windows\system32\powercpl.dll
2014-05-05 00:28:27 ----A---- C:\Windows\SYSWOW64\winmm.dll
2014-05-05 00:28:27 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2014-05-05 00:28:27 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2014-05-05 00:28:27 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2014-05-05 00:28:27 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2014-05-05 00:28:27 ----A---- C:\Windows\system32\themecpl.dll
2014-05-05 00:28:27 ----A---- C:\Windows\system32\SensorsCpl.dll
2014-05-05 00:28:27 ----A---- C:\Windows\system32\netjoin.dll
2014-05-05 00:28:27 ----A---- C:\Windows\system32\nci.dll
2014-05-05 00:28:27 ----A---- C:\Windows\system32\Narrator.exe
2014-05-05 00:28:27 ----A---- C:\Windows\system32\licmgr10.dll
2014-05-05 00:28:27 ----A---- C:\Windows\system32\Faultrep.dll
2014-05-05 00:28:27 ----A---- C:\Windows\system32\eudcedit.exe
2014-05-05 00:28:26 ----A---- C:\Windows\SYSWOW64\samcli.dll
2014-05-05 00:28:26 ----A---- C:\Windows\SYSWOW64\proquota.exe
2014-05-05 00:28:26 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2014-05-05 00:28:26 ----A---- C:\Windows\SYSWOW64\autochk.exe
2014-05-05 00:28:26 ----A---- C:\Windows\system32\wkssvc.dll
2014-05-05 00:28:26 ----A---- C:\Windows\system32\vpnikeapi.dll
2014-05-05 00:28:25 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2014-05-05 00:28:25 ----A---- C:\Windows\SYSWOW64\regapi.dll
2014-05-05 00:28:25 ----A---- C:\Windows\SYSWOW64\msutb.dll
2014-05-05 00:28:25 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2014-05-05 00:28:25 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2014-05-05 00:28:25 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2014-05-05 00:28:25 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2014-05-05 00:28:25 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-05-05 00:28:25 ----A---- C:\Windows\system32\sppcomapi.dll
2014-05-05 00:28:25 ----A---- C:\Windows\system32\cabview.dll
2014-05-05 00:28:25 ----A---- C:\Windows\system32\autochk.exe
2014-05-05 00:28:25 ----A---- C:\Windows\system32\autofmt.exe
2014-05-05 00:28:24 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2014-05-05 00:28:24 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2014-05-05 00:28:24 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2014-05-05 00:28:24 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2014-05-05 00:28:24 ----A---- C:\Windows\system32\wpd_ci.dll
2014-05-05 00:28:24 ----A---- C:\Windows\system32\shsetup.dll
2014-05-05 00:28:24 ----A---- C:\Windows\system32\nshipsec.dll
2014-05-05 00:28:24 ----A---- C:\Windows\system32\fms.dll
2014-05-05 00:28:24 ----A---- C:\Windows\system32\autoconv.exe
2014-05-05 00:28:24 ----A---- C:\Windows\system32\audiodg.exe
2014-05-05 00:28:23 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2014-05-05 00:28:23 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-05-05 00:28:23 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-05-05 00:28:23 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2014-05-05 00:28:23 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2014-05-05 00:28:23 ----A---- C:\Windows\system32\wwanconn.dll
2014-05-05 00:28:23 ----A---- C:\Windows\system32\wlanui.dll
2014-05-05 00:28:23 ----A---- C:\Windows\system32\sdclt.exe
2014-05-05 00:28:23 ----A---- C:\Windows\system32\prntvpt.dll
2014-05-05 00:28:23 ----A---- C:\Windows\system32\mscorier.dll
2014-05-05 00:28:23 ----A---- C:\Windows\system32\drivers\winusb.sys
2014-05-05 00:28:23 ----A---- C:\Windows\system32\drivers\wanarp.sys
2014-05-05 00:28:23 ----A---- C:\Windows\system32\drivers\scsiport.sys
2014-05-05 00:28:23 ----A---- C:\Windows\system32\bcdsrv.dll
2014-05-05 00:28:22 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2014-05-05 00:28:22 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2014-05-05 00:28:22 ----A---- C:\Windows\system32\SmiEngine.dll
2014-05-05 00:28:22 ----A---- C:\Windows\system32\fontext.dll
2014-05-05 00:28:22 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2014-05-05 00:28:22 ----A---- C:\Windows\system32\dps.dll
2014-05-05 00:28:21 ----A---- C:\Windows\SYSWOW64\netid.dll
2014-05-05 00:28:21 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-05-05 00:28:21 ----A---- C:\Windows\system32\mprddm.dll
2014-05-05 00:28:21 ----A---- C:\Windows\system32\Display.dll
2014-05-05 00:28:21 ----A---- C:\Windows\system32\AxInstSv.dll
2014-05-05 00:28:20 ----A---- C:\Windows\SYSWOW64\wdc.dll
2014-05-05 00:28:20 ----A---- C:\Windows\system32\mblctr.exe
2014-05-05 00:28:20 ----A---- C:\Windows\system32\credssp.dll
2014-05-05 00:28:20 ----A---- C:\Windows\system32\batmeter.dll
2014-05-05 00:28:19 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2014-05-05 00:28:19 ----A---- C:\Windows\SYSWOW64\Vault.dll
2014-05-05 00:28:19 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-05-05 00:28:19 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2014-05-05 00:28:19 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2014-05-05 00:28:19 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-05-05 00:28:19 ----A---- C:\Windows\SYSWOW64\nci.dll
2014-05-05 00:28:19 ----A---- C:\Windows\system32\wmpsrcwp.dll
2014-05-05 00:28:18 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2014-05-05 00:28:18 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2014-05-05 00:28:18 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2014-05-05 00:28:18 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-05-05 00:28:18 ----A---- C:\Windows\system32\usercpl.dll
2014-05-05 00:28:18 ----A---- C:\Windows\system32\rtutils.dll
2014-05-05 00:28:18 ----A---- C:\Windows\system32\provsvc.dll
2014-05-05 00:28:18 ----A---- C:\Windows\system32\DiagCpl.dll
2014-05-05 00:28:18 ----A---- C:\Windows\system32\bootres.dll
2014-05-05 00:28:17 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2014-05-05 00:28:17 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2014-05-05 00:28:17 ----A---- C:\Windows\system32\wpccpl.dll
2014-05-05 00:28:17 ----A---- C:\Windows\system32\sppsvc.exe
2014-05-05 00:28:17 ----A---- C:\Windows\system32\rasppp.dll
2014-05-05 00:28:17 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2014-05-05 00:28:16 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2014-05-05 00:28:16 ----A---- C:\Windows\SYSWOW64\Display.dll
2014-05-05 00:28:16 ----A---- C:\Windows\system32\SndVolSSO.dll
2014-05-05 00:28:16 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2014-05-05 00:28:16 ----A---- C:\Windows\system32\dot3cfg.dll
2014-05-05 00:28:15 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2014-05-05 00:28:15 ----A---- C:\Windows\SYSWOW64\userinit.exe
2014-05-05 00:28:15 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2014-05-05 00:28:15 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2014-05-05 00:28:15 ----A---- C:\Windows\system32\taskmgr.exe
2014-05-05 00:28:15 ----A---- C:\Windows\system32\prnfldr.dll
2014-05-05 00:28:15 ----A---- C:\Windows\system32\hbaapi.dll
2014-05-05 00:28:15 ----A---- C:\Windows\system32\dxdiagn.dll
2014-05-05 00:28:14 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2014-05-05 00:28:14 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2014-05-05 00:28:14 ----A---- C:\Windows\system32\proquota.exe
2014-05-05 00:28:14 ----A---- C:\Windows\system32\pdh.dll
2014-05-05 00:28:14 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2014-05-05 00:28:13 ----A---- C:\Windows\system32\untfs.dll
2014-05-05 00:28:13 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2014-05-05 00:28:11 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2014-05-05 00:28:11 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2014-05-05 00:28:11 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2014-05-05 00:28:11 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2014-05-05 00:28:10 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2014-05-05 00:28:10 ----A---- C:\Windows\SYSWOW64\cabview.dll
2014-05-05 00:28:10 ----A---- C:\Windows\system32\userinit.exe
2014-05-05 00:28:10 ----A---- C:\Windows\system32\accessibilitycpl.dll
2014-05-05 00:28:09 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2014-05-05 00:28:09 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2014-05-05 00:28:09 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2014-05-05 00:28:09 ----A---- C:\Windows\system32\webcheck.dll
2014-05-05 00:28:09 ----A---- C:\Windows\system32\slui.exe
2014-05-05 00:28:08 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2014-05-05 00:28:08 ----A---- C:\Windows\system32\zipfldr.dll
2014-05-05 00:28:08 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2014-05-05 00:28:07 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2014-05-05 00:28:07 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2014-05-05 00:28:06 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2014-05-05 00:28:06 ----A---- C:\Windows\SYSWOW64\scecli.dll
2014-05-05 00:28:06 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-05-05 00:28:06 ----A---- C:\Windows\SYSWOW64\mscms.dll
2014-05-05 00:28:06 ----A---- C:\Windows\SYSWOW64\fontext.dll
2014-05-05 00:28:06 ----A---- C:\Windows\system32\sud.dll
2014-05-05 00:28:06 ----A---- C:\Windows\system32\DeviceCenter.dll
2014-05-05 00:28:05 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2014-05-05 00:28:05 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2014-05-05 00:28:05 ----A---- C:\Windows\SYSWOW64\localsec.dll
2014-05-05 00:28:05 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2014-05-05 00:28:05 ----A---- C:\Windows\system32\taskbarcpl.dll
2014-05-05 00:28:05 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2014-05-05 00:28:05 ----A---- C:\Windows\system32\networkmap.dll
2014-05-05 00:28:05 ----A---- C:\Windows\system32\dot3svc.dll
2014-05-05 00:28:05 ----A---- C:\Windows\system32\cryptui.dll
2014-05-05 00:28:05 ----A---- C:\Windows\system32\ActionCenter.dll
2014-05-05 00:28:04 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2014-05-05 00:28:04 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2014-05-05 00:28:04 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2014-05-05 00:28:04 ----A---- C:\Windows\system32\twext.dll
2014-05-05 00:28:03 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2014-05-05 00:28:03 ----A---- C:\Windows\SYSWOW64\VAN.dll
2014-05-05 00:28:03 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2014-05-05 00:28:03 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2014-05-05 00:28:03 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2014-05-05 00:28:03 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2014-05-05 00:28:03 ----A---- C:\Windows\system32\uxlib.dll
2014-05-05 00:28:03 ----A---- C:\Windows\system32\recovery.dll
2014-05-05 00:28:03 ----A---- C:\Windows\system32\OobeFldr.dll
2014-05-05 00:28:03 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2014-05-05 00:28:03 ----A---- C:\Windows\system32\bcdedit.exe
2014-05-05 00:28:02 ----A---- C:\Windows\system32\isoburn.exe
2014-05-05 00:28:02 ----A---- C:\Windows\system32\dsuiext.dll
2014-05-05 00:28:02 ----A---- C:\Windows\system32\cca.dll
2014-05-05 00:28:02 ----A---- C:\Windows\system32\azroleui.dll
2014-05-05 00:28:02 ----A---- C:\Windows\system32\asycfilt.dll
2014-05-05 00:28:01 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2014-05-05 00:28:01 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2014-05-05 00:28:01 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2014-05-05 00:28:01 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2014-05-05 00:28:01 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2014-05-05 00:28:01 ----A---- C:\Windows\system32\tzutil.exe
2014-05-05 00:28:01 ----A---- C:\Windows\system32\syncui.dll
2014-05-05 00:28:01 ----A---- C:\Windows\system32\sisbkup.dll
2014-05-05 00:28:01 ----A---- C:\Windows\system32\sdcpl.dll
2014-05-05 00:28:01 ----A---- C:\Windows\system32\recdisc.exe
2014-05-05 00:28:01 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2014-05-05 00:28:01 ----A---- C:\Windows\system32\httpapi.dll
2014-05-05 00:28:01 ----A---- C:\Windows\system32\efscore.dll
2014-05-05 00:28:01 ----A---- C:\Windows\system32\drivers\sdbus.sys
2014-05-05 00:28:00 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2014-05-05 00:28:00 ----A---- C:\Windows\system32\systemcpl.dll
2014-05-05 00:28:00 ----A---- C:\Windows\system32\shwebsvc.dll
2014-05-05 00:28:00 ----A---- C:\Windows\system32\netplwiz.dll
2014-05-05 00:28:00 ----A---- C:\Windows\system32\drivers\mpio.sys
2014-05-05 00:28:00 ----A---- C:\Windows\system32\autoplay.dll
2014-05-05 00:27:59 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2014-05-05 00:27:59 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2014-05-05 00:27:59 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2014-05-05 00:27:59 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-05-05 00:27:59 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2014-05-05 00:27:59 ----A---- C:\Windows\system32\wlanmsm.dll
2014-05-05 00:27:59 ----A---- C:\Windows\system32\sysclass.dll
2014-05-05 00:27:59 ----A---- C:\Windows\system32\sdrsvc.dll
2014-05-05 00:27:59 ----A---- C:\Windows\system32\ncryptui.dll
2014-05-05 00:27:59 ----A---- C:\Windows\system32\certcli.dll
2014-05-05 00:27:59 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2014-05-05 00:27:58 ----A---- C:\Windows\SYSWOW64\wusa.exe
2014-05-05 00:27:58 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2014-05-05 00:27:58 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2014-05-05 00:27:58 ----A---- C:\Windows\system32\msvidc32.dll
2014-05-05 00:27:58 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2014-05-05 00:27:57 ----A---- C:\Windows\SYSWOW64\sud.dll
2014-05-05 00:27:57 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2014-05-05 00:27:57 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2014-05-05 00:27:57 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2014-05-05 00:27:57 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-05 00:27:57 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2014-05-05 00:27:57 ----A---- C:\Windows\system32\vdsutil.dll
2014-05-05 00:27:57 ----A---- C:\Windows\system32\termmgr.dll
2014-05-05 00:27:57 ----A---- C:\Windows\system32\spwizeng.dll
2014-05-05 00:27:57 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-05 00:27:57 ----A---- C:\Windows\system32\MFPlay.dll
2014-05-05 00:27:56 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2014-05-05 00:27:56 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2014-05-05 00:27:56 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2014-05-05 00:27:56 ----A---- C:\Windows\system32\sethc.exe
2014-05-05 00:27:56 ----A---- C:\Windows\system32\ntlanman.dll
2014-05-05 00:27:56 ----A---- C:\Windows\system32\msscp.dll
2014-05-05 00:27:56 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-05-05 00:27:55 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2014-05-05 00:27:55 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2014-05-05 00:27:55 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2014-05-05 00:27:55 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-05 00:27:55 ----A---- C:\Windows\SYSWOW64\ftp.exe
2014-05-05 00:27:55 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2014-05-05 00:27:55 ----A---- C:\Windows\system32\sqlcese30.dll
2014-05-05 00:27:55 ----A---- C:\Windows\system32\ReAgent.dll
2014-05-05 00:27:55 ----A---- C:\Windows\system32\iprtrmgr.dll
2014-05-05 00:27:55 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2014-05-05 00:27:54 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-05-05 00:27:54 ----A---- C:\Windows\SYSWOW64\efscore.dll
2014-05-05 00:27:54 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2014-05-05 00:27:54 ----A---- C:\Windows\system32\rdpd3d.dll
2014-05-05 00:27:53 ----A---- C:\Windows\SYSWOW64\syncui.dll
2014-05-05 00:27:53 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2014-05-05 00:27:53 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2014-05-05 00:27:53 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2014-05-05 00:27:53 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-05-05 00:27:53 ----A---- C:\Windows\system32\ssText3d.scr
2014-05-05 00:27:53 ----A---- C:\Windows\system32\srvcli.dll
2014-05-05 00:27:53 ----A---- C:\Windows\system32\slwga.dll
2014-05-05 00:27:53 ----A---- C:\Windows\system32\iyuv_32.dll
2014-05-05 00:27:53 ----A---- C:\Windows\system32\iTVData.dll
2014-05-05 00:27:53 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-05-05 00:27:52 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2014-05-05 00:27:52 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2014-05-05 00:27:52 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2014-05-05 00:27:52 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2014-05-05 00:27:52 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2014-05-05 00:27:52 ----A---- C:\Windows\system32\wavemsp.dll
2014-05-05 00:27:52 ----A---- C:\Windows\system32\ntprint.dll
2014-05-05 00:27:52 ----A---- C:\Windows\system32\nslookup.exe
2014-05-05 00:27:52 ----A---- C:\Windows\system32\NAPHLPR.DLL
2014-05-05 00:27:52 ----A---- C:\Windows\system32\msiexec.exe
2014-05-05 00:27:52 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2014-05-05 00:27:51 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2014-05-05 00:27:51 ----A---- C:\Windows\SYSWOW64\sethc.exe
2014-05-05 00:27:51 ----A---- C:\Windows\SYSWOW64\riched20.dll
2014-05-05 00:27:51 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2014-05-05 00:27:51 ----A---- C:\Windows\system32\srrstr.dll
2014-05-05 00:27:51 ----A---- C:\Windows\system32\bcdboot.exe
2014-05-05 00:27:51 ----A---- C:\Windows\system32\acppage.dll
2014-05-05 00:27:50 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2014-05-05 00:27:50 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-05-05 00:27:50 ----A---- C:\Windows\system32\sppnp.dll
2014-05-05 00:27:49 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2014-05-05 00:27:49 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2014-05-05 00:27:49 ----A---- C:\Windows\SYSWOW64\migisol.dll
2014-05-05 00:27:49 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2014-05-05 00:27:49 ----A---- C:\Windows\SYSWOW64\fms.dll
2014-05-05 00:27:49 ----A---- C:\Windows\SYSWOW64\dpx.dll
2014-05-05 00:27:49 ----A---- C:\Windows\SYSWOW64\activeds.dll
2014-05-05 00:27:49 ----A---- C:\Windows\system32\wkscli.dll
2014-05-05 00:27:49 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-05 00:27:49 ----A---- C:\Windows\system32\remotepg.dll
2014-05-05 00:27:49 ----A---- C:\Windows\system32\networkexplorer.dll
2014-05-05 00:27:49 ----A---- C:\Windows\system32\certprop.dll
2014-05-05 00:27:49 ----A---- C:\Windows\system32\cabinet.dll
2014-05-05 00:27:48 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2014-05-05 00:27:48 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2014-05-05 00:27:48 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2014-05-05 00:27:48 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2014-05-05 00:27:48 ----A---- C:\Windows\system32\dfrgui.exe
2014-05-05 00:27:47 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-05-05 00:27:47 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2014-05-05 00:27:47 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2014-05-05 00:27:47 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2014-05-05 00:27:47 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2014-05-05 00:27:47 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2014-05-05 00:27:47 ----A---- C:\Windows\system32\wsnmp32.dll
2014-05-05 00:27:47 ----A---- C:\Windows\system32\wmpdxm.dll
2014-05-05 00:27:47 ----A---- C:\Windows\system32\WinSCard.dll
2014-05-05 00:27:47 ----A---- C:\Windows\system32\net1.exe
2014-05-05 00:27:47 ----A---- C:\Windows\system32\ftp.exe
2014-05-05 00:27:46 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2014-05-05 00:27:46 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2014-05-05 00:27:46 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2014-05-05 00:27:46 ----A---- C:\Windows\system32\wvc.dll
2014-05-05 00:27:46 ----A---- C:\Windows\system32\wsqmcons.exe
2014-05-05 00:27:46 ----A---- C:\Windows\system32\wmdrmdev.dll
2014-05-05 00:27:46 ----A---- C:\Windows\system32\blackbox.dll
2014-05-05 00:27:45 ----A---- C:\Windows\SYSWOW64\wvc.dll
2014-05-05 00:27:45 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2014-05-05 00:27:45 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2014-05-05 00:27:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-05-05 00:27:45 ----A---- C:\Windows\SYSWOW64\twext.dll
2014-05-05 00:27:45 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2014-05-05 00:27:45 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2014-05-05 00:27:45 ----A---- C:\Windows\SYSWOW64\mstask.dll
2014-05-05 00:27:45 ----A---- C:\Windows\system32\WerFaultSecure.exe
2014-05-05 00:27:45 ----A---- C:\Windows\system32\msyuv.dll
2014-05-05 00:27:45 ----A---- C:\Windows\system32\mfps.dll
2014-05-05 00:27:44 ----A---- C:\Windows\twain_32.dll
2014-05-05 00:27:44 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-05 00:27:44 ----A---- C:\Windows\system32\OpcServices.dll
2014-05-05 00:27:44 ----A---- C:\Windows\system32\mapistub.dll
2014-05-05 00:27:44 ----A---- C:\Windows\system32\mapi32.dll
2014-05-05 00:27:44 ----A---- C:\Windows\system32\Bubbles.scr
2014-05-05 00:27:43 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2014-05-05 00:27:43 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2014-05-05 00:27:43 ----A---- C:\Windows\SYSWOW64\qcap.dll
2014-05-05 00:27:43 ----A---- C:\Windows\SYSWOW64\qasf.dll
2014-05-05 00:27:43 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-05-05 00:27:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-05 00:27:43 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-05-05 00:27:43 ----A---- C:\Windows\system32\unimdmat.dll
2014-05-05 00:27:43 ----A---- C:\Windows\system32\seclogon.dll
2014-05-05 00:27:43 ----A---- C:\Windows\system32\msrle32.dll
2014-05-05 00:27:43 ----A---- C:\Windows\system32\iscsium.dll
2014-05-05 00:27:43 ----A---- C:\Windows\system32\diskraid.exe
2014-05-05 00:27:42 ----A---- C:\Windows\SYSWOW64\ssText3d.scr
2014-05-05 00:27:42 ----A---- C:\Windows\SYSWOW64\slwga.dll
2014-05-05 00:27:42 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2014-05-05 00:27:42 ----A---- C:\Windows\system32\tsbyuv.dll
2014-05-05 00:27:42 ----A---- C:\Windows\system32\Ribbons.scr
2014-05-05 00:27:42 ----A---- C:\Windows\system32\Mystify.scr
2014-05-05 00:27:42 ----A---- C:\Windows\system32\ifsutil.dll
2014-05-05 00:27:41 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2014-05-05 00:27:41 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-05-05 00:27:41 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2014-05-05 00:27:41 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2014-05-05 00:27:41 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-05-05 00:27:41 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2014-05-05 00:27:41 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2014-05-05 00:27:41 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2014-05-05 00:27:41 ----A---- C:\Windows\system32\wmpshell.dll
2014-05-05 00:27:41 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2014-05-05 00:27:41 ----A---- C:\Windows\system32\rdpencom.dll
2014-05-05 00:27:41 ----A---- C:\Windows\system32\perfmon.exe
2014-05-05 00:27:41 ----A---- C:\Windows\system32\muifontsetup.dll
2014-05-05 00:27:41 ----A---- C:\Windows\system32\drivers\umbus.sys
2014-05-05 00:27:40 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2014-05-05 00:27:40 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-05-05 00:27:40 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2014-05-05 00:27:40 ----A---- C:\Windows\system32\umb.dll
2014-05-05 00:27:40 ----A---- C:\Windows\system32\tlscsp.dll
2014-05-05 00:27:40 ----A---- C:\Windows\system32\netutils.dll
2014-05-05 00:27:40 ----A---- C:\Windows\system32\AzSqlExt.dll
2014-05-05 00:27:39 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-05 00:27:39 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2014-05-05 00:27:39 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2014-05-05 00:27:39 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2014-05-05 00:27:39 ----A---- C:\Windows\SYSWOW64\acppage.dll
2014-05-05 00:27:39 ----A---- C:\Windows\system32\runonce.exe
2014-05-05 00:27:39 ----A---- C:\Windows\system32\qasf.dll
2014-05-05 00:27:39 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2014-05-05 00:27:39 ----A---- C:\Windows\system32\inseng.dll
2014-05-05 00:27:39 ----A---- C:\Windows\system32\FXSAPI.dll
2014-05-05 00:27:39 ----A---- C:\Windows\system32\dbghelp.dll
2014-05-05 00:27:39 ----A---- C:\Windows\system32\ActionQueue.dll
2014-05-05 00:27:38 ----A---- C:\Windows\SYSWOW64\raschap.dll
2014-05-05 00:27:38 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2014-05-05 00:27:38 ----A---- C:\Windows\SYSWOW64\input.dll
2014-05-05 00:27:38 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-05-05 00:27:38 ----A---- C:\Windows\system32\wiavideo.dll
2014-05-05 00:27:38 ----A---- C:\Windows\system32\raschap.dll
2014-05-05 00:27:38 ----A---- C:\Windows\bfsvc.exe
2014-05-05 00:27:37 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2014-05-05 00:27:37 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2014-05-05 00:27:37 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2014-05-05 00:27:37 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2014-05-05 00:27:37 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2014-05-05 00:27:37 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2014-05-05 00:27:37 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2014-05-05 00:27:37 ----A---- C:\Windows\system32\wpdwcn.dll
2014-05-05 00:27:37 ----A---- C:\Windows\system32\WMADMOD.DLL
2014-05-05 00:27:37 ----A---- C:\Windows\system32\vdsbas.dll
2014-05-05 00:27:37 ----A---- C:\Windows\system32\syssetup.dll
2014-05-05 00:27:37 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2014-05-05 00:27:37 ----A---- C:\Windows\system32\MdSched.exe
2014-05-05 00:27:36 ----A---- C:\Windows\SYSWOW64\onexui.dll
2014-05-05 00:27:36 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2014-05-05 00:27:36 ----A---- C:\Windows\system32\WMVSDECD.DLL
2014-05-05 00:27:35 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2014-05-05 00:27:35 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2014-05-05 00:27:35 ----A---- C:\Windows\SYSWOW64\runonce.exe
2014-05-05 00:27:35 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-05-05 00:27:35 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2014-05-05 00:27:35 ----A---- C:\Windows\system32\nltest.exe
2014-05-05 00:27:35 ----A---- C:\Windows\system32\mstask.dll
2014-05-05 00:27:35 ----A---- C:\Windows\system32\Mcx2Svc.dll
2014-05-05 00:27:35 ----A---- C:\Windows\system32\drivers\rmcast.sys
2014-05-05 00:27:34 ----A---- C:\Windows\SYSWOW64\logagent.exe
2014-05-05 00:27:34 ----A---- C:\Windows\system32\bitsadmin.exe
2014-05-05 00:27:33 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2014-05-05 00:27:33 ----A---- C:\Windows\SYSWOW64\shacct.dll
2014-05-05 00:27:33 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2014-05-05 00:27:33 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2014-05-05 00:27:33 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2014-05-05 00:27:33 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2014-05-05 00:27:33 ----A---- C:\Windows\system32\wmdrmnet.dll
2014-05-05 00:27:33 ----A---- C:\Windows\system32\vss_ps.dll
2014-05-05 00:27:33 ----A---- C:\Windows\system32\tabcal.exe
2014-05-05 00:27:33 ----A---- C:\Windows\system32\shacct.dll
2014-05-05 00:27:33 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2014-05-05 00:27:33 ----A---- C:\Windows\system32\cscapi.dll
2014-05-05 00:27:32 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-05-05 00:27:32 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2014-05-05 00:27:32 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2014-05-05 00:27:32 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
Nahoru
Pheliox
Návštěvník
Návštěvník
Příspěvky: 85
Registrován: 06 srp 2012 11:28

Re: Vir v PC se vrátil

#2 Příspěvek od Pheliox »

2014-05-05 00:27:32 ----A---- C:\Windows\system32\WPDSp.dll
2014-05-05 00:27:32 ----A---- C:\Windows\system32\qcap.dll
2014-05-05 00:27:32 ----A---- C:\Windows\system32\msnetobj.dll
2014-05-05 00:27:32 ----A---- C:\Windows\system32\logman.exe
2014-05-05 00:27:31 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2014-05-05 00:27:31 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2014-05-05 00:27:31 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2014-05-05 00:27:31 ----A---- C:\Windows\SYSWOW64\pdh.dll
2014-05-05 00:27:31 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2014-05-05 00:27:31 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2014-05-05 00:27:31 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2014-05-05 00:27:31 ----A---- C:\Windows\SYSWOW64\Bubbles.scr
2014-05-05 00:27:31 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2014-05-05 00:27:31 ----A---- C:\Windows\system32\qdv.dll
2014-05-05 00:27:31 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2014-05-05 00:27:30 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2014-05-05 00:27:30 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2014-05-05 00:27:30 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2014-05-05 00:27:30 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2014-05-05 00:27:30 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2014-05-05 00:27:30 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2014-05-05 00:27:30 ----A---- C:\Windows\SYSWOW64\logman.exe
2014-05-05 00:27:30 ----A---- C:\Windows\system32\spbcd.dll
2014-05-05 00:27:30 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2014-05-05 00:27:30 ----A---- C:\Windows\system32\fphc.dll
2014-05-05 00:27:30 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\utildll.dll
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\Ribbons.scr
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\Mystify.scr
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2014-05-05 00:27:29 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2014-05-05 00:27:29 ----A---- C:\Windows\system32\WMPhoto.dll
2014-05-05 00:27:29 ----A---- C:\Windows\system32\takeown.exe
2014-05-05 00:27:29 ----A---- C:\Windows\system32\PnPUnattend.exe
2014-05-05 00:27:29 ----A---- C:\Windows\system32\dot3ui.dll
2014-05-05 00:27:29 ----A---- C:\Windows\system32\amstream.dll
2014-05-05 00:27:28 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2014-05-05 00:27:28 ----A---- C:\Windows\SYSWOW64\takeown.exe
2014-05-05 00:27:28 ----A---- C:\Windows\SYSWOW64\fphc.dll
2014-05-05 00:27:28 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2014-05-05 00:27:28 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2014-05-05 00:27:28 ----A---- C:\Windows\system32\vfwwdm32.dll
2014-05-05 00:27:28 ----A---- C:\Windows\system32\EhStorAPI.dll
2014-05-05 00:27:27 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2014-05-05 00:27:27 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2014-05-05 00:27:27 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2014-05-05 00:27:27 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2014-05-05 00:27:27 ----A---- C:\Windows\system32\shimgvw.dll
2014-05-05 00:27:27 ----A---- C:\Windows\system32\QCLIPROV.DLL
2014-05-05 00:27:27 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2014-05-05 00:27:27 ----A---- C:\Windows\system32\djoin.exe
2014-05-05 00:27:27 ----A---- C:\Windows\system32\cmstp.exe
2014-05-05 00:27:26 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2014-05-05 00:27:26 ----A---- C:\Windows\SYSWOW64\qdv.dll
2014-05-05 00:27:26 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-05-05 00:27:26 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2014-05-05 00:27:26 ----A---- C:\Windows\system32\nrpsrv.dll
2014-05-05 00:27:26 ----A---- C:\Windows\system32\iasrecst.dll
2014-05-05 00:27:26 ----A---- C:\Windows\system32\CertPolEng.dll
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2014-05-05 00:27:25 ----A---- C:\Windows\SYSWOW64\cca.dll
2014-05-05 00:27:25 ----A---- C:\Windows\system32\WavDest.dll
2014-05-05 00:27:25 ----A---- C:\Windows\system32\MultiDigiMon.exe
2014-05-05 00:27:25 ----A---- C:\Windows\system32\KMSVC.DLL
2014-05-05 00:27:25 ----A---- C:\Windows\system32\fdProxy.dll
2014-05-05 00:27:25 ----A---- C:\Windows\system32\drivers\pacer.sys
2014-05-05 00:27:24 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2014-05-05 00:27:24 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2014-05-05 00:27:24 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2014-05-05 00:27:24 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2014-05-05 00:27:24 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2014-05-05 00:27:24 ----A---- C:\Windows\system32\sscore.dll
2014-05-05 00:27:24 ----A---- C:\Windows\system32\relog.exe
2014-05-05 00:27:24 ----A---- C:\Windows\system32\mydocs.dll
2014-05-05 00:27:24 ----A---- C:\Windows\system32\iscsicli.exe
2014-05-05 00:27:24 ----A---- C:\Windows\system32\diskpart.exe
2014-05-05 00:27:23 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2014-05-05 00:27:23 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2014-05-05 00:27:23 ----A---- C:\Windows\SYSWOW64\relog.exe
2014-05-05 00:27:23 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2014-05-05 00:27:23 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2014-05-05 00:27:23 ----A---- C:\Windows\system32\mobsync.exe
2014-05-05 00:27:23 ----A---- C:\Windows\system32\itircl.dll
2014-05-05 00:27:23 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2014-05-05 00:27:22 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2014-05-05 00:27:22 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2014-05-05 00:27:22 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2014-05-05 00:27:22 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2014-05-05 00:27:22 ----A---- C:\Windows\SYSWOW64\amstream.dll
2014-05-05 00:27:22 ----A---- C:\Windows\system32\msdmo.dll
2014-05-05 00:27:22 ----A---- C:\Windows\system32\dot3msm.dll
2014-05-05 00:27:21 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2014-05-05 00:27:21 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2014-05-05 00:27:21 ----A---- C:\Windows\SYSWOW64\resutils.dll
2014-05-05 00:27:21 ----A---- C:\Windows\SYSWOW64\itircl.dll
2014-05-05 00:27:21 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2014-05-05 00:27:21 ----A---- C:\Windows\system32\FXSTIFF.dll
2014-05-05 00:27:21 ----A---- C:\Windows\system32\eappgnui.dll
2014-05-05 00:27:20 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-05-05 00:27:20 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2014-05-05 00:27:20 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2014-05-05 00:27:20 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2014-05-05 00:27:20 ----A---- C:\Windows\SYSWOW64\findstr.exe
2014-05-05 00:27:20 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2014-05-05 00:27:20 ----A---- C:\Windows\system32\sppc.dll
2014-05-05 00:27:20 ----A---- C:\Windows\system32\mciqtz32.dll
2014-05-05 00:27:20 ----A---- C:\Windows\system32\luainstall.dll
2014-05-05 00:27:20 ----A---- C:\Windows\system32\choice.exe
2014-05-05 00:27:20 ----A---- C:\Windows\system32\findstr.exe
2014-05-05 00:27:20 ----A---- C:\Windows\system32\drivers\tunnel.sys
2014-05-05 00:27:19 ----A---- C:\Windows\SYSWOW64\netutils.dll
2014-05-05 00:27:19 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2014-05-05 00:27:19 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2014-05-05 00:27:19 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2014-05-05 00:27:19 ----A---- C:\Windows\system32\schedcli.dll
2014-05-05 00:27:19 ----A---- C:\Windows\system32\onexui.dll
2014-05-05 00:27:19 ----A---- C:\Windows\system32\manage-bde.exe
2014-05-05 00:27:19 ----A---- C:\Windows\system32\drivers\dfsc.sys
2014-05-05 00:27:18 ----A---- C:\Windows\SYSWOW64\sppc.dll
2014-05-05 00:27:18 ----A---- C:\Windows\SYSWOW64\spopk.dll
2014-05-05 00:27:18 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2014-05-05 00:27:18 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2014-05-05 00:27:18 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2014-05-05 00:27:18 ----A---- C:\Windows\system32\spopk.dll
2014-05-05 00:27:18 ----A---- C:\Windows\system32\repair-bde.exe
2014-05-05 00:27:18 ----A---- C:\Windows\system32\inetmib1.dll
2014-05-05 00:27:17 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2014-05-05 00:27:17 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2014-05-05 00:27:17 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2014-05-05 00:27:17 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2014-05-05 00:27:17 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2014-05-05 00:27:17 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2014-05-05 00:27:17 ----A---- C:\Windows\system32\RDPENCDD.dll
2014-05-05 00:27:17 ----A---- C:\Windows\system32\odbcconf.dll
2014-05-05 00:27:17 ----A---- C:\Windows\system32\fixmapi.exe
2014-05-05 00:27:15 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-05-05 00:27:15 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2014-05-05 00:27:15 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2014-05-05 00:27:15 ----A---- C:\Windows\system32\wshbth.dll
2014-05-05 00:27:15 ----A---- C:\Windows\system32\UIRibbonRes.dll
2014-05-05 00:27:15 ----A---- C:\Windows\system32\TRAPI.dll
2014-05-05 00:27:15 ----A---- C:\Windows\system32\msfeedssync.exe
2014-05-05 00:27:15 ----A---- C:\Windows\system32\FXSMON.dll
2014-05-05 00:27:15 ----A---- C:\Windows\system32\elsTrans.dll
2014-05-05 00:27:15 ----A---- C:\Windows\system32\drivers\tdi.sys
2014-05-05 00:27:14 ----A---- C:\Windows\SYSWOW64\perfts.dll
2014-05-05 00:27:14 ----A---- C:\Windows\SYSWOW64\imm32.dll
2014-05-05 00:27:14 ----A---- C:\Windows\system32\napdsnap.dll
2014-05-05 00:27:14 ----A---- C:\Windows\system32\LogonUI.exe
2014-05-05 00:27:14 ----A---- C:\Windows\system32\dsauth.dll
2014-05-05 00:27:13 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2014-05-05 00:27:13 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-05-05 00:27:13 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2014-05-05 00:27:13 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2014-05-05 00:27:13 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2014-05-05 00:27:13 ----A---- C:\Windows\system32\FXSUNATD.exe
2014-05-05 00:27:13 ----A---- C:\Windows\system32\cscdll.dll
2014-05-05 00:27:13 ----A---- C:\Windows\system32\bitsperf.dll
2014-05-05 00:27:12 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2014-05-05 00:27:12 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2014-05-05 00:27:12 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2014-05-05 00:27:12 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2014-05-05 00:27:12 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2014-05-05 00:27:12 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2014-05-05 00:27:11 ----A---- C:\Windows\SYSWOW64\sscore.dll
2014-05-05 00:27:11 ----A---- C:\Windows\system32\wsdchngr.dll
2014-05-05 00:27:11 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2014-05-05 00:27:10 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2014-05-05 00:27:10 ----A---- C:\Windows\SYSWOW64\shgina.dll
2014-05-05 00:27:10 ----A---- C:\Windows\SYSWOW64\riched32.dll
2014-05-05 00:27:10 ----A---- C:\Windows\system32\shgina.dll
2014-05-05 00:27:09 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2014-05-05 00:27:09 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2014-05-05 00:27:08 ----A---- C:\Windows\system32\wshirda.dll
2014-05-05 00:27:07 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2014-05-05 00:27:07 ----A---- C:\Windows\system32\rdpcfgex.dll
2014-05-05 00:27:07 ----A---- C:\Windows\system32\drivers\hidusb.sys
2014-05-05 00:27:07 ----A---- C:\Windows\system32\drivers\appid.sys
2014-05-05 00:27:06 ----A---- C:\Windows\system32\riched32.dll
2014-05-05 00:27:06 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2014-05-05 00:27:06 ----A---- C:\Windows\system32\browseui.dll
2014-05-05 00:27:05 ----A---- C:\Windows\SYSWOW64\browseui.dll
2014-05-05 00:27:05 ----A---- C:\Windows\system32\spwmp.dll
2014-05-05 00:27:05 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2014-05-05 00:27:05 ----A---- C:\Windows\system32\C_ISCII.DLL
2014-05-05 00:27:04 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-05-05 00:27:02 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2014-05-05 00:27:02 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2014-05-05 00:27:02 ----A---- C:\Windows\system32\dxmasf.dll
2014-05-05 00:27:02 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2014-05-05 00:27:02 ----A---- C:\Windows\system32\drivers\scfilter.sys
2014-05-05 00:27:02 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2014-05-05 00:27:02 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2014-05-05 00:27:02 ----A---- C:\Windows\system32\drivers\cdrom.sys
2014-05-05 00:27:01 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2014-05-05 00:27:01 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2014-05-05 00:27:01 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2014-05-05 00:27:01 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2014-05-05 00:27:01 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2014-05-05 00:27:01 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2014-05-05 00:27:01 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-05-05 00:27:01 ----A---- C:\Windows\system32\shunimpl.dll
2014-05-05 00:27:01 ----A---- C:\Windows\system32\KBDTUQ.DLL
2014-05-05 00:27:01 ----A---- C:\Windows\system32\KBDTUF.DLL
2014-05-05 00:27:01 ----A---- C:\Windows\system32\KBDSF.DLL
2014-05-05 00:27:01 ----A---- C:\Windows\system32\KBDPO.DLL
2014-05-05 00:27:01 ----A---- C:\Windows\system32\KBDINTAM.DLL
2014-05-05 00:27:01 ----A---- C:\Windows\system32\KBDINBEN.DLL
2014-05-05 00:27:00 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2014-05-05 00:27:00 ----A---- C:\Windows\system32\KBDSG.DLL
2014-05-05 00:27:00 ----A---- C:\Windows\system32\KBDNEPR.DLL
2014-05-05 00:27:00 ----A---- C:\Windows\system32\kbdlk41a.dll
2014-05-05 00:27:00 ----A---- C:\Windows\system32\KBDGR1.DLL
2014-05-05 00:27:00 ----A---- C:\Windows\system32\KBDGKL.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\system32\KBDUS.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\system32\KBDGEO.DLL
2014-05-05 00:26:59 ----A---- C:\Windows\system32\KBDCZ1.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\system32\KBDTURME.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\system32\KBDMON.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\system32\KBDMAORI.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\system32\KBDLT1.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\system32\KBDBULG.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\system32\KBDBLR.DLL
2014-05-05 00:26:58 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-05-05 00:26:57 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2014-05-05 00:26:57 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2014-05-05 00:26:57 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2014-05-05 00:26:57 ----A---- C:\Windows\system32\spwizres.dll
2014-05-05 00:26:57 ----A---- C:\Windows\system32\pifmgr.dll
2014-05-05 00:26:57 ----A---- C:\Windows\system32\nlsbres.dll
2014-05-05 00:26:57 ----A---- C:\Windows\system32\KBDINTEL.DLL
2014-05-05 00:26:57 ----A---- C:\Windows\system32\KBDINORI.DLL
2014-05-05 00:26:57 ----A---- C:\Windows\system32\KBDINMAR.DLL
2014-05-05 00:26:57 ----A---- C:\Windows\system32\KBDINKAN.DLL
2014-05-05 00:26:57 ----A---- C:\Windows\system32\KBDINHIN.DLL
2014-05-05 00:26:57 ----A---- C:\Windows\system32\BlbEvents.dll
2014-05-05 00:26:30 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2014-05-05 00:26:30 ----A---- C:\Windows\system32\dpx.dll
2014-05-05 00:26:07 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2014-05-05 00:23:03 ----A---- C:\Windows\system32\wbemcomn.dll
2014-05-04 23:55:55 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2014-05-04 23:55:55 ----A---- C:\Windows\system32\drivers\bthport.sys
2014-05-04 23:55:54 ----A---- C:\Windows\system32\fsquirt.exe
2014-05-04 23:55:50 ----A---- C:\Windows\SYSWOW64\esent.dll
2014-05-04 23:55:50 ----A---- C:\Windows\system32\esent.dll
2014-05-04 23:55:49 ----A---- C:\Windows\system32\drivers\nvstor.sys
2014-05-04 23:55:48 ----A---- C:\Windows\system32\drivers\nvraid.sys
2014-05-04 23:55:48 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2014-05-04 23:55:48 ----A---- C:\Windows\system32\drivers\amdxata.sys
2014-05-04 23:55:48 ----A---- C:\Windows\system32\drivers\amdsata.sys
2014-05-04 23:55:47 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2014-05-04 23:55:47 ----A---- C:\Windows\system32\fsutil.exe
2014-05-04 23:55:47 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-05-04 22:47:41 ----D---- C:\ProgramData\KONAMI
2014-05-04 22:47:41 ----D---- C:\Program Files (x86)\Pro Evolution Soccer 2013
2014-05-04 14:03:30 ----D---- C:\Program Files (x86)\DarkSouls
2014-05-04 14:03:10 ----D---- C:\Windows\SYSWOW64\xlive
2014-05-04 14:03:06 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-05-03 23:55:06 ----D---- C:\Program Files (x86)\Diablo III
2014-05-03 04:31:52 ----D---- C:\ProgramData\Recovery
2014-05-03 04:07:13 ----A---- C:\Windows\system32\Wdfres.dll
2014-05-03 04:07:13 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2014-05-03 04:02:07 ----A---- C:\Windows\system32\browserchoice.exe
2014-05-03 03:53:49 ----A---- C:\Windows\system32\WUDFSvc.dll
2014-05-03 03:53:49 ----A---- C:\Windows\system32\WUDFPlatform.dll
2014-05-03 03:53:49 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2014-05-03 03:53:49 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2014-05-03 03:53:48 ----A---- C:\Windows\system32\WUDFx.dll
2014-05-03 03:53:48 ----A---- C:\Windows\system32\WUDFHost.exe
2014-05-03 03:53:48 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2014-05-03 03:50:40 ----A---- C:\Windows\SYSWOW64\wmi.dll
2014-05-03 03:50:40 ----A---- C:\Windows\system32\wmi.dll
2014-05-03 03:50:40 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2014-05-03 03:49:36 ----D---- C:\Program Files\Microsoft Silverlight
2014-05-03 03:49:36 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-05-03 02:05:46 ----D---- C:\2-click run
2014-05-03 01:59:57 ----D---- C:\Users\Viktor\AppData\Roaming\WinRAR
2014-05-03 01:57:19 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2014-05-03 01:57:12 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2014-05-03 01:52:45 ----D---- C:\Users\Viktor\AppData\Roaming\DAEMON Tools Lite
2014-05-03 01:52:01 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-05-03 01:30:56 ----D---- C:\Downloads
2014-05-02 22:25:24 ----A---- C:\Windows\system32\oleaut32.dll
2014-05-02 22:25:24 ----A---- C:\Windows\system32\oleacc.dll
2014-05-02 22:25:23 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-05-02 22:25:23 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2014-05-02 22:25:22 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2014-05-02 22:25:22 ----A---- C:\Windows\system32\xmllite.dll
2014-05-02 22:25:06 ----A---- C:\Windows\system32\odbccu32.dll
2014-05-02 22:25:05 ----A---- C:\Windows\system32\odbctrac.dll
2014-05-02 22:25:05 ----A---- C:\Windows\system32\odbccr32.dll
2014-05-02 22:25:05 ----A---- C:\Windows\system32\odbccp32.dll
2014-05-02 22:25:04 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2014-05-02 22:25:04 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2014-05-02 22:25:04 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2014-05-02 22:25:03 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2014-05-02 22:25:03 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2014-05-02 22:24:49 ----A---- C:\Windows\system32\mstscax.dll
2014-05-02 22:24:48 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-05-02 22:24:46 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-05-02 22:24:46 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2014-05-02 22:24:46 ----A---- C:\Windows\system32\tsgqec.dll
2014-05-02 22:24:46 ----A---- C:\Windows\system32\aaclient.dll
2014-05-02 22:24:13 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-05-02 22:24:13 ----A---- C:\Windows\system32\poqexec.exe
2014-05-02 22:23:44 ----A---- C:\Windows\system32\CPFilters.dll
2014-05-02 22:23:43 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2014-05-02 22:23:42 ----A---- C:\Windows\SYSWOW64\sbe.dll
2014-05-02 22:23:42 ----A---- C:\Windows\system32\sbe.dll
2014-05-02 22:23:33 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-05-02 22:23:32 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-05-02 22:23:32 ----A---- C:\Windows\system32\quartz.dll
2014-05-02 22:23:32 ----A---- C:\Windows\system32\qdvd.dll
2014-05-02 22:22:54 ----A---- C:\Windows\system32\ntshrui.dll
2014-05-02 22:22:52 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2014-05-02 22:22:50 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-05-02 22:22:50 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-05-02 22:22:50 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-05-02 22:22:42 ----A---- C:\Windows\system32\tquery.dll
2014-05-02 22:22:41 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-05-02 22:22:41 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-05-02 22:22:41 ----A---- C:\Windows\system32\mssrch.dll
2014-05-02 22:22:40 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-05-02 22:22:40 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-05-02 22:22:40 ----A---- C:\Windows\system32\mssvp.dll
2014-05-02 22:22:39 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-05-02 22:22:39 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-05-02 22:22:39 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-05-02 22:22:39 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-05-02 22:22:39 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-05-02 22:22:39 ----A---- C:\Windows\system32\mssph.dll
2014-05-02 22:22:38 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-05-02 22:22:38 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-05-02 22:22:38 ----A---- C:\Windows\system32\mssphtb.dll
2014-05-02 22:22:38 ----A---- C:\Windows\system32\msscntrs.dll
2014-05-02 22:22:37 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2014-05-02 22:22:23 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-05-02 22:22:23 ----A---- C:\Windows\system32\webio.dll
2014-05-02 22:21:25 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-05-02 22:21:25 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-05-02 22:21:16 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-05-02 22:21:16 ----A---- C:\Windows\system32\msxml6.dll
2014-05-02 22:21:05 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2014-05-02 22:21:05 ----A---- C:\Windows\system32\XpsPrint.dll
2014-05-02 22:21:04 ----A---- C:\Windows\system32\mfc42u.dll
2014-05-02 22:21:04 ----A---- C:\Windows\system32\mfc42.dll
2014-05-02 22:21:03 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2014-05-02 22:21:03 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2014-05-02 22:21:01 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-05-02 22:21:01 ----A---- C:\Windows\system32\d3d10level9.dll
2014-05-02 22:21:00 ----A---- C:\Windows\system32\drivers\usb8023.sys
2014-05-02 22:20:57 ----A---- C:\Windows\system32\rdrmemptylst.exe
2014-05-02 22:20:57 ----A---- C:\Windows\system32\rdpwsx.dll
2014-05-02 22:20:57 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-05-02 22:20:51 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-05-02 22:20:51 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-05-02 22:20:51 ----A---- C:\Windows\system32\dnsapi.dll
2014-05-02 22:20:50 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2014-05-02 22:20:50 ----A---- C:\Windows\system32\dnscacheugc.exe
2014-05-02 22:20:29 ----A---- C:\Windows\system32\profsvc.dll
2014-05-02 22:20:29 ----A---- C:\Windows\system32\profprov.dll
2014-05-02 22:20:25 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-05-02 22:20:25 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-05-02 22:20:25 ----A---- C:\Windows\system32\drivers\srv.sys
2014-05-02 22:19:46 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2014-05-02 22:19:46 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2014-05-02 22:19:46 ----A---- C:\Windows\system32\dpnet.dll
2014-05-02 22:19:46 ----A---- C:\Windows\system32\dpnaddr.dll
2014-05-02 22:19:44 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-05-02 22:19:08 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2014-05-02 22:19:08 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2014-05-02 22:19:08 ----A---- C:\Windows\system32\d3d10_1core.dll
2014-05-02 22:19:08 ----A---- C:\Windows\system32\d3d10_1.dll
2014-05-02 22:19:06 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-05-02 22:19:06 ----A---- C:\Windows\system32\usp10.dll
2014-05-02 22:19:01 ----A---- C:\Windows\system32\Wpc.dll
2014-05-02 22:19:01 ----A---- C:\Windows\system32\gameux.dll
2014-05-02 22:19:00 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2014-05-02 22:19:00 ----A---- C:\Windows\SYSWOW64\gameux.dll
2014-05-02 22:18:46 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-05-02 22:18:46 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-05-02 22:18:46 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-05-02 22:18:46 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-05-02 22:18:46 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-05-02 22:18:46 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-05-02 22:18:44 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-05-02 22:18:44 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-05-02 22:18:44 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-05-02 22:18:44 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-05-02 22:18:43 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-05-02 22:18:43 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-05-02 22:18:43 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-05-02 22:18:43 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-05-02 22:18:41 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-05-02 22:18:41 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-05-02 22:18:40 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-05-02 22:18:40 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-05-02 22:18:40 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-05-02 22:18:40 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-05-02 22:18:40 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-05-02 22:18:40 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-05-02 22:18:39 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-05-02 22:18:39 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-05-02 22:18:39 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-05-02 22:18:39 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-05-02 22:18:39 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-05-02 22:18:39 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-05-02 22:18:38 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-05-02 22:18:38 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-05-02 22:18:37 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-05-02 22:18:37 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-05-02 22:18:37 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-05-02 22:18:37 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-05-02 22:18:36 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-05-02 22:18:36 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-05-02 22:18:36 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-05-02 22:18:36 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-05-02 22:18:35 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-05-02 22:18:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-05-02 22:18:35 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-05-02 22:18:35 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-05-02 22:18:33 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-05-02 22:18:33 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-05-02 22:18:32 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-05-02 22:18:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-05-02 22:18:32 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-05-02 22:18:32 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-05-02 22:18:31 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-05-02 22:18:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-05-02 22:18:31 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-05-02 22:18:31 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-05-02 22:18:25 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-05-02 22:18:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-05-02 22:18:25 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-05-02 22:18:25 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-05-02 22:18:24 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-05-02 22:18:24 ----A---- C:\Windows\system32\psisdecd.dll
2014-05-02 22:18:24 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-05-02 22:18:23 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2014-05-02 22:18:22 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-05-02 22:18:22 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-05-02 22:18:22 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-05-02 22:18:22 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-05-02 22:18:21 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-05-02 22:18:21 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-05-02 22:18:20 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-05-02 22:18:20 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-05-02 22:18:18 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-05-02 22:18:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-05-02 22:18:18 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-05-02 22:18:18 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-05-02 22:18:18 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-05-02 22:18:18 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-05-02 22:18:17 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-05-02 22:18:17 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-05-02 22:18:17 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-05-02 22:18:17 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-05-02 22:18:17 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-05-02 22:18:17 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-05-02 22:18:16 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-05-02 22:18:16 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-05-02 22:18:16 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-05-02 22:18:16 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-05-02 22:18:15 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-05-02 22:18:15 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-05-02 22:18:15 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-05-02 22:18:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-05-02 22:18:15 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-05-02 22:18:15 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-05-02 22:18:15 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-05-02 22:18:15 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-05-02 22:18:14 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-05-02 22:18:14 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-05-02 22:18:13 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-05-02 22:18:13 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-05-02 22:18:13 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-05-02 22:18:13 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-05-02 22:18:13 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-05-02 22:18:12 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-05-02 22:18:12 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-05-02 22:18:11 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-05-02 22:18:11 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-05-02 22:18:11 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-05-02 22:18:11 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-05-02 22:18:10 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-05-02 22:18:10 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-05-02 22:18:10 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-05-02 22:18:10 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-05-02 22:18:09 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-05-02 22:18:09 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-05-02 22:18:09 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-05-02 22:18:09 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-05-02 22:18:08 ----A---- C:\Windows\SYSWOW64\synceng.dll
2014-05-02 22:18:08 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-05-02 22:18:08 ----A---- C:\Windows\system32\synceng.dll
2014-05-02 22:18:08 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-05-02 22:18:07 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-05-02 22:18:07 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-05-02 22:18:06 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-02 22:18:06 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-05-02 22:18:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-05-02 22:18:06 ----A---- C:\Windows\system32\kerberos.dll
2014-05-02 22:18:06 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-05-02 22:18:06 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-05-02 22:18:05 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-05-02 22:18:05 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-05-02 22:18:05 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-05-02 22:18:05 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-05-02 22:18:05 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-05-02 22:18:05 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-05-02 22:18:04 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-05-02 22:18:04 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-05-02 22:18:04 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-05-02 22:18:04 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-05-02 22:18:04 ----A---- C:\Windows\system32\xinput1_3.dll
2014-05-02 22:18:04 ----A---- C:\Windows\system32\jscript.dll
2014-05-02 22:18:04 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-05-02 22:18:04 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-05-02 22:18:04 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-05-02 22:18:03 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-05-02 22:18:03 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-05-02 22:18:03 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-05-02 22:18:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-05-02 22:18:03 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-05-02 22:18:03 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-05-02 22:18:03 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-05-02 22:18:02 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-05-02 22:18:02 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-05-02 22:18:02 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-05-02 22:18:02 ----A---- C:\Windows\system32\drivers\partmgr.sys
2014-05-02 22:18:02 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-05-02 22:18:01 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-05-02 22:18:01 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-05-02 22:18:01 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-05-02 22:18:01 ----A---- C:\Windows\system32\d3dx10.dll
2014-05-02 22:17:58 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-05-02 22:17:58 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-05-02 22:17:58 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-05-02 22:17:58 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-05-02 22:17:57 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-05-02 22:17:57 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-05-02 22:17:56 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-05-02 22:17:56 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-05-02 22:17:56 ----A---- C:\Windows\system32\xinput1_2.dll
2014-05-02 22:17:56 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-05-02 22:17:55 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-05-02 22:17:55 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-05-02 22:17:55 ----A---- C:\Windows\system32\xinput1_1.dll
2014-05-02 22:17:55 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-05-02 22:17:53 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-05-02 22:17:53 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-05-02 22:17:51 ----A---- C:\Windows\system32\msi.dll
2014-05-02 22:17:50 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-05-02 22:17:46 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-05-02 22:17:46 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-05-02 22:17:41 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-05-02 22:17:41 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-05-02 22:17:41 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-05-02 22:17:41 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-05-02 22:17:41 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-05-02 22:17:41 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-05-02 22:17:40 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-05-02 22:17:40 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-05-02 22:17:40 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-05-02 22:17:40 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-05-02 22:17:39 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-05-02 22:17:39 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-05-02 22:17:39 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-05-02 22:17:39 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-05-02 22:17:37 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-05-02 22:17:37 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-05-02 22:16:25 ----A---- C:\Windows\system32\winresume.exe
2014-05-02 22:16:25 ----A---- C:\Windows\system32\winload.exe
2014-05-02 22:16:24 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-05-02 22:16:24 ----A---- C:\Windows\system32\kdusb.dll
2014-05-02 22:16:24 ----A---- C:\Windows\system32\kdcom.dll
2014-05-02 22:16:24 ----A---- C:\Windows\system32\kd1394.dll
2014-05-02 22:15:53 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-05-02 22:15:53 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2014-05-02 22:15:53 ----A---- C:\Windows\SYSWOW64\devobj.dll
2014-05-02 22:15:53 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2014-05-02 22:15:53 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-05-02 22:15:53 ----A---- C:\Windows\system32\cfgmgr32.dll
2014-05-02 22:15:40 ----A---- C:\Windows\system32\WFS.exe
2014-05-02 22:15:40 ----A---- C:\Windows\system32\FXSCOVER.exe
2014-05-02 22:15:39 ----A---- C:\Windows\system32\browser.dll
2014-05-02 22:15:38 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2014-05-02 22:15:38 ----A---- C:\Windows\SYSWOW64\browcli.dll
2014-05-02 22:15:38 ----A---- C:\Windows\system32\netapi32.dll
2014-05-02 22:15:38 ----A---- C:\Windows\system32\browcli.dll
2014-05-02 22:15:37 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-05-02 22:15:22 ----A---- C:\Windows\system32\prevhost.exe
2014-05-02 22:15:21 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-05-02 22:15:21 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2014-05-02 22:15:21 ----A---- C:\Windows\system32\srcore.dll
2014-05-02 22:15:21 ----A---- C:\Windows\system32\rstrui.exe
2014-05-02 22:15:20 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-05-02 22:15:20 ----A---- C:\Windows\system32\inetcomm.dll
2014-05-02 22:15:19 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2014-05-02 22:15:19 ----A---- C:\Windows\system32\msvcrt.dll
2014-05-02 22:15:17 ----A---- C:\Windows\system32\localspl.dll
2014-05-02 22:15:15 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-05-02 22:03:35 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2014-05-02 22:03:35 ----A---- C:\Windows\system32\EncDec.dll
2014-05-02 22:03:27 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2014-05-02 22:03:26 ----A---- C:\Windows\system32\cdosys.dll
2014-05-02 22:03:11 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-05-02 22:03:11 ----A---- C:\Windows\system32\packager.dll
2014-05-02 22:02:39 ----D---- C:\Program Files (x86)\Desktop Restore
2014-05-02 21:53:09 ----A---- C:\Windows\system32\rdpcore.dll
2014-05-02 21:53:08 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-05-02 21:53:08 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-05-02 21:49:01 ----D---- C:\Program Files (x86)\Adobe
2014-05-02 21:38:33 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-02 21:38:28 ----D---- C:\Windows\system32\Macromed
2014-05-02 21:30:32 ----A---- C:\Windows\SYSWOW64\RaCoInst.dat
2014-05-02 21:30:32 ----A---- C:\Windows\system32\RaCoInst.dat
2014-05-02 21:29:39 ----D---- C:\Users\Viktor\AppData\Roaming\InstallShield
2014-05-02 21:25:28 ----D---- C:\Program Files\ATI Technologies
2014-05-02 20:27:29 ----A---- C:\Windows\system32\wups2.dll
2014-05-02 20:27:29 ----A---- C:\Windows\system32\wuauclt.exe
2014-05-02 20:27:28 ----A---- C:\Windows\system32\wucltux.dll
2014-05-02 20:27:27 ----A---- C:\Windows\system32\wuaueng.dll
2014-05-02 20:27:19 ----A---- C:\Windows\system32\wups.dll
2014-05-02 20:27:19 ----A---- C:\Windows\system32\wudriver.dll
2014-05-02 20:27:19 ----A---- C:\Windows\system32\wuapi.dll
2014-05-02 20:27:06 ----A---- C:\Windows\system32\wuwebv.dll
2014-05-02 20:27:05 ----A---- C:\Windows\system32\wuapp.exe
2014-05-02 19:51:08 ----D---- C:\Program Files\VideoLAN
2014-05-02 19:50:01 ----D---- C:\Program Files\WinRAR
2014-05-02 19:44:48 ----D---- C:\Program Files\CCleaner
2014-05-02 19:42:13 ----D---- C:\Program Files (x86)\Hearthstone
2014-05-02 19:39:16 ----D---- C:\Users\Viktor\AppData\Roaming\BitComet
2014-05-02 19:39:15 ----D---- C:\Program Files (x86)\BitComet
2014-05-02 19:37:22 ----D---- C:\Users\Viktor\AppData\Roaming\Battle.net
2014-05-02 19:37:13 ----D---- C:\ProgramData\Blizzard Entertainment
2014-05-02 19:37:13 ----D---- C:\Program Files (x86)\Battle.net
2014-05-02 19:34:09 ----D---- C:\ProgramData\Battle.net
2014-05-02 19:32:46 ----D---- C:\Program Files (x86)\Microsoft Works
2014-05-02 19:32:18 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-02 19:32:10 ----D---- C:\Program Files (x86)\Steam
2014-05-02 19:30:17 ----D---- C:\Program Files\Microsoft Office
2014-05-02 19:29:59 ----D---- C:\Windows\SHELLNEW
2014-05-02 19:29:48 ----D---- C:\ProgramData\Microsoft Help
2014-05-02 19:29:48 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-02 19:29:25 ----RHD---- C:\MSOCache
2014-05-02 19:11:02 ----D---- C:\Program Files\CPUID
2014-05-02 19:06:59 ----D---- C:\Program Files\Defraggler
2014-05-02 19:04:56 ----D---- C:\Users\Viktor\AppData\Roaming\AVAST Software
2014-05-02 19:04:21 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-05-02 19:04:21 ----A---- C:\Windows\system32\drivers\aswstm.sys
2014-05-02 19:04:21 ----A---- C:\Windows\system32\drivers\aswsp.sys
2014-05-02 19:04:21 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2014-05-02 19:04:21 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-05-02 19:04:21 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2014-05-02 19:04:21 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-05-02 19:04:21 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2014-05-02 19:04:20 ----A---- C:\Windows\system32\aswBoot.exe
2014-05-02 19:04:18 ----A---- C:\Windows\avastSS.scr
2014-05-02 19:02:44 ----D---- C:\Program Files\AVAST Software
2014-05-02 19:02:05 ----D---- C:\ProgramData\AVAST Software
2014-05-02 18:56:42 ----N---- C:\Windows\system32\MpSigStub.exe
2014-05-02 18:54:58 ----D---- C:\Users\Viktor\AppData\Roaming\Opera Software
2014-05-02 18:54:56 ----D---- C:\Program Files (x86)\Opera
2014-05-02 18:53:25 ----D---- C:\Users\Viktor\AppData\Roaming\Macromedia
2014-05-02 18:53:24 ----D---- C:\Users\Viktor\AppData\Roaming\Adobe
2014-05-02 18:50:32 ----D---- C:\Users\Viktor\AppData\Roaming\ATI
2014-05-02 18:49:32 ----D---- C:\Users\Viktor\AppData\Roaming\hpqLog
2014-05-02 18:49:14 ----D---- C:\Users\Viktor\AppData\Roaming\Identities
2014-05-02 18:45:33 ----D---- C:\Users\Viktor\AppData\Roaming\Hewlett-Packard
2014-05-02 18:43:54 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-05-02 18:43:54 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-05-02 18:43:50 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-05-02 18:42:46 ----D---- C:\Program Files (x86)\Windows Live
2014-05-02 18:42:34 ----D---- C:\Windows\PCHEALTH
2014-05-02 18:40:35 ----D---- C:\ProgramData\Adobe
2014-05-02 18:39:38 ----D---- C:\Users\Viktor\AppData\Roaming\DigitalPersona
2014-05-02 18:39:25 ----SD---- C:\Users\Viktor\AppData\Roaming\Microsoft
2014-05-02 18:39:25 ----D---- C:\Users\Viktor\AppData\Roaming\Media Center Programs
2014-05-02 18:39:09 ----SHD---- C:\ProgramData\Šablony
2014-05-02 18:39:09 ----SHD---- C:\ProgramData\Plocha
2014-05-02 18:39:09 ----SHD---- C:\ProgramData\Oblíbené položky
2014-05-02 18:39:09 ----SHD---- C:\ProgramData\Nabídka Start
2014-05-02 18:39:09 ----SHD---- C:\ProgramData\Dokumenty
2014-05-02 18:39:09 ----SHD---- C:\ProgramData\Data aplikací
2014-05-02 18:32:48 ----SHD---- C:\System Volume Information
2014-05-02 18:32:48 ----ASH---- C:\pagefile.sys
2014-05-02 18:32:43 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2014-05-16 00:44:44 ----D---- C:\Windows\Temp
2014-05-16 00:44:39 ----RD---- C:\Program Files
2014-05-16 00:36:50 ----D---- C:\Windows\inf
2014-05-16 00:36:46 ----D---- C:\Windows\Logs
2014-05-16 00:36:46 ----D---- C:\Windows
2014-05-16 00:36:01 ----D---- C:\Windows\Prefetch
2014-05-15 20:32:10 ----D---- C:\Windows\system32\config
2014-05-15 20:12:26 ----D---- C:\Windows\system32\drivers
2014-05-15 20:11:25 ----D---- C:\Windows\system32\wdi
2014-05-14 12:38:24 ----D---- C:\Windows\System32
2014-05-14 12:38:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-14 12:34:36 ----A---- C:\Windows\SYSWOW64\log.txt
2014-05-14 02:08:32 ----D---- C:\Windows\SysWOW64
2014-05-14 00:48:43 ----SHD---- C:\Windows\Installer
2014-05-11 21:43:45 ----RSD---- C:\Windows\assembly
2014-05-11 18:40:35 ----D---- C:\Windows\rescache
2014-05-11 18:17:53 ----D---- C:\Windows\Microsoft.NET
2014-05-11 16:17:56 ----D---- C:\Windows\winsxs
2014-05-11 16:05:17 ----D---- C:\Windows\SoftwareDistribution
2014-05-11 16:00:12 ----D---- C:\Windows\system32\catroot2
2014-05-11 15:56:55 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-11 15:56:54 ----D---- C:\Program Files\Windows Media Player
2014-05-11 15:56:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-11 15:56:53 ----D---- C:\Windows\system32\cs-CZ
2014-05-11 15:56:53 ----D---- C:\Windows\AppPatch
2014-05-11 15:56:50 ----D---- C:\Program Files\Windows Defender
2014-05-11 15:56:50 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-11 15:56:45 ----D---- C:\Windows\SYSWOW64\migration
2014-05-11 15:56:45 ----D---- C:\Windows\system32\migration
2014-05-11 15:56:11 ----D---- C:\Windows\system32\DriverStore
2014-05-11 15:53:06 ----D---- C:\Windows\system32\catroot
2014-05-11 15:45:19 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-11 15:45:19 ----D---- C:\Windows\system32\en-US
2014-05-11 15:44:58 ----SD---- C:\ProgramData\Microsoft
2014-05-11 15:29:24 ----D---- C:\Program Files (x86)
2014-05-11 14:55:10 ----RSD---- C:\Windows\Fonts
2014-05-10 16:45:51 ----D---- C:\Windows\Panther
2014-05-10 16:45:50 ----D---- C:\Windows\debug
2014-05-08 20:08:21 ----D---- C:\Windows\system32\drivers\UMDF
2014-05-08 14:49:41 ----HD---- C:\ProgramData
2014-05-08 14:46:16 ----D---- C:\Program Files\Common Files
2014-05-08 14:46:16 ----D---- C:\Program Files (x86)\Common Files
2014-05-08 14:45:47 ----D---- C:\Program Files (x86)\ATI Technologies
2014-05-08 14:45:17 ----D---- C:\Windows\LiveKernelReports
2014-05-05 01:08:53 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-05-05 01:08:53 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-05-05 01:08:53 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-05-05 01:08:53 ----D---- C:\Program Files (x86)\Windows Mail
2014-05-05 01:08:53 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-05 01:08:52 ----D---- C:\Program Files\Windows Sidebar
2014-05-05 01:08:52 ----D---- C:\Program Files\Windows Mail
2014-05-05 01:08:49 ----D---- C:\Program Files\Windows Portable Devices
2014-05-05 01:08:49 ----D---- C:\Program Files\Internet Explorer
2014-05-05 01:08:49 ----D---- C:\Program Files\DVD Maker
2014-05-05 01:08:48 ----D---- C:\Program Files\Windows Photo Viewer
2014-05-05 01:08:48 ----D---- C:\Program Files\Common Files\System
2014-05-05 01:08:47 ----D---- C:\Windows\servicing
2014-05-05 01:08:47 ----D---- C:\Windows\ehome
2014-05-05 01:08:43 ----D---- C:\Windows\SYSWOW64\Setup
2014-05-05 01:08:43 ----D---- C:\Windows\SYSWOW64\oobe
2014-05-05 01:08:43 ----D---- C:\Windows\SYSWOW64\da-DK
2014-05-05 01:08:43 ----D---- C:\Windows\SYSWOW64\cs
2014-05-05 01:08:43 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2014-05-05 01:08:42 ----D---- C:\Windows\SYSWOW64\wbem
2014-05-05 01:08:42 ----D---- C:\Windows\SYSWOW64\sppui
2014-05-05 01:08:42 ----D---- C:\Windows\SYSWOW64\migwiz
2014-05-05 01:08:42 ----D---- C:\Windows\SYSWOW64\manifeststore
2014-05-05 01:08:42 ----D---- C:\Windows\SYSWOW64\es-ES
2014-05-05 01:08:42 ----D---- C:\Windows\SYSWOW64\Dism
2014-05-05 01:08:27 ----D---- C:\Windows\system32\Setup
2014-05-05 01:08:27 ----D---- C:\Windows\system32\oobe
2014-05-05 01:08:27 ----D---- C:\Windows\system32\da-DK
2014-05-05 01:08:27 ----D---- C:\Windows\system32\cs
2014-05-05 01:08:27 ----D---- C:\Windows\system32\AdvancedInstallers
2014-05-05 01:08:27 ----D---- C:\Windows\PolicyDefinitions
2014-05-05 01:08:26 ----D---- C:\Windows\system32\sppui
2014-05-05 01:08:26 ----D---- C:\Windows\system32\manifeststore
2014-05-05 01:08:26 ----D---- C:\Windows\system32\es-ES
2014-05-05 01:08:25 ----D---- C:\Windows\system32\wbem
2014-05-05 01:08:25 ----D---- C:\Windows\system32\migwiz
2014-05-05 01:08:25 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-05-05 01:08:25 ----D---- C:\Windows\system32\Dism
2014-05-05 01:08:07 ----D---- C:\Windows\system32\Boot
2014-05-05 01:05:04 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2014-05-05 01:05:04 ----A---- C:\Windows\system32\msclmd.dll
2014-05-05 00:56:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-04 09:02:15 ----D---- C:\Windows\SYSWOW64\winrm
2014-05-04 09:02:15 ----D---- C:\Windows\SYSWOW64\slmgr
2014-05-04 09:02:15 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-05-04 09:02:15 ----D---- C:\Windows\SYSWOW64\en
2014-05-04 09:02:11 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2014-05-04 09:02:11 ----D---- C:\Windows\SYSWOW64\drivers
2014-05-04 09:02:10 ----D---- C:\Windows\SYSWOW64\WCN
2014-05-04 09:02:10 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-05-04 09:02:10 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-05-04 09:02:09 ----D---- C:\Windows\system32\winrm
2014-05-04 09:02:09 ----D---- C:\Windows\system32\sysprep
2014-05-04 09:02:09 ----D---- C:\Windows\system32\slmgr
2014-05-04 09:02:09 ----D---- C:\Windows\system32\sk-SK
2014-05-04 09:02:09 ----D---- C:\Windows\system32\en
2014-05-04 09:02:09 ----D---- C:\Windows\en-US
2014-05-04 09:02:02 ----D---- C:\Windows\system32\WCN
2014-05-04 09:02:02 ----D---- C:\Windows\system32\drivers\en-US
2014-05-04 09:02:00 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-05-04 09:01:46 ----D---- C:\Windows\Speech
2014-05-04 02:36:59 ----D---- C:\Windows\system32\Tasks
2014-05-03 15:28:21 ----D---- C:\Windows\system32\NDF
2014-05-02 22:26:53 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-05-02 21:38:36 ----D---- C:\Windows\Tasks
2014-05-02 20:16:12 ----D---- C:\Windows\system32\LogFiles
2014-05-02 19:27:14 ----D---- C:\ProgramData\Norton
2014-05-02 19:22:48 ----D---- C:\Program Files (x86)\Hewlett-Packard
2014-05-02 19:00:28 ----D---- C:\Program Files (x86)\HP Games
2014-05-02 19:00:25 ----D---- C:\ProgramData\WildTangent
2014-05-02 18:49:12 ----SHD---- C:\$Recycle.Bin
2014-05-02 18:49:08 ----D---- C:\SwSetup
2014-05-02 18:45:24 ----RD---- C:\Program Files (x86)\Online Services
2014-05-02 18:44:55 ----D---- C:\Windows\system32\restore
2014-05-02 18:44:54 ----HD---- C:\SYSTEM.SAV
2014-05-02 18:44:51 ----SHD---- C:\Recovery
2014-05-02 18:44:51 ----D---- C:\Windows\system32\Recovery
2014-05-02 18:39:22 ----RD---- C:\Users
2014-05-02 18:39:09 ----D---- C:\Program Files\Windows NT

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-05-02 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-05-02 208416]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 30008]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-04-13 540696]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-05-02 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 423240]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-05-03 283064]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-05-02 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-05-02 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-15 85328]
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 41272]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-04-06 11174400]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-04-06 343040]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
R3 clwvd;HP Webcam Splitter; C:\Windows\system32\DRIVERS\clwvd.sys [2010-06-24 32880]
R3 cpuz137;cpuz137; \??\C:\Users\Viktor\AppData\Local\Temp\cpuz137\cpuz137_x64.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-05-01 56344]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2009-10-26 151936]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2010-07-27 10610400]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2011-04-21 1360960]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-06-18 515584]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-05-28 320560]
R3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 BTMCOM;Bluetooth Serial Port; C:\Windows\System32\Drivers\btmcom.sys [2010-04-09 52736]
S3 BTMUSB;Motorola Bluetooth Radio Service; C:\Windows\System32\Drivers\btmusb.sys [2010-06-29 3232768]
S3 cpuz136;cpuz136; \??\C:\Users\Viktor\AppData\Local\Temp\cpuz136\cpuz136_x64.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-07-27 10610400]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-01-12 232992]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-05 346144]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-04-06 236544]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-02 50344]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files\Motorola\Bluetooth\obexsrv.exe [2010-05-20 677128]
R2 DpHost;@C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2010-04-23 445192]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-06-18 103992]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-06-25 92216]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2009-07-08 30520]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-06-29 27192]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-06-16 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-05-01 325656]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2010-06-18 258048]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-01 2533400]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-02-23 2192176]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service; C:\Program Files (x86)\BitComet\tools\BitCometService.exe [2010-12-28 1296728]
R3 Bluetooth Device Manager;Bluetooth Device Manager; C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe [2010-06-29 4181256]
R3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files\Motorola\Bluetooth\audiosrv.exe [2010-05-20 1096968]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-09-16 1028096]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2010-06-25 665656]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14 257712]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-09-16 647680]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-02-08 569024]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vir v PC se vrátil

#3 Příspěvek od Márty84 »

Zdravim :)

V prvnim pripade jste si hned sam nekolikrat odpovedel, takze to vypadalo, ze uz se tema resi. Jelikoz casu je malo, hledame prednostne temata bez odpovedi.

V tom druhem pripade vam bylo doporuceno kontaktovat technickou podporu Microsoftu. Udelal jste to?


:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.


:arrow: Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Vir v PC se vrátil

#4 Příspěvek od motji »

Omlouvám se Martymu za vstup.

Když si sám odpovíte na první příspěvek, tak nám zapadnete mezi zodpovězené topicy. Pokud se Vám nikdo z rádců do 24hodin neozve, prosím kontaktujte mě nebo někoho z moderátorů na email, rádi se na problém podíváme :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Pheliox
Návštěvník
Návštěvník
Příspěvky: 85
Registrován: 06 srp 2012 11:28

Re: Vir v PC se vrátil

#5 Příspěvek od Pheliox »

Děkuji za vysvětlení, už si nebudu odpovídat.
Jak jsem Vám napsal, tak jsem považoval po druhém reinstalu windows problém za vyřešený, takže jsem podporu zatím nekontaktoval.
¨
# AdwCleaner v3.208 - Report created 16/05/2014 at 15:23:13
# Updated 11/05/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Viktor - VIKTOR-HP
# Running from : C:\Users\Viktor\Desktop\adwcleaner_3.208.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


*************************

AdwCleaner[R0].txt - [637 octets] - [16/05/2014 15:20:58]
AdwCleaner[S0].txt - [559 octets] - [16/05/2014 15:23:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [618 octets] ##########


Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 16.5.2014
Scan Time: 15:37:16
Logfile: fffffff.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.05.16.08
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Viktor

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 256158
Time Elapsed: 9 min, 20 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 1
PUP.Optional.Somoto, C:\Users\Viktor\Downloads\x360ce_vibmod_3_downloader-ffTFEA2V.exe, , [c058e46ec6b54aec21a51ebbe320e020],

Physical Sectors: 0
(No malicious items detected)


(end)
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vir v PC se vrátil

#6 Příspěvek od Márty84 »

:arrow: Nalez MBAM nechte odstranit, pak MBAM odinstalujte.


:!: Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
:arrow: Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Pheliox
Návštěvník
Návštěvník
Příspěvky: 85
Registrován: 06 srp 2012 11:28

Re: Vir v PC se vrátil

#7 Příspěvek od Pheliox »

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Viktor [Práva správce]
Mód : Kontrola -- Datum : 05/16/2014 23:35:58
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 7 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_TrackProgs (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 3 ¤¤¤
[V2][SUSP PATH] Registration : "C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe" - Registration ShowMessageTask2D [7][-] -> NALEZENO
[V2][SUSP PATH] {0A6F7EE7-113F-4CF0-B794-9AED8EA71F58} : C:\Users\Viktor\Desktop\polda_1_winXP\polda.exe [x] -> NALEZENO
[V2][SUSP PATH] {6E98EDB1-F4B2-48EB-BF50-BF658C309E62} : C:\Users\Viktor\Desktop\polda_1_winXP\polda.exe [x] -> NALEZENO

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) TOSHIBA MK5056GSY +++++
--- User ---
[MBR] b2f6582b943ccf70dd2e6a2d34fec3af
[BSP] bdf45abec9fbf25c6845b1247dc9465b : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 456093 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 934488064 | Size: 20543 MB
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_05162014_233558.txt >>
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vir v PC se vrátil

#8 Příspěvek od Márty84 »

:arrow: Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Pheliox
Návštěvník
Návštěvník
Příspěvky: 85
Registrován: 06 srp 2012 11:28

Re: Vir v PC se vrátil

#9 Příspěvek od Pheliox »

Dovolím si nahrát screen chyby, kterou mi to vyhodilo před spuštěním RK.

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Viktor [Práva správce]
Mód : Oprava HOSTS -- Datum : 05/17/2014 02:45:10
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost


Dokončeno : << RKreport[0]_H_05172014_024510.txt >>
RKreport[0]_S_05162014_233558.txt;RKreport[0]_S_05172014_024422.txt
Přílohy
aaaaaa.png
aaaaaa.png (18.96 KiB) Zobrazeno 2096 x
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vir v PC se vrátil

#10 Příspěvek od Márty84 »

A druhy log?
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Pheliox
Návštěvník
Návštěvník
Příspěvky: 85
Registrován: 06 srp 2012 11:28

Re: Vir v PC se vrátil

#11 Příspěvek od Pheliox »

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Viktor [Práva správce]
Mód : Odebrat -- Datum : 05/17/2014 14:09:24
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 7 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_TrackProgs (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 3 ¤¤¤
[V2][SUSP PATH] Registration : "C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe" - Registration ShowMessageTask2D [7][-] -> VYMAZÁNO
[V2][SUSP PATH] {0A6F7EE7-113F-4CF0-B794-9AED8EA71F58} : C:\Users\Viktor\Desktop\polda_1_winXP\polda.exe [x] -> VYMAZÁNO
[V2][SUSP PATH] {6E98EDB1-F4B2-48EB-BF50-BF658C309E62} : C:\Users\Viktor\Desktop\polda_1_winXP\polda.exe [x] -> VYMAZÁNO

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) TOSHIBA MK5056GSY +++++
--- User ---
[MBR] b2f6582b943ccf70dd2e6a2d34fec3af
[BSP] bdf45abec9fbf25c6845b1247dc9465b : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 456093 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 934488064 | Size: 20543 MB
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_05172014_140924.txt >>
RKreport[0]_S_05172014_140827.txt



RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Viktor [Práva správce]
Mód : Oprava HOSTS -- Datum : 05/17/2014 14:09:52
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost


Dokončeno : << RKreport[0]_H_05172014_140952.txt >>
RKreport[0]_D_05172014_140924.txt;RKreport[0]_S_05172014_140827.txt
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vir v PC se vrátil

#12 Příspěvek od Márty84 »

:!: Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.) :!:

:!: Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

:arrow: Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

:!: Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
:!: Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Pheliox
Návštěvník
Návštěvník
Příspěvky: 85
Registrován: 06 srp 2012 11:28

Re: Vir v PC se vrátil

#13 Příspěvek od Pheliox »

restart se nekonal.

ComboFix 14-05-16.01 - Viktor 17.05.2014 21:20:54.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3894.2323 [GMT 2:00]
Spuštěný z: c:\users\Viktor\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-17 do 2014-05-17 )))))))))))))))))))))))))))))))
.
.
2014-05-17 19:28 . 2014-05-17 19:28 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-05-17 13:26 . 2014-05-17 13:28 -------- d-----w- c:\programdata\Package Cache
2014-05-17 12:24 . 2014-05-17 12:27 -------- d-----w- c:\program files (x86)\FotballManager
2014-05-16 13:26 . 2014-05-16 21:13 119512 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-16 13:25 . 2014-05-16 13:25 -------- d-----w- c:\programdata\Malwarebytes
2014-05-16 13:19 . 2014-05-16 13:23 -------- d-----w- C:\AdwCleaner
2014-05-16 01:10 . 2014-05-16 01:10 -------- d-----w- c:\program files (x86)\MSXML 4.0
2014-05-16 01:01 . 2014-04-17 03:31 10651704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6D2BF93E-14B7-4871-ACBE-5C0AEDAECBB2}\mpengine.dll
2014-05-16 00:55 . 2011-02-25 06:19 2871808 ----a-w- c:\windows\explorer.exe
2014-05-16 00:55 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\SysWow64\explorer.exe
2014-05-16 00:54 . 2014-05-09 06:14 477184 ----a-w- c:\windows\system32\aepdu.dll
2014-05-16 00:54 . 2014-05-09 06:11 424448 ----a-w- c:\windows\system32\aeinv.dll
2014-05-16 00:54 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2014-05-16 00:54 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2014-05-15 22:44 . 2014-05-15 22:44 -------- d-----w- c:\program files\trend micro
2014-05-15 22:44 . 2014-05-15 22:44 -------- d-----w- C:\rsit
2014-05-11 13:56 . 2014-05-16 01:50 -------- d-s---w- c:\windows\system32\CompatTel
2014-05-11 13:52 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2014-05-11 13:52 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2014-05-11 13:52 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-05-11 13:52 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-05-11 13:52 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2014-05-11 13:44 . 2014-05-16 21:30 -------- d-----w- c:\windows\Migration
2014-05-11 12:40 . 2013-07-26 02:24 197120 ----a-w- c:\windows\system32\shdocvw.dll
2014-05-11 12:39 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2014-05-11 12:38 . 2013-10-03 02:23 404480 ----a-w- c:\windows\system32\gdi32.dll
2014-05-11 12:38 . 2013-10-03 02:00 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2014-05-11 12:38 . 2013-06-15 04:32 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2014-05-11 12:38 . 2013-07-03 04:05 76800 ----a-w- c:\windows\system32\drivers\hidclass.sys
2014-05-11 12:38 . 2013-07-03 04:05 32896 ----a-w- c:\windows\system32\drivers\hidparse.sys
2014-05-11 12:38 . 2013-08-02 02:12 43520 ----a-w- c:\windows\system32\csrsrv.dll
2014-05-11 12:38 . 2013-08-02 00:59 112640 ----a-w- c:\windows\system32\smss.exe
2014-05-11 12:38 . 2013-08-02 02:12 6656 ----a-w- c:\windows\system32\apisetschema.dll
2014-05-11 12:38 . 2013-08-02 01:48 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2014-05-11 12:36 . 2012-10-03 17:44 246272 ----a-w- c:\windows\system32\netcorehc.dll
2014-05-11 12:36 . 2012-10-03 17:44 216576 ----a-w- c:\windows\system32\ncsi.dll
2014-05-11 12:36 . 2012-10-03 17:42 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2014-05-11 12:36 . 2012-10-03 16:42 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2014-05-11 12:36 . 2012-10-03 17:44 70656 ----a-w- c:\windows\system32\nlaapi.dll
2014-05-11 12:36 . 2012-10-03 17:44 303104 ----a-w- c:\windows\system32\nlasvc.dll
2014-05-11 12:36 . 2012-10-03 17:44 18944 ----a-w- c:\windows\system32\netevent.dll
2014-05-11 12:36 . 2012-10-03 16:42 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2014-05-11 12:36 . 2012-10-03 16:42 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2014-05-11 12:36 . 2012-10-03 16:07 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2014-05-11 12:36 . 2012-01-13 07:12 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2014-05-11 12:34 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2014-05-11 12:34 . 2013-05-13 03:08 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2014-05-11 12:34 . 2013-05-13 05:50 52224 ----a-w- c:\windows\system32\certenc.dll
2014-05-11 12:34 . 2013-05-13 03:08 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2014-05-11 12:30 . 2014-01-24 02:37 1684928 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-05-11 12:30 . 2013-08-27 09:01 1545728 ----a-w- c:\windows\system32\DWrite.dll
2014-05-11 12:30 . 2013-08-27 09:01 1143296 ----a-w- c:\windows\system32\FntCache.dll
2014-05-11 12:30 . 2013-08-27 08:21 1077760 ----a-w- c:\windows\SysWow64\DWrite.dll
2014-05-11 12:30 . 2013-10-12 02:32 150016 ----a-w- c:\windows\system32\wshom.ocx
2014-05-11 12:30 . 2013-10-12 02:31 202752 ----a-w- c:\windows\system32\scrrun.dll
2014-05-11 12:30 . 2013-10-12 02:04 121856 ----a-w- c:\windows\SysWow64\wshom.ocx
2014-05-11 12:30 . 2013-10-12 02:03 163840 ----a-w- c:\windows\SysWow64\scrrun.dll
2014-05-11 12:30 . 2013-10-12 01:33 156160 ----a-w- c:\windows\system32\cscript.exe
2014-05-11 12:30 . 2013-10-12 01:33 168960 ----a-w- c:\windows\system32\wscript.exe
2014-05-11 12:30 . 2013-10-12 01:15 141824 ----a-w- c:\windows\SysWow64\wscript.exe
2014-05-11 12:30 . 2013-10-12 01:15 126976 ----a-w- c:\windows\SysWow64\cscript.exe
2014-05-11 12:27 . 2013-10-12 02:29 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-05-11 12:27 . 2013-10-12 02:29 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-05-11 12:27 . 2013-10-12 02:30 830464 ----a-w- c:\windows\system32\nshwfp.dll
2014-05-11 12:27 . 2013-10-12 02:03 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
2014-05-11 12:27 . 2013-10-12 02:01 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2014-05-11 12:26 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
2014-05-11 12:26 . 2013-08-01 12:09 983488 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-05-11 12:26 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2014-05-11 12:26 . 2011-02-03 11:25 144384 ----a-w- c:\windows\system32\cdd.dll
2014-05-11 01:37 . 2012-01-22 15:25 916992 ----a-w- C:\Automatické Vypnutí PC.exe
2014-05-08 12:49 . 2014-05-08 12:49 -------- d-----w- c:\programdata\ATI
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\programdata\AMD
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\program files (x86)\AMD AVT
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\program files (x86)\AMD APP
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\program files\Common Files\ATI Technologies
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2014-05-04 22:54 . 2014-05-04 22:54 -------- d-----w- c:\windows\cs
2014-05-04 22:52 . 2014-05-04 22:52 23264 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-05-04 22:52 . 2014-05-04 22:52 -------- d-----w- c:\program files\Windows Live
2014-05-04 22:40 . 2014-05-04 22:40 -------- d-----w- c:\windows\system32\SPReview
2014-05-04 22:38 . 2014-05-04 22:38 -------- d-----w- c:\windows\system32\EventProviders
2014-05-04 22:35 . 2014-05-04 22:46 -------- d-----w- c:\programdata\Freemake
2014-05-04 22:35 . 2014-05-04 22:35 -------- d-----w- c:\program files (x86)\Freemake
2014-05-04 22:34 . 2014-05-16 01:04 -------- d-----w- c:\windows\system32\MRT
2014-05-04 22:29 . 2010-11-20 13:27 1188864 ----a-w- c:\windows\system32\wininet.dll
2014-05-04 22:28 . 2010-11-20 13:33 289664 ----a-w- c:\windows\system32\drivers\fltMgr.sys
2014-05-04 22:27 . 2010-11-20 13:27 414720 ----a-w- c:\windows\system32\wlanmsm.dll
2014-05-04 22:26 . 2010-11-20 13:02 7168 ----a-w- c:\windows\system32\KBDUS.DLL
2014-05-04 22:23 . 2010-11-20 13:27 529408 ----a-w- c:\windows\system32\wbemcomn.dll
2014-05-04 20:47 . 2014-05-05 16:32 -------- d-----w- c:\program files (x86)\Pro Evolution Soccer 2013
2014-05-04 20:47 . 2014-05-04 20:47 -------- d-----w- c:\programdata\KONAMI
2014-05-04 12:03 . 2014-05-07 09:04 -------- d-----w- c:\program files (x86)\DarkSouls
2014-05-04 12:03 . 2014-05-04 12:03 -------- d-----w- c:\windows\SysWow64\xlive
2014-05-04 12:03 . 2014-05-04 12:03 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2014-05-03 21:55 . 2014-05-04 01:40 -------- d-----w- c:\program files (x86)\Diablo III
2014-05-03 02:31 . 2014-05-03 02:31 -------- d-----w- c:\programdata\Recovery
2014-05-03 02:07 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2014-05-03 02:07 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2014-05-03 02:07 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2014-05-03 02:02 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2014-05-03 01:58 . 2014-05-03 01:58 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2014-05-03 01:53 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2014-05-03 01:53 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2014-05-03 01:53 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2014-05-03 01:53 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2014-05-03 01:53 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2014-05-03 01:53 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2014-05-03 01:53 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2014-05-03 01:50 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2014-05-03 01:50 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2014-05-03 01:50 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2014-05-03 01:49 . 2014-05-03 01:49 -------- d-----w- c:\program files\Microsoft Silverlight
2014-05-03 01:49 . 2014-05-03 01:49 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2014-05-03 00:05 . 2014-05-03 00:05 -------- d-----w- C:\2-click run
2014-05-02 23:57 . 2014-05-02 23:57 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-05-02 23:57 . 2014-05-02 23:57 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2014-05-02 23:52 . 2014-05-04 20:45 -------- d-----w- c:\programdata\DAEMON Tools Lite
2014-05-02 23:30 . 2014-05-17 01:02 -------- d-----w- C:\Downloads
2014-05-02 20:24 . 2011-10-01 05:45 886784 ----a-w- c:\program files\Common Files\System\wab32.dll
2014-05-02 20:24 . 2011-10-01 04:37 708608 ----a-w- c:\program files (x86)\Common Files\System\wab32.dll
2014-05-02 20:24 . 2013-02-15 06:06 3717632 ----a-w- c:\windows\system32\mstscax.dll
2014-05-02 20:24 . 2013-02-15 04:37 3217408 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-05-02 20:24 . 2013-02-15 06:08 44032 ----a-w- c:\windows\system32\tsgqec.dll
2014-05-02 20:24 . 2013-02-15 06:02 158720 ----a-w- c:\windows\system32\aaclient.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-04 23:05 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2014-05-04 23:05 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2014-03-31 20:46 . 2014-03-31 20:46 130712 ----a-w- c:\windows\SysWow64\MSSTDFMT.DLL
2014-03-31 20:46 . 2014-03-31 20:46 1070232 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2014-03-04 09:17 . 2014-05-11 12:37 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2014-02-20 16:14 . 2014-02-20 16:14 15453904 ----a-w- c:\windows\SysWow64\xlive.dll
2014-02-20 16:14 . 2014-02-20 16:14 13642960 ----a-w- c:\windows\SysWow64\xlivefnt.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-06-16 2736128]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2014-03-04 3696912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-06-29 602168]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-05-02 3873704]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 641664]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files (x86)\BitComet\tools\BitCometService.exe;c:\program files (x86)\BitComet\tools\BitCometService.exe [x]
R3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys;c:\windows\SYSNATIVE\Drivers\btmcom.sys [x]
R3 BTMUSB;Motorola Bluetooth Radio Service;c:\windows\system32\Drivers\btmusb.sys;c:\windows\SYSNATIVE\Drivers\btmusb.sys [x]
R3 cpuz136;cpuz136;c:\users\Viktor\AppData\Local\Temp\cpuz136\cpuz136_x64.sys;c:\users\Viktor\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [x]
R3 cpuz137;cpuz137;c:\users\Viktor\AppData\Local\Temp\cpuz137\cpuz137_x64.sys;c:\users\Viktor\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files\Motorola\Bluetooth\obexsrv.exe;c:\program files\Motorola\Bluetooth\obexsrv.exe [x]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 Bluetooth Device Manager;Bluetooth Device Manager;c:\program files\Motorola\Bluetooth\devmgrsrv.exe;c:\program files\Motorola\Bluetooth\devmgrsrv.exe [x]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files\Motorola\Bluetooth\audiosrv.exe;c:\program files\Motorola\Bluetooth\audiosrv.exe [x]
S3 clwvd;HP Webcam Splitter;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-06-16 11:38 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-02 00:08]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-05-02 17:04 290888 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-06-18 487424]
"BTMTrayAgent"="c:\program files\Motorola\Bluetooth\btmshell.dll" [2010-06-10 24783624]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-06-18 8192]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-07-27 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-07-27 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-07-27 415256]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.bing.com
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.bing.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
TCP: DhcpNameServer = 192.168.1.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_13_0_0_214_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_13_0_0_214_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.13"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_13_0_0_214.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-05-17 21:30:10
ComboFix-quarantined-files.txt 2014-05-17 19:30
.
Před spuštěním: Volných bajtů: 357 554 204 672
Po spuštění: Volných bajtů: 357 190 443 008
.
- - End Of File - - E00684630D1C97473C74559FE977ED4A
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Vir v PC se vrátil

#14 Příspěvek od Márty84 »

Vypnete trvale Windows Defender


Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=-
"DAEMON Tools Lite"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Reboot::
Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

:!: Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
:!: Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Pheliox
Návštěvník
Návštěvník
Příspěvky: 85
Registrován: 06 srp 2012 11:28

Re: Vir v PC se vrátil

#15 Příspěvek od Pheliox »

ComboFix 14-05-16.01 - Viktor 18.05.2014 12:05:07.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3894.1798 [GMT 2:00]
Spuštěný z: c:\users\Viktor\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Viktor\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-18 do 2014-05-18 )))))))))))))))))))))))))))))))
.
.
2014-05-18 10:12 . 2014-05-18 10:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-05-17 20:37 . 2014-05-17 20:37 -------- d-----w- c:\programdata\Steam
2014-05-17 20:37 . 2014-05-17 20:37 -------- d-----w- c:\programdata\Orbit
2014-05-17 20:35 . 2014-05-17 20:39 -------- d-----w- c:\program files (x86)\Child of Light
2014-05-17 13:26 . 2014-05-17 13:28 -------- d-----w- c:\programdata\Package Cache
2014-05-17 12:24 . 2014-05-17 12:27 -------- d-----w- c:\program files (x86)\FotballManager
2014-05-16 13:26 . 2014-05-16 21:13 119512 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-16 13:25 . 2014-05-16 13:25 -------- d-----w- c:\programdata\Malwarebytes
2014-05-16 13:19 . 2014-05-16 13:23 -------- d-----w- C:\AdwCleaner
2014-05-16 01:10 . 2014-05-16 01:10 -------- d-----w- c:\program files (x86)\MSXML 4.0
2014-05-16 01:01 . 2014-04-17 03:31 10651704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6D2BF93E-14B7-4871-ACBE-5C0AEDAECBB2}\mpengine.dll
2014-05-16 00:55 . 2011-02-25 06:19 2871808 ----a-w- c:\windows\explorer.exe
2014-05-16 00:55 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\SysWow64\explorer.exe
2014-05-16 00:54 . 2014-05-09 06:14 477184 ----a-w- c:\windows\system32\aepdu.dll
2014-05-16 00:54 . 2014-05-09 06:11 424448 ----a-w- c:\windows\system32\aeinv.dll
2014-05-16 00:54 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2014-05-16 00:54 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2014-05-15 22:44 . 2014-05-15 22:44 -------- d-----w- c:\program files\trend micro
2014-05-15 22:44 . 2014-05-15 22:44 -------- d-----w- C:\rsit
2014-05-11 13:56 . 2014-05-16 01:50 -------- d-s---w- c:\windows\system32\CompatTel
2014-05-11 13:52 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2014-05-11 13:52 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2014-05-11 13:52 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-05-11 13:52 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-05-11 13:52 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2014-05-11 13:44 . 2014-05-16 21:30 -------- d-----w- c:\windows\Migration
2014-05-11 12:40 . 2013-07-26 02:24 197120 ----a-w- c:\windows\system32\shdocvw.dll
2014-05-11 12:39 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2014-05-11 12:38 . 2013-10-03 02:23 404480 ----a-w- c:\windows\system32\gdi32.dll
2014-05-11 12:38 . 2013-10-03 02:00 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2014-05-11 12:38 . 2013-06-15 04:32 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2014-05-11 12:38 . 2013-07-03 04:05 76800 ----a-w- c:\windows\system32\drivers\hidclass.sys
2014-05-11 12:38 . 2013-07-03 04:05 32896 ----a-w- c:\windows\system32\drivers\hidparse.sys
2014-05-11 12:38 . 2013-08-02 02:12 43520 ----a-w- c:\windows\system32\csrsrv.dll
2014-05-11 12:38 . 2013-08-02 00:59 112640 ----a-w- c:\windows\system32\smss.exe
2014-05-11 12:38 . 2013-08-02 02:12 6656 ----a-w- c:\windows\system32\apisetschema.dll
2014-05-11 12:38 . 2013-08-02 01:48 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2014-05-11 12:36 . 2012-10-03 17:44 246272 ----a-w- c:\windows\system32\netcorehc.dll
2014-05-11 12:36 . 2012-10-03 17:44 216576 ----a-w- c:\windows\system32\ncsi.dll
2014-05-11 12:36 . 2012-10-03 17:42 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2014-05-11 12:36 . 2012-10-03 16:42 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2014-05-11 12:36 . 2012-10-03 17:44 70656 ----a-w- c:\windows\system32\nlaapi.dll
2014-05-11 12:36 . 2012-10-03 17:44 303104 ----a-w- c:\windows\system32\nlasvc.dll
2014-05-11 12:36 . 2012-10-03 17:44 18944 ----a-w- c:\windows\system32\netevent.dll
2014-05-11 12:36 . 2012-10-03 16:42 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2014-05-11 12:36 . 2012-10-03 16:42 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2014-05-11 12:36 . 2012-10-03 16:07 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2014-05-11 12:36 . 2012-01-13 07:12 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2014-05-11 12:34 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2014-05-11 12:34 . 2013-05-13 03:08 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2014-05-11 12:34 . 2013-05-13 05:50 52224 ----a-w- c:\windows\system32\certenc.dll
2014-05-11 12:34 . 2013-05-13 03:08 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2014-05-11 12:30 . 2014-01-24 02:37 1684928 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-05-11 12:30 . 2013-08-27 09:01 1545728 ----a-w- c:\windows\system32\DWrite.dll
2014-05-11 12:30 . 2013-08-27 09:01 1143296 ----a-w- c:\windows\system32\FntCache.dll
2014-05-11 12:30 . 2013-08-27 08:21 1077760 ----a-w- c:\windows\SysWow64\DWrite.dll
2014-05-11 12:30 . 2013-10-12 02:32 150016 ----a-w- c:\windows\system32\wshom.ocx
2014-05-11 12:30 . 2013-10-12 02:31 202752 ----a-w- c:\windows\system32\scrrun.dll
2014-05-11 12:30 . 2013-10-12 02:04 121856 ----a-w- c:\windows\SysWow64\wshom.ocx
2014-05-11 12:30 . 2013-10-12 02:03 163840 ----a-w- c:\windows\SysWow64\scrrun.dll
2014-05-11 12:30 . 2013-10-12 01:33 156160 ----a-w- c:\windows\system32\cscript.exe
2014-05-11 12:30 . 2013-10-12 01:33 168960 ----a-w- c:\windows\system32\wscript.exe
2014-05-11 12:30 . 2013-10-12 01:15 141824 ----a-w- c:\windows\SysWow64\wscript.exe
2014-05-11 12:30 . 2013-10-12 01:15 126976 ----a-w- c:\windows\SysWow64\cscript.exe
2014-05-11 12:27 . 2013-10-12 02:29 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-05-11 12:27 . 2013-10-12 02:29 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-05-11 12:27 . 2013-10-12 02:30 830464 ----a-w- c:\windows\system32\nshwfp.dll
2014-05-11 12:27 . 2013-10-12 02:03 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
2014-05-11 12:27 . 2013-10-12 02:01 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2014-05-11 12:26 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
2014-05-11 12:26 . 2013-08-01 12:09 983488 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-05-11 12:26 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2014-05-11 12:26 . 2011-02-03 11:25 144384 ----a-w- c:\windows\system32\cdd.dll
2014-05-11 01:37 . 2012-01-22 15:25 916992 ----a-w- C:\Automatické Vypnutí PC.exe
2014-05-08 12:49 . 2014-05-08 12:49 -------- d-----w- c:\programdata\ATI
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\programdata\AMD
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\program files (x86)\AMD AVT
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\program files (x86)\AMD APP
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\program files\Common Files\ATI Technologies
2014-05-08 12:46 . 2014-05-08 12:46 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2014-05-04 22:54 . 2014-05-04 22:54 -------- d-----w- c:\windows\cs
2014-05-04 22:52 . 2014-05-04 22:52 23264 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-05-04 22:52 . 2014-05-04 22:52 -------- d-----w- c:\program files\Windows Live
2014-05-04 22:40 . 2014-05-04 22:40 -------- d-----w- c:\windows\system32\SPReview
2014-05-04 22:38 . 2014-05-04 22:38 -------- d-----w- c:\windows\system32\EventProviders
2014-05-04 22:35 . 2014-05-04 22:46 -------- d-----w- c:\programdata\Freemake
2014-05-04 22:35 . 2014-05-04 22:35 -------- d-----w- c:\program files (x86)\Freemake
2014-05-04 22:34 . 2014-05-16 01:04 -------- d-----w- c:\windows\system32\MRT
2014-05-04 22:29 . 2010-11-20 13:27 1188864 ----a-w- c:\windows\system32\wininet.dll
2014-05-04 22:28 . 2010-11-20 13:33 289664 ----a-w- c:\windows\system32\drivers\fltMgr.sys
2014-05-04 22:27 . 2010-11-20 13:27 414720 ----a-w- c:\windows\system32\wlanmsm.dll
2014-05-04 22:26 . 2010-11-20 13:02 7168 ----a-w- c:\windows\system32\KBDUS.DLL
2014-05-04 22:23 . 2010-11-20 13:27 529408 ----a-w- c:\windows\system32\wbemcomn.dll
2014-05-04 20:47 . 2014-05-17 20:26 -------- d-----w- c:\program files (x86)\Pro Evolution Soccer 2013
2014-05-04 12:03 . 2014-05-07 09:04 -------- d-----w- c:\program files (x86)\DarkSouls
2014-05-04 12:03 . 2014-05-04 12:03 -------- d-----w- c:\windows\SysWow64\xlive
2014-05-04 12:03 . 2014-05-04 12:03 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2014-05-03 21:55 . 2014-05-04 01:40 -------- d-----w- c:\program files (x86)\Diablo III
2014-05-03 02:31 . 2014-05-03 02:31 -------- d-----w- c:\programdata\Recovery
2014-05-03 02:07 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2014-05-03 02:07 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2014-05-03 02:07 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2014-05-03 02:02 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2014-05-03 01:58 . 2014-05-03 01:58 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2014-05-03 01:53 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2014-05-03 01:53 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2014-05-03 01:53 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2014-05-03 01:53 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2014-05-03 01:53 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2014-05-03 01:53 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2014-05-03 01:53 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2014-05-03 01:50 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2014-05-03 01:50 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2014-05-03 01:50 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2014-05-03 01:49 . 2014-05-03 01:49 -------- d-----w- c:\program files\Microsoft Silverlight
2014-05-03 01:49 . 2014-05-03 01:49 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2014-05-03 00:05 . 2014-05-03 00:05 -------- d-----w- C:\2-click run
2014-05-02 23:57 . 2014-05-02 23:57 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-05-02 23:57 . 2014-05-02 23:57 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2014-05-02 23:52 . 2014-05-04 20:45 -------- d-----w- c:\programdata\DAEMON Tools Lite
2014-05-02 23:30 . 2014-05-17 20:26 -------- d-----w- C:\Downloads
2014-05-02 20:24 . 2011-10-01 05:45 886784 ----a-w- c:\program files\Common Files\System\wab32.dll
2014-05-02 20:24 . 2011-10-01 04:37 708608 ----a-w- c:\program files (x86)\Common Files\System\wab32.dll
2014-05-02 20:24 . 2013-02-15 06:06 3717632 ----a-w- c:\windows\system32\mstscax.dll
2014-05-02 20:24 . 2013-02-15 04:37 3217408 ----a-w- c:\windows\SysWow64\mstscax.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-04 23:05 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2014-05-04 23:05 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2014-03-31 20:46 . 2014-03-31 20:46 130712 ----a-w- c:\windows\SysWow64\MSSTDFMT.DLL
2014-03-31 20:46 . 2014-03-31 20:46 1070232 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2014-03-04 09:17 . 2014-05-11 12:37 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2014-02-20 16:14 . 2014-02-20 16:14 15453904 ----a-w- c:\windows\SysWow64\xlive.dll
2014-02-20 16:14 . 2014-02-20 16:14 13642960 ----a-w- c:\windows\SysWow64\xlivefnt.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-06-29 602168]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-05-02 3873704]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 641664]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0aswBoot.exe /M:4a55de04 /wow /dir:C:\Program
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files (x86)\BitComet\tools\BitCometService.exe;c:\program files (x86)\BitComet\tools\BitCometService.exe [x]
R3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys;c:\windows\SYSNATIVE\Drivers\btmcom.sys [x]
R3 BTMUSB;Motorola Bluetooth Radio Service;c:\windows\system32\Drivers\btmusb.sys;c:\windows\SYSNATIVE\Drivers\btmusb.sys [x]
R3 cpuz136;cpuz136;c:\users\Viktor\AppData\Local\Temp\cpuz136\cpuz136_x64.sys;c:\users\Viktor\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [x]
R3 cpuz137;cpuz137;c:\users\Viktor\AppData\Local\Temp\cpuz137\cpuz137_x64.sys;c:\users\Viktor\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files\Motorola\Bluetooth\obexsrv.exe;c:\program files\Motorola\Bluetooth\obexsrv.exe [x]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 Bluetooth Device Manager;Bluetooth Device Manager;c:\program files\Motorola\Bluetooth\devmgrsrv.exe;c:\program files\Motorola\Bluetooth\devmgrsrv.exe [x]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files\Motorola\Bluetooth\audiosrv.exe;c:\program files\Motorola\Bluetooth\audiosrv.exe [x]
S3 clwvd;HP Webcam Splitter;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-06-16 11:38 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-02 00:08]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-05-02 17:04 290888 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-06-18 487424]
"BTMTrayAgent"="c:\program files\Motorola\Bluetooth\btmshell.dll" [2010-06-10 24783624]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-06-18 8192]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-07-27 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-07-27 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-07-27 415256]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.bing.com
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.bing.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
TCP: DhcpNameServer = 192.168.1.1
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_13_0_0_214_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_13_0_0_214_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\Motorola\Bluetooth\btplayerctrl.exe
c:\program files (x86)\Common Files\Java\Java Update\jusched.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Celkový čas: 2014-05-18 12:17:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-05-18 10:17
ComboFix2.txt 2014-05-17 19:30
.
Před spuštěním: Volných bajtů: 346 141 544 448
Po spuštění: Volných bajtů: 345 913 999 360
.
- - End Of File - - D7F6C6C8247DDC3319A4661F61408187
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“