Zpomalený internet

[SpankMe2day]

Ahoj
mám problém s internetem konkrétně s download rychlostí. Mám nový nb (hp 650), Win 7 pro(legální) a 2 dny zpátky se rapidně zpomalil internet. Vzhledem k tomu, že jiné pc s tímto problém nemají musí být problém tady. Tak prosím o kontrolu logu.

Logfile of random's system information tool 1.09 (written by random/random)
Run by SpankMe at 2014-05-19 11:35:44
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 281 GB (61%) free of 461 GB
Total RAM: 4009 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:35:50, on 19.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\SpankMe.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [RGSC] C:\Games\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: HP Trust Circles Service (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Broadcom Corporation - C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13013 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
atieclxx
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE" "C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe"
C:\Windows\system32\WLANExt.exe 27851424
\??\C:\Windows\system32\conhost.exe "-4870256961458842194-726818027-1897439198-538905222190533444826517051-1213979509
C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
c:\Windows\SysWOW64\flcdlock.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE"
"C:\Windows\RtsCM64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Windows\SysWOW64\RunDll32.exe" "c:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
-Minimized
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="416.0.981989292\2026480308" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,28 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.18.10.3324 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="416.2.1411373668\839702310" /prefetch:673131151
taskeng.exe {EAEE4911-BDC2-435D-81B1-DFFB3BA1035C}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/Disabled/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="416.9.1561993583\383194647" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/Disabled/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="416.12.1999267167\1017745320" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/Disabled/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="416.13.757749286\2108166516" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\SpankMe\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\HPCeeScheduleForSpankMe.job
C:\Windows\tasks\MATLAB R2012b Startup Accelerator.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-08-07 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-10 351136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-08-16 1703424]
"Broadcom Wireless Manager UI"=C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [2014-03-16 7032320]
"RtsCM"=C:\Windows\RTSCM64.EXE [2013-08-02 147160]
""= []
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-04 2774256]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-10-15 165848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-10-15 407512]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-10-15 444376]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"RGSC"=C:\Games\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2013-07-18 683656]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2013-09-19 185144]
""= []
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-08-02 676608]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2013-08-01 337184]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-08-16 292848]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-07-25 77088]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe []
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-06-24 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2013-08-07 2213592]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-10-15 441344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2014-05-19 11:35:44 ----D---- C:\rsit
2014-05-19 11:35:44 ----D---- C:\Program Files\trend micro
2014-05-19 11:06:41 ----RHD---- C:\Users\SpankMe\AppData\Roaming\SecuROM
2014-05-19 11:05:57 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-05-19 11:04:15 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-05-19 11:04:15 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-05-19 11:04:14 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-05-19 11:04:14 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-05-19 11:04:11 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-05-19 11:04:11 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-05-19 11:04:10 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-05-19 11:04:09 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-05-19 11:04:09 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-05-19 11:04:08 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-05-19 11:04:06 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-05-19 11:04:06 ----A---- C:\Windows\system32\xinput1_3.dll
2014-05-19 11:04:06 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-05-19 11:04:04 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-05-19 11:04:04 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-05-19 11:04:04 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-05-19 11:04:04 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-05-19 11:04:03 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-05-19 11:04:03 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-05-19 11:04:03 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-05-19 11:04:03 ----A---- C:\Windows\system32\d3dx10.dll
2014-05-19 11:04:02 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-05-19 11:04:02 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-05-19 11:04:02 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-05-19 11:04:02 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-05-19 11:04:02 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-05-19 11:04:02 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-05-19 11:04:01 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-05-19 11:04:01 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-05-19 11:04:00 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-05-19 11:04:00 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-05-19 11:04:00 ----A---- C:\Windows\system32\xinput1_2.dll
2014-05-19 11:04:00 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-05-19 11:03:59 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-05-19 11:03:59 ----A---- C:\Windows\system32\xinput1_1.dll
2014-05-19 11:03:58 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-05-19 11:03:58 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-05-19 11:03:46 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-05-19 11:03:46 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-05-19 11:03:46 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-05-19 11:03:46 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-05-19 11:03:45 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-05-19 11:03:45 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-05-19 11:03:45 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-05-19 11:03:45 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-05-19 11:03:44 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-05-19 11:03:44 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-05-19 11:03:44 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-05-19 11:03:44 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-05-19 11:03:43 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-05-19 11:03:43 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-05-19 11:03:42 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-05-19 11:03:42 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-05-19 11:03:30 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-05-19 11:03:26 ----D---- C:\Windows\SYSWOW64\xlive
2014-05-19 11:03:26 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-05-19 03:00:57 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-05-19 03:00:57 ----A---- C:\Windows\system32\ieui.dll
2014-05-19 03:00:53 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-19 03:00:53 ----A---- C:\Windows\system32\vbscript.dll
2014-05-19 03:00:48 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-19 03:00:48 ----A---- C:\Windows\system32\iernonce.dll
2014-05-19 03:00:48 ----A---- C:\Windows\system32\ie4uinit.exe
2014-05-19 03:00:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\msrating.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\jsproxy.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\jscript9diag.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\dxtrans.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\dxtmsft.dll
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-05-19 03:00:45 ----A---- C:\Windows\system32\ieUnatt.exe
2014-05-19 03:00:45 ----A---- C:\Windows\system32\iesetup.dll
2014-05-19 03:00:44 ----A---- C:\Windows\system32\mshtml.dll
2014-05-19 03:00:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-05-19 03:00:43 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-05-19 03:00:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-05-19 03:00:43 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-05-19 03:00:43 ----A---- C:\Windows\system32\ieapfltr.dll
2014-05-19 03:00:42 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-19 03:00:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-05-19 03:00:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-19 03:00:41 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-19 03:00:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-19 03:00:41 ----A---- C:\Windows\system32\wininet.dll
2014-05-19 03:00:41 ----A---- C:\Windows\system32\urlmon.dll
2014-05-19 03:00:41 ----A---- C:\Windows\system32\iertutil.dll
2014-05-19 03:00:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-19 03:00:39 ----A---- C:\Windows\system32\ieframe.dll
2014-05-19 03:00:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-19 03:00:37 ----A---- C:\Windows\system32\jscript9.dll
2014-05-19 03:00:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-05-18 23:52:49 ----D---- C:\Windows\system32\appmgmt
2014-05-18 23:23:13 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-18 23:23:13 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-18 18:55:04 ----D---- C:\Program Files (x86)\Microsoft WSE
2014-05-18 18:53:46 ----D---- C:\Program Files\DWG TrueView 2010
2014-05-18 18:53:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-05-18 18:53:21 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-05-18 18:48:36 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-05-18 18:48:36 ----A---- C:\Windows\system32\mstscax.dll
2014-05-18 14:51:21 ----D---- C:\Users\SpankMe\AppData\Roaming\uTorrent
2014-05-17 22:43:44 ----SD---- C:\Windows\system32\CompatTel
2014-05-17 22:37:55 ----A---- C:\Windows\system32\wmploc.DLL
2014-05-17 22:37:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-05-17 22:37:54 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-05-17 22:37:53 ----A---- C:\Windows\system32\wmp.dll
2014-05-17 22:29:15 ----D---- C:\Windows\Migration
2014-05-17 22:25:09 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-05-17 22:18:45 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\url.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-05-17 22:18:42 ----A---- C:\Windows\system32\elshyph.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\url.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-05-17 22:18:41 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-17 22:18:41 ----A---- C:\Windows\system32\msls31.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\mshtmler.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\msfeedssync.exe
2014-05-17 22:18:41 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\jsIntl.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\iesysprep.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\iedkcs32.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\ieapfltr.dat
2014-05-17 22:18:41 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\icardie.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\wextract.exe
2014-05-17 22:18:40 ----A---- C:\Windows\system32\webcheck.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\pngfilt.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\occache.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\mshta.exe
2014-05-17 22:18:40 ----A---- C:\Windows\system32\licmgr10.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\jscript.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\inseng.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\imgutil.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\iexpress.exe
2014-05-17 22:18:40 ----A---- C:\Windows\system32\iepeers.dll
2014-05-17 21:52:48 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-17 21:52:45 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-05-17 21:52:45 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-05-17 21:52:45 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\wksprtPS.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\wksprt.exe
2014-05-17 21:52:45 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-05-17 21:52:45 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-17 21:52:45 ----A---- C:\Windows\system32\tsgqec.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-05-17 21:52:44 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-05-17 21:52:44 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-05-17 21:52:44 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-05-17 21:52:44 ----A---- C:\Windows\system32\mstsc.exe
2014-05-17 21:43:08 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-17 21:43:06 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2014-05-17 21:43:06 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-05-17 21:43:05 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2014-05-17 21:43:05 ----A---- C:\Windows\system32\rdpudd.dll
2014-05-17 21:43:05 ----A---- C:\Windows\system32\rdpendp_winip.dll
2014-05-17 21:43:04 ----A---- C:\Windows\system32\rdpcorets.dll
2014-05-17 21:40:59 ----A---- C:\Windows\system32\browserchoice.exe
2014-05-17 21:35:41 ----D---- C:\Windows\system32\MRT
2014-05-17 21:35:40 ----A---- C:\Windows\system32\MRT.exe
2014-05-17 20:40:20 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-05-17 20:40:20 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-05-17 20:40:09 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-05-17 20:40:08 ----A---- C:\Windows\system32\qdvd.dll
2014-05-17 20:38:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-17 20:38:24 ----A---- C:\Windows\system32\schannel.dll
2014-05-17 20:38:24 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-17 20:38:23 ----A---- C:\Windows\system32\kerberos.dll
2014-05-17 20:38:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-17 20:38:22 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-17 20:38:22 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-17 20:38:20 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-17 20:38:20 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-17 20:38:20 ----A---- C:\Windows\system32\winlogon.exe
2014-05-17 20:38:20 ----A---- C:\Windows\system32\objsel.dll
2014-05-17 20:38:20 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-17 20:38:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-17 20:38:20 ----A---- C:\Windows\system32\drivers\cng.sys
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\wdigest.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\sspicli.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\smss.exe
2014-05-17 20:38:19 ----A---- C:\Windows\system32\lsass.exe
2014-05-17 20:38:19 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-17 20:38:19 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\csrsrv.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\adprovider.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\secur32.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\ncrypt.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\credssp.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\apisetschema.dll
2014-05-17 19:30:10 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-05-17 19:30:10 ----A---- C:\Windows\system32\tdh.dll
2014-05-17 19:30:10 ----A---- C:\Windows\system32\ntdll.dll
2014-05-17 19:30:10 ----A---- C:\Windows\system32\advapi32.dll
2014-05-17 19:30:09 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-05-17 19:30:09 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-05-17 19:19:47 ----D---- C:\Windows\SYSWOW64\Wat
2014-05-17 19:19:46 ----D---- C:\Windows\system32\Wat
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFx.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFSvc.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFPlatform.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFHost.exe
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2014-05-17 18:31:37 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2014-05-16 22:24:50 ----D---- C:\Users\SpankMe\AppData\Roaming\Subversion
2014-05-16 22:24:25 ----D---- C:\Users\SpankMe\AppData\Roaming\MathWorks
2014-05-16 22:01:48 ----ASH---- C:\pagefile.sys
2014-05-16 21:49:32 ----D---- C:\Program Files\MATLAB
2014-05-16 21:46:39 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-05-16 21:46:39 ----HD---- C:\ProgramData\Common Files
2014-05-16 21:45:39 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2014-05-16 21:45:36 ----D---- C:\Users\SpankMe\AppData\Roaming\DAEMON Tools Lite
2014-05-16 21:45:33 ----D---- C:\Users\SpankMe\AppData\Roaming\OpenCandy
2014-05-16 21:45:33 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2014-05-16 21:44:53 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-05-16 20:33:24 ----D---- C:\Users\SpankMe\AppData\Roaming\LolClient
2014-05-16 20:33:23 ----D---- C:\Users\SpankMe\AppData\Roaming\Macromedia
2014-05-16 18:34:19 ----D---- C:\ProgramData\FLEXnet
2014-05-16 18:28:40 ----D---- C:\Program Files\Common Files\Macrovision Shared
2014-05-16 18:26:49 ----D---- C:\Program Files\Common Files\Autodesk Shared
2014-05-16 18:26:49 ----D---- C:\Program Files\Autodesk
2014-05-16 18:25:26 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-05-16 18:25:22 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-05-16 18:25:22 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-05-16 18:22:16 ----D---- C:\Users\SpankMe\AppData\Roaming\Autodesk
2014-05-16 18:22:16 ----D---- C:\ProgramData\Autodesk
2014-05-16 18:15:32 ----D---- C:\Autodesk
2014-05-16 18:09:31 ----D---- C:\Users\SpankMe\AppData\Roaming\WinRAR
2014-05-16 18:08:17 ----D---- C:\Users\SpankMe\AppData\Roaming\GHISLER
2014-05-16 18:08:17 ----D---- C:\totalcmd
2014-05-16 18:01:32 ----D---- C:\Program Files (x86)\Microsoft Works
2014-05-16 18:01:18 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2014-05-16 18:01:03 ----D---- C:\Windows\PCHEALTH
2014-05-16 17:59:13 ----D---- C:\Program Files\Microsoft Office
2014-05-16 17:58:42 ----D---- C:\ProgramData\Microsoft Help
2014-05-16 17:58:09 ----RHD---- C:\MSOCache
2014-05-16 17:56:06 ----D---- C:\Users\SpankMe\AppData\Roaming\GRETECH
2014-05-16 17:56:00 ----D---- C:\Program Files (x86)\GRETECH
2014-05-16 17:31:54 ----D---- C:\Program Files (x86)\Adobe
2014-05-16 17:31:20 ----D---- C:\ProgramData\Adobe
2014-05-16 17:04:22 ----D---- C:\Program Files\CCleaner
2014-05-16 16:52:13 ----D---- C:\Program Files\WinRAR
2014-05-16 16:49:44 ----D---- C:\Users\SpankMe\AppData\Roaming\Skype
2014-05-16 16:49:38 ----RD---- C:\Program Files (x86)\Skype
2014-05-16 16:06:32 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate.exe
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\msdrm.dll
2014-05-16 16:06:19 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-05-16 16:06:19 ----A---- C:\Windows\system32\msieftp.dll
2014-05-16 16:06:18 ----A---- C:\Windows\system32\wwansvc.dll
2014-05-16 16:06:18 ----A---- C:\Windows\system32\comctl32.dll
2014-05-16 16:06:17 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-05-16 16:03:24 ----A---- C:\Windows\system32\poqexec.exe
2014-05-16 16:03:23 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-05-16 16:02:58 ----A---- C:\Windows\system32\shell32.dll
2014-05-16 16:02:56 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-16 16:02:55 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-05-16 16:02:55 ----A---- C:\Windows\system32\wintrust.dll
2014-05-16 16:02:41 ----A---- C:\Windows\system32\aepdu.dll
2014-05-16 16:02:41 ----A---- C:\Windows\system32\aeinv.dll
2014-05-16 16:02:26 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-05-16 16:02:26 ----A---- C:\Windows\system32\webio.dll
2014-05-16 16:02:02 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-05-16 16:02:02 ----A---- C:\Windows\system32\WMPhoto.dll
2014-05-16 16:01:58 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-05-16 16:01:58 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-05-16 16:01:58 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-05-16 16:01:58 ----A---- C:\Windows\system32\crypt32.dll
2014-05-16 16:01:57 ----A---- C:\Windows\system32\cryptsvc.dll
2014-05-16 16:01:57 ----A---- C:\Windows\system32\cryptnet.dll
2014-05-16 16:01:46 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-05-16 16:01:46 ----A---- C:\Windows\system32\wer.dll
2014-05-16 16:01:45 ----A---- C:\Windows\system32\imagehlp.dll
2014-05-16 16:01:44 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-05-16 16:01:42 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-05-16 16:01:42 ----A---- C:\Windows\system32\tzres.dll
2014-05-16 16:01:27 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-05-16 16:01:27 ----A---- C:\Windows\system32\msxml3.dll
2014-05-16 16:01:26 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-05-16 16:01:26 ----A---- C:\Windows\system32\msxml3r.dll
2014-05-16 15:58:54 ----A---- C:\Windows\system32\drivers\afd.sys
2014-05-16 15:55:11 ----A---- C:\Windows\system32\win32k.sys
2014-05-16 15:55:11 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-05-16 15:55:11 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-05-16 15:55:10 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-05-16 15:55:08 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-05-16 15:55:08 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-05-16 15:55:08 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-05-16 15:55:08 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-16 15:55:08 ----A---- C:\Windows\system32\credui.dll
2014-05-16 15:55:08 ----A---- C:\Windows\system32\authui.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\lpk.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\fontsub.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\dciman32.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\atmlib.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\atmfd.dll
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-05-16 15:49:42 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-05-16 15:49:42 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-05-16 15:49:14 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-05-16 15:48:58 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-05-16 15:48:58 ----A---- C:\Windows\system32\rpcrt4.dll
2014-05-16 15:48:56 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2014-05-16 15:48:56 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-05-16 15:48:52 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-05-16 15:48:52 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-05-16 15:48:45 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-05-16 15:48:45 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-05-16 15:48:45 ----A---- C:\Windows\system32\WebClnt.dll
2014-05-16 15:48:45 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-05-16 15:48:45 ----A---- C:\Windows\system32\davclnt.dll
2014-05-16 15:46:44 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-05-16 15:46:44 ----A---- C:\Windows\system32\d3d10warp.dll
2014-05-16 15:46:44 ----A---- C:\Windows\system32\d2d1.dll
2014-05-16 15:46:43 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-05-16 15:46:13 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-05-16 15:46:12 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-05-16 15:46:12 ----A---- C:\Windows\system32\mswsock.dll
2014-05-16 15:46:08 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-05-16 15:46:08 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-05-16 15:46:07 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-05-16 15:46:07 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-05-16 15:46:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-05-16 15:46:01 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2014-05-16 15:45:46 ----D---- C:\ProgramData\PMB Files
2014-05-16 15:45:37 ----D---- C:\Program Files (x86)\Pando Networks
2014-05-16 15:45:21 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-05-16 15:45:21 ----A---- C:\Windows\system32\drivers\netio.sys
2014-05-16 15:45:03 ----D---- C:\Movies
2014-05-16 15:45:03 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-05-16 15:45:03 ----A---- C:\Windows\system32\iologmsg.dll
2014-05-16 15:45:03 ----A---- C:\Windows\system32\drivers\storport.sys
2014-05-16 15:45:03 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-05-16 15:45:03 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-05-16 15:44:58 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-05-16 15:44:58 ----A---- C:\Windows\system32\shdocvw.dll
2014-05-16 15:44:54 ----D---- C:\Games
2014-05-16 15:44:52 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-05-16 15:44:52 ----A---- C:\Windows\system32\gdi32.dll
2014-05-16 15:44:51 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-05-16 15:44:51 ----A---- C:\Windows\system32\qedit.dll
2014-05-16 15:44:46 ----D---- C:\Music
2014-05-16 15:44:44 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-16 15:44:44 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-16 15:44:34 ----A---- C:\Windows\system32\kernel32.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-05-16 15:44:33 ----A---- C:\Windows\system32\wow64win.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\wow64cpu.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\wow64.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\winsrv.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\ntvdm64.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\conhost.exe
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-16 15:44:32 ----A---- C:\Windows\SYSWOW64\user.exe
2014-05-16 15:44:31 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-05-16 15:44:21 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-05-16 15:44:21 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-05-16 15:44:21 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-05-16 15:44:21 ----A---- C:\Windows\system32\wscript.exe
2014-05-16 15:44:21 ----A---- C:\Windows\system32\scrrun.dll
2014-05-16 15:44:21 ----A---- C:\Windows\system32\cscript.exe
2014-05-16 15:44:20 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-05-16 15:44:19 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-05-16 15:44:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-05-16 15:44:12 ----D---- C:\Users\SpankMe\AppData\Roaming\Riot Games
2014-05-16 15:43:56 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-05-16 15:43:56 ----A---- C:\Windows\system32\DWrite.dll
2014-05-16 15:43:55 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-05-16 15:43:55 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-05-16 15:35:44 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-05-16 15:35:44 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-05-16 15:35:43 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-05-16 15:35:43 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-05-16 15:35:43 ----A---- C:\Windows\system32\nshwfp.dll
2014-05-16 15:35:27 ----A---- C:\Windows\system32\scavengeui.dll
2014-05-16 15:18:05 ----D---- C:\Program Files (x86)\Google
2014-05-16 15:17:43 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-05-16 15:17:43 ----A---- C:\Windows\system32\rdpcore.dll
2014-05-16 15:17:43 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wups2.dll
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wucltux.dll
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wuaueng.dll
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wuauclt.exe
2014-05-16 15:10:51 ----A---- C:\Windows\system32\wups.dll
2014-05-16 15:10:51 ----A---- C:\Windows\system32\wudriver.dll
2014-05-16 15:10:51 ----A---- C:\Windows\system32\wuapi.dll
2014-05-16 15:10:46 ----A---- C:\Windows\system32\wuwebv.dll
2014-05-16 15:10:46 ----A---- C:\Windows\system32\wuapp.exe
2014-05-16 15:10:00 ----D---- C:\Users\SpankMe\AppData\Roaming\ATI
2014-05-16 15:09:55 ----D---- C:\Users\SpankMe\AppData\Roaming\Intel Corporation
2014-05-16 15:08:59 ----D---- C:\Users\SpankMe\AppData\Roaming\Synaptics
2014-05-16 15:08:58 ----D---- C:\Users\SpankMe\AppData\Roaming\hpqLog
2014-05-16 15:08:57 ----D---- C:\Users\SpankMe\AppData\Roaming\Hewlett-Packard
2014-05-16 15:08:40 ----D---- C:\Users\SpankMe\AppData\Roaming\Adobe
2014-05-16 15:08:30 ----D---- C:\Users\SpankMe\AppData\Roaming\Identities
2014-05-16 15:07:40 ----D---- C:\Users\SpankMe\AppData\Roaming\DigitalPersona
2014-05-16 15:07:33 ----SD---- C:\Users\SpankMe\AppData\Roaming\Microsoft
2014-05-16 15:07:33 ----D---- C:\Users\SpankMe\AppData\Roaming\Media Center Programs
2014-05-16 15:05:16 ----D---- C:\Windows\SoftwareDistribution

======List of files/folders modified in the last 1 month======

2014-05-19 11:35:50 ----D---- C:\Windows\Prefetch
2014-05-19 11:35:44 ----RD---- C:\Program Files
2014-05-19 11:35:36 ----D---- C:\Windows\Temp
2014-05-19 11:31:42 ----D---- C:\Windows\System32
2014-05-19 11:31:42 ----D---- C:\Windows\inf
2014-05-19 11:31:42 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-19 11:27:44 ----AD---- C:\Windows
2014-05-19 11:26:51 ----D---- C:\ProgramData\PDFC
2014-05-19 11:26:50 ----D---- C:\Windows\system32\config
2014-05-19 11:06:04 ----HD---- C:\ProgramData
2014-05-19 11:05:57 ----D---- C:\Windows\SysWOW64
2014-05-19 11:04:24 ----SHD---- C:\Windows\Installer
2014-05-19 11:03:58 ----RSD---- C:\Windows\assembly
2014-05-19 11:03:46 ----SHD---- C:\System Volume Information
2014-05-19 11:03:26 ----RD---- C:\Program Files (x86)
2014-05-19 10:51:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-05-19 06:10:54 ----D---- C:\Windows\Tasks
2014-05-19 06:10:54 ----D---- C:\Windows\system32\Tasks
2014-05-19 03:44:49 ----D---- C:\Windows\rescache
2014-05-19 03:19:56 ----D---- C:\Windows\winsxs
2014-05-19 03:17:38 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-05-19 03:17:38 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-19 03:17:38 ----D---- C:\Program Files\Internet Explorer
2014-05-19 03:17:37 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-19 03:17:37 ----D---- C:\Windows\system32\sk-SK
2014-05-19 03:17:37 ----D---- C:\Windows\system32\en-US
2014-05-19 03:17:37 ----D---- C:\Windows\system32\cs-CZ
2014-05-19 03:17:37 ----D---- C:\Windows\PolicyDefinitions
2014-05-19 03:17:35 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-19 03:01:53 ----D---- C:\Windows\system32\catroot
2014-05-19 03:01:52 ----D---- C:\Windows\system32\catroot2
2014-05-19 01:00:59 ----D---- C:\Windows\Microsoft.NET
2014-05-18 23:31:36 ----D---- C:\Program Files\Windows Sidebar
2014-05-18 23:31:35 ----D---- C:\Program Files\Windows Mail
2014-05-18 23:31:33 ----D---- C:\Program Files\Windows Photo Viewer
2014-05-18 23:31:33 ----D---- C:\Program Files\Windows Media Player
2014-05-18 23:31:33 ----D---- C:\Program Files\Windows Journal
2014-05-18 23:31:33 ----D---- C:\Program Files\Common Files\System
2014-05-18 23:31:32 ----D---- C:\Program Files\Windows Defender
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Mail
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\winrm
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\slmgr
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\migwiz
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\en
2014-05-18 23:31:31 ----D---- C:\Windows\servicing
2014-05-18 23:31:31 ----D---- C:\Windows\ehome
2014-05-18 23:31:31 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-18 23:31:27 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2014-05-18 23:31:27 ----D---- C:\Windows\SYSWOW64\drivers
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\WCN
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\Dism
2014-05-18 23:31:23 ----D---- C:\Windows\en-US
2014-05-18 23:31:22 ----D---- C:\Windows\system32\winrm
2014-05-18 23:31:22 ----D---- C:\Windows\system32\sysprep
2014-05-18 23:31:22 ----D---- C:\Windows\system32\slmgr
2014-05-18 23:31:22 ----D---- C:\Windows\system32\oobe
2014-05-18 23:31:22 ----D---- C:\Windows\system32\migwiz
2014-05-18 23:31:22 ----D---- C:\Windows\system32\en
2014-05-18 23:31:22 ----D---- C:\Windows\system32\Boot
2014-05-18 23:31:15 ----D---- C:\Windows\system32\drivers\en-US
2014-05-18 23:31:15 ----D---- C:\Windows\system32\drivers
2014-05-18 23:31:07 ----D---- C:\Windows\system32\WCN
2014-05-18 23:31:07 ----D---- C:\Windows\system32\DriverStore
2014-05-18 23:31:07 ----D---- C:\Windows\system32\Dism
2014-05-18 23:30:58 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-05-18 23:30:46 ----D---- C:\Program Files\DVD Maker
2014-05-18 23:30:29 ----D---- C:\Windows\Speech
2014-05-18 23:18:54 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-05-18 23:17:58 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-18 23:15:27 ----D---- C:\Program Files\Microsoft Security Client
2014-05-18 23:15:23 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-05-18 18:57:16 ----D---- C:\Windows\Downloaded Program Files
2014-05-18 18:56:58 ----RSD---- C:\Windows\Fonts
2014-05-18 18:54:22 ----D---- C:\Windows\Help
2014-05-17 22:43:53 ----D---- C:\Windows\SYSWOW64\migration
2014-05-17 22:43:50 ----D---- C:\Windows\system32\migration
2014-05-17 22:43:43 ----D---- C:\Windows\SYSWOW64\wbem
2014-05-17 22:43:43 ----D---- C:\Windows\system32\wbem
2014-05-17 22:43:37 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-05-17 22:29:15 ----SD---- C:\ProgramData\Microsoft
2014-05-17 22:25:09 ----D---- C:\Windows\Logs
2014-05-17 21:35:41 ----D---- C:\Windows\debug
2014-05-17 19:19:30 ----D---- C:\Windows\AppPatch
2014-05-17 18:29:11 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-17 18:22:21 ----D---- C:\Windows\system32\wdi
2014-05-16 22:02:08 ----D---- C:\ProgramData\Hewlett-Packard
2014-05-16 18:52:07 ----D---- C:\Windows\system32\restore
2014-05-16 18:28:40 ----D---- C:\Program Files\Common Files
2014-05-16 18:25:45 ----D---- C:\Program Files (x86)\Common Files
2014-05-16 18:18:44 ----D---- C:\Windows\system32\NDF
2014-05-16 18:01:03 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-16 17:59:02 ----D---- C:\Windows\ShellNew
2014-05-16 16:49:42 ----D---- C:\ProgramData\Skype
2014-05-16 16:15:42 ----D---- C:\Windows\system32\drivers\UMDF
2014-05-16 15:08:20 ----SHD---- C:\$RECYCLE.BIN
2014-05-16 15:08:18 ----D---- C:\SWSETUP
2014-05-16 15:08:14 ----RAHD---- C:\SYSTEM.SAV
2014-05-16 15:08:11 ----RD---- C:\Program Files (x86)\Online Services
2014-05-16 15:07:32 ----RD---- C:\Users
2014-05-16 15:07:25 ----D---- C:\Windows\Panther

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2013-04-10 35936]
R0 hpdskflt;HP Filter; C:\Windows\system32\drivers\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2013-08-08 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2013-08-08 28008]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\drivers\iusb3hcs.sys [2013-08-16 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\Windows\system32\DRIVERS\PinFile.sys [2013-08-22 49856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SDDisk2K;SDDisk2K; C:\Windows\system32\DRIVERS\SDDisk2K.sys [2013-08-22 228544]
R0 SDDToki;SDDToki; C:\Windows\system32\DRIVERS\SDDToki.sys [2013-08-22 131264]
R0 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-05-16 283064]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2013-06-13 65752]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\drivers\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-03-26 12534784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-03-26 620032]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2012-09-25 165688]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2014-03-16 23760]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2014-04-07 8071888]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-10-29 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2012-12-03 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-05-02 184144]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\drivers\btwrchid.sys [2012-03-06 21544]
R3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2013-07-13 495376]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\drivers\HpqKbFiltr.sys [2013-06-26 25912]
R3 IceKore;IceKore; C:\Windows\system32\DRIVERS\IceKore.sys [2013-08-19 397784]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-10-15 4446752]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\drivers\iusb3hub.sys [2013-08-16 368624]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\drivers\iusb3xhc.sys [2013-08-16 790000]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\drivers\TeeDriverx64.sys [2013-09-17 99288]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 rtsuvc;HP HD Webcam [Fixed]; C:\Windows\system32\DRIVERS\rtsuvc.sys [2013-08-02 8873688]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\drivers\Smb_driver_Intel.sys [2013-09-04 34544]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-08-16 551936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\drivers\SynTP.sys [2013-09-04 524016]
R3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-04-24 96768]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-10-29 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-09-18 452088]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-08-21 429272]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SmbDrv;SmbDrv; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [2013-09-04 30448]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-03-26 239616]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-12-07 1005944]
R2 CreoService;HP Trust Circles Service; C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2013-08-23 1366488]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2013-08-14 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-09-18 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-09-18 298760]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-09-14 500048]
R2 FLCDLOCK;HP Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2013-09-06 567608]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-06-08 92160]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2013-08-07 1758424]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2013-08-01 681760]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-17 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-17 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-17 390616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-07-18 1143432]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2013-08-16 339456]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2013-07-03 3223144]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2013-09-19 1445176]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-08-23 1232056]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-16 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-29 253600]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-10-15 279000]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-05-16 1436424]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-16 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-17 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte nejprve tuto utiltiu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[SpankMe2day]

# AdwCleaner v3.209 - Report created 19/05/2014 at 17:47:58
# Updated 18/05/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : SpankMe - SPANKME-HP
# Running from : C:\Users\SpankMe\Desktop\adwcleaner_3.209.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\SpankMe\AppData\Roaming\OpenCandy

***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Google Chrome v34.0.1847.137

[ File : C:\Users\SpankMe\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [834 octets] - [19/05/2014 17:45:19]
AdwCleaner[S0].txt - [758 octets] - [19/05/2014 17:47:58]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [817 octets] ##########

[Rudy]

Dejte nový log RSIT.

[SpankMe2day]

Logfile of random's system information tool 1.09 (written by random/random)
Run by SpankMe at 2014-05-19 18:43:51
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 281 GB (61%) free of 461 GB
Total RAM: 4009 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:44:05, on 19.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Games\GTA IV\Rockstar Games Social Club\1_0_0_0\RGSC.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\SpankMe.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [RGSC] C:\Games\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: HP Trust Circles Service (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Broadcom Corporation - C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13074 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
winlogon.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 34647728
\??\C:\Windows\system32\conhost.exe "-107166834778786524-1251880812-1334593352-1448811699688756459-12315525011520409431
"C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE" "C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE"
"C:\Windows\RtsCM64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Windows\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[S0].txt
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Games\GTA IV\Rockstar Games Social Club\1_0_0_0\RGSC.exe" /silent
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
c:\Windows\SysWOW64\flcdlock.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\SysWOW64\RunDll32.exe" "c:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4052.0.939637738\941879059" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,28 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.18.10.3324 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4052.2.557220514\869776913" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4052.4.1639983609\564745915" /prefetch:673131151
-Minimized
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe"
C:\Windows\system32\DllHost.exe /Processid:{76D0CB12-7604-4048-B83C-1005C7DDC503}
"C:\Program Files\Common Files\Autodesk Shared\WSCommCntr\lib\\WSCommCntr2.exe" -Embedding
"taskhost.exe"
"C:\Windows\system32\mspaint.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/Disabled/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4052.19.1001626746\1881510711" /prefetch:673131151
"C:\Program Files\Autodesk\AutoCAD 2011\acad.exe" "C:\Users\SpankMe\Documents\Výkres1.dwg"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/Disabled/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4052.25.2135471084\702039048" /prefetch:673131151
"C:\Users\SpankMe\Desktop\RSITx64.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\HPCeeScheduleForSpankMe.job
C:\Windows\tasks\MATLAB R2012b Startup Accelerator.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-08-07 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-10 351136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-08-16 1703424]
"Broadcom Wireless Manager UI"=C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [2014-03-16 7032320]
"RtsCM"=C:\Windows\RTSCM64.EXE [2013-08-02 147160]
""= []
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-04 2774256]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-10-15 165848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-10-15 407512]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-10-15 444376]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"RGSC"=C:\Games\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2013-07-18 683656]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2013-09-19 185144]
""= []
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-08-02 676608]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2013-08-01 337184]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-08-16 292848]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-07-25 77088]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe []
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-06-24 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2013-08-07 2213592]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-10-15 441344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2014-05-19 17:45:41 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-05-19 17:45:05 ----D---- C:\AdwCleaner
2014-05-19 11:35:44 ----D---- C:\rsit
2014-05-19 11:35:44 ----D---- C:\Program Files\trend micro
2014-05-19 11:06:41 ----RHD---- C:\Users\SpankMe\AppData\Roaming\SecuROM
2014-05-19 11:05:57 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-05-19 11:04:15 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-05-19 11:04:15 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-05-19 11:04:14 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-05-19 11:04:14 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-05-19 11:04:11 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-05-19 11:04:11 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-05-19 11:04:10 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-05-19 11:04:09 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-05-19 11:04:09 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-05-19 11:04:08 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-05-19 11:04:06 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-05-19 11:04:06 ----A---- C:\Windows\system32\xinput1_3.dll
2014-05-19 11:04:06 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-05-19 11:04:04 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-05-19 11:04:04 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-05-19 11:04:04 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-05-19 11:04:04 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-05-19 11:04:03 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-05-19 11:04:03 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-05-19 11:04:03 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-05-19 11:04:03 ----A---- C:\Windows\system32\d3dx10.dll
2014-05-19 11:04:02 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-05-19 11:04:02 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-05-19 11:04:02 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-05-19 11:04:02 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-05-19 11:04:02 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-05-19 11:04:02 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-05-19 11:04:01 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-05-19 11:04:01 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-05-19 11:04:00 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-05-19 11:04:00 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-05-19 11:04:00 ----A---- C:\Windows\system32\xinput1_2.dll
2014-05-19 11:04:00 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-05-19 11:03:59 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-05-19 11:03:59 ----A---- C:\Windows\system32\xinput1_1.dll
2014-05-19 11:03:58 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-05-19 11:03:58 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-05-19 11:03:46 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-05-19 11:03:46 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-05-19 11:03:46 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-05-19 11:03:46 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-05-19 11:03:45 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-05-19 11:03:45 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-05-19 11:03:45 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-05-19 11:03:45 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-05-19 11:03:44 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-05-19 11:03:44 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-05-19 11:03:44 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-05-19 11:03:44 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-05-19 11:03:43 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-05-19 11:03:43 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-05-19 11:03:42 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-05-19 11:03:42 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-05-19 11:03:30 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-05-19 11:03:26 ----D---- C:\Windows\SYSWOW64\xlive
2014-05-19 11:03:26 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-05-19 03:00:57 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-05-19 03:00:57 ----A---- C:\Windows\system32\ieui.dll
2014-05-19 03:00:53 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-19 03:00:53 ----A---- C:\Windows\system32\vbscript.dll
2014-05-19 03:00:48 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-19 03:00:48 ----A---- C:\Windows\system32\iernonce.dll
2014-05-19 03:00:48 ----A---- C:\Windows\system32\ie4uinit.exe
2014-05-19 03:00:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\msrating.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\jsproxy.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\jscript9diag.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\dxtrans.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\dxtmsft.dll
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-05-19 03:00:45 ----A---- C:\Windows\system32\ieUnatt.exe
2014-05-19 03:00:45 ----A---- C:\Windows\system32\iesetup.dll
2014-05-19 03:00:44 ----A---- C:\Windows\system32\mshtml.dll
2014-05-19 03:00:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-05-19 03:00:43 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-05-19 03:00:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-05-19 03:00:43 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-05-19 03:00:43 ----A---- C:\Windows\system32\ieapfltr.dll
2014-05-19 03:00:42 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-19 03:00:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-05-19 03:00:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-19 03:00:41 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-19 03:00:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-19 03:00:41 ----A---- C:\Windows\system32\wininet.dll
2014-05-19 03:00:41 ----A---- C:\Windows\system32\urlmon.dll
2014-05-19 03:00:41 ----A---- C:\Windows\system32\iertutil.dll
2014-05-19 03:00:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-19 03:00:39 ----A---- C:\Windows\system32\ieframe.dll
2014-05-19 03:00:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-19 03:00:37 ----A---- C:\Windows\system32\jscript9.dll
2014-05-19 03:00:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-05-18 23:52:49 ----D---- C:\Windows\system32\appmgmt
2014-05-18 23:23:13 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-18 23:23:13 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-18 18:55:04 ----D---- C:\Program Files (x86)\Microsoft WSE
2014-05-18 18:53:46 ----D---- C:\Program Files\DWG TrueView 2010
2014-05-18 18:53:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-05-18 18:53:21 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-05-18 18:48:36 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-05-18 18:48:36 ----A---- C:\Windows\system32\mstscax.dll
2014-05-18 14:51:21 ----D---- C:\Users\SpankMe\AppData\Roaming\uTorrent
2014-05-17 22:43:44 ----SD---- C:\Windows\system32\CompatTel
2014-05-17 22:37:55 ----A---- C:\Windows\system32\wmploc.DLL
2014-05-17 22:37:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-05-17 22:37:54 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-05-17 22:37:53 ----A---- C:\Windows\system32\wmp.dll
2014-05-17 22:29:15 ----D---- C:\Windows\Migration
2014-05-17 22:25:09 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-05-17 22:18:45 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\url.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-05-17 22:18:42 ----A---- C:\Windows\system32\elshyph.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\url.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-05-17 22:18:41 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-17 22:18:41 ----A---- C:\Windows\system32\msls31.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\mshtmler.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\msfeedssync.exe
2014-05-17 22:18:41 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\jsIntl.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\iesysprep.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\iedkcs32.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\ieapfltr.dat
2014-05-17 22:18:41 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\icardie.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\wextract.exe
2014-05-17 22:18:40 ----A---- C:\Windows\system32\webcheck.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\pngfilt.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\occache.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\mshta.exe
2014-05-17 22:18:40 ----A---- C:\Windows\system32\licmgr10.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\jscript.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\inseng.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\imgutil.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\iexpress.exe
2014-05-17 22:18:40 ----A---- C:\Windows\system32\iepeers.dll
2014-05-17 21:52:48 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-17 21:52:45 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-05-17 21:52:45 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-05-17 21:52:45 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\wksprtPS.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\wksprt.exe
2014-05-17 21:52:45 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-05-17 21:52:45 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-17 21:52:45 ----A---- C:\Windows\system32\tsgqec.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-05-17 21:52:44 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-05-17 21:52:44 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-05-17 21:52:44 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-05-17 21:52:44 ----A---- C:\Windows\system32\mstsc.exe
2014-05-17 21:43:08 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-17 21:43:06 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2014-05-17 21:43:06 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-05-17 21:43:05 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2014-05-17 21:43:05 ----A---- C:\Windows\system32\rdpudd.dll
2014-05-17 21:43:05 ----A---- C:\Windows\system32\rdpendp_winip.dll
2014-05-17 21:43:04 ----A---- C:\Windows\system32\rdpcorets.dll
2014-05-17 21:40:59 ----A---- C:\Windows\system32\browserchoice.exe
2014-05-17 21:35:41 ----D---- C:\Windows\system32\MRT
2014-05-17 21:35:40 ----A---- C:\Windows\system32\MRT.exe
2014-05-17 20:40:20 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-05-17 20:40:20 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-05-17 20:40:09 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-05-17 20:40:08 ----A---- C:\Windows\system32\qdvd.dll
2014-05-17 20:38:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-17 20:38:24 ----A---- C:\Windows\system32\schannel.dll
2014-05-17 20:38:24 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-17 20:38:23 ----A---- C:\Windows\system32\kerberos.dll
2014-05-17 20:38:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-17 20:38:22 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-17 20:38:22 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-17 20:38:20 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-17 20:38:20 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-17 20:38:20 ----A---- C:\Windows\system32\winlogon.exe
2014-05-17 20:38:20 ----A---- C:\Windows\system32\objsel.dll
2014-05-17 20:38:20 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-17 20:38:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-17 20:38:20 ----A---- C:\Windows\system32\drivers\cng.sys
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\wdigest.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\sspicli.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\smss.exe
2014-05-17 20:38:19 ----A---- C:\Windows\system32\lsass.exe
2014-05-17 20:38:19 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-17 20:38:19 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\csrsrv.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\adprovider.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\secur32.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\ncrypt.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\credssp.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\apisetschema.dll
2014-05-17 19:30:10 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-05-17 19:30:10 ----A---- C:\Windows\system32\tdh.dll
2014-05-17 19:30:10 ----A---- C:\Windows\system32\ntdll.dll
2014-05-17 19:30:10 ----A---- C:\Windows\system32\advapi32.dll
2014-05-17 19:30:09 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-05-17 19:30:09 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-05-17 19:19:47 ----D---- C:\Windows\SYSWOW64\Wat
2014-05-17 19:19:46 ----D---- C:\Windows\system32\Wat
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFx.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFSvc.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFPlatform.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFHost.exe
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2014-05-17 18:31:37 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2014-05-16 22:24:50 ----D---- C:\Users\SpankMe\AppData\Roaming\Subversion
2014-05-16 22:24:25 ----D---- C:\Users\SpankMe\AppData\Roaming\MathWorks
2014-05-16 22:01:48 ----ASH---- C:\pagefile.sys
2014-05-16 21:49:32 ----D---- C:\Program Files\MATLAB
2014-05-16 21:46:39 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-05-16 21:46:39 ----HD---- C:\ProgramData\Common Files
2014-05-16 21:45:39 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2014-05-16 21:45:36 ----D---- C:\Users\SpankMe\AppData\Roaming\DAEMON Tools Lite
2014-05-16 21:45:33 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2014-05-16 21:44:53 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-05-16 20:33:24 ----D---- C:\Users\SpankMe\AppData\Roaming\LolClient
2014-05-16 20:33:23 ----D---- C:\Users\SpankMe\AppData\Roaming\Macromedia
2014-05-16 18:34:19 ----D---- C:\ProgramData\FLEXnet
2014-05-16 18:28:40 ----D---- C:\Program Files\Common Files\Macrovision Shared
2014-05-16 18:26:49 ----D---- C:\Program Files\Common Files\Autodesk Shared
2014-05-16 18:26:49 ----D---- C:\Program Files\Autodesk
2014-05-16 18:25:26 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-05-16 18:25:22 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-05-16 18:25:22 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-05-16 18:22:16 ----D---- C:\Users\SpankMe\AppData\Roaming\Autodesk
2014-05-16 18:22:16 ----D---- C:\ProgramData\Autodesk
2014-05-16 18:15:32 ----D---- C:\Autodesk
2014-05-16 18:09:31 ----D---- C:\Users\SpankMe\AppData\Roaming\WinRAR
2014-05-16 18:08:17 ----D---- C:\Users\SpankMe\AppData\Roaming\GHISLER
2014-05-16 18:08:17 ----D---- C:\totalcmd
2014-05-16 18:01:32 ----D---- C:\Program Files (x86)\Microsoft Works
2014-05-16 18:01:18 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2014-05-16 18:01:03 ----D---- C:\Windows\PCHEALTH
2014-05-16 17:59:13 ----D---- C:\Program Files\Microsoft Office
2014-05-16 17:58:42 ----D---- C:\ProgramData\Microsoft Help
2014-05-16 17:58:09 ----RHD---- C:\MSOCache
2014-05-16 17:56:06 ----D---- C:\Users\SpankMe\AppData\Roaming\GRETECH
2014-05-16 17:56:00 ----D---- C:\Program Files (x86)\GRETECH
2014-05-16 17:31:54 ----D---- C:\Program Files (x86)\Adobe
2014-05-16 17:31:20 ----D---- C:\ProgramData\Adobe
2014-05-16 17:04:22 ----D---- C:\Program Files\CCleaner
2014-05-16 16:52:13 ----D---- C:\Program Files\WinRAR
2014-05-16 16:49:44 ----D---- C:\Users\SpankMe\AppData\Roaming\Skype
2014-05-16 16:49:38 ----RD---- C:\Program Files (x86)\Skype
2014-05-16 16:06:32 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate.exe
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\msdrm.dll
2014-05-16 16:06:19 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-05-16 16:06:19 ----A---- C:\Windows\system32\msieftp.dll
2014-05-16 16:06:18 ----A---- C:\Windows\system32\wwansvc.dll
2014-05-16 16:06:18 ----A---- C:\Windows\system32\comctl32.dll
2014-05-16 16:06:17 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-05-16 16:03:24 ----A---- C:\Windows\system32\poqexec.exe
2014-05-16 16:03:23 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-05-16 16:02:58 ----A---- C:\Windows\system32\shell32.dll
2014-05-16 16:02:56 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-16 16:02:55 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-05-16 16:02:55 ----A---- C:\Windows\system32\wintrust.dll
2014-05-16 16:02:41 ----A---- C:\Windows\system32\aepdu.dll
2014-05-16 16:02:41 ----A---- C:\Windows\system32\aeinv.dll
2014-05-16 16:02:26 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-05-16 16:02:26 ----A---- C:\Windows\system32\webio.dll
2014-05-16 16:02:02 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-05-16 16:02:02 ----A---- C:\Windows\system32\WMPhoto.dll
2014-05-16 16:01:58 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-05-16 16:01:58 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-05-16 16:01:58 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-05-16 16:01:58 ----A---- C:\Windows\system32\crypt32.dll
2014-05-16 16:01:57 ----A---- C:\Windows\system32\cryptsvc.dll
2014-05-16 16:01:57 ----A---- C:\Windows\system32\cryptnet.dll
2014-05-16 16:01:46 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-05-16 16:01:46 ----A---- C:\Windows\system32\wer.dll
2014-05-16 16:01:45 ----A---- C:\Windows\system32\imagehlp.dll
2014-05-16 16:01:44 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-05-16 16:01:42 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-05-16 16:01:42 ----A---- C:\Windows\system32\tzres.dll
2014-05-16 16:01:27 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-05-16 16:01:27 ----A---- C:\Windows\system32\msxml3.dll
2014-05-16 16:01:26 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-05-16 16:01:26 ----A---- C:\Windows\system32\msxml3r.dll
2014-05-16 15:58:54 ----A---- C:\Windows\system32\drivers\afd.sys
2014-05-16 15:55:11 ----A---- C:\Windows\system32\win32k.sys
2014-05-16 15:55:11 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-05-16 15:55:11 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-05-16 15:55:10 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-05-16 15:55:08 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-05-16 15:55:08 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-05-16 15:55:08 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-05-16 15:55:08 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-16 15:55:08 ----A---- C:\Windows\system32\credui.dll
2014-05-16 15:55:08 ----A---- C:\Windows\system32\authui.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\lpk.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\fontsub.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\dciman32.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\atmlib.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\atmfd.dll
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-05-16 15:49:42 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-05-16 15:49:42 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-05-16 15:49:14 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-05-16 15:48:58 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-05-16 15:48:58 ----A---- C:\Windows\system32\rpcrt4.dll
2014-05-16 15:48:56 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2014-05-16 15:48:56 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-05-16 15:48:52 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-05-16 15:48:52 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-05-16 15:48:45 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-05-16 15:48:45 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-05-16 15:48:45 ----A---- C:\Windows\system32\WebClnt.dll
2014-05-16 15:48:45 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-05-16 15:48:45 ----A---- C:\Windows\system32\davclnt.dll
2014-05-16 15:46:44 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-05-16 15:46:44 ----A---- C:\Windows\system32\d3d10warp.dll
2014-05-16 15:46:44 ----A---- C:\Windows\system32\d2d1.dll
2014-05-16 15:46:43 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-05-16 15:46:13 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-05-16 15:46:12 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-05-16 15:46:12 ----A---- C:\Windows\system32\mswsock.dll
2014-05-16 15:46:08 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-05-16 15:46:08 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-05-16 15:46:07 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-05-16 15:46:07 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-05-16 15:46:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-05-16 15:46:01 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2014-05-16 15:45:46 ----D---- C:\ProgramData\PMB Files
2014-05-16 15:45:37 ----D---- C:\Program Files (x86)\Pando Networks
2014-05-16 15:45:21 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-05-16 15:45:21 ----A---- C:\Windows\system32\drivers\netio.sys
2014-05-16 15:45:03 ----D---- C:\Movies
2014-05-16 15:45:03 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-05-16 15:45:03 ----A---- C:\Windows\system32\iologmsg.dll
2014-05-16 15:45:03 ----A---- C:\Windows\system32\drivers\storport.sys
2014-05-16 15:45:03 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-05-16 15:45:03 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-05-16 15:44:58 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-05-16 15:44:58 ----A---- C:\Windows\system32\shdocvw.dll
2014-05-16 15:44:54 ----D---- C:\Games
2014-05-16 15:44:52 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-05-16 15:44:52 ----A---- C:\Windows\system32\gdi32.dll
2014-05-16 15:44:51 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-05-16 15:44:51 ----A---- C:\Windows\system32\qedit.dll
2014-05-16 15:44:46 ----D---- C:\Music
2014-05-16 15:44:44 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-16 15:44:44 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-16 15:44:34 ----A---- C:\Windows\system32\kernel32.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-05-16 15:44:33 ----A---- C:\Windows\system32\wow64win.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\wow64cpu.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\wow64.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\winsrv.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\ntvdm64.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\conhost.exe
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-16 15:44:32 ----A---- C:\Windows\SYSWOW64\user.exe
2014-05-16 15:44:31 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-05-16 15:44:21 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-05-16 15:44:21 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-05-16 15:44:21 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-05-16 15:44:21 ----A---- C:\Windows\system32\wscript.exe
2014-05-16 15:44:21 ----A---- C:\Windows\system32\scrrun.dll
2014-05-16 15:44:21 ----A---- C:\Windows\system32\cscript.exe
2014-05-16 15:44:20 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-05-16 15:44:19 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-05-16 15:44:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-05-16 15:44:12 ----D---- C:\Users\SpankMe\AppData\Roaming\Riot Games
2014-05-16 15:43:56 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-05-16 15:43:56 ----A---- C:\Windows\system32\DWrite.dll
2014-05-16 15:43:55 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-05-16 15:43:55 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-05-16 15:35:44 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-05-16 15:35:44 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-05-16 15:35:43 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-05-16 15:35:43 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-05-16 15:35:43 ----A---- C:\Windows\system32\nshwfp.dll
2014-05-16 15:35:27 ----A---- C:\Windows\system32\scavengeui.dll
2014-05-16 15:18:05 ----D---- C:\Program Files (x86)\Google
2014-05-16 15:17:43 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-05-16 15:17:43 ----A---- C:\Windows\system32\rdpcore.dll
2014-05-16 15:17:43 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wups2.dll
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wucltux.dll
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wuaueng.dll
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wuauclt.exe
2014-05-16 15:10:51 ----A---- C:\Windows\system32\wups.dll
2014-05-16 15:10:51 ----A---- C:\Windows\system32\wudriver.dll
2014-05-16 15:10:51 ----A---- C:\Windows\system32\wuapi.dll
2014-05-16 15:10:46 ----A---- C:\Windows\system32\wuwebv.dll
2014-05-16 15:10:46 ----A---- C:\Windows\system32\wuapp.exe
2014-05-16 15:10:00 ----D---- C:\Users\SpankMe\AppData\Roaming\ATI
2014-05-16 15:09:55 ----D---- C:\Users\SpankMe\AppData\Roaming\Intel Corporation
2014-05-16 15:08:59 ----D---- C:\Users\SpankMe\AppData\Roaming\Synaptics
2014-05-16 15:08:58 ----D---- C:\Users\SpankMe\AppData\Roaming\hpqLog
2014-05-16 15:08:57 ----D---- C:\Users\SpankMe\AppData\Roaming\Hewlett-Packard
2014-05-16 15:08:40 ----D---- C:\Users\SpankMe\AppData\Roaming\Adobe
2014-05-16 15:08:30 ----D---- C:\Users\SpankMe\AppData\Roaming\Identities
2014-05-16 15:07:40 ----D---- C:\Users\SpankMe\AppData\Roaming\DigitalPersona
2014-05-16 15:07:33 ----SD---- C:\Users\SpankMe\AppData\Roaming\Microsoft
2014-05-16 15:07:33 ----D---- C:\Users\SpankMe\AppData\Roaming\Media Center Programs
2014-05-16 15:05:16 ----D---- C:\Windows\SoftwareDistribution

======List of files/folders modified in the last 1 month======

2014-05-19 18:36:50 ----D---- C:\Windows\Temp
2014-05-19 18:30:17 ----D---- C:\Windows\Prefetch
2014-05-19 18:11:07 ----AD---- C:\Windows
2014-05-19 18:04:52 ----D---- C:\Windows\system32\config
2014-05-19 17:55:50 ----D---- C:\Windows\System32
2014-05-19 17:55:50 ----D---- C:\Windows\inf
2014-05-19 17:55:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-19 17:55:02 ----D---- C:\Windows\Tasks
2014-05-19 17:55:02 ----D---- C:\Windows\system32\Tasks
2014-05-19 17:51:37 ----D---- C:\ProgramData\PDFC
2014-05-19 17:45:41 ----D---- C:\Windows\SysWOW64
2014-05-19 11:35:44 ----RD---- C:\Program Files
2014-05-19 11:06:04 ----HD---- C:\ProgramData
2014-05-19 11:04:24 ----SHD---- C:\Windows\Installer
2014-05-19 11:03:58 ----RSD---- C:\Windows\assembly
2014-05-19 11:03:46 ----SHD---- C:\System Volume Information
2014-05-19 11:03:26 ----RD---- C:\Program Files (x86)
2014-05-19 10:51:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-05-19 03:44:49 ----D---- C:\Windows\rescache
2014-05-19 03:19:56 ----D---- C:\Windows\winsxs
2014-05-19 03:17:38 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-05-19 03:17:38 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-19 03:17:38 ----D---- C:\Program Files\Internet Explorer
2014-05-19 03:17:37 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-19 03:17:37 ----D---- C:\Windows\system32\sk-SK
2014-05-19 03:17:37 ----D---- C:\Windows\system32\en-US
2014-05-19 03:17:37 ----D---- C:\Windows\system32\cs-CZ
2014-05-19 03:17:37 ----D---- C:\Windows\PolicyDefinitions
2014-05-19 03:17:35 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-19 03:01:53 ----D---- C:\Windows\system32\catroot
2014-05-19 03:01:52 ----D---- C:\Windows\system32\catroot2
2014-05-19 01:00:59 ----D---- C:\Windows\Microsoft.NET
2014-05-18 23:31:36 ----D---- C:\Program Files\Windows Sidebar
2014-05-18 23:31:35 ----D---- C:\Program Files\Windows Mail
2014-05-18 23:31:33 ----D---- C:\Program Files\Windows Photo Viewer
2014-05-18 23:31:33 ----D---- C:\Program Files\Windows Media Player
2014-05-18 23:31:33 ----D---- C:\Program Files\Windows Journal
2014-05-18 23:31:33 ----D---- C:\Program Files\Common Files\System
2014-05-18 23:31:32 ----D---- C:\Program Files\Windows Defender
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Mail
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\winrm
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\slmgr
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\migwiz
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\en
2014-05-18 23:31:31 ----D---- C:\Windows\servicing
2014-05-18 23:31:31 ----D---- C:\Windows\ehome
2014-05-18 23:31:31 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-18 23:31:27 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2014-05-18 23:31:27 ----D---- C:\Windows\SYSWOW64\drivers
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\WCN
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\Dism
2014-05-18 23:31:23 ----D---- C:\Windows\en-US
2014-05-18 23:31:22 ----D---- C:\Windows\system32\winrm
2014-05-18 23:31:22 ----D---- C:\Windows\system32\sysprep
2014-05-18 23:31:22 ----D---- C:\Windows\system32\slmgr
2014-05-18 23:31:22 ----D---- C:\Windows\system32\oobe
2014-05-18 23:31:22 ----D---- C:\Windows\system32\migwiz
2014-05-18 23:31:22 ----D---- C:\Windows\system32\en
2014-05-18 23:31:22 ----D---- C:\Windows\system32\Boot
2014-05-18 23:31:15 ----D---- C:\Windows\system32\drivers\en-US
2014-05-18 23:31:15 ----D---- C:\Windows\system32\drivers
2014-05-18 23:31:07 ----D---- C:\Windows\system32\WCN
2014-05-18 23:31:07 ----D---- C:\Windows\system32\DriverStore
2014-05-18 23:31:07 ----D---- C:\Windows\system32\Dism
2014-05-18 23:30:58 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-05-18 23:30:46 ----D---- C:\Program Files\DVD Maker
2014-05-18 23:30:29 ----D---- C:\Windows\Speech
2014-05-18 23:18:54 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-05-18 23:17:58 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-18 23:15:27 ----D---- C:\Program Files\Microsoft Security Client
2014-05-18 23:15:23 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-05-18 18:57:16 ----D---- C:\Windows\Downloaded Program Files
2014-05-18 18:56:58 ----RSD---- C:\Windows\Fonts
2014-05-18 18:54:22 ----D---- C:\Windows\Help
2014-05-17 22:43:53 ----D---- C:\Windows\SYSWOW64\migration
2014-05-17 22:43:50 ----D---- C:\Windows\system32\migration
2014-05-17 22:43:43 ----D---- C:\Windows\SYSWOW64\wbem
2014-05-17 22:43:43 ----D---- C:\Windows\system32\wbem
2014-05-17 22:43:37 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-05-17 22:29:15 ----SD---- C:\ProgramData\Microsoft
2014-05-17 22:25:09 ----D---- C:\Windows\Logs
2014-05-17 21:35:41 ----D---- C:\Windows\debug
2014-05-17 19:19:30 ----D---- C:\Windows\AppPatch
2014-05-17 18:29:11 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-17 18:22:21 ----D---- C:\Windows\system32\wdi
2014-05-16 22:02:08 ----D---- C:\ProgramData\Hewlett-Packard
2014-05-16 18:52:07 ----D---- C:\Windows\system32\restore
2014-05-16 18:28:40 ----D---- C:\Program Files\Common Files
2014-05-16 18:25:45 ----D---- C:\Program Files (x86)\Common Files
2014-05-16 18:18:44 ----D---- C:\Windows\system32\NDF
2014-05-16 18:01:03 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-16 17:59:02 ----D---- C:\Windows\ShellNew
2014-05-16 16:49:42 ----D---- C:\ProgramData\Skype
2014-05-16 16:15:42 ----D---- C:\Windows\system32\drivers\UMDF
2014-05-16 15:08:20 ----SHD---- C:\$RECYCLE.BIN
2014-05-16 15:08:18 ----D---- C:\SWSETUP
2014-05-16 15:08:14 ----RAHD---- C:\SYSTEM.SAV
2014-05-16 15:08:11 ----RD---- C:\Program Files (x86)\Online Services
2014-05-16 15:07:32 ----RD---- C:\Users
2014-05-16 15:07:25 ----D---- C:\Windows\Panther

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2013-04-10 35936]
R0 hpdskflt;HP Filter; C:\Windows\system32\drivers\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2013-08-08 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2013-08-08 28008]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\drivers\iusb3hcs.sys [2013-08-16 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\Windows\system32\DRIVERS\PinFile.sys [2013-08-22 49856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SDDisk2K;SDDisk2K; C:\Windows\system32\DRIVERS\SDDisk2K.sys [2013-08-22 228544]
R0 SDDToki;SDDToki; C:\Windows\system32\DRIVERS\SDDToki.sys [2013-08-22 131264]
R0 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-05-16 283064]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2013-06-13 65752]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\drivers\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-03-26 12534784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-03-26 620032]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2012-09-25 165688]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2014-03-16 23760]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2014-04-07 8071888]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-10-29 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2012-12-03 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-05-02 184144]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\drivers\btwrchid.sys [2012-03-06 21544]
R3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2013-07-13 495376]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\drivers\HpqKbFiltr.sys [2013-06-26 25912]
R3 IceKore;IceKore; C:\Windows\system32\DRIVERS\IceKore.sys [2013-08-19 397784]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-10-15 4446752]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\drivers\iusb3hub.sys [2013-08-16 368624]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\drivers\iusb3xhc.sys [2013-08-16 790000]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\drivers\TeeDriverx64.sys [2013-09-17 99288]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 rtsuvc;HP HD Webcam [Fixed]; C:\Windows\system32\DRIVERS\rtsuvc.sys [2013-08-02 8873688]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\drivers\Smb_driver_Intel.sys [2013-09-04 34544]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-08-16 551936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\drivers\SynTP.sys [2013-09-04 524016]
R3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-04-24 96768]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-10-29 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-09-18 452088]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-08-21 429272]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SmbDrv;SmbDrv; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [2013-09-04 30448]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-03-26 239616]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-12-07 1005944]
R2 CreoService;HP Trust Circles Service; C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2013-08-23 1366488]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2013-08-14 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-09-18 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-09-18 298760]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-09-14 500048]
R2 FLCDLOCK;HP Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2013-09-06 567608]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-06-08 92160]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2013-08-07 1758424]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2013-08-01 681760]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-17 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-17 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-17 390616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-07-18 1143432]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2013-08-16 339456]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2013-07-03 3223144]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-05-16 1436424]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2013-09-19 1445176]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-08-23 1232056]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-16 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-29 253600]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-10-15 279000]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-16 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-17 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[Rudy]

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

[SpankMe2day]

Logfile of random's system information tool 1.09 (written by random/random)
Run by SpankMe at 2014-05-19 18:55:47
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 296 GB (64%) free of 461 GB
Total RAM: 4009 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:56:12, on 19.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\SpankMe.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [RGSC] C:\Games\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: HP Trust Circles Service (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Broadcom Corporation - C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13158 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\Windows\system32\WLANExt.exe 24302720
\??\C:\Windows\system32\conhost.exe "-18636142452131862288100051479-2053900866-559369171-38064937-392506871-1746426128
"C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE" "C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe"
C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
taskeng.exe {FF4C596D-8C3A-4745-B9F9-53A349A58AB4}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
c:\Windows\SysWOW64\flcdlock.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\Dwm.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\05192014_185129.log
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE"
"C:\Windows\RtsCM64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\igfxpers.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Windows\SysWOW64\RunDll32.exe" "c:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5644.0.1440669908\218569737" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,28 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.18.10.3324 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="5644.2.317526815\119788934" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="5644.4.695293824\968032379" /prefetch:673131151
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe" Restart Start EEU 52 rgsc.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Users\SpankMe\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group8 pct:10h stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/OmniboxBundledExperimentV1/PrePeriod_Hivemind_A3_Stable_R5/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="5644.6.1489255088\14531299" /prefetch:673131151
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5644.7.2090988719\1620401251" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\HPCeeScheduleForSpankMe.job
C:\Windows\tasks\MATLAB R2012b Startup Accelerator.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-08-07 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-10 351136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-08-16 1703424]
"Broadcom Wireless Manager UI"=C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [2014-03-16 7032320]
"RtsCM"=C:\Windows\RTSCM64.EXE [2013-08-02 147160]
""= []
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-04 2774256]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-10-15 165848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-10-15 407512]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-10-15 444376]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"RGSC"=C:\Games\GTA IV\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2013-07-18 683656]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2013-09-19 185144]
""= []
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-08-02 676608]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2013-08-01 337184]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-08-16 292848]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-07-25 77088]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe []
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-06-24 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2013-08-07 2213592]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-10-15 441344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2014-05-19 18:51:29 ----D---- C:\_OTM
2014-05-19 17:45:41 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-05-19 17:45:05 ----D---- C:\AdwCleaner
2014-05-19 11:35:44 ----D---- C:\rsit
2014-05-19 11:35:44 ----D---- C:\Program Files\trend micro
2014-05-19 11:06:41 ----RHD---- C:\Users\SpankMe\AppData\Roaming\SecuROM
2014-05-19 11:05:57 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-05-19 11:04:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-05-19 11:04:16 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-05-19 11:04:15 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-05-19 11:04:15 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-05-19 11:04:14 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-05-19 11:04:14 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-05-19 11:04:14 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-05-19 11:04:11 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-05-19 11:04:11 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-05-19 11:04:10 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-05-19 11:04:10 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-05-19 11:04:09 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-05-19 11:04:09 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-05-19 11:04:08 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-05-19 11:04:08 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-05-19 11:04:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-05-19 11:04:07 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-05-19 11:04:06 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-05-19 11:04:06 ----A---- C:\Windows\system32\xinput1_3.dll
2014-05-19 11:04:06 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-05-19 11:04:05 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-05-19 11:04:04 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-05-19 11:04:04 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-05-19 11:04:04 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-05-19 11:04:04 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-05-19 11:04:03 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-05-19 11:04:03 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-05-19 11:04:03 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-05-19 11:04:03 ----A---- C:\Windows\system32\d3dx10.dll
2014-05-19 11:04:02 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-05-19 11:04:02 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-05-19 11:04:02 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-05-19 11:04:02 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-05-19 11:04:02 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-05-19 11:04:02 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-05-19 11:04:01 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-05-19 11:04:01 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-05-19 11:04:00 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-05-19 11:04:00 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-05-19 11:04:00 ----A---- C:\Windows\system32\xinput1_2.dll
2014-05-19 11:04:00 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-05-19 11:03:59 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-05-19 11:03:59 ----A---- C:\Windows\system32\xinput1_1.dll
2014-05-19 11:03:58 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-05-19 11:03:58 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-05-19 11:03:46 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-05-19 11:03:46 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-05-19 11:03:46 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-05-19 11:03:46 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-05-19 11:03:45 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-05-19 11:03:45 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-05-19 11:03:45 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-05-19 11:03:45 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-05-19 11:03:44 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-05-19 11:03:44 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-05-19 11:03:44 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-05-19 11:03:44 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-05-19 11:03:43 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-05-19 11:03:43 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-05-19 11:03:42 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-05-19 11:03:42 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-05-19 11:03:30 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-05-19 11:03:26 ----D---- C:\Windows\SYSWOW64\xlive
2014-05-19 11:03:26 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-05-19 03:00:57 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-05-19 03:00:57 ----A---- C:\Windows\system32\ieui.dll
2014-05-19 03:00:53 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-19 03:00:53 ----A---- C:\Windows\system32\vbscript.dll
2014-05-19 03:00:48 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-19 03:00:48 ----A---- C:\Windows\system32\iernonce.dll
2014-05-19 03:00:48 ----A---- C:\Windows\system32\ie4uinit.exe
2014-05-19 03:00:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-05-19 03:00:46 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\msrating.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\jsproxy.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\jscript9diag.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\dxtrans.dll
2014-05-19 03:00:46 ----A---- C:\Windows\system32\dxtmsft.dll
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-05-19 03:00:45 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-05-19 03:00:45 ----A---- C:\Windows\system32\ieUnatt.exe
2014-05-19 03:00:45 ----A---- C:\Windows\system32\iesetup.dll
2014-05-19 03:00:44 ----A---- C:\Windows\system32\mshtml.dll
2014-05-19 03:00:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-05-19 03:00:43 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-05-19 03:00:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-05-19 03:00:43 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-05-19 03:00:43 ----A---- C:\Windows\system32\ieapfltr.dll
2014-05-19 03:00:42 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-19 03:00:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-05-19 03:00:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-19 03:00:41 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-19 03:00:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-19 03:00:41 ----A---- C:\Windows\system32\wininet.dll
2014-05-19 03:00:41 ----A---- C:\Windows\system32\urlmon.dll
2014-05-19 03:00:41 ----A---- C:\Windows\system32\iertutil.dll
2014-05-19 03:00:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-19 03:00:39 ----A---- C:\Windows\system32\ieframe.dll
2014-05-19 03:00:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-19 03:00:37 ----A---- C:\Windows\system32\jscript9.dll
2014-05-19 03:00:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-05-18 23:52:49 ----D---- C:\Windows\system32\appmgmt
2014-05-18 23:23:13 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-18 23:23:13 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-18 18:55:04 ----D---- C:\Program Files (x86)\Microsoft WSE
2014-05-18 18:53:46 ----D---- C:\Program Files\DWG TrueView 2010
2014-05-18 18:53:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-05-18 18:53:21 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-05-18 18:53:20 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-05-18 18:48:36 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-05-18 18:48:36 ----A---- C:\Windows\system32\mstscax.dll
2014-05-18 14:51:21 ----D---- C:\Users\SpankMe\AppData\Roaming\uTorrent
2014-05-17 22:43:44 ----SD---- C:\Windows\system32\CompatTel
2014-05-17 22:37:55 ----A---- C:\Windows\system32\wmploc.DLL
2014-05-17 22:37:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-05-17 22:37:54 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-05-17 22:37:53 ----A---- C:\Windows\system32\wmp.dll
2014-05-17 22:29:15 ----D---- C:\Windows\Migration
2014-05-17 22:25:09 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-05-17 22:18:45 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\url.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-05-17 22:18:42 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-05-17 22:18:42 ----A---- C:\Windows\system32\elshyph.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-05-17 22:18:41 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\url.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-05-17 22:18:41 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-17 22:18:41 ----A---- C:\Windows\system32\msls31.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\mshtmler.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\msfeedssync.exe
2014-05-17 22:18:41 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\jsIntl.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\iesysprep.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\iedkcs32.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\ieapfltr.dat
2014-05-17 22:18:41 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-05-17 22:18:41 ----A---- C:\Windows\system32\icardie.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\wextract.exe
2014-05-17 22:18:40 ----A---- C:\Windows\system32\webcheck.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\pngfilt.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\occache.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\mshta.exe
2014-05-17 22:18:40 ----A---- C:\Windows\system32\licmgr10.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\jscript.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\inseng.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\imgutil.dll
2014-05-17 22:18:40 ----A---- C:\Windows\system32\iexpress.exe
2014-05-17 22:18:40 ----A---- C:\Windows\system32\iepeers.dll
2014-05-17 21:52:48 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-17 21:52:45 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-05-17 21:52:45 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-05-17 21:52:45 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\wksprtPS.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\wksprt.exe
2014-05-17 21:52:45 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-05-17 21:52:45 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-17 21:52:45 ----A---- C:\Windows\system32\tsgqec.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-05-17 21:52:45 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-05-17 21:52:44 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-05-17 21:52:44 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-05-17 21:52:44 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-05-17 21:52:44 ----A---- C:\Windows\system32\mstsc.exe
2014-05-17 21:43:08 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-17 21:43:06 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2014-05-17 21:43:06 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-05-17 21:43:05 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2014-05-17 21:43:05 ----A---- C:\Windows\system32\rdpudd.dll
2014-05-17 21:43:05 ----A---- C:\Windows\system32\rdpendp_winip.dll
2014-05-17 21:43:04 ----A---- C:\Windows\system32\rdpcorets.dll
2014-05-17 21:40:59 ----A---- C:\Windows\system32\browserchoice.exe
2014-05-17 21:35:41 ----D---- C:\Windows\system32\MRT
2014-05-17 21:35:40 ----A---- C:\Windows\system32\MRT.exe
2014-05-17 20:40:20 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-05-17 20:40:20 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-05-17 20:40:09 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-05-17 20:40:08 ----A---- C:\Windows\system32\qdvd.dll
2014-05-17 20:38:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-17 20:38:24 ----A---- C:\Windows\system32\schannel.dll
2014-05-17 20:38:24 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-17 20:38:23 ----A---- C:\Windows\system32\kerberos.dll
2014-05-17 20:38:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-17 20:38:22 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-17 20:38:22 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-17 20:38:20 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-17 20:38:20 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-17 20:38:20 ----A---- C:\Windows\system32\winlogon.exe
2014-05-17 20:38:20 ----A---- C:\Windows\system32\objsel.dll
2014-05-17 20:38:20 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-17 20:38:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-17 20:38:20 ----A---- C:\Windows\system32\drivers\cng.sys
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\wdigest.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\sspicli.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\smss.exe
2014-05-17 20:38:19 ----A---- C:\Windows\system32\lsass.exe
2014-05-17 20:38:19 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-17 20:38:19 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\csrsrv.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-17 20:38:19 ----A---- C:\Windows\system32\adprovider.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-17 20:38:18 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\secur32.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\ncrypt.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\credssp.dll
2014-05-17 20:38:18 ----A---- C:\Windows\system32\apisetschema.dll
2014-05-17 19:30:10 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-05-17 19:30:10 ----A---- C:\Windows\system32\tdh.dll
2014-05-17 19:30:10 ----A---- C:\Windows\system32\ntdll.dll
2014-05-17 19:30:10 ----A---- C:\Windows\system32\advapi32.dll
2014-05-17 19:30:09 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-05-17 19:30:09 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-05-17 19:19:47 ----D---- C:\Windows\SYSWOW64\Wat
2014-05-17 19:19:46 ----D---- C:\Windows\system32\Wat
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFx.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFSvc.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFPlatform.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFHost.exe
2014-05-17 18:31:37 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2014-05-17 18:31:37 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2014-05-17 18:31:37 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2014-05-16 22:24:50 ----D---- C:\Users\SpankMe\AppData\Roaming\Subversion
2014-05-16 22:24:25 ----D---- C:\Users\SpankMe\AppData\Roaming\MathWorks
2014-05-16 22:01:48 ----ASH---- C:\pagefile.sys
2014-05-16 21:49:32 ----D---- C:\Program Files\MATLAB
2014-05-16 21:46:39 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-05-16 21:46:39 ----HD---- C:\ProgramData\Common Files
2014-05-16 21:45:39 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2014-05-16 21:45:36 ----D---- C:\Users\SpankMe\AppData\Roaming\DAEMON Tools Lite
2014-05-16 21:45:33 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2014-05-16 21:44:53 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-05-16 20:33:24 ----D---- C:\Users\SpankMe\AppData\Roaming\LolClient
2014-05-16 20:33:23 ----D---- C:\Users\SpankMe\AppData\Roaming\Macromedia
2014-05-16 18:34:19 ----D---- C:\ProgramData\FLEXnet
2014-05-16 18:28:40 ----D---- C:\Program Files\Common Files\Macrovision Shared
2014-05-16 18:26:49 ----D---- C:\Program Files\Common Files\Autodesk Shared
2014-05-16 18:26:49 ----D---- C:\Program Files\Autodesk
2014-05-16 18:25:26 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-05-16 18:25:26 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-05-16 18:25:22 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-05-16 18:25:22 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-05-16 18:22:16 ----D---- C:\Users\SpankMe\AppData\Roaming\Autodesk
2014-05-16 18:22:16 ----D---- C:\ProgramData\Autodesk
2014-05-16 18:15:32 ----D---- C:\Autodesk
2014-05-16 18:09:31 ----D---- C:\Users\SpankMe\AppData\Roaming\WinRAR
2014-05-16 18:08:17 ----D---- C:\Users\SpankMe\AppData\Roaming\GHISLER
2014-05-16 18:08:17 ----D---- C:\totalcmd
2014-05-16 18:01:32 ----D---- C:\Program Files (x86)\Microsoft Works
2014-05-16 18:01:18 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2014-05-16 18:01:03 ----D---- C:\Windows\PCHEALTH
2014-05-16 17:59:13 ----D---- C:\Program Files\Microsoft Office
2014-05-16 17:58:42 ----D---- C:\ProgramData\Microsoft Help
2014-05-16 17:58:09 ----RHD---- C:\MSOCache
2014-05-16 17:56:06 ----D---- C:\Users\SpankMe\AppData\Roaming\GRETECH
2014-05-16 17:56:00 ----D---- C:\Program Files (x86)\GRETECH
2014-05-16 17:31:54 ----D---- C:\Program Files (x86)\Adobe
2014-05-16 17:31:20 ----D---- C:\ProgramData\Adobe
2014-05-16 17:04:22 ----D---- C:\Program Files\CCleaner
2014-05-16 16:52:13 ----D---- C:\Program Files\WinRAR
2014-05-16 16:49:44 ----D---- C:\Users\SpankMe\AppData\Roaming\Skype
2014-05-16 16:49:38 ----RD---- C:\Program Files (x86)\Skype
2014-05-16 16:06:32 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-05-16 16:06:32 ----A---- C:\Windows\system32\RMActivate.exe
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-05-16 16:06:31 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc_isv.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\secproc.dll
2014-05-16 16:06:31 ----A---- C:\Windows\system32\msdrm.dll
2014-05-16 16:06:19 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-05-16 16:06:19 ----A---- C:\Windows\system32\msieftp.dll
2014-05-16 16:06:18 ----A---- C:\Windows\system32\wwansvc.dll
2014-05-16 16:06:18 ----A---- C:\Windows\system32\comctl32.dll
2014-05-16 16:06:17 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-05-16 16:03:24 ----A---- C:\Windows\system32\poqexec.exe
2014-05-16 16:03:23 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-05-16 16:02:58 ----A---- C:\Windows\system32\shell32.dll
2014-05-16 16:02:56 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-16 16:02:55 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-05-16 16:02:55 ----A---- C:\Windows\system32\wintrust.dll
2014-05-16 16:02:41 ----A---- C:\Windows\system32\aepdu.dll
2014-05-16 16:02:41 ----A---- C:\Windows\system32\aeinv.dll
2014-05-16 16:02:26 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-05-16 16:02:26 ----A---- C:\Windows\system32\webio.dll
2014-05-16 16:02:02 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-05-16 16:02:02 ----A---- C:\Windows\system32\WMPhoto.dll
2014-05-16 16:01:58 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-05-16 16:01:58 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-05-16 16:01:58 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-05-16 16:01:58 ----A---- C:\Windows\system32\crypt32.dll
2014-05-16 16:01:57 ----A---- C:\Windows\system32\cryptsvc.dll
2014-05-16 16:01:57 ----A---- C:\Windows\system32\cryptnet.dll
2014-05-16 16:01:46 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-05-16 16:01:46 ----A---- C:\Windows\system32\wer.dll
2014-05-16 16:01:45 ----A---- C:\Windows\system32\imagehlp.dll
2014-05-16 16:01:44 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-05-16 16:01:42 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-05-16 16:01:42 ----A---- C:\Windows\system32\tzres.dll
2014-05-16 16:01:27 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-05-16 16:01:27 ----A---- C:\Windows\system32\msxml3.dll
2014-05-16 16:01:26 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-05-16 16:01:26 ----A---- C:\Windows\system32\msxml3r.dll
2014-05-16 15:58:54 ----A---- C:\Windows\system32\drivers\afd.sys
2014-05-16 15:55:11 ----A---- C:\Windows\system32\win32k.sys
2014-05-16 15:55:11 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-05-16 15:55:11 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-05-16 15:55:10 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-05-16 15:55:08 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-05-16 15:55:08 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-05-16 15:55:08 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-05-16 15:55:08 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-16 15:55:08 ----A---- C:\Windows\system32\credui.dll
2014-05-16 15:55:08 ----A---- C:\Windows\system32\authui.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-05-16 15:54:52 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\lpk.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\fontsub.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\dciman32.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\atmlib.dll
2014-05-16 15:54:52 ----A---- C:\Windows\system32\atmfd.dll
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-05-16 15:49:47 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-05-16 15:49:42 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-05-16 15:49:42 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-05-16 15:49:14 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-05-16 15:48:58 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-05-16 15:48:58 ----A---- C:\Windows\system32\rpcrt4.dll
2014-05-16 15:48:56 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2014-05-16 15:48:56 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-05-16 15:48:52 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-05-16 15:48:52 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-05-16 15:48:45 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-05-16 15:48:45 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-05-16 15:48:45 ----A---- C:\Windows\system32\WebClnt.dll
2014-05-16 15:48:45 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-05-16 15:48:45 ----A---- C:\Windows\system32\davclnt.dll
2014-05-16 15:46:44 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-05-16 15:46:44 ----A---- C:\Windows\system32\d3d10warp.dll
2014-05-16 15:46:44 ----A---- C:\Windows\system32\d2d1.dll
2014-05-16 15:46:43 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-05-16 15:46:13 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-05-16 15:46:12 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-05-16 15:46:12 ----A---- C:\Windows\system32\mswsock.dll
2014-05-16 15:46:08 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-05-16 15:46:08 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-05-16 15:46:07 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-05-16 15:46:07 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-05-16 15:46:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-05-16 15:46:01 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2014-05-16 15:45:46 ----D---- C:\ProgramData\PMB Files
2014-05-16 15:45:37 ----D---- C:\Program Files (x86)\Pando Networks
2014-05-16 15:45:21 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-05-16 15:45:21 ----A---- C:\Windows\system32\drivers\netio.sys
2014-05-16 15:45:03 ----D---- C:\Movies
2014-05-16 15:45:03 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-05-16 15:45:03 ----A---- C:\Windows\system32\iologmsg.dll
2014-05-16 15:45:03 ----A---- C:\Windows\system32\drivers\storport.sys
2014-05-16 15:45:03 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-05-16 15:45:03 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-05-16 15:44:58 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-05-16 15:44:58 ----A---- C:\Windows\system32\shdocvw.dll
2014-05-16 15:44:54 ----D---- C:\Games
2014-05-16 15:44:52 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-05-16 15:44:52 ----A---- C:\Windows\system32\gdi32.dll
2014-05-16 15:44:51 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-05-16 15:44:51 ----A---- C:\Windows\system32\qedit.dll
2014-05-16 15:44:46 ----D---- C:\Music
2014-05-16 15:44:44 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-16 15:44:44 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-16 15:44:34 ----A---- C:\Windows\system32\kernel32.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-16 15:44:33 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-05-16 15:44:33 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-05-16 15:44:33 ----A---- C:\Windows\system32\wow64win.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\wow64cpu.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\wow64.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\winsrv.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\ntvdm64.dll
2014-05-16 15:44:33 ----A---- C:\Windows\system32\conhost.exe
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-16 15:44:32 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-16 15:44:32 ----A---- C:\Windows\SYSWOW64\user.exe
2014-05-16 15:44:31 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-05-16 15:44:21 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-05-16 15:44:21 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-05-16 15:44:21 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-05-16 15:44:21 ----A---- C:\Windows\system32\wscript.exe
2014-05-16 15:44:21 ----A---- C:\Windows\system32\scrrun.dll
2014-05-16 15:44:21 ----A---- C:\Windows\system32\cscript.exe
2014-05-16 15:44:20 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-05-16 15:44:19 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-05-16 15:44:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-05-16 15:44:12 ----D---- C:\Users\SpankMe\AppData\Roaming\Riot Games
2014-05-16 15:43:56 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-05-16 15:43:56 ----A---- C:\Windows\system32\DWrite.dll
2014-05-16 15:43:55 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-05-16 15:43:55 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-05-16 15:35:44 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-05-16 15:35:44 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-05-16 15:35:43 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-05-16 15:35:43 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-05-16 15:35:43 ----A---- C:\Windows\system32\nshwfp.dll
2014-05-16 15:35:27 ----A---- C:\Windows\system32\scavengeui.dll
2014-05-16 15:18:05 ----D---- C:\Program Files (x86)\Google
2014-05-16 15:17:43 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-05-16 15:17:43 ----A---- C:\Windows\system32\rdpcore.dll
2014-05-16 15:17:43 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wups2.dll
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wucltux.dll
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wuaueng.dll
2014-05-16 15:10:57 ----A---- C:\Windows\system32\wuauclt.exe
2014-05-16 15:10:51 ----A---- C:\Windows\system32\wups.dll
2014-05-16 15:10:51 ----A---- C:\Windows\system32\wudriver.dll
2014-05-16 15:10:51 ----A---- C:\Windows\system32\wuapi.dll
2014-05-16 15:10:46 ----A---- C:\Windows\system32\wuwebv.dll
2014-05-16 15:10:46 ----A---- C:\Windows\system32\wuapp.exe
2014-05-16 15:10:00 ----D---- C:\Users\SpankMe\AppData\Roaming\ATI
2014-05-16 15:09:55 ----D---- C:\Users\SpankMe\AppData\Roaming\Intel Corporation
2014-05-16 15:08:59 ----D---- C:\Users\SpankMe\AppData\Roaming\Synaptics
2014-05-16 15:08:58 ----D---- C:\Users\SpankMe\AppData\Roaming\hpqLog
2014-05-16 15:08:57 ----D---- C:\Users\SpankMe\AppData\Roaming\Hewlett-Packard
2014-05-16 15:08:40 ----D---- C:\Users\SpankMe\AppData\Roaming\Adobe
2014-05-16 15:08:30 ----D---- C:\Users\SpankMe\AppData\Roaming\Identities
2014-05-16 15:07:40 ----D---- C:\Users\SpankMe\AppData\Roaming\DigitalPersona
2014-05-16 15:07:33 ----SD---- C:\Users\SpankMe\AppData\Roaming\Microsoft
2014-05-16 15:07:33 ----D---- C:\Users\SpankMe\AppData\Roaming\Media Center Programs
2014-05-16 15:05:16 ----D---- C:\Windows\SoftwareDistribution

======List of files/folders modified in the last 1 month======

2014-05-19 18:54:21 ----AD---- C:\Windows
2014-05-19 18:54:19 ----D---- C:\Windows\Temp
2014-05-19 18:53:38 ----D---- C:\Windows\system32\config
2014-05-19 18:53:37 ----D---- C:\ProgramData\PDFC
2014-05-19 18:51:30 ----D---- C:\Windows\Tasks
2014-05-19 18:30:17 ----D---- C:\Windows\Prefetch
2014-05-19 17:55:50 ----D---- C:\Windows\System32
2014-05-19 17:55:50 ----D---- C:\Windows\inf
2014-05-19 17:55:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-19 17:55:02 ----D---- C:\Windows\system32\Tasks
2014-05-19 17:45:41 ----D---- C:\Windows\SysWOW64
2014-05-19 11:35:44 ----RD---- C:\Program Files
2014-05-19 11:06:04 ----HD---- C:\ProgramData
2014-05-19 11:04:24 ----SHD---- C:\Windows\Installer
2014-05-19 11:03:58 ----RSD---- C:\Windows\assembly
2014-05-19 11:03:46 ----SHD---- C:\System Volume Information
2014-05-19 11:03:26 ----RD---- C:\Program Files (x86)
2014-05-19 10:51:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-05-19 03:44:49 ----D---- C:\Windows\rescache
2014-05-19 03:19:56 ----D---- C:\Windows\winsxs
2014-05-19 03:17:38 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-05-19 03:17:38 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-19 03:17:38 ----D---- C:\Program Files\Internet Explorer
2014-05-19 03:17:37 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-19 03:17:37 ----D---- C:\Windows\system32\sk-SK
2014-05-19 03:17:37 ----D---- C:\Windows\system32\en-US
2014-05-19 03:17:37 ----D---- C:\Windows\system32\cs-CZ
2014-05-19 03:17:37 ----D---- C:\Windows\PolicyDefinitions
2014-05-19 03:17:35 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-19 03:01:53 ----D---- C:\Windows\system32\catroot
2014-05-19 03:01:52 ----D---- C:\Windows\system32\catroot2
2014-05-19 01:00:59 ----D---- C:\Windows\Microsoft.NET
2014-05-18 23:31:36 ----D---- C:\Program Files\Windows Sidebar
2014-05-18 23:31:35 ----D---- C:\Program Files\Windows Mail
2014-05-18 23:31:33 ----D---- C:\Program Files\Windows Photo Viewer
2014-05-18 23:31:33 ----D---- C:\Program Files\Windows Media Player
2014-05-18 23:31:33 ----D---- C:\Program Files\Windows Journal
2014-05-18 23:31:33 ----D---- C:\Program Files\Common Files\System
2014-05-18 23:31:32 ----D---- C:\Program Files\Windows Defender
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-18 23:31:32 ----D---- C:\Program Files (x86)\Windows Mail
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\winrm
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\slmgr
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\migwiz
2014-05-18 23:31:31 ----D---- C:\Windows\SYSWOW64\en
2014-05-18 23:31:31 ----D---- C:\Windows\servicing
2014-05-18 23:31:31 ----D---- C:\Windows\ehome
2014-05-18 23:31:31 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-18 23:31:27 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2014-05-18 23:31:27 ----D---- C:\Windows\SYSWOW64\drivers
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\WCN
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-05-18 23:31:24 ----D---- C:\Windows\SYSWOW64\Dism
2014-05-18 23:31:23 ----D---- C:\Windows\en-US
2014-05-18 23:31:22 ----D---- C:\Windows\system32\winrm
2014-05-18 23:31:22 ----D---- C:\Windows\system32\sysprep
2014-05-18 23:31:22 ----D---- C:\Windows\system32\slmgr
2014-05-18 23:31:22 ----D---- C:\Windows\system32\oobe
2014-05-18 23:31:22 ----D---- C:\Windows\system32\migwiz
2014-05-18 23:31:22 ----D---- C:\Windows\system32\en
2014-05-18 23:31:22 ----D---- C:\Windows\system32\Boot
2014-05-18 23:31:15 ----D---- C:\Windows\system32\drivers\en-US
2014-05-18 23:31:15 ----D---- C:\Windows\system32\drivers
2014-05-18 23:31:07 ----D---- C:\Windows\system32\WCN
2014-05-18 23:31:07 ----D---- C:\Windows\system32\DriverStore
2014-05-18 23:31:07 ----D---- C:\Windows\system32\Dism
2014-05-18 23:30:58 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-05-18 23:30:46 ----D---- C:\Program Files\DVD Maker
2014-05-18 23:30:29 ----D---- C:\Windows\Speech
2014-05-18 23:18:54 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-05-18 23:17:58 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-18 23:15:27 ----D---- C:\Program Files\Microsoft Security Client
2014-05-18 23:15:23 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-05-18 18:57:16 ----D---- C:\Windows\Downloaded Program Files
2014-05-18 18:56:58 ----RSD---- C:\Windows\Fonts
2014-05-18 18:54:22 ----D---- C:\Windows\Help
2014-05-17 22:43:53 ----D---- C:\Windows\SYSWOW64\migration
2014-05-17 22:43:50 ----D---- C:\Windows\system32\migration
2014-05-17 22:43:43 ----D---- C:\Windows\SYSWOW64\wbem
2014-05-17 22:43:43 ----D---- C:\Windows\system32\wbem
2014-05-17 22:43:37 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-05-17 22:29:15 ----SD---- C:\ProgramData\Microsoft
2014-05-17 22:25:09 ----D---- C:\Windows\Logs
2014-05-17 21:35:41 ----D---- C:\Windows\debug
2014-05-17 19:19:30 ----D---- C:\Windows\AppPatch
2014-05-17 18:29:11 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-17 18:22:21 ----D---- C:\Windows\system32\wdi
2014-05-16 22:02:08 ----D---- C:\ProgramData\Hewlett-Packard
2014-05-16 18:52:07 ----D---- C:\Windows\system32\restore
2014-05-16 18:28:40 ----D---- C:\Program Files\Common Files
2014-05-16 18:25:45 ----D---- C:\Program Files (x86)\Common Files
2014-05-16 18:18:44 ----D---- C:\Windows\system32\NDF
2014-05-16 18:01:03 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-16 17:59:02 ----D---- C:\Windows\ShellNew
2014-05-16 16:49:42 ----D---- C:\ProgramData\Skype
2014-05-16 16:15:42 ----D---- C:\Windows\system32\drivers\UMDF
2014-05-16 15:08:20 ----SHD---- C:\$RECYCLE.BIN
2014-05-16 15:08:18 ----D---- C:\SWSETUP
2014-05-16 15:08:14 ----RAHD---- C:\SYSTEM.SAV
2014-05-16 15:08:11 ----RD---- C:\Program Files (x86)\Online Services
2014-05-16 15:07:32 ----RD---- C:\Users
2014-05-16 15:07:25 ----D---- C:\Windows\Panther

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2013-04-10 35936]
R0 hpdskflt;HP Filter; C:\Windows\system32\drivers\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2013-08-08 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2013-08-08 28008]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\drivers\iusb3hcs.sys [2013-08-16 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\Windows\system32\DRIVERS\PinFile.sys [2013-08-22 49856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SDDisk2K;SDDisk2K; C:\Windows\system32\DRIVERS\SDDisk2K.sys [2013-08-22 228544]
R0 SDDToki;SDDToki; C:\Windows\system32\DRIVERS\SDDToki.sys [2013-08-22 131264]
R0 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-05-16 283064]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2013-06-13 65752]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\drivers\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-03-26 12534784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-03-26 620032]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2012-09-25 165688]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2014-03-16 23760]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2014-04-07 8071888]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-10-29 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2012-12-03 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-05-02 184144]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\drivers\btwrchid.sys [2012-03-06 21544]
R3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2013-07-13 495376]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\drivers\HpqKbFiltr.sys [2013-06-26 25912]
R3 IceKore;IceKore; C:\Windows\system32\DRIVERS\IceKore.sys [2013-08-19 397784]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-10-15 4446752]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\drivers\iusb3hub.sys [2013-08-16 368624]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\drivers\iusb3xhc.sys [2013-08-16 790000]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\drivers\TeeDriverx64.sys [2013-09-17 99288]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 rtsuvc;HP HD Webcam [Fixed]; C:\Windows\system32\DRIVERS\rtsuvc.sys [2013-08-02 8873688]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\drivers\Smb_driver_Intel.sys [2013-09-04 34544]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-08-16 551936]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\drivers\SynTP.sys [2013-09-04 524016]
R3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-04-24 96768]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-10-29 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-09-18 452088]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-08-21 429272]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SmbDrv;SmbDrv; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [2013-09-04 30448]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-03-26 239616]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-12-07 1005944]
R2 CreoService;HP Trust Circles Service; C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2013-08-23 1366488]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2013-08-14 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-09-18 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-09-18 298760]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-09-14 500048]
R2 FLCDLOCK;HP Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2013-09-06 567608]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-06-08 92160]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2013-08-07 1758424]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2013-08-01 681760]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-17 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-17 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-17 390616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-07-18 1143432]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2013-08-16 339456]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2013-07-03 3223144]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-08-23 1232056]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-16 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-29 253600]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-10-15 279000]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-05-16 1436424]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-16 116648]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2013-09-19 1445176]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-17 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[Rudy]

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

[SpankMe2day]

Problém přetrvává, rychlost download je stále velmi nízká

[Rudy]

Dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

[SpankMe2day]

Zatím díky zítra to zkusím, dnes už nemám čas pak přidám logy

[Rudy]

OK, budu tu.

[SpankMe2day]

ComboFix 14-05-19.01 - SpankMe 20.05.2014 14:19:27.1.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.4009.2497 [GMT 2:00]
Spuštěný z: c:\users\SpankMe\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\Downloaded Program Files\IDropPTB.dll
c:\windows\msxml4-KB954430-enu.LOG
c:\windows\msxml4-KB973688-enu.LOG
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-20 do 2014-05-20 )))))))))))))))))))))))))))))))
.
.
2014-05-20 12:24 . 2014-05-20 12:24 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-05-20 04:35 . 2014-05-20 04:35 75888 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7CC23AAB-1A2D-4E4D-AFCA-BA0485BA2D10}\offreg.dll
2014-05-20 04:31 . 2014-04-16 01:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7CC23AAB-1A2D-4E4D-AFCA-BA0485BA2D10}\mpengine.dll
2014-05-20 04:21 . 2014-05-06 04:40 23544320 ----a-w- c:\windows\system32\mshtml.dll
2014-05-20 04:21 . 2014-05-06 03:00 84992 ----a-w- c:\windows\system32\mshtmled.dll
2014-05-20 04:21 . 2014-05-06 04:17 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-05-20 04:21 . 2014-05-06 03:07 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2014-05-20 04:20 . 2014-05-20 04:20 -------- d-----w- c:\program files (x86)\MSXML 4.0
2014-05-19 15:45 . 2010-08-30 06:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll
2014-05-19 15:45 . 2014-05-19 15:48 -------- d-----w- C:\AdwCleaner
2014-05-19 09:35 . 2014-05-19 16:56 -------- d-----w- c:\program files\trend micro
2014-05-19 09:05 . 2014-05-19 09:05 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2014-05-19 09:03 . 2006-03-31 10:39 83664 ----a-w- c:\windows\system32\xinput1_1.dll
2014-05-19 01:00 . 2014-03-06 06:00 359936 ----a-w- c:\program files\Internet Explorer\IEShims.dll
2014-05-18 21:52 . 2014-05-18 21:52 -------- d-----w- c:\windows\system32\appmgmt
2014-05-18 21:51 . 2012-10-23 04:04 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-05-18 21:51 . 2014-05-18 21:51 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{97065235-F0C6-4DE2-A8FD-7F85BC762D9D}\gapaengine.dll
2014-05-18 21:51 . 2014-04-16 01:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-05-18 16:55 . 2014-05-18 16:55 -------- d-----w- c:\program files (x86)\Microsoft WSE
2014-05-18 16:53 . 2014-05-18 16:54 -------- d-----w- c:\program files\DWG TrueView 2010
2014-05-18 16:53 . 2008-03-05 13:56 1860120 ----a-w- c:\windows\system32\D3DCompiler_37.dll
2014-05-18 16:53 . 2008-03-05 13:56 1420824 ----a-w- c:\windows\SysWow64\D3DCompiler_37.dll
2014-05-18 16:53 . 2008-03-05 13:56 4910088 ----a-w- c:\windows\system32\D3DX9_37.dll
2014-05-18 16:53 . 2008-03-05 13:56 3786760 ----a-w- c:\windows\SysWow64\D3DX9_37.dll
2014-05-18 16:53 . 2008-02-05 21:07 462864 ----a-w- c:\windows\SysWow64\d3dx10_37.dll
2014-05-18 16:53 . 2008-02-05 21:07 529424 ----a-w- c:\windows\system32\d3dx10_37.dll
2014-05-18 16:48 . 2014-01-09 02:22 5694464 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-05-18 16:48 . 2014-01-03 22:44 6574592 ----a-w- c:\windows\system32\mstscax.dll
2014-05-17 20:43 . 2014-05-17 20:43 -------- d-s---w- c:\windows\system32\CompatTel
2014-05-17 20:37 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-05-17 20:37 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2014-05-17 20:37 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2014-05-17 20:37 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-05-17 20:37 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2014-05-17 20:29 . 2014-05-17 20:29 -------- d-----w- c:\windows\Migration
2014-05-17 20:25 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2014-05-17 19:52 . 2013-10-02 01:10 44544 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll
2014-05-17 19:48 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2014-05-17 19:43 . 2012-08-23 13:24 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2014-05-17 19:43 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2014-05-17 19:43 . 2012-08-23 14:08 30208 ----a-w- c:\windows\system32\drivers\TsUsbGD.sys
2014-05-17 19:43 . 2012-08-23 14:13 243200 ----a-w- c:\windows\system32\rdpudd.dll
2014-05-17 19:43 . 2012-08-23 11:12 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2014-05-17 19:43 . 2012-08-23 10:51 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2014-05-17 19:43 . 2012-08-23 09:51 3174912 ----a-w- c:\windows\system32\rdpcorets.dll
2014-05-17 19:40 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2014-05-17 19:35 . 2014-05-17 19:37 -------- d-----w- c:\windows\system32\MRT
2014-05-17 18:40 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-05-17 18:40 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-05-17 18:40 . 2012-05-04 09:59 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2014-05-17 18:40 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll
2014-05-17 17:30 . 2013-08-29 02:16 1732032 ----a-w- c:\windows\system32\ntdll.dll
2014-05-17 17:30 . 2013-08-29 02:16 859648 ----a-w- c:\windows\system32\tdh.dll
2014-05-17 17:30 . 2013-08-29 02:13 878080 ----a-w- c:\windows\system32\advapi32.dll
2014-05-17 17:30 . 2013-08-29 01:50 619520 ----a-w- c:\windows\SysWow64\tdh.dll
2014-05-17 17:30 . 2013-08-29 01:50 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2014-05-17 17:30 . 2013-08-29 01:48 640512 ----a-w- c:\windows\SysWow64\advapi32.dll
2014-05-17 17:19 . 2014-05-17 17:19 -------- d-----w- c:\windows\SysWow64\Wat
2014-05-17 17:19 . 2014-05-17 17:19 -------- d-----w- c:\windows\system32\Wat
2014-05-17 16:31 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2014-05-17 16:31 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2014-05-17 16:31 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2014-05-17 16:31 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2014-05-17 16:31 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2014-05-17 16:31 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2014-05-17 16:31 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2014-05-16 19:49 . 2014-05-16 19:49 -------- d-----w- c:\program files\MATLAB
2014-05-16 19:46 . 2014-05-16 19:46 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-05-16 19:46 . 2014-05-16 19:46 -------- d--h--w- c:\programdata\Common Files
2014-05-16 19:45 . 2014-05-16 19:45 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-05-16 19:45 . 2014-05-16 19:45 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2014-05-16 19:44 . 2014-05-18 16:47 -------- d-----w- c:\programdata\DAEMON Tools Lite
2014-05-16 16:34 . 2014-05-16 16:37 -------- d-----w- c:\programdata\FLEXnet
2014-05-16 16:28 . 2014-05-16 16:28 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2014-05-16 16:26 . 2014-05-18 17:03 -------- d-----w- c:\program files\Autodesk
2014-05-16 16:26 . 2014-05-18 16:58 -------- d-----w- c:\program files\Common Files\Autodesk Shared
2014-05-16 16:25 . 2014-05-18 16:56 -------- d-----w- c:\program files (x86)\Common Files\Autodesk Shared
2014-05-16 16:25 . 2009-03-09 13:27 5425496 ----a-w- c:\windows\system32\D3DX9_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 520544 ----a-w- c:\windows\system32\d3dx10_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 453456 ----a-w- c:\windows\SysWow64\d3dx10_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 4178264 ----a-w- c:\windows\SysWow64\D3DX9_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 2430312 ----a-w- c:\windows\system32\D3DCompiler_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 1846632 ----a-w- c:\windows\SysWow64\D3DCompiler_41.dll
2014-05-16 16:25 . 2006-03-31 10:41 3927248 ----a-w- c:\windows\system32\d3dx9_30.dll
2014-05-16 16:22 . 2014-05-18 17:05 -------- d-----w- c:\programdata\Autodesk
2014-05-16 16:15 . 2014-05-16 16:15 -------- d-----w- C:\Autodesk
2014-05-16 16:08 . 2014-05-16 16:08 -------- d-----w- C:\totalcmd
2014-05-16 16:01 . 2014-05-17 19:28 -------- d-----w- c:\program files (x86)\Microsoft Works
2014-05-16 16:01 . 2014-05-16 16:01 -------- d-----w- c:\windows\PCHEALTH
2014-05-16 15:59 . 2014-05-16 15:59 -------- d-----w- c:\program files\Microsoft Office
2014-05-16 15:58 . 2014-05-18 21:23 -------- d-----w- c:\programdata\Microsoft Help
2014-05-16 15:58 . 2014-05-16 15:58 -------- d-----r- C:\MSOCache
2014-05-16 15:56 . 2014-05-16 15:56 -------- d-----w- c:\program files (x86)\GRETECH
2014-05-16 15:31 . 2014-05-16 15:31 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2014-05-16 15:04 . 2014-05-16 15:04 -------- d-----w- c:\program files\CCleaner
2014-05-16 14:52 . 2014-05-16 14:52 -------- d-----w- c:\program files\WinRAR
2014-05-16 14:49 . 2014-05-16 14:49 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-05-16 14:49 . 2014-05-16 14:49 -------- d-----r- c:\program files (x86)\Skype
2014-05-16 14:03 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2014-05-16 14:03 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2014-05-16 14:02 . 2014-03-25 02:43 14175744 ----a-w- c:\windows\system32\shell32.dll
2014-05-16 14:02 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2014-05-16 14:02 . 2013-07-09 04:52 175104 ----a-w- c:\windows\SysWow64\wintrust.dll
2014-05-16 14:02 . 2014-05-09 06:14 477184 ----a-w- c:\windows\system32\aepdu.dll
2014-05-16 14:02 . 2014-05-09 06:11 424448 ----a-w- c:\windows\system32\aeinv.dll
2014-05-16 14:02 . 2011-11-17 06:35 395776 ----a-w- c:\windows\system32\webio.dll
2014-05-16 14:02 . 2011-11-17 05:35 314880 ----a-w- c:\windows\SysWow64\webio.dll
2014-05-16 14:02 . 2013-11-23 18:26 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2014-05-16 14:02 . 2013-11-23 17:47 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2014-05-16 13:58 . 2013-09-28 01:09 497152 ----a-w- c:\windows\system32\drivers\afd.sys
2014-05-16 13:55 . 2014-02-07 01:23 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-05-16 13:55 . 2013-10-04 02:16 116736 ----a-w- c:\windows\system32\drivers\drmk.sys
2014-05-16 13:55 . 2013-10-04 01:36 230400 ----a-w- c:\windows\system32\drivers\portcls.sys
2014-05-16 13:55 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2014-05-16 13:55 . 2013-10-04 02:28 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2014-05-16 13:55 . 2013-10-04 02:25 197120 ----a-w- c:\windows\system32\credui.dll
2014-05-16 13:55 . 2013-10-04 02:24 1930752 ----a-w- c:\windows\system32\authui.dll
2014-05-16 13:55 . 2013-10-04 01:58 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2014-05-16 13:55 . 2013-10-04 01:56 168960 ----a-w- c:\windows\SysWow64\credui.dll
2014-05-16 13:55 . 2013-10-04 01:56 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2014-05-16 13:54 . 2013-06-06 05:50 41472 ----a-w- c:\windows\system32\lpk.dll
2014-05-16 13:54 . 2013-06-06 05:49 100864 ----a-w- c:\windows\system32\fontsub.dll
2014-05-16 13:54 . 2013-06-06 05:49 14336 ----a-w- c:\windows\system32\dciman32.dll
2014-05-16 13:54 . 2013-06-06 05:47 46080 ----a-w- c:\windows\system32\atmlib.dll
2014-05-16 13:54 . 2013-06-06 04:57 25600 ----a-w- c:\windows\SysWow64\lpk.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-17 20:18 . 2014-05-17 20:18 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2014-05-17 20:18 . 2014-05-17 20:18 243200 ----a-w- c:\windows\system32\webcheck.dll
2014-04-07 07:44 . 2014-04-07 07:44 96560 ----a-w- c:\windows\system32\bcmwlcoi.dll
2014-04-07 07:44 . 2014-04-07 07:44 8071888 ----a-w- c:\windows\system32\drivers\BCMWL664.SYS
2014-04-07 07:44 . 2014-04-07 07:44 4400128 ----a-w- c:\windows\system32\bcmihvsrv64.dll
2014-04-07 07:44 . 2014-04-07 07:44 3667968 ----a-w- c:\windows\system32\bcmihvui64.dll
2014-03-31 20:46 . 2014-03-31 20:46 130712 ----a-w- c:\windows\SysWow64\MSSTDFMT.DLL
2014-03-31 20:46 . 2014-03-31 20:46 1070232 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2014-03-26 15:22 . 2014-03-26 15:22 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2014-03-26 15:22 . 2014-03-26 15:22 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2014-03-26 15:22 . 2014-03-26 15:22 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2014-03-26 15:22 . 2014-03-26 15:22 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2014-03-26 15:22 . 2014-03-26 15:22 229376 ----a-w- c:\windows\system32\clinfo.exe
2014-03-26 15:22 . 2014-03-26 15:22 127488 ----a-w- c:\windows\system32\coinst_13.152.1.9002.dll
2014-03-26 15:22 . 2014-03-26 15:22 125824 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2014-03-26 15:22 . 2014-03-16 14:06 142792 ----a-w- c:\windows\system32\atiuxp64.dll
2014-03-26 15:22 . 2014-03-26 15:22 6767240 ----a-w- c:\windows\system32\atiumd6a.dll
2014-03-26 15:22 . 2014-03-26 15:22 6189416 ----a-w- c:\windows\SysWow64\atiumdag.dll
2014-03-26 15:22 . 2014-03-26 15:22 6176008 ----a-w- c:\windows\SysWow64\atiumdva.dll
2014-03-26 15:22 . 2014-03-26 15:22 97984 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2014-03-26 15:22 . 2014-03-26 15:22 89088 ----a-w- c:\windows\system32\atisamu64.dll
2014-03-26 15:22 . 2014-03-26 15:22 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2014-03-26 15:22 . 2014-03-26 15:22 7256496 ----a-w- c:\windows\system32\atiumd64.dll
2014-03-26 15:22 . 2014-03-26 15:22 21395456 ----a-w- c:\windows\SysWow64\atioglxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 190976 ----a-w- c:\windows\system32\atitmm64.dll
2014-03-26 15:22 . 2014-03-16 14:06 114488 ----a-w- c:\windows\system32\atiu9p64.dll
2014-03-26 15:22 . 2014-03-26 15:22 25383424 ----a-w- c:\windows\system32\atio6axx.dll
2014-03-26 15:22 . 2014-03-26 15:22 78432 ----a-w- c:\windows\system32\atimpc64.dll
2014-03-26 15:22 . 2014-03-26 15:22 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2014-03-26 15:22 . 2014-03-26 15:22 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2014-03-26 15:22 . 2014-03-26 15:22 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2014-03-26 15:22 . 2014-03-26 15:22 620032 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2014-03-26 15:22 . 2014-03-26 15:22 26112 ----a-w- c:\windows\system32\atimuixx.dll
2014-03-26 15:22 . 2014-03-26 15:22 12534784 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-03-26 15:22 . 2014-03-26 15:22 96768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 9464840 ----a-w- c:\windows\system32\atidxx64.dll
2014-03-26 15:22 . 2014-03-26 15:22 8215992 ----a-w- c:\windows\SysWow64\atidxx32.dll
2014-03-26 15:22 . 2014-03-26 15:22 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2014-03-26 15:22 . 2014-03-26 15:22 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2014-03-26 15:22 . 2014-03-26 15:22 1237200 ----a-w- c:\windows\system32\aticfx64.dll
2014-03-26 15:22 . 2014-03-26 15:22 1030128 ----a-w- c:\windows\SysWow64\aticfx32.dll
2014-03-26 15:22 . 2014-03-26 15:22 100352 ----a-w- c:\windows\system32\atig6txx.dll
2014-03-26 15:22 . 2014-03-16 14:06 580096 ----a-w- c:\windows\system32\atieclxx.exe
2014-03-26 15:22 . 2014-03-16 14:06 442368 ----a-w- c:\windows\system32\atidemgy.dll
2014-03-26 15:22 . 2014-03-16 14:06 239616 ----a-w- c:\windows\system32\atiesrxx.exe
2014-03-26 15:22 . 2014-03-26 15:22 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2014-03-26 15:22 . 2014-03-26 15:22 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2014-03-26 15:22 . 2014-03-26 15:22 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2014-03-26 15:22 . 2014-03-26 15:22 63488 ----a-w- c:\windows\system32\OpenCL.dll
2014-03-26 15:22 . 2014-03-26 15:22 594944 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2014-03-26 15:22 . 2014-03-26 15:22 57344 ----a-w- c:\windows\SysWow64\OpenCL.dll
2014-03-26 15:22 . 2014-03-26 15:22 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2014-03-26 15:22 . 2014-03-26 15:22 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-03-26 15:22 . 2014-03-26 15:22 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2014-03-26 15:22 . 2014-03-16 14:06 784384 ----a-w- c:\windows\system32\atiadlxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 28192256 ----a-w- c:\windows\system32\amdocl64.dll
2014-03-26 15:22 . 2014-03-26 15:22 23760896 ----a-w- c:\windows\SysWow64\amdocl.dll
2014-03-26 15:22 . 2014-03-26 15:22 96256 ----a-w- c:\windows\system32\amdave64.dll
2014-03-26 15:22 . 2014-03-26 15:22 90624 ----a-w- c:\windows\SysWow64\amdave32.dll
2014-03-26 15:22 . 2014-03-26 15:22 156712 ----a-w- c:\windows\system32\amdhcp64.dll
2014-03-26 15:22 . 2014-03-26 15:22 141256 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2014-03-16 14:48 . 2014-03-16 14:48 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2014-03-16 14:48 . 2014-03-16 14:48 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2014-03-16 14:48 . 2014-03-16 14:48 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-03-16 14:48 . 2014-03-16 14:48 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2014-03-16 14:48 . 2014-03-16 14:48 363008 ----a-w- c:\windows\system32\dxgi.dll
2014-03-16 14:48 . 2014-03-16 14:48 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2014-03-16 14:48 . 2014-03-16 14:48 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 296960 ----a-w- c:\windows\system32\d3d10core.dll
2014-03-16 14:48 . 2014-03-16 14:48 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2014-03-16 14:48 . 2014-03-16 14:48 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2014-03-16 14:48 . 2014-03-16 14:48 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2014-03-16 14:48 . 2014-03-16 14:48 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2014-03-16 14:48 . 2014-03-16 14:48 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2014-03-16 14:48 . 2014-03-16 14:48 221184 ----a-w- c:\windows\system32\UIAnimation.dll
2014-03-16 14:48 . 2014-03-16 14:48 220160 ----a-w- c:\windows\SysWow64\d3d10core.dll
2014-03-16 14:48 . 2014-03-16 14:48 207872 ----a-w- c:\windows\SysWow64\WindowsCodecsExt.dll
2014-03-16 14:48 . 2014-03-16 14:48 194560 ----a-w- c:\windows\system32\d3d10_1.dll
2014-03-16 14:48 . 2014-03-16 14:48 187392 ----a-w- c:\windows\SysWow64\UIAnimation.dll
2014-03-16 14:48 . 2014-03-16 14:48 1682432 ----a-w- c:\windows\system32\XpsPrint.dll
2014-03-16 14:48 . 2014-03-16 14:48 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2014-03-16 14:48 . 2014-03-16 14:48 1238528 ----a-w- c:\windows\system32\d3d10.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\+1TBIcon]
@="{B9C55E85-DED6-4911-82F3-83CF1CAB2898}"
[HKEY_CLASSES_ROOT\CLSID\{B9C55E85-DED6-4911-82F3-83CF1CAB2898}]
2013-08-23 01:24 133592 ----a-w- c:\program files (x86)\Hewlett-Packard\HP Trust Circles\tbicon.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2014-03-04 3696912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"="c:\program files (x86)\PDF Complete\pdfsty.exe" [2013-07-18 683656]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2013-09-18 185144]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-08-02 676608]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" [2013-07-31 337184]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-08-15 292848]
"AccelerometerSysTrayApplet"="c:\program files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe" [2013-07-24 77088]
"YouCam Tray"="c:\program files (x86)\CyberLink\YouCam\YouCamTray.exe" [2013-06-24 167488]
"CLMLServer_For_P2G8"="c:\program files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" [2013-08-05 111576]
"CLVirtualDrive"="c:\program files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" [2013-08-07 490760]
"HP File Sanitizer"="c:\program files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe" [2013-08-07 2213592]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2012-12-7 1393528]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTSPER;Realtek PCIE Card Reader - PER;c:\windows\system32\DRIVERS\RtsPer.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPer.sys [x]
R3 SmbDrv;SmbDrv;c:\windows\system32\drivers\Smb_driver_AMDASF.sys;c:\windows\SYSNATIVE\drivers\Smb_driver_AMDASF.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\drivers\iaStorF.sys;c:\windows\SYSNATIVE\drivers\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\drivers\iusb3hcs.sys;c:\windows\SYSNATIVE\drivers\iusb3hcs.sys [x]
S0 PinFile;PinFile;c:\windows\system32\DRIVERS\PinFile.sys;c:\windows\SYSNATIVE\DRIVERS\PinFile.sys [x]
S0 SDDisk2K;SDDisk2K;c:\windows\system32\DRIVERS\SDDisk2K.sys;c:\windows\SYSNATIVE\DRIVERS\SDDisk2K.sys [x]
S0 SDDToki;SDDToki;c:\windows\system32\DRIVERS\SDDToki.sys;c:\windows\SYSNATIVE\DRIVERS\SDDToki.sys [x]
S1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 CreoService;HP Trust Circles Service;c:\program files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe;c:\program files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [x]
S2 CtAgentService;Absolute Software Agent Service;c:\program files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe;c:\program files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [x]
S2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [x]
S2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [x]
S2 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys;c:\windows\SYSNATIVE\DRIVERS\DAMDrv64.sys [x]
S2 FLCDLOCK;HP Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe;c:\windows\SysWOW64\flcdlock.exe [x]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
S2 HPFSService;HP File Sanitizer;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [x]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D;c:\windows\system32\DRIVERS\e1d62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1d62x64.sys [x]
S3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [x]
S3 IceKore;IceKore;c:\windows\system32\DRIVERS\IceKore.sys;c:\windows\SYSNATIVE\DRIVERS\IceKore.sys [x]
S3 iusb3hub;Intel(R) USB 3.0 Hub Driver;c:\windows\system32\drivers\iusb3hub.sys;c:\windows\SYSNATIVE\drivers\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\drivers\iusb3xhc.sys;c:\windows\SYSNATIVE\drivers\iusb3xhc.sys [x]
S3 rtsuvc;HP HD Webcam [Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\drivers\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\drivers\Smb_driver_Intel.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-05-16 13:20 1077576 ----a-w- c:\program files (x86)\Google\Chrome\Application\34.0.1847.137\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-28 23:59]
.
2014-05-20 c:\windows\Tasks\HPCeeScheduleForSpankMe.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 11:43]
.
2014-05-20 c:\windows\Tasks\MATLAB R2012b Startup Accelerator.job
- c:\program files\MATLAB\R2012b\bin\win64\MATLABStartupAccelerator.exe [2014-05-16 17:59]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\+1TBIcon]
@="{B9C55E85-DED6-4911-82F3-83CF1CAB2898}"
[HKEY_CLASSES_ROOT\CLSID\{B9C55E85-DED6-4911-82F3-83CF1CAB2898}]
2013-08-23 01:24 147928 ----a-w- c:\program files\Hewlett-Packard\HP Trust Circles\tbicon.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CryptoMill Refresh"="c:\program files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh" [X]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-08-07 36352]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-08-16 1703424]
"Broadcom Wireless Manager UI"="c:\program files\Broadcom\Broadcom 802.11\WLTRAY.exe" [2014-03-16 7032320]
"RtsCM"="RTSCM64.EXE" [2013-08-02 147160]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 1271072]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-10-15 165848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-10-15 407512]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-10-15 444376]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.bing.com?pc=CMNTDFJS
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.bing.com?pc=CMNTDFJS
mStart Page = hxxp://www.bing.com?pc=CMNTDFJS
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-YouCam Mirage - c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM_Wow6432Node-ActiveSetup-{438363A8-F486-4C37-834C-4955773CB3D3} - msiexec
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{C88F84E5-AE23-44BD-922C-2ABEACACAF7A} - c:\program files (x86)\InstallShield Installation Information\{C88F84E5-AE23-44BD-922C-2ABEACACAF7A}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1185877117-2082503125-1392697548-1001\Software\SecuROM\License information*]
"datasecu"=hex:dd,e9,0b,89,e9,61,18,62,45,c1,04,36,8b,a5,c8,7f,6e,6d,38,02,bb,
42,b1,a8,a1,07,6b,3d,10,ed,03,21,c0,42,bf,e2,f5,a4,de,d8,aa,80,fe,7a,10,f0,\
"rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_228_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_228_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_228.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_228.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_228.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_228.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-05-20 14:27:22
ComboFix-quarantined-files.txt 2014-05-20 12:27
.
Před spuštěním: Volných bajtů: 308 800 622 592
Po spuštění: Volných bajtů: 308 164 763 648
.
- - End Of File - - D51519B1D2A947382196E9A214E362A6
A36C5E4F47E84449FF07ED3517B43A31

[Rudy]

Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:

Regnull::
[HKEY_USERS\S-1-5-21-1185877117-2082503125-1392697548-1001\Software\SecuROM\License information*]

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

[SpankMe2day]

Stále beze změny, teda trochu se rychlost zvedla z nějakých 0.5 Mbit na 1 Mbit, ale vzhledem k 16MBit netu je to pořád divné. Přidávám ještě log z combo fixu

ComboFix 14-05-19.01 - SpankMe 20.05.2014 18:18:06.2.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.4009.2757 [GMT 2:00]
Spuštěný z: c:\users\SpankMe\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\SpankMe\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-20 do 2014-05-20 )))))))))))))))))))))))))))))))
.
.
2014-05-20 16:22 . 2014-05-20 16:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-05-20 14:47 . 2014-05-20 14:47 -------- d-sh--w- c:\programdata\SecuROM
2014-05-20 14:46 . 2014-05-20 16:25 75888 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{38B8B859-3657-4060-9EBB-82D16AE6858A}\offreg.dll
2014-05-20 12:30 . 2014-04-16 01:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{38B8B859-3657-4060-9EBB-82D16AE6858A}\mpengine.dll
2014-05-20 04:21 . 2014-05-06 04:40 23544320 ----a-w- c:\windows\system32\mshtml.dll
2014-05-20 04:21 . 2014-05-06 03:00 84992 ----a-w- c:\windows\system32\mshtmled.dll
2014-05-20 04:21 . 2014-05-06 04:17 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-05-20 04:21 . 2014-05-06 03:07 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2014-05-20 04:20 . 2014-05-20 04:20 -------- d-----w- c:\program files (x86)\MSXML 4.0
2014-05-19 15:45 . 2010-08-30 06:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll
2014-05-19 15:45 . 2014-05-19 15:48 -------- d-----w- C:\AdwCleaner
2014-05-19 09:35 . 2014-05-19 16:56 -------- d-----w- c:\program files\trend micro
2014-05-19 09:05 . 2014-05-19 09:05 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2014-05-19 09:03 . 2006-03-31 10:39 83664 ----a-w- c:\windows\system32\xinput1_1.dll
2014-05-19 01:00 . 2014-03-06 06:00 359936 ----a-w- c:\program files\Internet Explorer\IEShims.dll
2014-05-18 21:52 . 2014-05-18 21:52 -------- d-----w- c:\windows\system32\appmgmt
2014-05-18 21:51 . 2012-10-23 04:04 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-05-18 21:51 . 2014-05-18 21:51 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{97065235-F0C6-4DE2-A8FD-7F85BC762D9D}\gapaengine.dll
2014-05-18 21:51 . 2014-04-16 01:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-05-18 16:55 . 2014-05-18 16:55 -------- d-----w- c:\program files (x86)\Microsoft WSE
2014-05-18 16:53 . 2014-05-18 16:54 -------- d-----w- c:\program files\DWG TrueView 2010
2014-05-18 16:53 . 2008-03-05 13:56 1860120 ----a-w- c:\windows\system32\D3DCompiler_37.dll
2014-05-18 16:53 . 2008-03-05 13:56 1420824 ----a-w- c:\windows\SysWow64\D3DCompiler_37.dll
2014-05-18 16:53 . 2008-03-05 13:56 4910088 ----a-w- c:\windows\system32\D3DX9_37.dll
2014-05-18 16:53 . 2008-03-05 13:56 3786760 ----a-w- c:\windows\SysWow64\D3DX9_37.dll
2014-05-18 16:53 . 2008-02-05 21:07 462864 ----a-w- c:\windows\SysWow64\d3dx10_37.dll
2014-05-18 16:53 . 2008-02-05 21:07 529424 ----a-w- c:\windows\system32\d3dx10_37.dll
2014-05-18 16:48 . 2014-01-09 02:22 5694464 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-05-18 16:48 . 2014-01-03 22:44 6574592 ----a-w- c:\windows\system32\mstscax.dll
2014-05-17 20:43 . 2014-05-17 20:43 -------- d-s---w- c:\windows\system32\CompatTel
2014-05-17 20:37 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-05-17 20:37 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2014-05-17 20:37 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2014-05-17 20:37 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-05-17 20:37 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2014-05-17 20:29 . 2014-05-17 20:29 -------- d-----w- c:\windows\Migration
2014-05-17 20:25 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2014-05-17 19:52 . 2013-10-02 01:10 44544 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll
2014-05-17 19:48 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2014-05-17 19:43 . 2012-08-23 13:24 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2014-05-17 19:43 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2014-05-17 19:43 . 2012-08-23 14:08 30208 ----a-w- c:\windows\system32\drivers\TsUsbGD.sys
2014-05-17 19:43 . 2012-08-23 14:13 243200 ----a-w- c:\windows\system32\rdpudd.dll
2014-05-17 19:43 . 2012-08-23 11:12 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2014-05-17 19:43 . 2012-08-23 10:51 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2014-05-17 19:43 . 2012-08-23 09:51 3174912 ----a-w- c:\windows\system32\rdpcorets.dll
2014-05-17 19:40 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2014-05-17 19:35 . 2014-05-17 19:37 -------- d-----w- c:\windows\system32\MRT
2014-05-17 18:40 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-05-17 18:40 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-05-17 18:40 . 2012-05-04 09:59 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2014-05-17 18:40 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll
2014-05-17 17:30 . 2013-08-29 02:16 1732032 ----a-w- c:\windows\system32\ntdll.dll
2014-05-17 17:30 . 2013-08-29 02:16 859648 ----a-w- c:\windows\system32\tdh.dll
2014-05-17 17:30 . 2013-08-29 02:13 878080 ----a-w- c:\windows\system32\advapi32.dll
2014-05-17 17:30 . 2013-08-29 01:50 619520 ----a-w- c:\windows\SysWow64\tdh.dll
2014-05-17 17:30 . 2013-08-29 01:50 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2014-05-17 17:30 . 2013-08-29 01:48 640512 ----a-w- c:\windows\SysWow64\advapi32.dll
2014-05-17 17:19 . 2014-05-17 17:19 -------- d-----w- c:\windows\SysWow64\Wat
2014-05-17 17:19 . 2014-05-17 17:19 -------- d-----w- c:\windows\system32\Wat
2014-05-17 16:31 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2014-05-17 16:31 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2014-05-17 16:31 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2014-05-17 16:31 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2014-05-17 16:31 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2014-05-17 16:31 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2014-05-17 16:31 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2014-05-16 19:49 . 2014-05-16 19:49 -------- d-----w- c:\program files\MATLAB
2014-05-16 19:46 . 2014-05-16 19:46 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-05-16 19:46 . 2014-05-16 19:46 -------- d--h--w- c:\programdata\Common Files
2014-05-16 19:45 . 2014-05-16 19:45 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-05-16 19:45 . 2014-05-16 19:45 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2014-05-16 19:44 . 2014-05-18 16:47 -------- d-----w- c:\programdata\DAEMON Tools Lite
2014-05-16 16:34 . 2014-05-16 16:37 -------- d-----w- c:\programdata\FLEXnet
2014-05-16 16:28 . 2014-05-16 16:28 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2014-05-16 16:26 . 2014-05-18 17:03 -------- d-----w- c:\program files\Autodesk
2014-05-16 16:26 . 2014-05-18 16:58 -------- d-----w- c:\program files\Common Files\Autodesk Shared
2014-05-16 16:25 . 2014-05-18 16:56 -------- d-----w- c:\program files (x86)\Common Files\Autodesk Shared
2014-05-16 16:25 . 2009-03-09 13:27 5425496 ----a-w- c:\windows\system32\D3DX9_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 520544 ----a-w- c:\windows\system32\d3dx10_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 453456 ----a-w- c:\windows\SysWow64\d3dx10_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 4178264 ----a-w- c:\windows\SysWow64\D3DX9_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 2430312 ----a-w- c:\windows\system32\D3DCompiler_41.dll
2014-05-16 16:25 . 2009-03-09 13:27 1846632 ----a-w- c:\windows\SysWow64\D3DCompiler_41.dll
2014-05-16 16:25 . 2006-03-31 10:41 3927248 ----a-w- c:\windows\system32\d3dx9_30.dll
2014-05-16 16:22 . 2014-05-18 17:05 -------- d-----w- c:\programdata\Autodesk
2014-05-16 16:15 . 2014-05-16 16:15 -------- d-----w- C:\Autodesk
2014-05-16 16:08 . 2014-05-16 16:08 -------- d-----w- C:\totalcmd
2014-05-16 16:01 . 2014-05-17 19:28 -------- d-----w- c:\program files (x86)\Microsoft Works
2014-05-16 16:01 . 2014-05-16 16:01 -------- d-----w- c:\windows\PCHEALTH
2014-05-16 15:59 . 2014-05-16 15:59 -------- d-----w- c:\program files\Microsoft Office
2014-05-16 15:58 . 2014-05-18 21:23 -------- d-----w- c:\programdata\Microsoft Help
2014-05-16 15:58 . 2014-05-16 15:58 -------- d-----r- C:\MSOCache
2014-05-16 15:56 . 2014-05-16 15:56 -------- d-----w- c:\program files (x86)\GRETECH
2014-05-16 15:31 . 2014-05-16 15:31 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2014-05-16 15:04 . 2014-05-16 15:04 -------- d-----w- c:\program files\CCleaner
2014-05-16 14:52 . 2014-05-16 14:52 -------- d-----w- c:\program files\WinRAR
2014-05-16 14:49 . 2014-05-16 14:49 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-05-16 14:49 . 2014-05-16 14:49 -------- d-----r- c:\program files (x86)\Skype
2014-05-16 14:03 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2014-05-16 14:03 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2014-05-16 14:02 . 2014-03-25 02:43 14175744 ----a-w- c:\windows\system32\shell32.dll
2014-05-16 14:02 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2014-05-16 14:02 . 2013-07-09 04:52 175104 ----a-w- c:\windows\SysWow64\wintrust.dll
2014-05-16 14:02 . 2014-05-09 06:14 477184 ----a-w- c:\windows\system32\aepdu.dll
2014-05-16 14:02 . 2014-05-09 06:11 424448 ----a-w- c:\windows\system32\aeinv.dll
2014-05-16 14:02 . 2011-11-17 06:35 395776 ----a-w- c:\windows\system32\webio.dll
2014-05-16 14:02 . 2011-11-17 05:35 314880 ----a-w- c:\windows\SysWow64\webio.dll
2014-05-16 14:02 . 2013-11-23 18:26 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2014-05-16 14:02 . 2013-11-23 17:47 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2014-05-16 13:58 . 2013-09-28 01:09 497152 ----a-w- c:\windows\system32\drivers\afd.sys
2014-05-16 13:55 . 2014-02-07 01:23 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-05-16 13:55 . 2013-10-04 02:16 116736 ----a-w- c:\windows\system32\drivers\drmk.sys
2014-05-16 13:55 . 2013-10-04 01:36 230400 ----a-w- c:\windows\system32\drivers\portcls.sys
2014-05-16 13:55 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2014-05-16 13:55 . 2013-10-04 02:28 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2014-05-16 13:55 . 2013-10-04 02:25 197120 ----a-w- c:\windows\system32\credui.dll
2014-05-16 13:55 . 2013-10-04 02:24 1930752 ----a-w- c:\windows\system32\authui.dll
2014-05-16 13:55 . 2013-10-04 01:58 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2014-05-16 13:55 . 2013-10-04 01:56 168960 ----a-w- c:\windows\SysWow64\credui.dll
2014-05-16 13:55 . 2013-10-04 01:56 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2014-05-16 13:54 . 2013-06-06 05:50 41472 ----a-w- c:\windows\system32\lpk.dll
2014-05-16 13:54 . 2013-06-06 05:49 100864 ----a-w- c:\windows\system32\fontsub.dll
2014-05-16 13:54 . 2013-06-06 05:49 14336 ----a-w- c:\windows\system32\dciman32.dll
2014-05-16 13:54 . 2013-06-06 05:47 46080 ----a-w- c:\windows\system32\atmlib.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-17 20:18 . 2014-05-17 20:18 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2014-05-17 20:18 . 2014-05-17 20:18 243200 ----a-w- c:\windows\system32\webcheck.dll
2014-04-07 07:44 . 2014-04-07 07:44 96560 ----a-w- c:\windows\system32\bcmwlcoi.dll
2014-04-07 07:44 . 2014-04-07 07:44 8071888 ----a-w- c:\windows\system32\drivers\BCMWL664.SYS
2014-04-07 07:44 . 2014-04-07 07:44 4400128 ----a-w- c:\windows\system32\bcmihvsrv64.dll
2014-04-07 07:44 . 2014-04-07 07:44 3667968 ----a-w- c:\windows\system32\bcmihvui64.dll
2014-03-31 20:46 . 2014-03-31 20:46 130712 ----a-w- c:\windows\SysWow64\MSSTDFMT.DLL
2014-03-31 20:46 . 2014-03-31 20:46 1070232 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX
2014-03-26 15:22 . 2014-03-26 15:22 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2014-03-26 15:22 . 2014-03-26 15:22 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2014-03-26 15:22 . 2014-03-26 15:22 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2014-03-26 15:22 . 2014-03-26 15:22 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2014-03-26 15:22 . 2014-03-26 15:22 229376 ----a-w- c:\windows\system32\clinfo.exe
2014-03-26 15:22 . 2014-03-26 15:22 127488 ----a-w- c:\windows\system32\coinst_13.152.1.9002.dll
2014-03-26 15:22 . 2014-03-26 15:22 125824 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2014-03-26 15:22 . 2014-03-16 14:06 142792 ----a-w- c:\windows\system32\atiuxp64.dll
2014-03-26 15:22 . 2014-03-26 15:22 6767240 ----a-w- c:\windows\system32\atiumd6a.dll
2014-03-26 15:22 . 2014-03-26 15:22 6189416 ----a-w- c:\windows\SysWow64\atiumdag.dll
2014-03-26 15:22 . 2014-03-26 15:22 6176008 ----a-w- c:\windows\SysWow64\atiumdva.dll
2014-03-26 15:22 . 2014-03-26 15:22 97984 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2014-03-26 15:22 . 2014-03-26 15:22 89088 ----a-w- c:\windows\system32\atisamu64.dll
2014-03-26 15:22 . 2014-03-26 15:22 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2014-03-26 15:22 . 2014-03-26 15:22 7256496 ----a-w- c:\windows\system32\atiumd64.dll
2014-03-26 15:22 . 2014-03-26 15:22 21395456 ----a-w- c:\windows\SysWow64\atioglxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 190976 ----a-w- c:\windows\system32\atitmm64.dll
2014-03-26 15:22 . 2014-03-16 14:06 114488 ----a-w- c:\windows\system32\atiu9p64.dll
2014-03-26 15:22 . 2014-03-26 15:22 25383424 ----a-w- c:\windows\system32\atio6axx.dll
2014-03-26 15:22 . 2014-03-26 15:22 78432 ----a-w- c:\windows\system32\atimpc64.dll
2014-03-26 15:22 . 2014-03-26 15:22 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2014-03-26 15:22 . 2014-03-26 15:22 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2014-03-26 15:22 . 2014-03-26 15:22 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2014-03-26 15:22 . 2014-03-26 15:22 620032 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2014-03-26 15:22 . 2014-03-26 15:22 26112 ----a-w- c:\windows\system32\atimuixx.dll
2014-03-26 15:22 . 2014-03-26 15:22 12534784 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-03-26 15:22 . 2014-03-26 15:22 96768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 9464840 ----a-w- c:\windows\system32\atidxx64.dll
2014-03-26 15:22 . 2014-03-26 15:22 8215992 ----a-w- c:\windows\SysWow64\atidxx32.dll
2014-03-26 15:22 . 2014-03-26 15:22 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2014-03-26 15:22 . 2014-03-26 15:22 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2014-03-26 15:22 . 2014-03-26 15:22 1237200 ----a-w- c:\windows\system32\aticfx64.dll
2014-03-26 15:22 . 2014-03-26 15:22 1030128 ----a-w- c:\windows\SysWow64\aticfx32.dll
2014-03-26 15:22 . 2014-03-26 15:22 100352 ----a-w- c:\windows\system32\atig6txx.dll
2014-03-26 15:22 . 2014-03-16 14:06 580096 ----a-w- c:\windows\system32\atieclxx.exe
2014-03-26 15:22 . 2014-03-16 14:06 442368 ----a-w- c:\windows\system32\atidemgy.dll
2014-03-26 15:22 . 2014-03-16 14:06 239616 ----a-w- c:\windows\system32\atiesrxx.exe
2014-03-26 15:22 . 2014-03-26 15:22 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2014-03-26 15:22 . 2014-03-26 15:22 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2014-03-26 15:22 . 2014-03-26 15:22 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2014-03-26 15:22 . 2014-03-26 15:22 63488 ----a-w- c:\windows\system32\OpenCL.dll
2014-03-26 15:22 . 2014-03-26 15:22 594944 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2014-03-26 15:22 . 2014-03-26 15:22 57344 ----a-w- c:\windows\SysWow64\OpenCL.dll
2014-03-26 15:22 . 2014-03-26 15:22 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2014-03-26 15:22 . 2014-03-26 15:22 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-03-26 15:22 . 2014-03-26 15:22 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2014-03-26 15:22 . 2014-03-16 14:06 784384 ----a-w- c:\windows\system32\atiadlxx.dll
2014-03-26 15:22 . 2014-03-26 15:22 28192256 ----a-w- c:\windows\system32\amdocl64.dll
2014-03-26 15:22 . 2014-03-26 15:22 23760896 ----a-w- c:\windows\SysWow64\amdocl.dll
2014-03-26 15:22 . 2014-03-26 15:22 96256 ----a-w- c:\windows\system32\amdave64.dll
2014-03-26 15:22 . 2014-03-26 15:22 90624 ----a-w- c:\windows\SysWow64\amdave32.dll
2014-03-26 15:22 . 2014-03-26 15:22 156712 ----a-w- c:\windows\system32\amdhcp64.dll
2014-03-26 15:22 . 2014-03-26 15:22 141256 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2014-03-16 14:48 . 2014-03-16 14:48 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2014-03-16 14:48 . 2014-03-16 14:48 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2014-03-16 14:48 . 2014-03-16 14:48 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-03-16 14:48 . 2014-03-16 14:48 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2014-03-16 14:48 . 2014-03-16 14:48 363008 ----a-w- c:\windows\system32\dxgi.dll
2014-03-16 14:48 . 2014-03-16 14:48 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2014-03-16 14:48 . 2014-03-16 14:48 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 296960 ----a-w- c:\windows\system32\d3d10core.dll
2014-03-16 14:48 . 2014-03-16 14:48 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2014-03-16 14:48 . 2014-03-16 14:48 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2014-03-16 14:48 . 2014-03-16 14:48 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-16 14:48 . 2014-03-16 14:48 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2014-03-16 14:48 . 2014-03-16 14:48 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2014-03-16 14:48 . 2014-03-16 14:48 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2014-03-16 14:48 . 2014-03-16 14:48 221184 ----a-w- c:\windows\system32\UIAnimation.dll
2014-03-16 14:48 . 2014-03-16 14:48 220160 ----a-w- c:\windows\SysWow64\d3d10core.dll
2014-03-16 14:48 . 2014-03-16 14:48 207872 ----a-w- c:\windows\SysWow64\WindowsCodecsExt.dll
2014-03-16 14:48 . 2014-03-16 14:48 194560 ----a-w- c:\windows\system32\d3d10_1.dll
2014-03-16 14:48 . 2014-03-16 14:48 187392 ----a-w- c:\windows\SysWow64\UIAnimation.dll
2014-03-16 14:48 . 2014-03-16 14:48 1682432 ----a-w- c:\windows\system32\XpsPrint.dll
2014-03-16 14:48 . 2014-03-16 14:48 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2014-03-16 14:48 . 2014-03-16 14:48 1238528 ----a-w- c:\windows\system32\d3d10.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\+1TBIcon]
@="{B9C55E85-DED6-4911-82F3-83CF1CAB2898}"
[HKEY_CLASSES_ROOT\CLSID\{B9C55E85-DED6-4911-82F3-83CF1CAB2898}]
2013-08-23 01:24 133592 ----a-w- c:\program files (x86)\Hewlett-Packard\HP Trust Circles\tbicon.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2014-03-04 3696912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"="c:\program files (x86)\PDF Complete\pdfsty.exe" [2013-07-18 683656]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2013-09-18 185144]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-08-02 676608]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" [2013-07-31 337184]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-08-15 292848]
"AccelerometerSysTrayApplet"="c:\program files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe" [2013-07-24 77088]
"YouCam Tray"="c:\program files (x86)\CyberLink\YouCam\YouCamTray.exe" [2013-06-24 167488]
"CLMLServer_For_P2G8"="c:\program files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" [2013-08-05 111576]
"CLVirtualDrive"="c:\program files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" [2013-08-07 490760]
"HP File Sanitizer"="c:\program files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe" [2013-08-07 2213592]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2012-12-7 1393528]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTSPER;Realtek PCIE Card Reader - PER;c:\windows\system32\DRIVERS\RtsPer.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPer.sys [x]
R3 SmbDrv;SmbDrv;c:\windows\system32\drivers\Smb_driver_AMDASF.sys;c:\windows\SYSNATIVE\drivers\Smb_driver_AMDASF.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\drivers\iaStorF.sys;c:\windows\SYSNATIVE\drivers\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\drivers\iusb3hcs.sys;c:\windows\SYSNATIVE\drivers\iusb3hcs.sys [x]
S0 PinFile;PinFile;c:\windows\system32\DRIVERS\PinFile.sys;c:\windows\SYSNATIVE\DRIVERS\PinFile.sys [x]
S0 SDDisk2K;SDDisk2K;c:\windows\system32\DRIVERS\SDDisk2K.sys;c:\windows\SYSNATIVE\DRIVERS\SDDisk2K.sys [x]
S0 SDDToki;SDDToki;c:\windows\system32\DRIVERS\SDDToki.sys;c:\windows\SYSNATIVE\DRIVERS\SDDToki.sys [x]
S1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 CreoService;HP Trust Circles Service;c:\program files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe;c:\program files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [x]
S2 CtAgentService;Absolute Software Agent Service;c:\program files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe;c:\program files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [x]
S2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [x]
S2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [x]
S2 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys;c:\windows\SYSNATIVE\DRIVERS\DAMDrv64.sys [x]
S2 FLCDLOCK;HP Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe;c:\windows\SysWOW64\flcdlock.exe [x]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
S2 HPFSService;HP File Sanitizer;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [x]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D;c:\windows\system32\DRIVERS\e1d62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1d62x64.sys [x]
S3 IceKore;IceKore;c:\windows\system32\DRIVERS\IceKore.sys;c:\windows\SYSNATIVE\DRIVERS\IceKore.sys [x]
S3 iusb3hub;Intel(R) USB 3.0 Hub Driver;c:\windows\system32\drivers\iusb3hub.sys;c:\windows\SYSNATIVE\drivers\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\drivers\iusb3xhc.sys;c:\windows\SYSNATIVE\drivers\iusb3xhc.sys [x]
S3 rtsuvc;HP HD Webcam [Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\drivers\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\drivers\Smb_driver_Intel.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-05-16 13:20 1077576 ----a-w- c:\program files (x86)\Google\Chrome\Application\34.0.1847.137\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-28 23:59]
.
2014-05-20 c:\windows\Tasks\HPCeeScheduleForSpankMe.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 11:43]
.
2014-05-20 c:\windows\Tasks\MATLAB R2012b Startup Accelerator.job
- c:\program files\MATLAB\R2012b\bin\win64\MATLABStartupAccelerator.exe [2014-05-16 17:59]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\+1TBIcon]
@="{B9C55E85-DED6-4911-82F3-83CF1CAB2898}"
[HKEY_CLASSES_ROOT\CLSID\{B9C55E85-DED6-4911-82F3-83CF1CAB2898}]
2013-08-23 01:24 147928 ----a-w- c:\program files\Hewlett-Packard\HP Trust Circles\tbicon.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CryptoMill Refresh"="c:\program files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh" [X]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-08-07 36352]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-08-16 1703424]
"Broadcom Wireless Manager UI"="c:\program files\Broadcom\Broadcom 802.11\WLTRAY.exe" [2014-03-16 7032320]
"RtsCM"="RTSCM64.EXE" [2013-08-02 147160]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 1271072]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-10-15 165848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-10-15 407512]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-10-15 444376]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.bing.com?pc=CMNTDFJS
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.bing.com?pc=CMNTDFJS
mStart Page = hxxp://www.bing.com?pc=CMNTDFJS
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-{C88F84E5-AE23-44BD-922C-2ABEACACAF7A} - c:\program files (x86)\InstallShield Installation Information\{C88F84E5-AE23-44BD-922C-2ABEACACAF7A}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Celkový čas: 2014-05-20 18:35:19 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-05-20 16:35
ComboFix2.txt 2014-05-20 12:27
.
Před spuštěním: Volných bajtů: 307 760 648 192
Po spuštění: Volných bajtů: 307 462 852 608
.
- - End Of File - - A258ABBF4A7E2DC54E6673B438E2B35A
A36C5E4F47E84449FF07ED3517B43A31