zde je log z RSit a dělám znovu MBam
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jindra M 5010 at 2014-05-20 15:01:04
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 518 GB (85%) free of 610 GB
Total RAM: 3068 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:01:22, on 20.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\trend micro\Jindra M 5010.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} - (no file)
O2 - BHO: (no name) - {a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} - (no file)
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: (no name) - {fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} - (no file)
O4 - HKCU\..\RunOnce: [SeznamInstall-uninstall:1300cc279985d0604ccf748ec91e0557] "C:\Users\JINDRA~1\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Jindra M 5010\AppData\Roaming\Seznam.cz"
O4 - HKUS\S-1-5-21-48488969-1733683439-3606189085-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [SeznamInstall-uninstall:1300cc279985d0604ccf748ec91e0557] "C:\Users\JINDRA~1\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Jindra M 5010\AppData\Roaming\Seznam.cz" (User '?')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7178 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE" "C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe"
C:\Windows\system32\WLANExt.exe 4040976
\??\C:\Windows\system32\conhost.exe "-8701334921047260180-133959514-14867109691862087295-17360794372145668084-1112311993
C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Users\Jindra M 5010\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DriverEasy Scheduled Scan.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\hn4xlcky.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2013-07-31 433944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2013-07-31 364824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"=C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [2014-05-10 6301696]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SeznamInstall-uninstall:1300cc279985d0604ccf748ec91e0557"=C:\Users\JINDRA~1\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [2014-05-20 534528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Allin1Convert EPM Support]
C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hmedint.exe T8EPMSUP.DLL,S []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Allin1Convert Home Page Guard 64 bit]
C:\PROGRA~2\ALLIN1~2\bar\1.bin\AppIntegrator64.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Allin1Convert Search Scope Monitor]
C:\PROGRA~2\ALLIN1~2\bar\1.bin\8hsrchmn.exe /m=2 /w /h []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Jindra M 5010\AppData\Roaming\Seznam.cz\szninstall.exe -c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Jindra M 5010\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EvtMgr6]
C:\Program Files\Logitech\SetPointP\SetPoint.exe [2013-07-31 3091224]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Download Assistant]
C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncchxbSrv]
C:\Windows\inf\mncchxb.vbe [2014-01-19 1342]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncfmeluSrv]
C:\Windows\system32\mncfmelu.vbe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSStp]
C:\Windows\system32\msstp.vbe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSU_agent]
C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe [2012-02-28 190768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Windows.old.000\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2012-06-26 1516632]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-17 767200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-12-10 1890088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
C:\Program Files (x86)\WebcamMax\wcmmon.exe [2011-07-17 1038848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2012-04-01 1390368]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]
C:\PROGRA~2\MICROS~2\Office10\OSA.EXE [2001-02-13 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jindra M 5010^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
C:\PROGRA~2\COMMON~1\LogiShrd\eReg\SetPoint\eReg.exe [2009-11-16 517384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2013-06-13 66328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2014-05-20 14:49:57 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-20 14:49:57 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-05-20 14:49:57 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-05-20 14:49:57 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-05-19 20:38:04 ----D---- C:\AdwCleaner
2014-05-19 09:06:23 ----D---- C:\Windows\Minidump
2014-05-19 08:46:35 ----D---- C:\Program Files (x86)\AMD AVT
2014-05-19 08:41:17 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2014-05-19 08:40:48 ----D---- C:\ProgramData\ATI
2014-05-19 08:38:49 ----A---- C:\Windows\system32\drivers\amd_xata.sys
2014-05-19 08:38:49 ----A---- C:\Windows\system32\drivers\amd_sata.sys
2014-05-19 08:31:08 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2014-05-19 08:31:08 ----A---- C:\Windows\system32\drivers\btwl2cap.sys
2014-05-19 08:31:08 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2014-05-19 08:31:08 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2014-05-19 00:49:08 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Leadertech
2014-05-19 00:47:16 ----A---- C:\Windows\system32\btwcoins.dll
2014-05-19 00:47:15 ----A---- C:\Windows\system32\drivers\btwampfl.sys
2014-05-19 00:46:10 ----D---- C:\ProgramData\Logitech
2014-05-19 00:44:04 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2014-05-19 00:43:25 ----D---- C:\Program Files\WIDCOMM
2014-05-19 00:42:06 ----D---- C:\ProgramData\Logishrd
2014-05-19 00:41:53 ----D---- C:\Program Files\Logitech
2014-05-19 00:41:10 ----D---- C:\Program Files\Common Files\LogiShrd
2014-05-19 00:40:40 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Logitech
2014-05-19 00:40:39 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Logishrd
2014-05-19 00:35:35 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\ATI
2014-05-19 00:28:28 ----D---- C:\ProgramData\AMD
2014-05-19 00:27:03 ----D---- C:\Program Files (x86)\ATI Technologies
2014-05-19 00:25:22 ----D---- C:\ProgramData\Package Cache
2014-05-19 00:25:01 ----D---- C:\Program Files\ATI Technologies
2014-05-19 00:24:58 ----D---- C:\Program Files\ATI
2014-05-19 00:23:51 ----D---- C:\AMD
2014-05-19 00:22:46 ----D---- C:\Program Files\Synaptics
2014-05-19 00:21:59 ----A---- C:\Windows\SYSWOW64\SynTPCOM.dll
2014-05-19 00:21:59 ----A---- C:\Windows\SYSWOW64\SynCtrl.dll
2014-05-19 00:21:59 ----A---- C:\Windows\SYSWOW64\SynCOM.dll
2014-05-19 00:21:59 ----A---- C:\Windows\system32\SynTPCo4.dll
2014-05-19 00:21:58 ----A---- C:\Windows\system32\SynTPAPI.dll
2014-05-19 00:21:58 ----A---- C:\Windows\system32\SynCtrl.dll
2014-05-19 00:21:58 ----A---- C:\Windows\system32\SynCOM.dll
2014-05-19 00:21:57 ----A---- C:\Windows\system32\drivers\SynTP.sys
2014-05-18 17:19:43 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Easeware
2014-05-18 17:19:36 ----D---- C:\Program Files\Easeware
2014-05-18 16:33:26 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Publish Providers
2014-05-18 16:30:52 ----D---- C:\ProgramData\Sony
2014-05-18 16:21:48 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Sony
2014-05-17 11:45:12 ----D---- C:\ProgramData\TEMP
2014-05-17 11:40:11 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\AnvSoft
2014-05-17 11:19:05 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
2014-05-17 11:10:02 ----D---- C:\FFOutput
2014-05-17 11:08:43 ----D---- C:\Program Files (x86)\FreeTime
2014-05-17 10:50:07 ----D---- C:\Program Files (x86)\Seznam.cz
2014-05-17 10:49:52 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Seznam.cz
2014-05-17 10:46:42 ----D---- C:\ProgramData\Pinnacle
2014-05-17 10:20:27 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Xilisoft
2014-05-17 10:19:51 ----D---- C:\ProgramData\Xilisoft
2014-05-17 10:19:51 ----D---- C:\Program Files (x86)\Xilisoft
2014-05-17 10:18:17 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Softplicity
2014-05-15 10:11:36 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\MPC-HC
2014-05-13 20:09:22 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-13 20:09:22 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-13 20:09:22 ----A---- C:\Windows\system32\mshtml.dll
2014-05-13 20:09:21 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-13 20:01:46 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-13 20:01:45 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-13 20:01:45 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-13 20:01:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-13 20:01:45 ----A---- C:\Windows\system32\kerberos.dll
2014-05-13 20:01:44 ----A---- C:\Windows\system32\winlogon.exe
2014-05-13 20:01:44 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-13 20:01:43 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-13 20:01:43 ----A---- C:\Windows\system32\objsel.dll
2014-05-13 20:01:43 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-13 20:01:42 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-13 20:01:42 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-13 20:01:42 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-13 20:01:42 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-13 20:01:42 ----A---- C:\Windows\system32\wdigest.dll
2014-05-13 20:01:42 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-13 20:01:42 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-13 20:01:41 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-13 20:01:41 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-13 20:01:41 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-13 20:01:41 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-13 20:01:41 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-13 20:01:41 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-13 20:01:41 ----A---- C:\Windows\system32\schannel.dll
2014-05-13 20:01:41 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-13 20:01:41 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-13 20:01:41 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-13 20:01:41 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-13 20:01:41 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-13 20:01:41 ----A---- C:\Windows\system32\adprovider.dll
2014-05-13 20:01:40 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-13 20:01:40 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-13 20:01:40 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-13 20:01:40 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-13 20:01:40 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-13 20:01:40 ----A---- C:\Windows\system32\sspicli.dll
2014-05-13 20:01:40 ----A---- C:\Windows\system32\secur32.dll
2014-05-13 20:01:40 ----A---- C:\Windows\system32\lsass.exe
2014-05-13 20:01:40 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-13 20:01:40 ----A---- C:\Windows\system32\credssp.dll
2014-05-13 20:01:39 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-13 20:01:15 ----A---- C:\Windows\system32\shell32.dll
2014-05-13 20:01:14 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-13 20:01:13 ----A---- C:\Windows\system32\aepdu.dll
2014-05-13 20:01:12 ----A---- C:\Windows\system32\aeinv.dll
2014-05-13 19:56:59 ----D---- C:\Program Files (x86)\MSECache
2014-05-13 11:23:28 ----D---- C:\Spacekace
2014-05-13 11:14:26 ----D---- C:\ProgramData\WinZip
2014-05-13 10:58:40 ----D---- C:\Program Files (x86)\MozBackup
2014-05-13 09:40:58 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\WebcamMax
2014-05-13 09:40:58 ----D---- C:\ProgramData\WebcamMax
2014-05-13 09:39:32 ----D---- C:\Program Files (x86)\WebcamMax
2014-05-13 07:11:08 ----D---- C:\rsit
2014-05-12 19:47:19 ----D---- C:\Program Files\CCleaner
2014-05-12 19:40:59 ----SHD---- C:\$RECYCLE.BIN
2014-05-12 12:29:49 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-05-11 20:21:16 ----D---- C:\Windows\temp
2014-05-11 10:00:45 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-05-11 10:00:09 ----D---- C:\ProgramData\Malwarebytes
2014-05-10 21:45:50 ----D---- C:\Program Files\trend micro
2014-05-10 20:13:17 ----D---- C:\Windows\Panther
2014-05-10 20:12:39 ----RA---- C:\Windows\csup.txt
2014-05-10 20:12:39 ----D---- C:\Windows\system32\OEM
2014-05-10 20:11:29 ----A---- C:\Windows\system32\perfi005.dat
2014-05-10 20:11:29 ----A---- C:\Windows\system32\perfh005.dat
2014-05-10 20:11:29 ----A---- C:\Windows\system32\perfd005.dat
2014-05-10 20:11:29 ----A---- C:\Windows\system32\perfc005.dat
2014-05-10 20:11:01 ----D---- C:\Windows\SYSWOW64\XPSViewer
2014-05-10 20:11:01 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2014-05-10 20:11:01 ----D---- C:\Windows\SYSWOW64\cs
2014-05-10 20:11:01 ----D---- C:\Windows\system32\cs
2014-05-10 20:11:01 ----D---- C:\Windows\cs-CZ
2014-05-10 20:11:00 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-05-10 19:54:06 ----D---- C:\Windows.old.000
2014-05-10 17:54:44 ----D---- C:\Program Files (x86)\Dell
2014-05-10 17:44:04 ----D---- C:\Program Files (x86)\MSXML 4.0
2014-05-10 17:01:58 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Nokia Suite
2014-05-10 16:57:45 ----D---- C:\ProgramData\Nokia
2014-05-10 16:57:13 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2014-05-10 16:55:10 ----D---- C:\ProgramData\NokiaInstallerCache
2014-05-10 16:52:59 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\PC Suite
2014-05-10 16:52:59 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Nokia
2014-05-10 16:52:58 ----D---- C:\ProgramData\PC Suite
2014-05-10 16:52:22 ----D---- C:\Program Files\DIFX
2014-05-10 16:52:22 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2014-05-10 16:52:18 ----DC---- C:\Windows\system32\DRVSTORE
2014-05-10 16:51:39 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2014-05-10 16:51:38 ----D---- C:\Program Files (x86)\Nokia
2014-05-10 16:50:09 ----D---- C:\ProgramData\Installations
2014-05-10 16:36:43 ----D---- C:\Program Files (x86)\Adobe
2014-05-10 16:36:04 ----D---- C:\ProgramData\Adobe
2014-05-10 16:23:06 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-05-10 16:23:06 ----A---- C:\Windows\system32\mstscax.dll
2014-05-10 16:10:50 ----D---- C:\Program Files (x86)\WinRAR
2014-05-10 16:05:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-10 15:53:41 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-05-10 15:53:41 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-05-10 15:53:41 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-05-10 15:53:41 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-05-10 15:53:41 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-05-10 15:53:41 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-05-10 15:53:41 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-05-10 15:53:41 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-05-10 15:53:40 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-05-10 15:53:40 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-05-10 15:53:39 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-05-10 15:53:37 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-10 15:53:33 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-10 15:53:33 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-10 15:53:33 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-05-10 15:53:32 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-05-10 15:53:32 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-05-10 15:53:32 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-05-10 15:53:32 ----A---- C:\Windows\system32\wksprtPS.dll
2014-05-10 15:53:32 ----A---- C:\Windows\system32\wksprt.exe
2014-05-10 15:53:32 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-05-10 15:53:32 ----A---- C:\Windows\system32\tsgqec.dll
2014-05-10 15:53:32 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-05-10 15:53:31 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-05-10 15:53:31 ----A---- C:\Windows\system32\mstsc.exe
2014-05-10 15:53:30 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-05-10 15:53:30 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-05-10 15:52:01 ----D---- C:\Program Files\Microsoft Silverlight
2014-05-10 15:52:00 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-05-10 15:51:16 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-10 15:51:14 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2014-05-10 15:51:14 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-05-10 15:51:13 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2014-05-10 15:51:12 ----A---- C:\Windows\system32\rdpudd.dll
2014-05-10 15:51:12 ----A---- C:\Windows\system32\rdpendp_winip.dll
2014-05-10 15:51:11 ----A---- C:\Windows\system32\rdpcorets.dll
2014-05-10 15:46:56 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-05-10 15:46:56 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-05-10 15:46:49 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-05-10 15:46:49 ----A---- C:\Windows\system32\qdvd.dll
2014-05-10 15:46:24 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\WinRAR
2014-05-10 15:45:04 ----A---- C:\Windows\system32\ff_vfw.dll
2014-05-10 15:45:00 ----A---- C:\Windows\SYSWOW64\x264vfw.dll
2014-05-10 15:45:00 ----A---- C:\Windows\SYSWOW64\lagarith.dll
2014-05-10 15:45:00 ----A---- C:\Windows\system32\x264vfw64.dll
2014-05-10 15:45:00 ----A---- C:\Windows\system32\lagarith.dll
2014-05-10 15:44:59 ----A---- C:\Windows\SYSWOW64\xvidvfw.dll
2014-05-10 15:44:59 ----A---- C:\Windows\SYSWOW64\xvidcore.dll
2014-05-10 15:44:59 ----A---- C:\Windows\system32\xvidvfw.dll
2014-05-10 15:44:59 ----A---- C:\Windows\system32\xvidcore.dll
2014-05-10 15:44:56 ----A---- C:\Windows\SYSWOW64\unrar.dll
2014-05-10 15:44:56 ----A---- C:\Windows\system32\unrar64.dll
2014-05-10 15:44:54 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2014-05-10 15:44:49 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2014-05-10 15:26:49 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-05-10 15:26:49 ----A---- C:\Windows\explorer.exe
2014-05-10 15:26:47 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2014-05-10 15:26:47 ----A---- C:\Windows\system32\drivers\bthport.sys
2014-05-10 15:26:40 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-05-10 15:26:40 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-05-10 15:26:40 ----A---- C:\Windows\system32\d3d10warp.dll
2014-05-10 15:26:40 ----A---- C:\Windows\system32\d2d1.dll
2014-05-10 15:26:28 ----A---- C:\Windows\SYSWOW64\esent.dll
2014-05-10 15:26:28 ----A---- C:\Windows\system32\fsutil.exe
2014-05-10 15:26:28 ----A---- C:\Windows\system32\esent.dll
2014-05-10 15:26:28 ----A---- C:\Windows\system32\drivers\amdxata.sys
2014-05-10 15:26:27 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2014-05-10 15:26:27 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-05-10 15:26:27 ----A---- C:\Windows\system32\drivers\nvstor.sys
2014-05-10 15:26:27 ----A---- C:\Windows\system32\drivers\nvraid.sys
2014-05-10 15:26:27 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2014-05-10 15:26:27 ----A---- C:\Windows\system32\drivers\amdsata.sys
2014-05-10 15:26:13 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-05-10 15:26:13 ----A---- C:\Windows\system32\WMPhoto.dll
2014-05-10 15:26:04 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-05-10 15:26:04 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-05-10 15:24:04 ----A---- C:\Windows\system32\spoolsv.exe
2014-05-10 15:24:04 ----A---- C:\Windows\splwow64.exe
2014-05-10 15:13:46 ----D---- C:\Windows\pss
2014-05-10 14:59:36 ----SD---- C:\Windows\system32\CompatTel
2014-05-10 14:59:27 ----D---- C:\Windows\SYSWOW64\Wat
2014-05-10 14:59:27 ----D---- C:\Windows\system32\Wat
2014-05-10 14:35:53 ----A---- C:\Windows\system32\wmploc.DLL
2014-05-10 14:35:52 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-05-10 14:35:52 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-05-10 14:35:50 ----A---- C:\Windows\system32\wmp.dll
2014-05-10 14:21:40 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-05-10 14:18:41 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-10 14:18:35 ----D---- C:\Windows\Migration
2014-05-10 14:09:56 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-05-10 14:00:48 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-05-10 14:00:45 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-05-10 14:00:45 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-05-10 14:00:45 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-05-10 14:00:45 ----A---- C:\Windows\system32\elshyph.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\url.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-05-10 14:00:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-05-10 14:00:43 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\wininet.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\urlmon.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-05-10 14:00:42 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-10 14:00:42 ----A---- C:\Windows\system32\msrating.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\msls31.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\mshtmler.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\msfeedssync.exe
2014-05-10 14:00:42 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\jsproxy.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\jsIntl.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\jscript9diag.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\jscript9.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\ieui.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\iesysprep.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\iertutil.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\ieframe.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\ieapfltr.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\ieapfltr.dat
2014-05-10 14:00:42 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\dxtrans.dll
2014-05-10 14:00:42 ----A---- C:\Windows\system32\dxtmsft.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\wextract.exe
2014-05-10 14:00:41 ----A---- C:\Windows\system32\webcheck.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\vbscript.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\url.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\pngfilt.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\occache.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\mshta.exe
2014-05-10 14:00:41 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\licmgr10.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\jscript.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\inseng.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\imgutil.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\iexpress.exe
2014-05-10 14:00:41 ----A---- C:\Windows\system32\ieUnatt.exe
2014-05-10 14:00:41 ----A---- C:\Windows\system32\iesetup.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\iernonce.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-05-10 14:00:41 ----A---- C:\Windows\system32\iedkcs32.dll
2014-05-10 14:00:41 ----A---- C:\Windows\system32\ie4uinit.exe
2014-05-10 14:00:41 ----A---- C:\Windows\system32\icardie.dll
2014-05-10 14:00:40 ----A---- C:\Windows\system32\iepeers.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-10 13:53:53 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-10 13:53:52 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-10 13:53:52 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2014-05-10 13:53:52 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\XpsPrint.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\FntCache.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\dxgi.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\DWrite.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\d3d10level9.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\d3d10core.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\d3d10_1core.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\d3d10_1.dll
2014-05-10 13:53:52 ----A---- C:\Windows\system32\d3d10.dll
2014-05-10 13:53:51 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2014-05-10 13:53:51 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-05-10 13:53:51 ----A---- C:\Windows\system32\UIAnimation.dll
2014-05-10 13:05:19 ----A---- C:\Windows\system32\browserchoice.exe
2014-05-10 12:33:52 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2014-05-10 12:33:51 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2014-05-10 12:33:50 ----A---- C:\Windows\system32\WUDFSvc.dll
2014-05-10 12:33:50 ----A---- C:\Windows\system32\WUDFPlatform.dll
2014-05-10 12:33:49 ----A---- C:\Windows\system32\WUDFx.dll
2014-05-10 12:33:49 ----A---- C:\Windows\system32\WUDFHost.exe
2014-05-10 12:33:49 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2014-05-10 12:26:56 ----D---- C:\Windows\system32\MRT
2014-05-10 12:26:54 ----A---- C:\Windows\system32\MRT.exe
2014-05-10 12:25:11 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2014-05-10 12:25:10 ----A---- C:\Windows\SYSWOW64\wmi.dll
2014-05-10 12:25:10 ----A---- C:\Windows\system32\wmi.dll
2014-05-10 12:05:14 ----A---- C:\Windows\system32\xmllite.dll
2014-05-10 12:05:13 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2014-05-10 12:05:07 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-05-10 12:05:07 ----A---- C:\Windows\system32\msieftp.dll
2014-05-10 12:05:06 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2014-05-10 12:05:06 ----A---- C:\Windows\system32\odbctrac.dll
2014-05-10 12:05:06 ----A---- C:\Windows\system32\odbccu32.dll
2014-05-10 12:05:06 ----A---- C:\Windows\system32\odbccr32.dll
2014-05-10 12:05:06 ----A---- C:\Windows\system32\odbccp32.dll
2014-05-10 12:05:05 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2014-05-10 12:05:05 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2014-05-10 12:05:05 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2014-05-10 12:05:05 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2014-05-10 12:05:04 ----A---- C:\Windows\system32\wwansvc.dll
2014-05-10 12:05:04 ----A---- C:\Windows\system32\wwanprotdim.dll
2014-05-10 12:04:59 ----A---- C:\Windows\system32\comctl32.dll
2014-05-10 12:04:58 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-05-10 12:04:43 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-05-10 12:04:43 ----A---- C:\Windows\system32\poqexec.exe
2014-05-10 12:04:40 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2014-05-10 12:04:40 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2014-05-10 12:04:40 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2014-05-10 12:04:40 ----A---- C:\Windows\system32\dhcpcore6.dll
2014-05-10 12:04:21 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-05-10 12:04:21 ----A---- C:\Windows\system32\wintrust.dll
2014-05-10 12:04:08 ----A---- C:\Windows\SYSWOW64\sbe.dll
2014-05-10 12:04:08 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2014-05-10 12:04:08 ----A---- C:\Windows\system32\sbe.dll
2014-05-10 12:04:08 ----A---- C:\Windows\system32\CPFilters.dll
2014-05-10 12:04:02 ----A---- C:\Windows\system32\quartz.dll
2014-05-10 12:04:01 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-05-10 12:03:57 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2014-05-10 12:03:57 ----A---- C:\Windows\system32\ntshrui.dll
2014-05-10 12:03:55 ----A---- C:\Windows\system32\tquery.dll
2014-05-10 12:03:55 ----A---- C:\Windows\system32\mssrch.dll
2014-05-10 12:03:54 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-05-10 12:03:54 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-05-10 12:03:54 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-05-10 12:03:54 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-05-10 12:03:54 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-05-10 12:03:54 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-05-10 12:03:54 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-05-10 12:03:53 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-05-10 12:03:53 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-05-10 12:03:53 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-05-10 12:03:53 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2014-05-10 12:03:53 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-05-10 12:03:53 ----A---- C:\Windows\system32\mssvp.dll
2014-05-10 12:03:53 ----A---- C:\Windows\system32\mssphtb.dll
2014-05-10 12:03:53 ----A---- C:\Windows\system32\mssph.dll
2014-05-10 12:03:53 ----A---- C:\Windows\system32\msscntrs.dll
2014-05-10 12:03:44 ----A---- C:\Windows\system32\consent.exe
2014-05-10 12:03:44 ----A---- C:\Windows\system32\appinfo.dll
2014-05-10 12:03:30 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-05-10 12:03:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-05-10 12:03:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-05-10 12:03:28 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-05-10 12:03:28 ----A---- C:\Windows\system32\webio.dll
2014-05-10 12:02:42 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-05-10 12:02:42 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-05-10 12:02:42 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-05-10 12:02:42 ----A---- C:\Windows\system32\cryptsvc.dll
2014-05-10 12:02:42 ----A---- C:\Windows\system32\cryptnet.dll
2014-05-10 12:02:42 ----A---- C:\Windows\system32\crypt32.dll
2014-05-10 12:02:26 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-05-10 12:02:26 ----A---- C:\Windows\system32\wer.dll
2014-05-10 12:02:25 ----A---- C:\Windows\system32\imagehlp.dll
2014-05-10 12:02:24 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-05-10 12:02:22 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-05-10 12:02:22 ----A---- C:\Windows\system32\tzres.dll
2014-05-10 12:02:13 ----A---- C:\Windows\system32\drivers\usbser.sys
2014-05-10 12:02:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-05-10 12:02:12 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-05-10 12:02:12 ----A---- C:\Windows\system32\msxml3r.dll
2014-05-10 12:02:12 ----A---- C:\Windows\system32\msxml3.dll
2014-05-10 12:01:46 ----A---- C:\Windows\system32\drivers\afd.sys
2014-05-10 12:01:41 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-05-10 12:01:41 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-05-10 12:01:30 ----A---- C:\Windows\system32\win32k.sys
2014-05-10 12:01:29 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-05-10 12:01:25 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-05-10 12:01:25 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-05-10 12:01:25 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-05-10 12:01:25 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-10 12:01:25 ----A---- C:\Windows\system32\credui.dll
2014-05-10 12:01:25 ----A---- C:\Windows\system32\authui.dll
2014-05-10 12:01:16 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-05-10 12:01:16 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-05-10 12:01:16 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-05-10 12:01:16 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-05-10 12:01:16 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-05-10 12:01:16 ----A---- C:\Windows\system32\lpk.dll
2014-05-10 12:01:16 ----A---- C:\Windows\system32\fontsub.dll
2014-05-10 12:01:16 ----A---- C:\Windows\system32\dciman32.dll
2014-05-10 12:01:16 ----A---- C:\Windows\system32\atmlib.dll
2014-05-10 12:01:16 ----A---- C:\Windows\system32\atmfd.dll
2014-05-10 12:01:15 ----A---- C:\Windows\system32\mfc42u.dll
2014-05-10 12:01:14 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2014-05-10 12:01:14 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2014-05-10 12:01:14 ----A---- C:\Windows\system32\mfc42.dll
2014-05-10 12:01:08 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-05-10 12:01:08 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-05-10 12:01:08 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-05-10 12:01:08 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-05-10 12:01:08 ----A---- C:\Windows\system32\RMActivate.exe
2014-05-10 12:01:07 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-05-10 12:01:07 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-05-10 12:01:07 ----A---- C:\Windows\system32\secproc_isv.dll
2014-05-10 12:01:07 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-10 12:01:07 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-05-10 12:01:06 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-05-10 12:01:06 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-05-10 12:01:06 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-05-10 12:01:06 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-05-10 12:01:06 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-05-10 12:01:06 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-05-10 12:01:06 ----A---- C:\Windows\system32\secproc.dll
2014-05-10 12:01:06 ----A---- C:\Windows\system32\msdrm.dll
2014-05-10 12:00:55 ----A---- C:\Windows\system32\drivers\cng.sys
2014-05-10 12:00:54 ----A---- C:\Windows\system32\ncrypt.dll
2014-05-10 12:00:53 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-05-10 12:00:46 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-05-10 12:00:46 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-05-10 12:00:46 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-05-10 12:00:45 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-05-10 12:00:45 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-05-10 12:00:45 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-05-10 12:00:43 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-05-10 12:00:43 ----A---- C:\Windows\system32\d3d11.dll
2014-05-10 12:00:42 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-05-10 12:00:41 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2014-05-10 12:00:33 ----A---- C:\Windows\system32\smss.exe
2014-05-10 12:00:33 ----A---- C:\Windows\system32\csrsrv.dll
2014-05-10 12:00:31 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-05-10 12:00:31 ----A---- C:\Windows\system32\apisetschema.dll
2014-05-10 12:00:29 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-05-10 12:00:28 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-05-10 12:00:28 ----A---- C:\Windows\system32\drivers\usb8023.sys
2014-05-10 12:00:26 ----A---- C:\Windows\system32\rdrmemptylst.exe
2014-05-10 12:00:26 ----A---- C:\Windows\system32\rdpwsx.dll
2014-05-10 12:00:26 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-05-10 12:00:20 ----A---- C:\Windows\system32\Wdfres.dll
2014-05-10 12:00:20 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2014-05-10 12:00:20 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-05-10 12:00:18 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-05-10 12:00:18 ----A---- C:\Windows\system32\rpcrt4.dll
2014-05-10 12:00:17 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2014-05-10 12:00:17 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-05-10 12:00:16 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-05-10 12:00:16 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-05-10 12:00:14 ----A---- C:\Windows\system32\ncsi.dll
2014-05-10 12:00:13 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2014-05-10 12:00:13 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2014-05-10 12:00:13 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2014-05-10 12:00:13 ----A---- C:\Windows\system32\nlasvc.dll
2014-05-10 12:00:13 ----A---- C:\Windows\system32\nlaapi.dll
2014-05-10 12:00:13 ----A---- C:\Windows\system32\netcorehc.dll
2014-05-10 12:00:13 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-05-10 12:00:13 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2014-05-10 12:00:12 ----A---- C:\Windows\SYSWOW64\netevent.dll
2014-05-10 12:00:12 ----A---- C:\Windows\system32\netevent.dll
2014-05-10 12:00:06 ----A---- C:\Windows\system32\msxml6.dll
2014-05-10 12:00:05 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-05-10 12:00:03 ----A---- C:\Windows\system32\profsvc.dll
2014-05-10 12:00:01 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2014-05-10 12:00:01 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-05-10 12:00:01 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-05-10 12:00:01 ----A---- C:\Windows\system32\dnscacheugc.exe
2014-05-10 12:00:01 ----A---- C:\Windows\system32\dnsapi.dll
2014-05-10 11:59:18 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-05-10 11:59:18 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-05-10 11:59:18 ----A---- C:\Windows\system32\WebClnt.dll
2014-05-10 11:59:18 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-05-10 11:59:18 ----A---- C:\Windows\system32\davclnt.dll
2014-05-10 11:59:14 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2014-05-10 11:59:14 ----A---- C:\Windows\system32\dpnet.dll
2014-05-10 11:59:08 ----A---- C:\Windows\system32\OxpsConverter.exe
2014-05-10 11:58:35 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-05-10 11:58:35 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-05-10 11:58:35 ----A---- C:\Windows\system32\drivers\srv.sys
2014-05-10 11:58:33 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-05-10 11:58:33 ----A---- C:\Windows\system32\usp10.dll
2014-05-10 11:58:29 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-05-10 11:58:27 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-05-10 11:58:27 ----A---- C:\Windows\system32\mswsock.dll
2014-05-10 11:58:21 ----A---- C:\Windows\system32\Wpc.dll
2014-05-10 11:58:20 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2014-05-10 11:58:20 ----A---- C:\Windows\SYSWOW64\gameux.dll
2014-05-10 11:58:20 ----A---- C:\Windows\system32\gameux.dll
2014-05-10 11:57:58 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2014-05-10 11:57:58 ----A---- C:\Windows\system32\psisdecd.dll
2014-05-10 11:57:56 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-05-10 11:56:56 ----A---- C:\Windows\system32\tdh.dll
2014-05-10 11:56:56 ----A---- C:\Windows\system32\ntdll.dll
2014-05-10 11:56:56 ----A---- C:\Windows\system32\advapi32.dll
2014-05-10 11:56:55 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-05-10 11:56:55 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-05-10 11:56:55 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-05-10 11:56:50 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-05-10 11:56:50 ----A---- C:\Windows\system32\drivers\netio.sys
2014-05-10 11:56:49 ----A---- C:\Windows\system32\drivers\partmgr.sys
2014-05-10 11:56:44 ----A---- C:\Windows\system32\msi.dll
2014-05-10 11:56:43 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-05-10 11:55:34 ----A---- C:\Windows\system32\drivers\storport.sys
2014-05-10 11:55:34 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-05-10 11:55:34 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-05-10 11:55:33 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-05-10 11:55:33 ----A---- C:\Windows\system32\iologmsg.dll
2014-05-10 11:55:24 ----A---- C:\Windows\SYSWOW64\synceng.dll
2014-05-10 11:55:24 ----A---- C:\Windows\system32\synceng.dll
2014-05-10 11:55:22 ----A---- C:\Windows\system32\winresume.exe
2014-05-10 11:55:22 ----A---- C:\Windows\system32\winload.exe
2014-05-10 11:55:22 ----A---- C:\Windows\system32\kdusb.dll
2014-05-10 11:55:22 ----A---- C:\Windows\system32\kdcom.dll
2014-05-10 11:55:22 ----A---- C:\Windows\system32\kd1394.dll
2014-05-10 11:55:16 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-05-10 11:55:16 ----A---- C:\Windows\system32\shdocvw.dll
2014-05-10 11:54:56 ----A---- C:\Windows\system32\win32spl.dll
2014-05-10 11:54:55 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2014-05-10 11:54:53 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-05-10 11:54:53 ----A---- C:\Windows\system32\gdi32.dll
2014-05-10 11:54:52 ----A---- C:\Windows\system32\taskhost.exe
2014-05-10 11:54:51 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-05-10 11:54:51 ----A---- C:\Windows\system32\qedit.dll
2014-05-10 11:54:50 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-05-10 11:54:50 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2014-05-10 11:54:50 ----A---- C:\Windows\SYSWOW64\devobj.dll
2014-05-10 11:54:50 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2014-05-10 11:54:50 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-05-10 11:54:46 ----A---- C:\Windows\system32\cryptdlg.dll
2014-05-10 11:54:45 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2014-05-10 11:54:26 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-10 11:54:26 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-10 11:54:25 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-05-10 11:54:23 ----A---- C:\Windows\system32\netapi32.dll
2014-05-10 11:54:23 ----A---- C:\Windows\system32\browser.dll
2014-05-10 11:54:23 ----A---- C:\Windows\system32\browcli.dll
2014-05-10 11:54:22 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2014-05-10 11:54:22 ----A---- C:\Windows\SYSWOW64\browcli.dll
2014-05-10 11:54:19 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-05-10 11:54:19 ----A---- C:\Windows\system32\wow64win.dll
2014-05-10 11:54:19 ----A---- C:\Windows\system32\wow64.dll
2014-05-10 11:54:19 ----A---- C:\Windows\system32\winsrv.dll
2014-05-10 11:54:19 ----A---- C:\Windows\system32\kernel32.dll
2014-05-10 11:54:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-10 11:54:18 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-10 11:54:18 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-05-10 11:54:18 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-05-10 11:54:18 ----A---- C:\Windows\system32\wow64cpu.dll
2014-05-10 11:54:18 ----A---- C:\Windows\system32\ntvdm64.dll
2014-05-10 11:54:18 ----A---- C:\Windows\system32\conhost.exe
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-10 11:54:17 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-10 11:54:17 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-05-10 11:54:17 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-10 11:54:16 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-10 11:54:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-10 11:54:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-10 11:54:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-10 11:54:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-10 11:54:15 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-10 11:54:15 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-10 11:54:15 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-10 11:54:15 ----A---- C:\Windows\SYSWOW64\user.exe
2014-05-10 11:54:13 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2014-05-10 11:54:13 ----A---- C:\Windows\system32\prevhost.exe
2014-05-10 11:54:12 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-05-10 11:54:11 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-05-10 11:54:11 ----A---- C:\Windows\system32\srcore.dll
2014-05-10 11:54:09 ----A---- C:\Windows\system32\FXSCOVER.exe
2014-05-10 11:54:08 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-05-10 11:54:08 ----A---- C:\Windows\system32\inetcomm.dll
2014-05-10 11:54:06 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2014-05-10 11:54:06 ----A---- C:\Windows\system32\msvcrt.dll
2014-05-10 11:54:04 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-05-10 11:54:00 ----A---- C:\Windows\SYSWOW64\certutil.exe
2014-05-10 11:54:00 ----A---- C:\Windows\system32\certutil.exe
2014-05-10 11:53:59 ----A---- C:\Windows\SYSWOW64\certenc.dll
2014-05-10 11:53:59 ----A---- C:\Windows\system32\certenc.dll
2014-05-10 11:53:42 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-05-10 11:53:42 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-05-10 11:53:42 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-05-10 11:53:42 ----A---- C:\Windows\system32\wscript.exe
2014-05-10 11:53:42 ----A---- C:\Windows\system32\scrrun.dll
2014-05-10 11:53:42 ----A---- C:\Windows\system32\cscript.exe
2014-05-10 11:53:38 ----A---- C:\Windows\system32\localspl.dll
2014-05-10 11:53:36 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-05-10 11:53:34 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-05-10 11:53:34 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2014-05-10 11:53:34 ----A---- C:\Windows\system32\oleaut32.dll
2014-05-10 11:53:34 ----A---- C:\Windows\system32\oleacc.dll
2014-05-10 11:53:32 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2014-05-10 11:53:32 ----A---- C:\Windows\system32\EncDec.dll
2014-05-10 11:53:31 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-05-10 11:53:30 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-05-10 11:53:30 ----A---- C:\Windows\system32\cdd.dll
2014-05-10 11:53:10 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2014-05-10 11:53:09 ----A---- C:\Windows\system32\cdosys.dll
2014-05-10 11:53:01 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-05-10 11:53:01 ----A---- C:\Windows\system32\nshwfp.dll
2014-05-10 11:53:01 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-05-10 11:53:01 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-05-10 11:53:00 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-05-10 11:52:54 ----A---- C:\Windows\system32\scavengeui.dll
2014-05-10 11:48:21 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-05-10 11:45:07 ----D---- C:\Program Files\KONICA MINOLTA
2014-05-10 11:41:39 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-10 11:29:55 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-05-10 11:29:55 ----A---- C:\Windows\system32\packager.dll
2014-05-10 11:21:25 ----D---- C:\Program Files\WinRAR
2014-05-10 11:19:30 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Macromedia
2014-05-10 11:19:30 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Adobe
2014-05-10 11:19:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-10 11:19:09 ----D---- C:\Windows\SYSWOW64\Macromed
2014-05-10 11:19:06 ----D---- C:\Windows\system32\Macromed
2014-05-10 11:15:30 ----A---- C:\Windows\ODBC.INI
2014-05-10 11:13:03 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Mozilla
2014-05-10 11:12:53 ----D---- C:\ProgramData\Mozilla
2014-05-10 11:12:52 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-10 11:10:08 ----D---- C:\Windows\Msagent
2014-05-10 11:10:03 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-05-10 11:10:03 ----A---- C:\Windows\system32\rdpcore.dll
2014-05-10 11:10:03 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-05-10 11:09:59 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-10 11:05:38 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-05-10 11:05:21 ----D---- C:\Program Files\Microsoft Security Client
2014-05-10 11:03:26 ----A---- C:\Windows\system32\wups2.dll
2014-05-10 11:03:26 ----A---- C:\Windows\system32\wucltux.dll
2014-05-10 11:03:26 ----A---- C:\Windows\system32\wuaueng.dll
2014-05-10 11:03:26 ----A---- C:\Windows\system32\wuauclt.exe
2014-05-10 11:03:15 ----A---- C:\Windows\system32\wups.dll
2014-05-10 11:03:15 ----A---- C:\Windows\system32\wudriver.dll
2014-05-10 11:03:15 ----A---- C:\Windows\system32\wuapi.dll
2014-05-10 11:03:01 ----A---- C:\Windows\system32\wuwebv.dll
2014-05-10 11:03:01 ----A---- C:\Windows\system32\wuapp.exe
2014-05-10 10:58:04 ----D---- C:\Program Files (x86)\Cisco
2014-05-10 10:56:53 ----SHD---- C:\Windows\Installer
2014-05-10 10:56:09 ----A---- C:\Windows\system32\BCMLogon.dll
2014-05-10 10:55:56 ----A---- C:\Windows\SYSWOW64\vcredist_x64.bat
2014-05-10 10:55:56 ----A---- C:\Windows\system32\drivers\npf.sys
2014-05-10 10:55:56 ----A---- C:\Windows\system32\drivers\bcm42rly.sys
2014-05-10 10:55:56 ----A---- C:\Windows\system32\bcmwlrc.dll
2014-05-10 10:55:55 ----A---- C:\Windows\SYSWOW64\vcredist_x64.exe
2014-05-10 10:55:55 ----A---- C:\Windows\system32\wltrynt.dll
2014-05-10 10:55:55 ----A---- C:\Windows\system32\bcmttls.dll
2014-05-10 10:55:54 ----A---- C:\Windows\system32\vcredist_x64.exe
2014-05-10 10:55:54 ----A---- C:\Windows\system32\vcredist_x64.bat
2014-05-10 10:55:52 ----A---- C:\Windows\system32\drivers\BCMWL664.SYS
2014-05-10 10:55:52 ----A---- C:\Windows\system32\bcmwlcoi.dll
2014-05-10 10:55:52 ----A---- C:\Windows\system32\bcmihvui64.dll
2014-05-10 10:55:52 ----A---- C:\Windows\system32\bcmihvsrv64.dll
2014-05-10 10:55:51 ----D---- C:\Program Files\Dell
2014-05-10 10:35:34 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Identities
2014-05-10 10:35:17 ----SD---- C:\Users\Jindra M 5010\AppData\Roaming\Microsoft
2014-05-10 10:35:17 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Media Center Programs
2014-05-10 10:35:04 ----SHD---- C:\ProgramData\Šablony
2014-05-10 10:35:04 ----SHD---- C:\ProgramData\Plocha
2014-05-10 10:35:04 ----SHD---- C:\ProgramData\Oblíbené položky
2014-05-10 10:35:04 ----SHD---- C:\ProgramData\Nabídka Start
2014-05-10 10:35:04 ----SHD---- C:\ProgramData\Dokumenty
2014-05-10 10:35:04 ----SHD---- C:\ProgramData\Data aplikací
2014-05-10 10:17:12 ----D---- C:\Windows\SoftwareDistribution
2014-05-10 10:14:57 ----D---- C:\Windows\Prefetch
======List of files/folders modified in the last 1 month======
2014-05-20 14:49:58 ----D---- C:\Windows\system32\drivers
2014-05-20 14:49:57 ----RD---- C:\Program Files (x86)
2014-05-20 12:18:10 ----D---- C:\Windows\inf
2014-05-20 12:18:09 ----D---- C:\Windows
2014-05-20 11:33:22 ----D---- C:\Windows\system32\config
2014-05-20 11:22:18 ----D---- C:\Config.Msi
2014-05-20 11:22:11 ----D---- C:\Windows\System32
2014-05-20 11:21:48 ----SHD---- C:\System Volume Information
2014-05-20 11:18:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-19 23:11:55 ----D---- C:\Windows\Cursors
2014-05-19 23:10:27 ----D---- C:\Windows\SysWOW64
2014-05-19 20:37:20 ----D---- C:\Windows\winsxs
2014-05-19 20:37:20 ----D---- C:\Windows\system32\wfp
2014-05-19 20:37:20 ----D---- C:\Windows\system32\DriverStore
2014-05-19 20:37:19 ----D---- C:\Windows\system32\Tasks
2014-05-19 20:37:17 ----D---- C:\Windows\system32\CodeIntegrity
2014-05-19 20:37:17 ----D---- C:\Windows\system32\catroot
2014-05-19 20:36:49 ----RD---- C:\Program Files
2014-05-19 20:36:47 ----D---- C:\Program Files (x86)\Common Files
2014-05-19 20:36:04 ----D---- C:\Windows\registration
2014-05-19 20:35:54 ----D---- C:\Windows\system32\wbem
2014-05-19 20:35:52 ----SD---- C:\Windows\system32\Microsoft
2014-05-19 20:35:32 ----D---- C:\Windows\Microsoft.NET
2014-05-19 20:35:02 ----D---- C:\Users
2014-05-19 20:33:27 ----D---- C:\ProgramData
2014-05-19 20:33:01 ----D---- C:\Program Files\Common Files
2014-05-19 19:01:49 ----D---- C:\Windows\system32\LogFiles
2014-05-19 14:05:04 ----D---- C:\Windows\system32\catroot2
2014-05-19 14:03:11 ----D---- C:\Windows\Tasks
2014-05-19 10:17:46 ----D---- C:\Recovery
2014-05-19 00:21:37 ----D---- C:\dell
2014-05-17 11:48:45 ----RSD---- C:\Windows\Fonts
2014-05-16 08:59:53 ----D---- C:\Windows\system32\NDF
2014-05-14 20:16:45 ----D---- C:\Windows\rescache
2014-05-14 20:12:21 ----D---- C:\Program Files\Windows Sidebar
2014-05-14 20:12:21 ----D---- C:\Program Files\Windows Photo Viewer
2014-05-14 20:12:21 ----D---- C:\Program Files\Windows Media Player
2014-05-14 20:12:21 ----D---- C:\Program Files\Windows Mail
2014-05-14 20:12:21 ----D---- C:\Program Files\Windows Journal
2014-05-14 20:12:21 ----D---- C:\Program Files\DVD Maker
2014-05-14 20:12:20 ----D---- C:\Windows\SYSWOW64\winrm
2014-05-14 20:12:20 ----D---- C:\Windows\SYSWOW64\slmgr
2014-05-14 20:12:20 ----D---- C:\Windows\SYSWOW64\migwiz
2014-05-14 20:12:20 ----D---- C:\Windows\SYSWOW64\en
2014-05-14 20:12:20 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2014-05-14 20:12:20 ----D---- C:\Program Files\Windows Defender
2014-05-14 20:12:20 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-05-14 20:12:20 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-05-14 20:12:20 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-14 20:12:20 ----D---- C:\Program Files (x86)\Windows Mail
2014-05-14 20:12:20 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-14 20:12:19 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-14 20:12:07 ----D---- C:\Windows\SYSWOW64\WCN
2014-05-14 20:12:07 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-05-14 20:12:07 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-05-14 20:12:07 ----D---- C:\Windows\SYSWOW64\Dism
2014-05-14 20:12:06 ----D---- C:\Windows\system32\winrm
2014-05-14 20:12:06 ----D---- C:\Windows\system32\slmgr
2014-05-14 20:12:06 ----D---- C:\Windows\system32\migwiz
2014-05-14 20:12:06 ----D---- C:\Windows\system32\en-US
2014-05-14 20:12:06 ----D---- C:\Windows\system32\en
2014-05-14 20:12:06 ----D---- C:\Windows\system32\Boot
2014-05-14 20:12:06 ----D---- C:\Windows\en-US
2014-05-14 20:11:52 ----D---- C:\Windows\system32\drivers\en-US
2014-05-14 20:11:51 ----D---- C:\Windows\system32\WCN
2014-05-14 20:11:50 ----D---- C:\Windows\system32\Dism
2014-05-14 20:11:48 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-05-14 20:11:46 ----D---- C:\Windows\Speech
2014-05-14 10:42:56 ----RSD---- C:\Windows\assembly
2014-05-13 23:48:14 ----D---- C:\Windows\debug
2014-05-13 20:10:58 ----D---- C:\Windows\system32\cs-CZ
2014-05-11 20:16:18 ----A---- C:\Windows\system.ini
2014-05-11 20:16:13 ----D---- C:\Windows\system32\drivers\etc
2014-05-11 20:11:40 ----D---- C:\Windows\SYSWOW64\drivers
2014-05-11 20:11:40 ----D---- C:\Windows\AppPatch
2014-05-11 19:08:41 ----D---- C:\Windows\system32\wdi
2014-05-10 20:13:04 ----RASH---- C:\BOOTSECT.BAK
2014-05-10 20:13:02 ----D---- C:\Boot
2014-05-10 20:12:39 ----D---- C:\Windows\system32\oobe
2014-05-10 20:12:39 ----D---- C:\Windows\Setup
2014-05-10 20:12:38 ----D---- C:\Drivers
2014-05-10 20:11:01 ----D---- C:\Windows\SYSWOW64\MUI
2014-05-10 20:11:01 ----D---- C:\Windows\SYSWOW64\com
2014-05-10 20:11:01 ----D---- C:\Windows\servicing
2014-05-10 20:11:01 ----D---- C:\Windows\IME
2014-05-10 20:11:00 ----D---- C:\Windows\system32\MUI
2014-05-10 20:11:00 ----D---- C:\Windows\system32\com
2014-05-10 16:53:35 ----SD---- C:\ProgramData\Microsoft
2014-05-10 16:53:29 ----D---- C:\Windows\system32\drivers\UMDF
2014-05-10 16:25:33 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-10 15:55:12 ----D---- C:\Windows\SYSWOW64\wbem
2014-05-10 15:55:10 ----D---- C:\Windows\PolicyDefinitions
2014-05-10 15:28:26 ----A---- C:\Windows\win.ini
2014-05-10 14:59:56 ----D---- C:\Program Files\Common Files\System
2014-05-10 14:59:54 ----D---- C:\Program Files\Internet Explorer
2014-05-10 14:59:54 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-10 14:59:53 ----D---- C:\Windows\SYSWOW64\migration
2014-05-10 14:59:48 ----D---- C:\Windows\system32\migration
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\zh-TW
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\zh-HK
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\zh-CN
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\tr-TR
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\sv-SE
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\pt-PT
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\pt-BR
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\ko-KR
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\it-IT
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\fr-FR
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\fi-FI
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\es-ES
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\el-GR
2014-05-10 14:59:45 ----D---- C:\Windows\SYSWOW64\de-DE
2014-05-10 14:59:44 ----D---- C:\Windows\SYSWOW64\ru-RU
2014-05-10 14:59:44 ----D---- C:\Windows\SYSWOW64\nb-NO
2014-05-10 14:59:44 ----D---- C:\Windows\SYSWOW64\ja-JP
2014-05-10 14:59:44 ----D---- C:\Windows\SYSWOW64\da-DK
2014-05-10 14:59:43 ----D---- C:\Windows\system32\zh-TW
2014-05-10 14:59:43 ----D---- C:\Windows\system32\zh-HK
2014-05-10 14:59:43 ----D---- C:\Windows\system32\zh-CN
2014-05-10 14:59:43 ----D---- C:\Windows\system32\tr-TR
2014-05-10 14:59:43 ----D---- C:\Windows\system32\sv-SE
2014-05-10 14:59:43 ----D---- C:\Windows\system32\pt-PT
2014-05-10 14:59:43 ----D---- C:\Windows\system32\pt-BR
2014-05-10 14:59:43 ----D---- C:\Windows\system32\pl-PL
2014-05-10 14:59:43 ----D---- C:\Windows\system32\nl-NL
2014-05-10 14:59:43 ----D---- C:\Windows\system32\ko-KR
2014-05-10 14:59:43 ----D---- C:\Windows\system32\ja-JP
2014-05-10 14:59:43 ----D---- C:\Windows\system32\it-IT
2014-05-10 14:59:43 ----D---- C:\Windows\system32\hu-HU
2014-05-10 14:59:43 ----D---- C:\Windows\system32\fr-FR
2014-05-10 14:59:43 ----D---- C:\Windows\system32\fi-FI
2014-05-10 14:59:43 ----D---- C:\Windows\system32\es-ES
2014-05-10 14:59:43 ----D---- C:\Windows\system32\el-GR
2014-05-10 14:59:43 ----D---- C:\Windows\system32\de-DE
2014-05-10 14:59:42 ----D---- C:\Windows\system32\ru-RU
2014-05-10 14:59:42 ----D---- C:\Windows\system32\nb-NO
2014-05-10 14:59:42 ----D---- C:\Windows\system32\da-DK
2014-05-10 14:59:40 ----D---- C:\Windows\ehome
2014-05-10 14:21:16 ----D---- C:\Windows\Logs
2014-05-10 11:14:42 ----D---- C:\Windows\ShellNew
2014-05-10 11:10:08 ----D---- C:\Windows\Help
2014-05-10 11:08:43 ----D---- C:\Windows\system
2014-05-10 11:02:35 ----D---- C:\Windows\system32\restore
2014-05-10 10:57:25 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-10 10:56:01 ----D---- C:\Windows\system32\th-TH
2014-05-10 10:56:01 ----D---- C:\Windows\system32\sl-SI
2014-05-10 10:56:01 ----D---- C:\Windows\system32\sk-SK
2014-05-10 10:56:01 ----D---- C:\Windows\system32\ro-RO
2014-05-10 10:55:59 ----D---- C:\Windows\system32\lv-LV
2014-05-10 10:55:59 ----D---- C:\Windows\system32\lt-LT
2014-05-10 10:55:58 ----D---- C:\Windows\system32\hr-HR
2014-05-10 10:55:58 ----D---- C:\Windows\system32\he-IL
2014-05-10 10:55:58 ----D---- C:\Windows\system32\et-EE
2014-05-10 10:55:56 ----D---- C:\Windows\system32\bg-BG
2014-05-10 10:55:56 ----D---- C:\Windows\system32\ar-SA
2014-05-10 10:35:04 ----D---- C:\Windows\system32\Recovery
2014-05-10 10:35:04 ----D---- C:\Program Files\Windows NT
2014-05-10 10:19:31 ----D---- C:\Windows\system32\sysprep
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam64.sys [2012-04-15 1071032]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-19 94720]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2014-05-10 22592]
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\Windows\system32\DRIVERS\bcmwl664.sys [2014-05-10 4716608]
R3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2012-04-01 594472]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-04-01 184872]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2012-03-05 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-05 21544]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\system32\DRIVERS\LEqdUsb.Sys [2013-05-23 77592]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; C:\Windows\system32\DRIVERS\LHidEqd.Sys [2013-05-23 13080]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2013-05-23 76568]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2013-05-23 59160]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-04-03 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-05-20 119512]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-04-03 63192]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-12-10 301104]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2010-09-30 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2010-09-30 180736]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-17 344064]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-04-01 957216]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-04-03 857912]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-04-03 1809720]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 wltrysvc;DW WLAN Tray Service; C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [2014-05-10 48128]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-19 257712]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-10 111616]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2013-06-13 357144]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-10 119408]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-10 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu...Pc je divné,seká se atd...
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
jindra.paryzek
- Návštěvník
- Příspěvky: 469
- Registrován: 04 led 2007 12:37
- Bydliště: Louny
-
jindra.paryzek
- Návštěvník
- Příspěvky: 469
- Registrován: 04 led 2007 12:37
- Bydliště: Louny
Re: Prosím o kontrolu...Pc je divné,seká se atd...
MBam hotov,posílám screene
- Bez názvu.png (105.84 KiB) Zobrazeno 1229 x
Re: Prosím o kontrolu...Pc je divné,seká se atd...
MBAM sice hlasi cisto, ale ja tam havet vidim 
Takze novy sken s ComboFixem http://forum.viry.cz/viewtopic.php?f=13 ... 5#p1319138
Takze novy sken s ComboFixem http://forum.viry.cz/viewtopic.php?f=13 ... 5#p1319138Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
jindra.paryzek
- Návštěvník
- Příspěvky: 469
- Registrován: 04 led 2007 12:37
- Bydliště: Louny
Re: Prosím o kontrolu...Pc je divné,seká se atd...
ComboFix 14-05-19.01 - Jindra M 5010 20.05.2014 16:35:59.3.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3068.1536 [GMT 2:00]
Spuštěný z: c:\users\Jindra M 5010\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-20 do 2014-05-20 )))))))))))))))))))))))))))))))
.
.
2014-05-20 14:43 . 2014-05-20 14:43 -------- d-----w- c:\users\Jindra M5010\AppData\Local\temp
2014-05-20 14:43 . 2014-05-20 14:43 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-05-20 12:49 . 2014-05-20 12:50 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-05-20 12:49 . 2014-04-03 07:51 63192 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-05-20 12:49 . 2014-04-03 07:51 88280 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-05-20 12:49 . 2014-04-03 07:50 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-05-20 09:36 . 2014-05-20 09:36 75888 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F30EF527-7D07-4E28-9708-A501D3308E98}\offreg.dll
2014-05-20 09:17 . 2014-04-16 01:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F30EF527-7D07-4E28-9708-A501D3308E98}\mpengine.dll
2014-05-19 18:38 . 2014-05-19 18:39 -------- d-----w- C:\AdwCleaner
2014-05-19 16:45 . 2014-04-16 01:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-05-19 06:46 . 2014-05-19 06:46 -------- d-----w- c:\program files (x86)\AMD AVT
2014-05-19 06:41 . 2012-08-28 12:27 58536 ----a-w- c:\windows\system32\drivers\usbfilter.sys
2014-05-19 06:40 . 2014-05-19 06:40 -------- d-----w- c:\programdata\ATI
2014-05-19 06:38 . 2013-11-06 03:40 83176 ----a-w- c:\windows\system32\drivers\amd_sata.sys
2014-05-19 06:38 . 2013-11-06 03:40 43240 ----a-w- c:\windows\system32\drivers\amd_xata.sys
2014-05-19 06:31 . 2012-04-01 09:52 184872 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2014-05-19 06:31 . 2012-03-05 18:29 210984 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2014-05-19 06:31 . 2012-03-05 18:29 21544 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2014-05-19 06:31 . 2011-09-17 07:38 39976 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
2014-05-18 22:49 . 2014-05-19 18:36 -------- d-----w- c:\program files (x86)\Common Files\LogiShrd
2014-05-18 22:47 . 2010-09-21 12:20 22056 ----a-w- c:\windows\system32\btwcoins.dll
2014-05-18 22:47 . 2012-04-01 09:52 594472 ----a-w- c:\windows\system32\drivers\btwampfl.sys
2014-05-18 22:46 . 2014-05-19 18:33 -------- d-----w- c:\programdata\Logitech
2014-05-18 22:44 . 2014-05-18 22:44 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2014-05-18 22:43 . 2014-05-19 18:33 -------- d-----w- c:\program files\WIDCOMM
2014-05-18 22:42 . 2014-05-19 18:33 -------- d-----w- c:\programdata\Logishrd
2014-05-18 22:41 . 2014-05-19 18:33 -------- d-----w- c:\program files\Logitech
2014-05-18 22:41 . 2014-05-19 18:33 -------- d-----w- c:\program files\Common Files\LogiShrd
2014-05-18 22:28 . 2014-05-19 06:46 -------- d-----w- c:\programdata\AMD
2014-05-18 22:27 . 2014-05-19 18:32 -------- d-----w- c:\program files (x86)\ATI Technologies
2014-05-18 22:25 . 2014-05-19 18:33 -------- d-----w- c:\programdata\Package Cache
2014-05-18 22:25 . 2014-05-19 18:36 -------- d-----w- c:\program files\ATI Technologies
2014-05-18 22:24 . 2014-05-19 18:32 -------- d-----w- c:\program files\ATI
2014-05-18 22:23 . 2014-05-19 18:32 -------- d-----w- C:\AMD
2014-05-18 22:22 . 2014-05-19 18:33 -------- d-----w- c:\program files\Synaptics
2014-05-18 22:21 . 2009-12-10 18:20 107816 ----a-w- c:\windows\SysWow64\SynTPCOM.dll
2014-05-18 22:21 . 2009-12-10 18:20 147752 ----a-w- c:\windows\system32\SynTPCo4.dll
2014-05-18 22:21 . 2009-12-10 18:20 206120 ----a-w- c:\windows\SysWow64\SynCtrl.dll
2014-05-18 22:21 . 2009-12-10 18:20 173352 ----a-w- c:\windows\SysWow64\SynCOM.dll
2014-05-18 22:21 . 2009-12-10 18:20 207144 ----a-w- c:\windows\system32\SynTPAPI.dll
2014-05-18 22:21 . 2009-12-10 18:20 263464 ----a-w- c:\windows\system32\SynCtrl.dll
2014-05-18 22:21 . 2009-12-10 18:20 396584 ----a-w- c:\windows\system32\SynCOM.dll
2014-05-18 22:21 . 2009-12-10 18:25 301104 ----a-w- c:\windows\system32\drivers\SynTP.sys
2014-05-18 15:19 . 2014-05-19 18:36 -------- d-----w- c:\program files\Easeware
2014-05-18 14:30 . 2014-05-18 14:58 -------- d-----w- c:\programdata\Sony
2014-05-17 09:22 . 2014-03-05 20:19 7670 --s-a-w- c:\windows\SysWow64\mncfmelu.vbe
2014-05-17 09:19 . 2014-05-17 09:19 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2014-05-17 09:10 . 2014-05-17 09:33 -------- d-----w- C:\FFOutput
2014-05-17 09:08 . 2014-05-17 09:49 -------- d-----w- c:\program files (x86)\FreeTime
2014-05-17 08:50 . 2014-05-20 11:07 -------- d-----w- c:\program files (x86)\Seznam.cz
2014-05-17 08:46 . 2014-05-17 08:46 -------- d-----w- c:\programdata\Pinnacle
2014-05-17 08:19 . 2014-05-17 08:19 -------- d-----w- c:\programdata\Xilisoft
2014-05-17 08:19 . 2014-05-17 08:19 -------- d-----w- c:\program files (x86)\Xilisoft
2014-05-16 05:59 . 2014-05-10 09:10 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{72F8E3C4-6589-4641-A7D5-371DA15EBBF8}\gapaengine.dll
2014-05-13 18:09 . 2014-05-06 04:40 23544320 ----a-w- c:\windows\system32\mshtml.dll
2014-05-13 18:09 . 2014-05-06 03:00 84992 ----a-w- c:\windows\system32\mshtmled.dll
2014-05-13 18:09 . 2014-05-06 04:17 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-05-13 18:09 . 2014-05-06 03:07 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2014-05-13 17:56 . 2014-05-13 17:56 -------- d-----w- c:\program files (x86)\MSECache
2014-05-13 14:17 . 2014-05-10 09:10 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-05-13 09:23 . 2014-05-13 09:23 -------- d-----w- C:\Spacekace
2014-05-13 09:14 . 2014-05-13 09:18 -------- d-----w- c:\programdata\WinZip
2014-05-13 08:58 . 2014-05-13 09:01 -------- d-----w- c:\program files (x86)\MozBackup
2014-05-13 07:40 . 2014-05-13 07:43 -------- d-----w- c:\programdata\WebcamMax
2014-05-13 07:39 . 2014-05-13 07:40 -------- d-----w- c:\program files (x86)\WebcamMax
2014-05-13 05:11 . 2014-05-13 05:11 -------- d-----w- C:\rsit
2014-05-12 17:47 . 2014-05-12 17:47 -------- d-----w- c:\program files\CCleaner
2014-05-12 10:29 . 2014-05-12 12:13 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2014-05-11 08:00 . 2014-05-20 12:51 119512 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-11 08:00 . 2014-05-12 10:29 -------- d-----w- c:\programdata\Malwarebytes
2014-05-10 19:45 . 2014-05-20 13:01 -------- d-----w- c:\program files\trend micro
2014-05-10 18:13 . 2014-05-10 14:46 -------- d-----w- c:\windows\Panther
2014-05-10 18:12 . 2014-05-10 08:33 -------- d-----w- c:\windows\system32\OEM
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\SysWow64\XPSViewer
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\SysWow64\drivers\cs-CZ
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\SysWow64\cs
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\system32\cs
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\cs-CZ
2014-05-10 18:11 . 2014-05-10 12:59 -------- d-----w- c:\windows\SysWow64\wbem\cs-CZ
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\system32\drivers\UMDF\cs-CZ
2014-05-10 18:11 . 2014-05-10 12:59 -------- d-----w- c:\windows\system32\wbem\cs-CZ
2014-05-10 18:11 . 2014-05-10 12:59 -------- d-----w- c:\windows\system32\drivers\cs-CZ
2014-05-10 18:07 . 2009-07-14 03:04 3584 ----a-w- c:\windows\system32\Spool\prtprocs\x64\cs-CZ\LXKPTPRC.DLL.mui
2014-05-10 17:54 . 2014-05-10 17:54 -------- d-----w- C:\Windows.old.000
2014-05-10 15:54 . 2014-05-10 15:55 -------- d-----w- c:\program files (x86)\Dell
2014-05-10 15:44 . 2014-05-13 19:55 -------- d-----w- c:\program files (x86)\MSXML 4.0
2014-05-10 14:57 . 2014-05-10 14:58 -------- d-----w- c:\programdata\Nokia
2014-05-10 14:57 . 2014-05-10 14:57 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2014-05-10 14:52 . 2014-05-10 14:52 -------- d-----w- c:\programdata\PC Suite
2014-05-10 14:52 . 2014-05-10 14:52 -------- d-----w- c:\program files (x86)\Common Files\PCSuite
2014-05-10 14:52 . 2014-05-10 14:57 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2014-05-10 14:52 . 2014-05-19 18:36 -------- d-----w- c:\program files\DIFX
2014-05-10 14:52 . 2012-10-17 12:53 26112 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2014-05-10 14:52 . 2014-05-19 18:35 -------- dc----w- c:\windows\system32\DRVSTORE
2014-05-10 14:51 . 2013-01-23 08:31 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll
2014-05-10 14:51 . 2014-05-13 19:55 -------- d-----w- c:\program files (x86)\Nokia
2014-05-10 14:50 . 2014-05-13 19:53 -------- d-----w- c:\programdata\Installations
2014-05-10 14:36 . 2014-05-10 14:36 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2014-05-10 14:23 . 2014-01-09 02:22 5694464 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-05-10 14:23 . 2014-01-03 22:44 6574592 ----a-w- c:\windows\system32\mstscax.dll
2014-05-10 14:05 . 2014-03-06 08:15 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-05-10 13:52 . 2014-05-10 15:56 -------- d-----w- c:\program files\Microsoft Silverlight
2014-05-10 13:52 . 2014-05-10 15:56 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2014-05-10 13:51 . 2012-08-23 13:24 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2014-05-10 13:51 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2014-05-10 13:51 . 2012-08-23 14:08 30208 ----a-w- c:\windows\system32\drivers\TsUsbGD.sys
2014-05-10 13:51 . 2012-08-23 11:12 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2014-05-10 13:51 . 2012-08-23 14:13 243200 ----a-w- c:\windows\system32\rdpudd.dll
2014-05-10 13:51 . 2012-08-23 10:51 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2014-05-10 13:51 . 2012-08-23 09:51 3174912 ----a-w- c:\windows\system32\rdpcorets.dll
2014-05-10 13:46 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-05-10 13:46 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-05-10 13:46 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll
2014-05-10 13:46 . 2012-05-04 09:59 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2014-05-10 13:45 . 2014-04-24 18:00 127488 ----a-w- c:\windows\system32\ff_vfw.dll
2014-05-10 13:45 . 2013-03-17 17:22 3554304 ----a-w- c:\windows\system32\x264vfw64.dll
2014-05-10 13:45 . 2013-03-17 16:21 3649536 ----a-w- c:\windows\SysWow64\x264vfw.dll
2014-05-10 13:45 . 2011-12-07 17:37 148992 ----a-w- c:\windows\system32\lagarith.dll
2014-05-10 13:45 . 2011-12-07 17:32 216064 ----a-w- c:\windows\SysWow64\lagarith.dll
2014-05-10 13:44 . 2011-06-24 14:45 258560 ----a-w- c:\windows\system32\xvidvfw.dll
2014-05-10 13:44 . 2011-06-24 14:44 243200 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2014-05-10 13:44 . 2011-06-24 14:31 703488 ----a-w- c:\windows\system32\xvidcore.dll
2014-05-10 13:44 . 2011-06-24 14:28 650752 ----a-w- c:\windows\SysWow64\xvidcore.dll
2014-05-10 13:44 . 2012-07-21 10:55 180736 ----a-w- c:\windows\system32\ac3acm.acm
2014-05-10 13:44 . 2012-07-21 10:54 122880 ----a-w- c:\windows\SysWow64\ac3acm.acm
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-10 12:00 . 2014-05-10 12:00 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2014-05-10 12:00 . 2014-05-10 12:00 243200 ----a-w- c:\windows\system32\webcheck.dll
2014-03-11 07:52 . 2014-03-11 07:52 133928 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2014-03-04 09:17 . 2014-05-13 18:01 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2014-03-04 09:17 . 2014-05-10 09:54 44032 ----a-w- c:\windows\apppatch\acwow64.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.3;AODDriver4.3;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 WCMVCAM;WebcamMax, WDM Video Capture;c:\windows\system32\DRIVERS\wcmvcam64.sys;c:\windows\SYSNATIVE\DRIVERS\wcmvcam64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys;c:\windows\SYSNATIVE\DRIVERS\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys;c:\windows\SYSNATIVE\DRIVERS\LEqdUsb.Sys [x]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys;c:\windows\SYSNATIVE\DRIVERS\LHidEqd.Sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMPROTECTOR
*NewlyCreated* - MBAMWEBACCESSCONTROL
*Deregistered* - MBAMWebAccessControl
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-10 12:03]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"="c:\program files\Dell\DW WLAN Card\WLTRAY.exe" [2014-05-10 6301696]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 1271072]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.dell.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~2\Office10\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\hn4xlcky.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage - seznam.cz
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} - (no file)
BHO-{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} - (no file)
.
.
.
Celkový čas: 2014-05-20 16:48:48
ComboFix-quarantined-files.txt 2014-05-20 14:48
.
Před spuštěním: Volných bajtů: 550 342 721 536
Po spuštění: Volných bajtů: 550 095 077 376
.
- - End Of File - - 84D002BCBB5A56948CDE09A124C0028F
A36C5E4F47E84449FF07ED3517B43A31
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3068.1536 [GMT 2:00]
Spuštěný z: c:\users\Jindra M 5010\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-04-20 do 2014-05-20 )))))))))))))))))))))))))))))))
.
.
2014-05-20 14:43 . 2014-05-20 14:43 -------- d-----w- c:\users\Jindra M5010\AppData\Local\temp
2014-05-20 14:43 . 2014-05-20 14:43 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-05-20 12:49 . 2014-05-20 12:50 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-05-20 12:49 . 2014-04-03 07:51 63192 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-05-20 12:49 . 2014-04-03 07:51 88280 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-05-20 12:49 . 2014-04-03 07:50 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-05-20 09:36 . 2014-05-20 09:36 75888 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F30EF527-7D07-4E28-9708-A501D3308E98}\offreg.dll
2014-05-20 09:17 . 2014-04-16 01:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F30EF527-7D07-4E28-9708-A501D3308E98}\mpengine.dll
2014-05-19 18:38 . 2014-05-19 18:39 -------- d-----w- C:\AdwCleaner
2014-05-19 16:45 . 2014-04-16 01:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-05-19 06:46 . 2014-05-19 06:46 -------- d-----w- c:\program files (x86)\AMD AVT
2014-05-19 06:41 . 2012-08-28 12:27 58536 ----a-w- c:\windows\system32\drivers\usbfilter.sys
2014-05-19 06:40 . 2014-05-19 06:40 -------- d-----w- c:\programdata\ATI
2014-05-19 06:38 . 2013-11-06 03:40 83176 ----a-w- c:\windows\system32\drivers\amd_sata.sys
2014-05-19 06:38 . 2013-11-06 03:40 43240 ----a-w- c:\windows\system32\drivers\amd_xata.sys
2014-05-19 06:31 . 2012-04-01 09:52 184872 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2014-05-19 06:31 . 2012-03-05 18:29 210984 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2014-05-19 06:31 . 2012-03-05 18:29 21544 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2014-05-19 06:31 . 2011-09-17 07:38 39976 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
2014-05-18 22:49 . 2014-05-19 18:36 -------- d-----w- c:\program files (x86)\Common Files\LogiShrd
2014-05-18 22:47 . 2010-09-21 12:20 22056 ----a-w- c:\windows\system32\btwcoins.dll
2014-05-18 22:47 . 2012-04-01 09:52 594472 ----a-w- c:\windows\system32\drivers\btwampfl.sys
2014-05-18 22:46 . 2014-05-19 18:33 -------- d-----w- c:\programdata\Logitech
2014-05-18 22:44 . 2014-05-18 22:44 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2014-05-18 22:43 . 2014-05-19 18:33 -------- d-----w- c:\program files\WIDCOMM
2014-05-18 22:42 . 2014-05-19 18:33 -------- d-----w- c:\programdata\Logishrd
2014-05-18 22:41 . 2014-05-19 18:33 -------- d-----w- c:\program files\Logitech
2014-05-18 22:41 . 2014-05-19 18:33 -------- d-----w- c:\program files\Common Files\LogiShrd
2014-05-18 22:28 . 2014-05-19 06:46 -------- d-----w- c:\programdata\AMD
2014-05-18 22:27 . 2014-05-19 18:32 -------- d-----w- c:\program files (x86)\ATI Technologies
2014-05-18 22:25 . 2014-05-19 18:33 -------- d-----w- c:\programdata\Package Cache
2014-05-18 22:25 . 2014-05-19 18:36 -------- d-----w- c:\program files\ATI Technologies
2014-05-18 22:24 . 2014-05-19 18:32 -------- d-----w- c:\program files\ATI
2014-05-18 22:23 . 2014-05-19 18:32 -------- d-----w- C:\AMD
2014-05-18 22:22 . 2014-05-19 18:33 -------- d-----w- c:\program files\Synaptics
2014-05-18 22:21 . 2009-12-10 18:20 107816 ----a-w- c:\windows\SysWow64\SynTPCOM.dll
2014-05-18 22:21 . 2009-12-10 18:20 147752 ----a-w- c:\windows\system32\SynTPCo4.dll
2014-05-18 22:21 . 2009-12-10 18:20 206120 ----a-w- c:\windows\SysWow64\SynCtrl.dll
2014-05-18 22:21 . 2009-12-10 18:20 173352 ----a-w- c:\windows\SysWow64\SynCOM.dll
2014-05-18 22:21 . 2009-12-10 18:20 207144 ----a-w- c:\windows\system32\SynTPAPI.dll
2014-05-18 22:21 . 2009-12-10 18:20 263464 ----a-w- c:\windows\system32\SynCtrl.dll
2014-05-18 22:21 . 2009-12-10 18:20 396584 ----a-w- c:\windows\system32\SynCOM.dll
2014-05-18 22:21 . 2009-12-10 18:25 301104 ----a-w- c:\windows\system32\drivers\SynTP.sys
2014-05-18 15:19 . 2014-05-19 18:36 -------- d-----w- c:\program files\Easeware
2014-05-18 14:30 . 2014-05-18 14:58 -------- d-----w- c:\programdata\Sony
2014-05-17 09:22 . 2014-03-05 20:19 7670 --s-a-w- c:\windows\SysWow64\mncfmelu.vbe
2014-05-17 09:19 . 2014-05-17 09:19 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2014-05-17 09:10 . 2014-05-17 09:33 -------- d-----w- C:\FFOutput
2014-05-17 09:08 . 2014-05-17 09:49 -------- d-----w- c:\program files (x86)\FreeTime
2014-05-17 08:50 . 2014-05-20 11:07 -------- d-----w- c:\program files (x86)\Seznam.cz
2014-05-17 08:46 . 2014-05-17 08:46 -------- d-----w- c:\programdata\Pinnacle
2014-05-17 08:19 . 2014-05-17 08:19 -------- d-----w- c:\programdata\Xilisoft
2014-05-17 08:19 . 2014-05-17 08:19 -------- d-----w- c:\program files (x86)\Xilisoft
2014-05-16 05:59 . 2014-05-10 09:10 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{72F8E3C4-6589-4641-A7D5-371DA15EBBF8}\gapaengine.dll
2014-05-13 18:09 . 2014-05-06 04:40 23544320 ----a-w- c:\windows\system32\mshtml.dll
2014-05-13 18:09 . 2014-05-06 03:00 84992 ----a-w- c:\windows\system32\mshtmled.dll
2014-05-13 18:09 . 2014-05-06 04:17 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-05-13 18:09 . 2014-05-06 03:07 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2014-05-13 17:56 . 2014-05-13 17:56 -------- d-----w- c:\program files (x86)\MSECache
2014-05-13 14:17 . 2014-05-10 09:10 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-05-13 09:23 . 2014-05-13 09:23 -------- d-----w- C:\Spacekace
2014-05-13 09:14 . 2014-05-13 09:18 -------- d-----w- c:\programdata\WinZip
2014-05-13 08:58 . 2014-05-13 09:01 -------- d-----w- c:\program files (x86)\MozBackup
2014-05-13 07:40 . 2014-05-13 07:43 -------- d-----w- c:\programdata\WebcamMax
2014-05-13 07:39 . 2014-05-13 07:40 -------- d-----w- c:\program files (x86)\WebcamMax
2014-05-13 05:11 . 2014-05-13 05:11 -------- d-----w- C:\rsit
2014-05-12 17:47 . 2014-05-12 17:47 -------- d-----w- c:\program files\CCleaner
2014-05-12 10:29 . 2014-05-12 12:13 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2014-05-11 08:00 . 2014-05-20 12:51 119512 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-11 08:00 . 2014-05-12 10:29 -------- d-----w- c:\programdata\Malwarebytes
2014-05-10 19:45 . 2014-05-20 13:01 -------- d-----w- c:\program files\trend micro
2014-05-10 18:13 . 2014-05-10 14:46 -------- d-----w- c:\windows\Panther
2014-05-10 18:12 . 2014-05-10 08:33 -------- d-----w- c:\windows\system32\OEM
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\SysWow64\XPSViewer
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\SysWow64\drivers\cs-CZ
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\SysWow64\cs
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\system32\cs
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\cs-CZ
2014-05-10 18:11 . 2014-05-10 12:59 -------- d-----w- c:\windows\SysWow64\wbem\cs-CZ
2014-05-10 18:11 . 2014-05-10 18:11 -------- d-----w- c:\windows\system32\drivers\UMDF\cs-CZ
2014-05-10 18:11 . 2014-05-10 12:59 -------- d-----w- c:\windows\system32\wbem\cs-CZ
2014-05-10 18:11 . 2014-05-10 12:59 -------- d-----w- c:\windows\system32\drivers\cs-CZ
2014-05-10 18:07 . 2009-07-14 03:04 3584 ----a-w- c:\windows\system32\Spool\prtprocs\x64\cs-CZ\LXKPTPRC.DLL.mui
2014-05-10 17:54 . 2014-05-10 17:54 -------- d-----w- C:\Windows.old.000
2014-05-10 15:54 . 2014-05-10 15:55 -------- d-----w- c:\program files (x86)\Dell
2014-05-10 15:44 . 2014-05-13 19:55 -------- d-----w- c:\program files (x86)\MSXML 4.0
2014-05-10 14:57 . 2014-05-10 14:58 -------- d-----w- c:\programdata\Nokia
2014-05-10 14:57 . 2014-05-10 14:57 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2014-05-10 14:52 . 2014-05-10 14:52 -------- d-----w- c:\programdata\PC Suite
2014-05-10 14:52 . 2014-05-10 14:52 -------- d-----w- c:\program files (x86)\Common Files\PCSuite
2014-05-10 14:52 . 2014-05-10 14:57 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2014-05-10 14:52 . 2014-05-19 18:36 -------- d-----w- c:\program files\DIFX
2014-05-10 14:52 . 2012-10-17 12:53 26112 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2014-05-10 14:52 . 2014-05-19 18:35 -------- dc----w- c:\windows\system32\DRVSTORE
2014-05-10 14:51 . 2013-01-23 08:31 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll
2014-05-10 14:51 . 2014-05-13 19:55 -------- d-----w- c:\program files (x86)\Nokia
2014-05-10 14:50 . 2014-05-13 19:53 -------- d-----w- c:\programdata\Installations
2014-05-10 14:36 . 2014-05-10 14:36 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2014-05-10 14:23 . 2014-01-09 02:22 5694464 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-05-10 14:23 . 2014-01-03 22:44 6574592 ----a-w- c:\windows\system32\mstscax.dll
2014-05-10 14:05 . 2014-03-06 08:15 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-05-10 13:52 . 2014-05-10 15:56 -------- d-----w- c:\program files\Microsoft Silverlight
2014-05-10 13:52 . 2014-05-10 15:56 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2014-05-10 13:51 . 2012-08-23 13:24 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2014-05-10 13:51 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2014-05-10 13:51 . 2012-08-23 14:08 30208 ----a-w- c:\windows\system32\drivers\TsUsbGD.sys
2014-05-10 13:51 . 2012-08-23 11:12 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2014-05-10 13:51 . 2012-08-23 14:13 243200 ----a-w- c:\windows\system32\rdpudd.dll
2014-05-10 13:51 . 2012-08-23 10:51 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2014-05-10 13:51 . 2012-08-23 09:51 3174912 ----a-w- c:\windows\system32\rdpcorets.dll
2014-05-10 13:46 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-05-10 13:46 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-05-10 13:46 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll
2014-05-10 13:46 . 2012-05-04 09:59 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2014-05-10 13:45 . 2014-04-24 18:00 127488 ----a-w- c:\windows\system32\ff_vfw.dll
2014-05-10 13:45 . 2013-03-17 17:22 3554304 ----a-w- c:\windows\system32\x264vfw64.dll
2014-05-10 13:45 . 2013-03-17 16:21 3649536 ----a-w- c:\windows\SysWow64\x264vfw.dll
2014-05-10 13:45 . 2011-12-07 17:37 148992 ----a-w- c:\windows\system32\lagarith.dll
2014-05-10 13:45 . 2011-12-07 17:32 216064 ----a-w- c:\windows\SysWow64\lagarith.dll
2014-05-10 13:44 . 2011-06-24 14:45 258560 ----a-w- c:\windows\system32\xvidvfw.dll
2014-05-10 13:44 . 2011-06-24 14:44 243200 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2014-05-10 13:44 . 2011-06-24 14:31 703488 ----a-w- c:\windows\system32\xvidcore.dll
2014-05-10 13:44 . 2011-06-24 14:28 650752 ----a-w- c:\windows\SysWow64\xvidcore.dll
2014-05-10 13:44 . 2012-07-21 10:55 180736 ----a-w- c:\windows\system32\ac3acm.acm
2014-05-10 13:44 . 2012-07-21 10:54 122880 ----a-w- c:\windows\SysWow64\ac3acm.acm
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-10 12:00 . 2014-05-10 12:00 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2014-05-10 12:00 . 2014-05-10 12:00 243200 ----a-w- c:\windows\system32\webcheck.dll
2014-03-11 07:52 . 2014-03-11 07:52 133928 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2014-03-04 09:17 . 2014-05-13 18:01 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2014-03-04 09:17 . 2014-05-10 09:54 44032 ----a-w- c:\windows\apppatch\acwow64.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.3;AODDriver4.3;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 WCMVCAM;WebcamMax, WDM Video Capture;c:\windows\system32\DRIVERS\wcmvcam64.sys;c:\windows\SYSNATIVE\DRIVERS\wcmvcam64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys;c:\windows\SYSNATIVE\DRIVERS\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys;c:\windows\SYSNATIVE\DRIVERS\LEqdUsb.Sys [x]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys;c:\windows\SYSNATIVE\DRIVERS\LHidEqd.Sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMPROTECTOR
*NewlyCreated* - MBAMWEBACCESSCONTROL
*Deregistered* - MBAMWebAccessControl
.
Obsah adresáře 'Naplánované úlohy'
.
2014-05-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-10 12:03]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"="c:\program files\Dell\DW WLAN Card\WLTRAY.exe" [2014-05-10 6301696]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 1271072]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.dell.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~2\Office10\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\hn4xlcky.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage - seznam.cz
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} - (no file)
BHO-{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} - (no file)
.
.
.
Celkový čas: 2014-05-20 16:48:48
ComboFix-quarantined-files.txt 2014-05-20 14:48
.
Před spuštěním: Volných bajtů: 550 342 721 536
Po spuštění: Volných bajtů: 550 095 077 376
.
- - End Of File - - 84D002BCBB5A56948CDE09A124C0028F
A36C5E4F47E84449FF07ED3517B43A31
Re: Prosím o kontrolu...Pc je divné,seká se atd...
Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
KillAll::
File::
c:\windows\SysWow64\mncfmelu.vbe
C:\Windows\inf\mncchxb.vbe
C:\Windows\system32\msstp.vbe
Folder::
C:\Program Files (x86)\Allin1Convert_8h
Registry::
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncchxbSrv]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncfmeluSrv]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSStp]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Allin1Convert EPM Support]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Allin1Convert Home Page Guard 64 bit]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Allin1Convert Search Scope Monitor]
Reboot::Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradkuPokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
jindra.paryzek
- Návštěvník
- Příspěvky: 469
- Registrován: 04 led 2007 12:37
- Bydliště: Louny
Re: Prosím o kontrolu...Pc je divné,seká se atd...
Dobrý den.Tak bohužel dnes pc vůbec nenajelo,ani v nouzovém režimu,nešlo obnovit ani za zálohy.Musel jsem provést reinstal a tak posílám log z RSit
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jindra M 5010 at 2014-05-21 10:48:20
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 511 GB (84%) free of 610 GB
Total RAM: 4092 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:48:26, on 21.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Jindra M 5010.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5125 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE" "C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe"
C:\Windows\system32\WLANExt.exe 4401968
C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
\??\C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
atieclxx
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\Jindra M 5010\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\n8cmin6u.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
C:\Users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\n8cmin6u.default\extensions\
toolbar@centrumholdings.com
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"=C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [2014-05-21 6301696]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-05-21 19:31:00 ----D---- C:\Windows\Panther
2014-05-21 19:30:28 ----RA---- C:\Windows\csup.txt
2014-05-21 19:30:28 ----D---- C:\Windows\system32\OEM
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfi005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfh005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfd005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfc005.dat
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\XPSViewer
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\cs
2014-05-21 19:28:51 ----D---- C:\Windows\system32\cs
2014-05-21 19:28:51 ----D---- C:\Windows\cs-CZ
2014-05-21 19:28:50 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-05-21 19:12:51 ----D---- C:\Windows.old
2014-05-21 10:48:20 ----D---- C:\Program Files\trend micro
2014-05-21 10:24:41 ----D---- C:\Program Files (x86)\MozBackup
2014-05-21 10:23:54 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-05-21 10:23:54 ----A---- C:\Windows\system32\rdpcore.dll
2014-05-21 10:23:54 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-05-21 10:23:54 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-05-21 10:23:33 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Macromedia
2014-05-21 10:23:32 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Adobe
2014-05-21 10:23:18 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-21 10:23:16 ----A---- C:\Windows\ODBC.INI
2014-05-21 10:23:15 ----D---- C:\Windows\SYSWOW64\Macromed
2014-05-21 10:23:12 ----D---- C:\Windows\system32\Macromed
2014-05-21 10:21:50 ----D---- C:\Windows\Msagent
2014-05-21 10:21:46 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-21 10:16:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-21 10:15:42 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Mozilla
2014-05-21 10:15:35 ----D---- C:\ProgramData\Mozilla
2014-05-21 10:15:35 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wups2.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wucltux.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wuauclt.exe
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wups.dll
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wudriver.dll
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wuapi.dll
2014-05-21 10:13:55 ----A---- C:\Windows\system32\wuwebv.dll
2014-05-21 10:13:55 ----A---- C:\Windows\system32\wuapp.exe
2014-05-21 10:13:20 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-05-21 10:13:10 ----D---- C:\Program Files\Microsoft Security Client
2014-05-21 10:08:24 ----D---- C:\Program Files (x86)\Cisco
2014-05-21 10:06:58 ----SHD---- C:\Windows\Installer
2014-05-21 10:06:21 ----A---- C:\Windows\system32\BCMLogon.dll
2014-05-21 10:06:07 ----A---- C:\Windows\system32\bcmwlrc.dll
2014-05-21 10:06:06 ----A---- C:\Windows\SYSWOW64\vcredist_x64.exe
2014-05-21 10:06:06 ----A---- C:\Windows\SYSWOW64\vcredist_x64.bat
2014-05-21 10:06:06 ----A---- C:\Windows\system32\wltrynt.dll
2014-05-21 10:06:06 ----A---- C:\Windows\system32\drivers\npf.sys
2014-05-21 10:06:06 ----A---- C:\Windows\system32\drivers\bcm42rly.sys
2014-05-21 10:06:06 ----A---- C:\Windows\system32\bcmttls.dll
2014-05-21 10:06:05 ----A---- C:\Windows\system32\vcredist_x64.exe
2014-05-21 10:06:05 ----A---- C:\Windows\system32\vcredist_x64.bat
2014-05-21 10:06:03 ----D---- C:\Program Files\Dell
2014-05-21 10:06:03 ----A---- C:\Windows\system32\drivers\BCMWL664.SYS
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmwlcoi.dll
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmihvui64.dll
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmihvsrv64.dll
2014-05-21 09:53:58 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Identities
2014-05-21 09:53:33 ----SD---- C:\Users\Jindra M 5010\AppData\Roaming\Microsoft
2014-05-21 09:53:33 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Media Center Programs
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Šablony
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Plocha
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Oblíbené položky
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Nabídka Start
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Dokumenty
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Data aplikací
2014-05-21 09:34:55 ----D---- C:\Windows\SoftwareDistribution
2014-05-21 09:32:17 ----D---- C:\Windows\Prefetch
2014-05-20 16:48:50 ----A---- C:\ComboFix.txt
2014-05-20 16:31:44 ----D---- C:\Qoobox
2014-05-19 20:38:04 ----D---- C:\AdwCleaner
2014-05-19 00:23:51 ----D---- C:\AMD
2014-05-17 11:10:02 ----D---- C:\FFOutput
2014-05-13 11:23:28 ----D---- C:\Spacekace
2014-05-13 07:11:08 ----D---- C:\rsit
2014-05-10 19:54:06 ----D---- C:\Windows.old.000
======List of files/folders modified in the last 1 month======
2014-05-21 19:30:54 ----RASH---- C:\BOOTSECT.BAK
2014-05-21 19:30:52 ----SHD---- C:\Boot
2014-05-21 19:30:28 ----D---- C:\Windows\system32\Recovery
2014-05-21 19:30:28 ----D---- C:\Windows\system32\oobe
2014-05-21 19:30:28 ----D---- C:\Windows\Setup
2014-05-21 19:30:28 ----D---- C:\Drivers
2014-05-21 19:28:52 ----D---- C:\Windows\servicing
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Sidebar
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Photo Viewer
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Media Player
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Mail
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Journal
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Defender
2014-05-21 19:28:52 ----D---- C:\Program Files\Internet Explorer
2014-05-21 19:28:52 ----D---- C:\Program Files\DVD Maker
2014-05-21 19:28:52 ----D---- C:\Program Files\Common Files\System
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Mail
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\winrm
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\WCN
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\wbem
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\slmgr
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\MUI
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\migwiz
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\migration
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\drivers
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\Dism
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\com
2014-05-21 19:28:51 ----D---- C:\Windows\system32\winrm
2014-05-21 19:28:51 ----D---- C:\Windows\system32\slmgr
2014-05-21 19:28:51 ----D---- C:\Windows\system32\migwiz
2014-05-21 19:28:51 ----D---- C:\Windows\system32\migration
2014-05-21 19:28:51 ----D---- C:\Windows\system32\Boot
2014-05-21 19:28:51 ----D---- C:\Windows\PolicyDefinitions
2014-05-21 19:28:51 ----D---- C:\Windows\IME
2014-05-21 19:28:51 ----D---- C:\Windows\ehome
2014-05-21 19:28:50 ----D---- C:\Windows\system32\WCN
2014-05-21 19:28:50 ----D---- C:\Windows\system32\wbem
2014-05-21 19:28:50 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-05-21 19:28:50 ----D---- C:\Windows\system32\MUI
2014-05-21 19:28:50 ----D---- C:\Windows\system32\drivers\UMDF
2014-05-21 19:28:50 ----D---- C:\Windows\system32\Dism
2014-05-21 19:28:50 ----D---- C:\Windows\system32\com
2014-05-21 19:28:50 ----D---- C:\Windows\AppPatch
2014-05-21 10:48:20 ----RD---- C:\Program Files
2014-05-21 10:48:18 ----D---- C:\Windows\system32\catroot
2014-05-21 10:48:06 ----D---- C:\Windows\system32\catroot2
2014-05-21 10:47:58 ----D---- C:\Windows\Temp
2014-05-21 10:47:56 ----D---- C:\Windows\winsxs
2014-05-21 10:37:37 ----D---- C:\Windows\System32
2014-05-21 10:37:37 ----D---- C:\Windows\inf
2014-05-21 10:37:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-21 10:33:44 ----D---- C:\Config.Msi
2014-05-21 10:33:42 ----RSD---- C:\Windows\Fonts
2014-05-21 10:32:18 ----D---- C:\Windows
2014-05-21 10:32:02 ----D---- C:\Windows\system32\config
2014-05-21 10:30:36 ----D---- C:\Windows\SysWOW64
2014-05-21 10:30:36 ----D---- C:\Windows\system32\en-US
2014-05-21 10:30:36 ----D---- C:\Windows\system32\drivers
2014-05-21 10:30:36 ----D---- C:\Windows\system32\cs-CZ
2014-05-21 10:24:41 ----RD---- C:\Program Files (x86)
2014-05-21 10:24:40 ----D---- C:\Windows\system32\DriverStore
2014-05-21 10:24:02 ----SHD---- C:\System Volume Information
2014-05-21 10:23:20 ----D---- C:\Windows\Tasks
2014-05-21 10:23:20 ----D---- C:\Windows\system32\Tasks
2014-05-21 10:23:00 ----A---- C:\Windows\win.ini
2014-05-21 10:22:34 ----D---- C:\Windows\ShellNew
2014-05-21 10:22:30 ----D---- C:\Program Files (x86)\Common Files
2014-05-21 10:21:50 ----D---- C:\Windows\Help
2014-05-21 10:21:46 ----SD---- C:\ProgramData\Microsoft
2014-05-21 10:20:28 ----D---- C:\Windows\system
2014-05-21 10:15:35 ----HD---- C:\ProgramData
2014-05-21 10:13:08 ----D---- C:\Windows\system32\restore
2014-05-21 10:08:12 ----RSD---- C:\Windows\assembly
2014-05-21 10:07:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-21 10:06:11 ----D---- C:\Windows\system32\zh-TW
2014-05-21 10:06:11 ----D---- C:\Windows\system32\zh-HK
2014-05-21 10:06:11 ----D---- C:\Windows\system32\zh-CN
2014-05-21 10:06:11 ----D---- C:\Windows\system32\tr-TR
2014-05-21 10:06:11 ----D---- C:\Windows\system32\th-TH
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sv-SE
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sl-SI
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sk-SK
2014-05-21 10:06:10 ----D---- C:\Windows\system32\ru-RU
2014-05-21 10:06:10 ----D---- C:\Windows\system32\ro-RO
2014-05-21 10:06:10 ----D---- C:\Windows\system32\pt-PT
2014-05-21 10:06:10 ----D---- C:\Windows\system32\pt-BR
2014-05-21 10:06:10 ----D---- C:\Windows\system32\pl-PL
2014-05-21 10:06:10 ----D---- C:\Windows\system32\nl-NL
2014-05-21 10:06:10 ----D---- C:\Windows\system32\nb-NO
2014-05-21 10:06:10 ----D---- C:\Windows\system32\lv-LV
2014-05-21 10:06:10 ----D---- C:\Windows\system32\lt-LT
2014-05-21 10:06:09 ----D---- C:\Windows\system32\ko-KR
2014-05-21 10:06:09 ----D---- C:\Windows\system32\ja-JP
2014-05-21 10:06:09 ----D---- C:\Windows\system32\it-IT
2014-05-21 10:06:09 ----D---- C:\Windows\system32\hu-HU
2014-05-21 10:06:09 ----D---- C:\Windows\system32\hr-HR
2014-05-21 10:06:09 ----D---- C:\Windows\system32\he-IL
2014-05-21 10:06:09 ----D---- C:\Windows\system32\fr-FR
2014-05-21 10:06:08 ----D---- C:\Windows\system32\fi-FI
2014-05-21 10:06:08 ----D---- C:\Windows\system32\et-EE
2014-05-21 10:06:08 ----D---- C:\Windows\system32\es-ES
2014-05-21 10:06:08 ----D---- C:\Windows\system32\el-GR
2014-05-21 10:06:08 ----D---- C:\Windows\system32\de-DE
2014-05-21 10:06:07 ----D---- C:\Windows\system32\da-DK
2014-05-21 10:06:07 ----D---- C:\Windows\system32\bg-BG
2014-05-21 10:06:07 ----D---- C:\Windows\system32\ar-SA
2014-05-21 09:53:59 ----D---- C:\Windows\rescache
2014-05-21 09:53:51 ----SHD---- C:\$Recycle.Bin
2014-05-21 09:53:32 ----RD---- C:\Users
2014-05-21 09:53:16 ----D---- C:\Recovery
2014-05-21 09:53:16 ----D---- C:\Program Files\Windows NT
2014-05-21 09:53:06 ----D---- C:\Windows\debug
2014-05-21 09:51:54 ----D---- C:\Windows\Logs
2014-05-21 09:41:24 ----D---- C:\Windows\system32\CodeIntegrity
2014-05-21 09:39:22 ----D---- C:\Windows\Microsoft.NET
2014-05-21 09:37:04 ----D---- C:\Windows\system32\sysprep
2014-05-19 00:21:37 ----D---- C:\dell
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2014-05-21 22592]
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\Windows\system32\DRIVERS\bcmwl664.sys [2014-05-21 4716608]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2010-09-30 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2010-09-30 180736]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 wltrysvc;DW WLAN Tray Service; C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [2014-05-21 48128]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-21 257712]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-21 119408]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jindra M 5010 at 2014-05-21 10:48:20
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 511 GB (84%) free of 610 GB
Total RAM: 4092 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:48:26, on 21.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Jindra M 5010.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5125 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE" "C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe"
C:\Windows\system32\WLANExt.exe 4401968
C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
\??\C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
atieclxx
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\Jindra M 5010\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\n8cmin6u.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
C:\Users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\n8cmin6u.default\extensions\
toolbar@centrumholdings.com
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"=C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [2014-05-21 6301696]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-05-21 19:31:00 ----D---- C:\Windows\Panther
2014-05-21 19:30:28 ----RA---- C:\Windows\csup.txt
2014-05-21 19:30:28 ----D---- C:\Windows\system32\OEM
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfi005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfh005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfd005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfc005.dat
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\XPSViewer
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\cs
2014-05-21 19:28:51 ----D---- C:\Windows\system32\cs
2014-05-21 19:28:51 ----D---- C:\Windows\cs-CZ
2014-05-21 19:28:50 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-05-21 19:12:51 ----D---- C:\Windows.old
2014-05-21 10:48:20 ----D---- C:\Program Files\trend micro
2014-05-21 10:24:41 ----D---- C:\Program Files (x86)\MozBackup
2014-05-21 10:23:54 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-05-21 10:23:54 ----A---- C:\Windows\system32\rdpcore.dll
2014-05-21 10:23:54 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-05-21 10:23:54 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-05-21 10:23:33 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Macromedia
2014-05-21 10:23:32 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Adobe
2014-05-21 10:23:18 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-21 10:23:16 ----A---- C:\Windows\ODBC.INI
2014-05-21 10:23:15 ----D---- C:\Windows\SYSWOW64\Macromed
2014-05-21 10:23:12 ----D---- C:\Windows\system32\Macromed
2014-05-21 10:21:50 ----D---- C:\Windows\Msagent
2014-05-21 10:21:46 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-21 10:16:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-21 10:15:42 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Mozilla
2014-05-21 10:15:35 ----D---- C:\ProgramData\Mozilla
2014-05-21 10:15:35 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wups2.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wucltux.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wuauclt.exe
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wups.dll
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wudriver.dll
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wuapi.dll
2014-05-21 10:13:55 ----A---- C:\Windows\system32\wuwebv.dll
2014-05-21 10:13:55 ----A---- C:\Windows\system32\wuapp.exe
2014-05-21 10:13:20 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-05-21 10:13:10 ----D---- C:\Program Files\Microsoft Security Client
2014-05-21 10:08:24 ----D---- C:\Program Files (x86)\Cisco
2014-05-21 10:06:58 ----SHD---- C:\Windows\Installer
2014-05-21 10:06:21 ----A---- C:\Windows\system32\BCMLogon.dll
2014-05-21 10:06:07 ----A---- C:\Windows\system32\bcmwlrc.dll
2014-05-21 10:06:06 ----A---- C:\Windows\SYSWOW64\vcredist_x64.exe
2014-05-21 10:06:06 ----A---- C:\Windows\SYSWOW64\vcredist_x64.bat
2014-05-21 10:06:06 ----A---- C:\Windows\system32\wltrynt.dll
2014-05-21 10:06:06 ----A---- C:\Windows\system32\drivers\npf.sys
2014-05-21 10:06:06 ----A---- C:\Windows\system32\drivers\bcm42rly.sys
2014-05-21 10:06:06 ----A---- C:\Windows\system32\bcmttls.dll
2014-05-21 10:06:05 ----A---- C:\Windows\system32\vcredist_x64.exe
2014-05-21 10:06:05 ----A---- C:\Windows\system32\vcredist_x64.bat
2014-05-21 10:06:03 ----D---- C:\Program Files\Dell
2014-05-21 10:06:03 ----A---- C:\Windows\system32\drivers\BCMWL664.SYS
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmwlcoi.dll
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmihvui64.dll
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmihvsrv64.dll
2014-05-21 09:53:58 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Identities
2014-05-21 09:53:33 ----SD---- C:\Users\Jindra M 5010\AppData\Roaming\Microsoft
2014-05-21 09:53:33 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Media Center Programs
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Šablony
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Plocha
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Oblíbené položky
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Nabídka Start
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Dokumenty
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Data aplikací
2014-05-21 09:34:55 ----D---- C:\Windows\SoftwareDistribution
2014-05-21 09:32:17 ----D---- C:\Windows\Prefetch
2014-05-20 16:48:50 ----A---- C:\ComboFix.txt
2014-05-20 16:31:44 ----D---- C:\Qoobox
2014-05-19 20:38:04 ----D---- C:\AdwCleaner
2014-05-19 00:23:51 ----D---- C:\AMD
2014-05-17 11:10:02 ----D---- C:\FFOutput
2014-05-13 11:23:28 ----D---- C:\Spacekace
2014-05-13 07:11:08 ----D---- C:\rsit
2014-05-10 19:54:06 ----D---- C:\Windows.old.000
======List of files/folders modified in the last 1 month======
2014-05-21 19:30:54 ----RASH---- C:\BOOTSECT.BAK
2014-05-21 19:30:52 ----SHD---- C:\Boot
2014-05-21 19:30:28 ----D---- C:\Windows\system32\Recovery
2014-05-21 19:30:28 ----D---- C:\Windows\system32\oobe
2014-05-21 19:30:28 ----D---- C:\Windows\Setup
2014-05-21 19:30:28 ----D---- C:\Drivers
2014-05-21 19:28:52 ----D---- C:\Windows\servicing
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Sidebar
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Photo Viewer
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Media Player
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Mail
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Journal
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Defender
2014-05-21 19:28:52 ----D---- C:\Program Files\Internet Explorer
2014-05-21 19:28:52 ----D---- C:\Program Files\DVD Maker
2014-05-21 19:28:52 ----D---- C:\Program Files\Common Files\System
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Mail
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\winrm
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\WCN
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\wbem
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\slmgr
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\MUI
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\migwiz
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\migration
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\drivers
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\Dism
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\com
2014-05-21 19:28:51 ----D---- C:\Windows\system32\winrm
2014-05-21 19:28:51 ----D---- C:\Windows\system32\slmgr
2014-05-21 19:28:51 ----D---- C:\Windows\system32\migwiz
2014-05-21 19:28:51 ----D---- C:\Windows\system32\migration
2014-05-21 19:28:51 ----D---- C:\Windows\system32\Boot
2014-05-21 19:28:51 ----D---- C:\Windows\PolicyDefinitions
2014-05-21 19:28:51 ----D---- C:\Windows\IME
2014-05-21 19:28:51 ----D---- C:\Windows\ehome
2014-05-21 19:28:50 ----D---- C:\Windows\system32\WCN
2014-05-21 19:28:50 ----D---- C:\Windows\system32\wbem
2014-05-21 19:28:50 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-05-21 19:28:50 ----D---- C:\Windows\system32\MUI
2014-05-21 19:28:50 ----D---- C:\Windows\system32\drivers\UMDF
2014-05-21 19:28:50 ----D---- C:\Windows\system32\Dism
2014-05-21 19:28:50 ----D---- C:\Windows\system32\com
2014-05-21 19:28:50 ----D---- C:\Windows\AppPatch
2014-05-21 10:48:20 ----RD---- C:\Program Files
2014-05-21 10:48:18 ----D---- C:\Windows\system32\catroot
2014-05-21 10:48:06 ----D---- C:\Windows\system32\catroot2
2014-05-21 10:47:58 ----D---- C:\Windows\Temp
2014-05-21 10:47:56 ----D---- C:\Windows\winsxs
2014-05-21 10:37:37 ----D---- C:\Windows\System32
2014-05-21 10:37:37 ----D---- C:\Windows\inf
2014-05-21 10:37:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-21 10:33:44 ----D---- C:\Config.Msi
2014-05-21 10:33:42 ----RSD---- C:\Windows\Fonts
2014-05-21 10:32:18 ----D---- C:\Windows
2014-05-21 10:32:02 ----D---- C:\Windows\system32\config
2014-05-21 10:30:36 ----D---- C:\Windows\SysWOW64
2014-05-21 10:30:36 ----D---- C:\Windows\system32\en-US
2014-05-21 10:30:36 ----D---- C:\Windows\system32\drivers
2014-05-21 10:30:36 ----D---- C:\Windows\system32\cs-CZ
2014-05-21 10:24:41 ----RD---- C:\Program Files (x86)
2014-05-21 10:24:40 ----D---- C:\Windows\system32\DriverStore
2014-05-21 10:24:02 ----SHD---- C:\System Volume Information
2014-05-21 10:23:20 ----D---- C:\Windows\Tasks
2014-05-21 10:23:20 ----D---- C:\Windows\system32\Tasks
2014-05-21 10:23:00 ----A---- C:\Windows\win.ini
2014-05-21 10:22:34 ----D---- C:\Windows\ShellNew
2014-05-21 10:22:30 ----D---- C:\Program Files (x86)\Common Files
2014-05-21 10:21:50 ----D---- C:\Windows\Help
2014-05-21 10:21:46 ----SD---- C:\ProgramData\Microsoft
2014-05-21 10:20:28 ----D---- C:\Windows\system
2014-05-21 10:15:35 ----HD---- C:\ProgramData
2014-05-21 10:13:08 ----D---- C:\Windows\system32\restore
2014-05-21 10:08:12 ----RSD---- C:\Windows\assembly
2014-05-21 10:07:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-21 10:06:11 ----D---- C:\Windows\system32\zh-TW
2014-05-21 10:06:11 ----D---- C:\Windows\system32\zh-HK
2014-05-21 10:06:11 ----D---- C:\Windows\system32\zh-CN
2014-05-21 10:06:11 ----D---- C:\Windows\system32\tr-TR
2014-05-21 10:06:11 ----D---- C:\Windows\system32\th-TH
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sv-SE
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sl-SI
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sk-SK
2014-05-21 10:06:10 ----D---- C:\Windows\system32\ru-RU
2014-05-21 10:06:10 ----D---- C:\Windows\system32\ro-RO
2014-05-21 10:06:10 ----D---- C:\Windows\system32\pt-PT
2014-05-21 10:06:10 ----D---- C:\Windows\system32\pt-BR
2014-05-21 10:06:10 ----D---- C:\Windows\system32\pl-PL
2014-05-21 10:06:10 ----D---- C:\Windows\system32\nl-NL
2014-05-21 10:06:10 ----D---- C:\Windows\system32\nb-NO
2014-05-21 10:06:10 ----D---- C:\Windows\system32\lv-LV
2014-05-21 10:06:10 ----D---- C:\Windows\system32\lt-LT
2014-05-21 10:06:09 ----D---- C:\Windows\system32\ko-KR
2014-05-21 10:06:09 ----D---- C:\Windows\system32\ja-JP
2014-05-21 10:06:09 ----D---- C:\Windows\system32\it-IT
2014-05-21 10:06:09 ----D---- C:\Windows\system32\hu-HU
2014-05-21 10:06:09 ----D---- C:\Windows\system32\hr-HR
2014-05-21 10:06:09 ----D---- C:\Windows\system32\he-IL
2014-05-21 10:06:09 ----D---- C:\Windows\system32\fr-FR
2014-05-21 10:06:08 ----D---- C:\Windows\system32\fi-FI
2014-05-21 10:06:08 ----D---- C:\Windows\system32\et-EE
2014-05-21 10:06:08 ----D---- C:\Windows\system32\es-ES
2014-05-21 10:06:08 ----D---- C:\Windows\system32\el-GR
2014-05-21 10:06:08 ----D---- C:\Windows\system32\de-DE
2014-05-21 10:06:07 ----D---- C:\Windows\system32\da-DK
2014-05-21 10:06:07 ----D---- C:\Windows\system32\bg-BG
2014-05-21 10:06:07 ----D---- C:\Windows\system32\ar-SA
2014-05-21 09:53:59 ----D---- C:\Windows\rescache
2014-05-21 09:53:51 ----SHD---- C:\$Recycle.Bin
2014-05-21 09:53:32 ----RD---- C:\Users
2014-05-21 09:53:16 ----D---- C:\Recovery
2014-05-21 09:53:16 ----D---- C:\Program Files\Windows NT
2014-05-21 09:53:06 ----D---- C:\Windows\debug
2014-05-21 09:51:54 ----D---- C:\Windows\Logs
2014-05-21 09:41:24 ----D---- C:\Windows\system32\CodeIntegrity
2014-05-21 09:39:22 ----D---- C:\Windows\Microsoft.NET
2014-05-21 09:37:04 ----D---- C:\Windows\system32\sysprep
2014-05-19 00:21:37 ----D---- C:\dell
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2014-05-21 22592]
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\Windows\system32\DRIVERS\bcmwl664.sys [2014-05-21 4716608]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2010-09-30 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2010-09-30 180736]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 wltrysvc;DW WLAN Tray Service; C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [2014-05-21 48128]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-21 257712]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-21 119408]
-----------------EOF-----------------
Re: Prosím o kontrolu...Pc je divné,seká se atd...
No tak po reinstalu by to melo byt ciste 
Je ted nejaky problem?
Je ted nejaky problem?
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
jindra.paryzek
- Návštěvník
- Příspěvky: 469
- Registrován: 04 led 2007 12:37
- Bydliště: Louny
Re: Prosím o kontrolu...Pc je divné,seká se atd...
Minule jsem dělal reinastal také a když jsem dodělal veškeré aktualizace,ze stahuj.cz jsem stáhl microsoft essentials,ccleaner a ddefragler,vše jsem na konec ccleaner vyčistil,dal jsem log sem a bylo mi zde řečeno,že je to pěkně zadělané,tak nevím 
-
jindra.paryzek
- Návštěvník
- Příspěvky: 469
- Registrován: 04 led 2007 12:37
- Bydliště: Louny
Re: Prosím o kontrolu...Pc je divné,seká se atd...
Vše nahráno,poprosím Vás jen o kontrolu,zda-li se mi zase nepovedlo něco sosnout... 
Moc děkuji
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jindra M 5010 at 2014-05-21 19:22:12
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 525 GB (86%) free of 610 GB
Total RAM: 4092 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:22:15, on 21.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PcSync2.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\trend micro\Jindra M 5010.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [NSU_agent] "C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe"
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 6272 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE" "C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe"
C:\Windows\system32\WLANExt.exe 2092208
\??\C:\Windows\system32\conhost.exe "1455931478-103454450-18256600461641415349-14771683510308249829663787441909315860
C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
atieclxx
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3252.15d2e250.1811965411 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3252 "\\.\pipe\gecko-crash-server-pipe.3252" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe" --proxy-stub-channel=Flash2792.71256010.2858 --host-broker-channel=Flash2792.71256010.19454 --host-pid=2792 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe" --channel=2348.0030F1BC.1039361858 --proxy-stub-channel=Flash2792.71256010.2858 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll" --host-npapi-version=27 --type=renderer
"taskhost.exe"
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray -install -startgcw
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PcSync2.exe" /NoDialog
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{266C0069-A90F-4268-ACE9-290DAD6ACBBC}
{820D084A-2D58-4D11-8C40-2C8F8AD6B69F}
"C:\Program Files (x86)\Common Files\Nokia\MPAPI\MPAPI3s.exe" -Embedding
C:\Windows\system32\svchost.exe -k imgsvc
{83CC6A3B-F39B-4A6D-8755-ED33B7C904E8}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\Jindra M 5010\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\n8cmin6u.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
C:\Users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\n8cmin6u.default\extensions\
toolbar@centrumholdings.com
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"=C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [2014-05-21 6301696]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PC Suite Tray"=C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2012-06-26 1516632]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"NSU_agent"=C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe [2012-02-28 190768]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-05-21 19:31:00 ----D---- C:\Windows\Panther
2014-05-21 19:30:28 ----RA---- C:\Windows\csup.txt
2014-05-21 19:30:28 ----D---- C:\Windows\system32\OEM
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfi005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfh005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfd005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfc005.dat
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\XPSViewer
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\cs
2014-05-21 19:28:51 ----D---- C:\Windows\system32\cs
2014-05-21 19:28:51 ----D---- C:\Windows\cs-CZ
2014-05-21 19:28:50 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-05-21 19:12:51 ----D---- C:\Windows.old
2014-05-21 18:49:17 ----D---- C:\Program Files (x86)\MSXML 4.0
2014-05-21 18:41:53 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\PC Suite
2014-05-21 18:41:53 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Nokia
2014-05-21 18:41:53 ----D---- C:\ProgramData\PC Suite
2014-05-21 18:41:18 ----D---- C:\Program Files\DIFX
2014-05-21 18:41:17 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2014-05-21 18:41:14 ----DC---- C:\Windows\system32\DRVSTORE
2014-05-21 18:41:05 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2014-05-21 18:40:37 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2014-05-21 18:40:36 ----D---- C:\Program Files (x86)\Nokia
2014-05-21 18:39:12 ----D---- C:\ProgramData\Installations
2014-05-21 16:43:34 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\GHISLER
2014-05-21 16:40:27 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-05-21 16:38:39 ----D---- C:\Program Files\KONICA MINOLTA
2014-05-21 16:14:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-21 14:29:00 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-05-21 14:29:00 ----A---- C:\Windows\system32\mstscax.dll
2014-05-21 14:15:34 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-21 14:15:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-21 14:15:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-21 14:15:31 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-05-21 14:15:30 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-05-21 14:15:30 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-05-21 14:15:30 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-05-21 14:15:30 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-05-21 14:15:30 ----A---- C:\Windows\system32\wksprtPS.dll
2014-05-21 14:15:30 ----A---- C:\Windows\system32\wksprt.exe
2014-05-21 14:15:30 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-05-21 14:15:30 ----A---- C:\Windows\system32\tsgqec.dll
2014-05-21 14:15:30 ----A---- C:\Windows\system32\mstsc.exe
2014-05-21 14:15:30 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-05-21 14:15:29 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-05-21 14:15:29 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-05-21 14:15:10 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-21 14:15:10 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-21 14:15:10 ----A---- C:\Windows\system32\mshtml.dll
2014-05-21 14:15:09 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-21 14:14:01 ----D---- C:\Program Files\Microsoft Silverlight
2014-05-21 14:14:01 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-05-21 14:10:42 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-21 14:10:38 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2014-05-21 14:10:38 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-05-21 14:10:36 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2014-05-21 14:10:36 ----A---- C:\Windows\system32\rdpudd.dll
2014-05-21 14:10:36 ----A---- C:\Windows\system32\rdpendp_winip.dll
2014-05-21 14:10:35 ----A---- C:\Windows\system32\rdpcorets.dll
2014-05-21 14:03:10 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-05-21 14:03:09 ----A---- C:\Windows\system32\qdvd.dll
2014-05-21 14:02:59 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-05-21 14:02:59 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-05-21 14:02:56 ----A---- C:\Windows\explorer.exe
2014-05-21 14:02:55 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-05-21 14:02:55 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-05-21 14:02:55 ----A---- C:\Windows\system32\WMPhoto.dll
2014-05-21 14:02:53 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-05-21 14:02:53 ----A---- C:\Windows\system32\d3d10warp.dll
2014-05-21 14:02:52 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-05-21 14:02:52 ----A---- C:\Windows\system32\d2d1.dll
2014-05-21 14:02:51 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-05-21 14:02:51 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-05-21 14:02:45 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2014-05-21 14:02:45 ----A---- C:\Windows\SYSWOW64\esent.dll
2014-05-21 14:02:45 ----A---- C:\Windows\system32\fsutil.exe
2014-05-21 14:02:45 ----A---- C:\Windows\system32\esent.dll
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\nvstor.sys
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\nvraid.sys
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\amdxata.sys
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\amdsata.sys
2014-05-21 14:00:30 ----A---- C:\Windows\system32\spoolsv.exe
2014-05-21 14:00:30 ----A---- C:\Windows\splwow64.exe
2014-05-21 13:48:08 ----D---- C:\Windows\SYSWOW64\Wat
2014-05-21 13:48:07 ----D---- C:\Windows\system32\Wat
2014-05-21 13:32:34 ----SD---- C:\Windows\system32\CompatTel
2014-05-21 13:17:47 ----A---- C:\Windows\system32\wmploc.DLL
2014-05-21 13:17:46 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-05-21 13:17:46 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-05-21 13:17:43 ----A---- C:\Windows\system32\wmp.dll
2014-05-21 13:03:06 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-05-21 13:00:54 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-21 13:00:49 ----D---- C:\Windows\Migration
2014-05-21 12:51:35 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-05-21 12:42:47 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-05-21 12:42:43 ----A---- C:\Windows\system32\elshyph.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\url.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-05-21 12:42:41 ----A---- C:\Windows\system32\jsIntl.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\wininet.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\urlmon.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\url.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-05-21 12:42:40 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-21 12:42:40 ----A---- C:\Windows\system32\msrating.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\msls31.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\mshtmler.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\msfeedssync.exe
2014-05-21 12:42:40 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\jsproxy.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\jscript9diag.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\jscript9.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ieui.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\iesysprep.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\iesetup.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\iertutil.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\iernonce.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ieframe.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ieapfltr.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ieapfltr.dat
2014-05-21 12:42:40 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ie4uinit.exe
2014-05-21 12:42:40 ----A---- C:\Windows\system32\icardie.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\dxtmsft.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\wextract.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\webcheck.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\vbscript.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\pngfilt.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\occache.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\mshta.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\licmgr10.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\jscript.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\inseng.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\imgutil.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\iexpress.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\ieUnatt.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\iepeers.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\iedkcs32.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\XpsPrint.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\FntCache.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\dxgi.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\DWrite.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10level9.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10core.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10_1core.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10_1.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10.dll
2014-05-21 12:35:43 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2014-05-21 12:35:43 ----A---- C:\Windows\system32\UIAnimation.dll
2014-05-21 11:41:26 ----A---- C:\Windows\system32\browserchoice.exe
2014-05-21 11:33:33 ----D---- C:\Windows\system32\MRT
2014-05-21 11:33:30 ----A---- C:\Windows\system32\MRT.exe
2014-05-21 11:29:19 ----A---- C:\Windows\system32\WUDFSvc.dll
2014-05-21 11:29:19 ----A---- C:\Windows\system32\WUDFPlatform.dll
2014-05-21 11:29:19 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2014-05-21 11:29:19 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2014-05-21 11:29:18 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2014-05-21 11:29:17 ----A---- C:\Windows\system32\WUDFx.dll
2014-05-21 11:29:17 ----A---- C:\Windows\system32\WUDFHost.exe
2014-05-21 11:23:42 ----A---- C:\Windows\SYSWOW64\wmi.dll
2014-05-21 11:23:42 ----A---- C:\Windows\system32\wmi.dll
2014-05-21 11:23:42 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2014-05-21 11:17:34 ----A---- C:\Windows\system32\advapi32.dll
2014-05-21 11:17:33 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-05-21 11:17:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-05-21 11:17:33 ----A---- C:\Windows\system32\tdh.dll
2014-05-21 11:17:33 ----A---- C:\Windows\system32\ntdll.dll
2014-05-21 11:17:32 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-05-21 11:17:23 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-05-21 11:17:23 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2014-05-21 11:17:23 ----A---- C:\Windows\SYSWOW64\devobj.dll
2014-05-21 11:17:23 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2014-05-21 11:17:23 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-05-21 11:17:22 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-05-21 11:17:22 ----A---- C:\Windows\system32\wer.dll
2014-05-21 11:16:54 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-05-21 11:16:54 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-05-21 11:16:54 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-05-21 11:16:54 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-05-21 11:16:54 ----A---- C:\Windows\system32\RMActivate.exe
2014-05-21 11:16:53 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-05-21 11:16:53 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-05-21 11:16:53 ----A---- C:\Windows\system32\secproc_isv.dll
2014-05-21 11:16:53 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-21 11:16:53 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-05-21 11:16:52 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-05-21 11:16:52 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-05-21 11:16:52 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-05-21 11:16:52 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-05-21 11:16:52 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-05-21 11:16:52 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-05-21 11:16:52 ----A---- C:\Windows\system32\secproc.dll
2014-05-21 11:16:52 ----A---- C:\Windows\system32\msdrm.dll
2014-05-21 11:16:30 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-21 11:16:29 ----A---- C:\Windows\system32\schannel.dll
2014-05-21 11:16:29 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-21 11:16:29 ----A---- C:\Windows\system32\kerberos.dll
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-21 11:16:28 ----A---- C:\Windows\system32\winlogon.exe
2014-05-21 11:16:28 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-21 11:16:28 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-21 11:16:27 ----A---- C:\Windows\system32\objsel.dll
2014-05-21 11:16:27 ----A---- C:\Windows\system32\ncrypt.dll
2014-05-21 11:16:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-21 11:16:27 ----A---- C:\Windows\system32\drivers\cng.sys
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-21 11:16:26 ----A---- C:\Windows\system32\wdigest.dll
2014-05-21 11:16:26 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\sspicli.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\smss.exe
2014-05-21 11:16:25 ----A---- C:\Windows\system32\lsass.exe
2014-05-21 11:16:25 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-21 11:16:25 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\adprovider.dll
2014-05-21 11:16:24 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-21 11:16:24 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-21 11:16:24 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-21 11:16:24 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\secur32.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\csrsrv.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\credssp.dll
2014-05-21 11:16:22 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-05-21 11:16:22 ----A---- C:\Windows\system32\apisetschema.dll
2014-05-21 11:15:50 ----A---- C:\Windows\system32\aepdu.dll
2014-05-21 11:15:50 ----A---- C:\Windows\system32\aeinv.dll
2014-05-21 11:15:32 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-05-21 11:15:32 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-05-21 11:15:32 ----A---- C:\Windows\system32\drivers\srv.sys
2014-05-21 11:15:16 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-05-21 11:15:16 ----A---- C:\Windows\system32\mswsock.dll
2014-05-21 11:15:10 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2014-05-21 11:15:10 ----A---- C:\Windows\SYSWOW64\gameux.dll
2014-05-21 11:15:10 ----A---- C:\Windows\system32\Wpc.dll
2014-05-21 11:15:10 ----A---- C:\Windows\system32\gameux.dll
2014-05-21 11:14:53 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-05-21 11:14:53 ----A---- C:\Windows\system32\d3d11.dll
2014-05-21 11:14:52 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2014-05-21 11:14:52 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2014-05-21 11:14:52 ----A---- C:\Windows\system32\mfc42u.dll
2014-05-21 11:14:52 ----A---- C:\Windows\system32\mfc42.dll
2014-05-21 11:14:50 ----A---- C:\Windows\system32\Wdfres.dll
2014-05-21 11:14:50 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2014-05-21 11:14:50 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-05-21 11:14:26 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-05-21 11:14:26 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-05-21 11:14:26 ----A---- C:\Windows\system32\msxml3r.dll
2014-05-21 11:14:26 ----A---- C:\Windows\system32\msxml3.dll
2014-05-21 11:14:00 ----A---- C:\Windows\system32\OxpsConverter.exe
2014-05-21 11:13:55 ----A---- C:\Windows\system32\kernel32.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-05-21 11:13:54 ----A---- C:\Windows\system32\wow64win.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\wow64cpu.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\wow64.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\winsrv.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\ntvdm64.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\conhost.exe
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-21 11:13:52 ----A---- C:\Windows\SYSWOW64\user.exe
2014-05-21 11:13:48 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-05-21 11:13:48 ----A---- C:\Windows\system32\drivers\netio.sys
2014-05-21 11:13:42 ----A---- C:\Windows\SYSWOW64\sbe.dll
2014-05-21 11:13:42 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2014-05-21 11:13:42 ----A---- C:\Windows\system32\sbe.dll
2014-05-21 11:13:42 ----A---- C:\Windows\system32\CPFilters.dll
2014-05-21 11:13:25 ----A---- C:\Windows\system32\consent.exe
2014-05-21 11:13:25 ----A---- C:\Windows\system32\appinfo.dll
2014-05-21 11:13:18 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-05-21 11:13:18 ----A---- C:\Windows\system32\poqexec.exe
2014-05-21 11:13:15 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-05-21 11:13:15 ----A---- C:\Windows\system32\shdocvw.dll
2014-05-21 11:13:06 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-05-21 11:13:05 ----A---- C:\Windows\system32\shell32.dll
2014-05-21 11:13:04 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-21 11:12:55 ----A---- C:\Windows\system32\drivers\afd.sys
2014-05-21 11:12:54 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-05-21 11:12:54 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-05-21 11:12:53 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-05-21 11:12:53 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-05-21 11:12:49 ----A---- C:\Windows\SYSWOW64\certutil.exe
2014-05-21 11:12:49 ----A---- C:\Windows\system32\certutil.exe
2014-05-21 11:12:48 ----A---- C:\Windows\SYSWOW64\certenc.dll
2014-05-21 11:12:48 ----A---- C:\Windows\system32\certenc.dll
2014-05-21 11:12:42 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-05-21 11:12:42 ----A---- C:\Windows\system32\wintrust.dll
2014-05-21 11:12:20 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-05-21 11:12:20 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-05-21 11:12:20 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-05-21 11:12:20 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-21 11:12:20 ----A---- C:\Windows\system32\credui.dll
2014-05-21 11:12:20 ----A---- C:\Windows\system32\authui.dll
2014-05-21 11:12:17 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2014-05-21 11:12:17 ----A---- C:\Windows\system32\psisdecd.dll
2014-05-21 11:12:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-05-21 11:12:13 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-05-21 11:12:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-05-21 11:12:13 ----A---- C:\Windows\system32\cryptsvc.dll
2014-05-21 11:12:13 ----A---- C:\Windows\system32\cryptnet.dll
2014-05-21 11:12:13 ----A---- C:\Windows\system32\crypt32.dll
2014-05-21 11:12:01 ----A---- C:\Windows\system32\tquery.dll
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-05-21 11:12:00 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-05-21 11:12:00 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-05-21 11:12:00 ----A---- C:\Windows\system32\mssrch.dll
2014-05-21 11:12:00 ----A---- C:\Windows\system32\mssph.dll
2014-05-21 11:11:59 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-05-21 11:11:59 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-05-21 11:11:59 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-05-21 11:11:59 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2014-05-21 11:11:59 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-05-21 11:11:59 ----A---- C:\Windows\system32\mssvp.dll
2014-05-21 11:11:59 ----A---- C:\Windows\system32\mssphtb.dll
2014-05-21 11:11:59 ----A---- C:\Windows\system32\msscntrs.dll
2014-05-21 11:11:58 ----A---- C:\Windows\system32\msxml6.dll
2014-05-21 11:11:56 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-05-21 11:11:53 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2014-05-21 11:11:53 ----A---- C:\Windows\system32\ntshrui.dll
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-05-21 11:11:45 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2014-05-21 11:11:44 ----A---- C:\Windows\system32\cdosys.dll
2014-05-21 11:11:41 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-05-21 11:11:25 ----A---- C:\Windows\system32\win32k.sys
2014-05-21 11:11:22 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2014-05-21 11:11:22 ----A---- C:\Windows\system32\netcorehc.dll
2014-05-21 11:11:22 ----A---- C:\Windows\system32\ncsi.dll
2014-05-21 11:11:21 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2014-05-21 11:11:21 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2014-05-21 11:11:21 ----A---- C:\Windows\system32\nlasvc.dll
2014-05-21 11:11:21 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-05-21 11:11:20 ----A---- C:\Windows\SYSWOW64\netevent.dll
2014-05-21 11:11:20 ----A---- C:\Windows\system32\nlaapi.dll
2014-05-21 11:11:20 ----A---- C:\Windows\system32\netevent.dll
2014-05-21 11:11:20 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2014-05-21 11:11:13 ----A---- C:\Windows\system32\cryptdlg.dll
2014-05-21 11:11:12 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2014-05-21 11:11:08 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-05-21 11:11:08 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-05-21 11:11:08 ----A---- C:\Windows\system32\cdd.dll
2014-05-21 11:11:07 ----A---- C:\Windows\system32\rdrmemptylst.exe
2014-05-21 11:11:07 ----A---- C:\Windows\system32\rdpwsx.dll
2014-05-21 11:11:07 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-05-21 11:11:06 ----A---- C:\Windows\system32\drivers\usb8023.sys
2014-05-21 11:11:02 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-05-21 11:11:02 ----A---- C:\Windows\system32\webio.dll
2014-05-21 11:11:01 ----A---- C:\Windows\system32\msvcrt.dll
2014-05-21 11:11:00 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2014-05-21 11:10:56 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-05-21 11:10:56 ----A---- C:\Windows\system32\iologmsg.dll
2014-05-21 11:10:56 ----A---- C:\Windows\system32\drivers\storport.sys
2014-05-21 11:10:56 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-05-21 11:10:56 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-05-21 11:10:52 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-05-21 11:10:52 ----A---- C:\Windows\system32\qedit.dll
2014-05-21 11:10:51 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-05-21 11:10:51 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-05-21 11:10:51 ----A---- C:\Windows\system32\WebClnt.dll
2014-05-21 11:10:51 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-05-21 11:10:51 ----A---- C:\Windows\system32\davclnt.dll
2014-05-21 11:10:49 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2014-05-21 11:10:49 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2014-05-21 11:10:49 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2014-05-21 11:10:49 ----A---- C:\Windows\system32\dhcpcore6.dll
2014-05-21 11:10:47 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2014-05-21 11:10:47 ----A---- C:\Windows\SYSWOW64\browcli.dll
2014-05-21 11:10:47 ----A---- C:\Windows\system32\netapi32.dll
2014-05-21 11:10:47 ----A---- C:\Windows\system32\browser.dll
2014-05-21 11:10:47 ----A---- C:\Windows\system32\browcli.dll
2014-05-21 11:10:44 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-05-21 11:10:43 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-05-21 11:10:43 ----A---- C:\Windows\system32\gdi32.dll
2014-05-21 11:10:42 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-05-21 11:10:42 ----A---- C:\Windows\system32\imagehlp.dll
2014-05-21 11:10:41 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-05-21 11:10:40 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-05-21 11:10:40 ----A---- C:\Windows\system32\usp10.dll
2014-05-21 11:10:39 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-05-21 11:10:39 ----A---- C:\Windows\system32\msi.dll
2014-05-21 11:10:38 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2014-05-21 11:10:38 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-05-21 11:10:38 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-05-21 11:10:38 ----A---- C:\Windows\system32\dnscacheugc.exe
2014-05-21 11:10:38 ----A---- C:\Windows\system32\dnsapi.dll
2014-05-21 11:10:37 ----A---- C:\Windows\system32\odbccu32.dll
2014-05-21 11:10:37 ----A---- C:\Windows\system32\odbccr32.dll
2014-05-21 11:10:37 ----A---- C:\Windows\system32\odbccp32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\system32\odbctrac.dll
2014-05-21 11:10:34 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-05-21 11:10:34 ----A---- C:\Windows\system32\srcore.dll
2014-05-21 11:10:31 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2014-05-21 11:10:31 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-05-21 11:10:30 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-05-21 11:10:30 ----A---- C:\Windows\system32\quartz.dll
2014-05-21 11:10:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-05-21 11:10:29 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-05-21 11:10:29 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-05-21 11:10:27 ----A---- C:\Windows\system32\taskhost.exe
2014-05-21 11:10:26 ----A---- C:\Windows\system32\FXSCOVER.exe
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\lpk.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\fontsub.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\dciman32.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\atmlib.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\atmfd.dll
2014-05-21 11:10:21 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-05-21 11:10:21 ----A---- C:\Windows\system32\rpcrt4.dll
2014-05-21 11:10:20 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-21 11:10:20 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-21 11:10:20 ----A---- C:\Windows\system32\localspl.dll
2014-05-21 11:10:18 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-05-21 11:10:18 ----A---- C:\Windows\system32\comctl32.dll
2014-05-21 11:10:14 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-05-21 11:10:14 ----A---- C:\Windows\system32\tzres.dll
2014-05-21 11:10:10 ----A---- C:\Windows\system32\winresume.exe
2014-05-21 11:10:10 ----A---- C:\Windows\system32\winload.exe
2014-05-21 11:10:10 ----A---- C:\Windows\system32\kdusb.dll
2014-05-21 11:10:10 ----A---- C:\Windows\system32\kdcom.dll
2014-05-21 11:10:10 ----A---- C:\Windows\system32\kd1394.dll
2014-05-21 11:10:09 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-05-21 11:10:08 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2014-05-21 11:10:08 ----A---- C:\Windows\system32\win32spl.dll
2014-05-21 11:10:07 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-05-21 11:10:07 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2014-05-21 11:10:07 ----A---- C:\Windows\system32\oleaut32.dll
2014-05-21 11:10:07 ----A---- C:\Windows\system32\oleacc.dll
2014-05-21 11:10:05 ----A---- C:\Windows\system32\drivers\usbser.sys
2014-05-21 11:10:03 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2014-05-21 11:10:03 ----A---- C:\Windows\system32\xmllite.dll
2014-05-21 11:10:01 ----A---- C:\Windows\system32\wwansvc.dll
2014-05-21 11:10:00 ----A---- C:\Windows\system32\wwanprotdim.dll
2014-05-21 11:10:00 ----A---- C:\Windows\system32\profsvc.dll
2014-05-21 11:09:58 ----A---- C:\Windows\SYSWOW64\synceng.dll
2014-05-21 11:09:58 ----A---- C:\Windows\system32\synceng.dll
2014-05-21 11:09:57 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-05-21 11:09:57 ----A---- C:\Windows\system32\msieftp.dll
2014-05-21 11:09:56 ----A---- C:\Windows\system32\dpnet.dll
2014-05-21 11:09:55 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2014-05-21 11:09:52 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2014-05-21 11:09:52 ----A---- C:\Windows\system32\EncDec.dll
2014-05-21 11:09:51 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-05-21 11:09:51 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-05-21 11:09:50 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2014-05-21 11:09:50 ----A---- C:\Windows\system32\prevhost.exe
2014-05-21 11:09:45 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2014-05-21 11:09:45 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-05-21 11:09:39 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-05-21 11:09:35 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-05-21 11:09:34 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-05-21 11:09:34 ----A---- C:\Windows\system32\inetcomm.dll
2014-05-21 11:09:28 ----A---- C:\Windows\system32\drivers\partmgr.sys
2014-05-21 11:09:22 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-05-21 11:09:22 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-05-21 11:09:22 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-05-21 11:09:22 ----A---- C:\Windows\system32\wscript.exe
2014-05-21 11:09:22 ----A---- C:\Windows\system32\scrrun.dll
2014-05-21 11:09:22 ----A---- C:\Windows\system32\cscript.exe
2014-05-21 11:09:20 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-05-21 11:09:20 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-05-21 11:09:20 ----A---- C:\Windows\system32\nshwfp.dll
2014-05-21 11:09:20 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-05-21 11:09:20 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-05-21 11:06:41 ----D---- C:\Program Files\WinRAR
2014-05-21 11:06:13 ----A---- C:\Windows\system32\ff_vfw.dll
2014-05-21 11:06:09 ----A---- C:\Windows\SYSWOW64\xvidvfw.dll
2014-05-21 11:06:09 ----A---- C:\Windows\SYSWOW64\xvidcore.dll
2014-05-21 11:06:09 ----A---- C:\Windows\SYSWOW64\x264vfw.dll
2014-05-21 11:06:09 ----A---- C:\Windows\SYSWOW64\lagarith.dll
2014-05-21 11:06:09 ----A---- C:\Windows\system32\xvidvfw.dll
2014-05-21 11:06:09 ----A---- C:\Windows\system32\xvidcore.dll
2014-05-21 11:06:09 ----A---- C:\Windows\system32\x264vfw64.dll
2014-05-21 11:06:09 ----A---- C:\Windows\system32\lagarith.dll
2014-05-21 11:06:06 ----A---- C:\Windows\SYSWOW64\unrar.dll
2014-05-21 11:06:06 ----A---- C:\Windows\system32\unrar64.dll
2014-05-21 11:06:03 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2014-05-21 11:05:57 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2014-05-21 11:05:15 ----D---- C:\Program Files\Defraggler
2014-05-21 11:04:49 ----D---- C:\Program Files\CCleaner
2014-05-21 10:48:20 ----D---- C:\Program Files\trend micro
2014-05-21 10:43:16 ----A---- C:\Windows\system32\scavengeui.dll
2014-05-21 10:42:50 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-05-21 10:42:50 ----A---- C:\Windows\system32\packager.dll
2014-05-21 10:24:41 ----D---- C:\Program Files (x86)\MozBackup
2014-05-21 10:23:54 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-05-21 10:23:54 ----A---- C:\Windows\system32\rdpcore.dll
2014-05-21 10:23:54 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-05-21 10:23:33 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Macromedia
2014-05-21 10:23:32 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Adobe
2014-05-21 10:23:18 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-21 10:23:16 ----A---- C:\Windows\ODBC.INI
2014-05-21 10:23:15 ----D---- C:\Windows\SYSWOW64\Macromed
2014-05-21 10:23:12 ----D---- C:\Windows\system32\Macromed
2014-05-21 10:21:50 ----D---- C:\Windows\Msagent
2014-05-21 10:21:46 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-21 10:16:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-21 10:15:42 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Mozilla
2014-05-21 10:15:35 ----D---- C:\ProgramData\Mozilla
2014-05-21 10:15:35 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wups2.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wucltux.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wuauclt.exe
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wups.dll
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wudriver.dll
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wuapi.dll
2014-05-21 10:13:55 ----A---- C:\Windows\system32\wuwebv.dll
2014-05-21 10:13:55 ----A---- C:\Windows\system32\wuapp.exe
2014-05-21 10:13:20 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-05-21 10:13:10 ----D---- C:\Program Files\Microsoft Security Client
2014-05-21 10:08:24 ----D---- C:\Program Files (x86)\Cisco
2014-05-21 10:06:58 ----SHD---- C:\Windows\Installer
2014-05-21 10:06:21 ----A---- C:\Windows\system32\BCMLogon.dll
2014-05-21 10:06:07 ----A---- C:\Windows\system32\bcmwlrc.dll
2014-05-21 10:06:06 ----A---- C:\Windows\SYSWOW64\vcredist_x64.exe
2014-05-21 10:06:06 ----A---- C:\Windows\SYSWOW64\vcredist_x64.bat
2014-05-21 10:06:06 ----A---- C:\Windows\system32\wltrynt.dll
2014-05-21 10:06:06 ----A---- C:\Windows\system32\drivers\npf.sys
2014-05-21 10:06:06 ----A---- C:\Windows\system32\drivers\bcm42rly.sys
2014-05-21 10:06:06 ----A---- C:\Windows\system32\bcmttls.dll
2014-05-21 10:06:05 ----A---- C:\Windows\system32\vcredist_x64.exe
2014-05-21 10:06:05 ----A---- C:\Windows\system32\vcredist_x64.bat
2014-05-21 10:06:03 ----D---- C:\Program Files\Dell
2014-05-21 10:06:03 ----A---- C:\Windows\system32\drivers\BCMWL664.SYS
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmwlcoi.dll
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmihvui64.dll
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmihvsrv64.dll
2014-05-21 09:53:58 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Identities
2014-05-21 09:53:33 ----SD---- C:\Users\Jindra M 5010\AppData\Roaming\Microsoft
2014-05-21 09:53:33 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Media Center Programs
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Šablony
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Plocha
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Oblíbené položky
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Nabídka Start
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Dokumenty
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Data aplikací
2014-05-21 09:34:55 ----D---- C:\Windows\SoftwareDistribution
2014-05-21 09:32:17 ----D---- C:\Windows\Prefetch
2014-05-20 16:48:50 ----A---- C:\ComboFix.txt
2014-05-20 16:31:44 ----D---- C:\Qoobox
2014-05-19 20:38:04 ----D---- C:\AdwCleaner
2014-05-19 00:23:51 ----D---- C:\AMD
2014-05-17 11:10:02 ----D---- C:\FFOutput
2014-05-13 11:23:28 ----D---- C:\Spacekace
2014-05-13 07:11:08 ----D---- C:\rsit
2014-05-10 19:54:06 ----D---- C:\Windows.old.000
======List of files/folders modified in the last 1 month======
2014-05-21 19:30:54 ----RASH---- C:\BOOTSECT.BAK
2014-05-21 19:30:52 ----SHD---- C:\Boot
2014-05-21 19:30:28 ----D---- C:\Windows\system32\Recovery
2014-05-21 19:30:28 ----D---- C:\Windows\system32\oobe
2014-05-21 19:30:28 ----D---- C:\Windows\Setup
2014-05-21 19:30:28 ----D---- C:\Drivers
2014-05-21 19:28:52 ----D---- C:\Windows\servicing
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Sidebar
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Photo Viewer
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Mail
2014-05-21 19:28:52 ----D---- C:\Program Files\DVD Maker
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Mail
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\winrm
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\WCN
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\slmgr
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\MUI
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\migwiz
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\drivers
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\Dism
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\com
2014-05-21 19:28:51 ----D---- C:\Windows\system32\winrm
2014-05-21 19:28:51 ----D---- C:\Windows\system32\slmgr
2014-05-21 19:28:51 ----D---- C:\Windows\system32\migwiz
2014-05-21 19:28:51 ----D---- C:\Windows\IME
2014-05-21 19:28:50 ----D---- C:\Windows\system32\WCN
2014-05-21 19:28:50 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-05-21 19:28:50 ----D---- C:\Windows\system32\MUI
2014-05-21 19:28:50 ----D---- C:\Windows\system32\Dism
2014-05-21 19:28:50 ----D---- C:\Windows\system32\com
2014-05-21 18:59:28 ----D---- C:\Windows\system32\config
2014-05-21 18:52:51 ----D---- C:\Windows\ModemLogs
2014-05-21 18:52:12 ----SHD---- C:\System Volume Information
2014-05-21 18:49:45 ----D---- C:\Windows\Temp
2014-05-21 18:49:24 ----D---- C:\Config.Msi
2014-05-21 18:49:22 ----D---- C:\Windows\winsxs
2014-05-21 18:49:17 ----RD---- C:\Program Files (x86)
2014-05-21 18:49:17 ----D---- C:\Windows\SysWOW64
2014-05-21 18:43:24 ----D---- C:\Windows\system32\drivers
2014-05-21 18:43:23 ----D---- C:\Windows\inf
2014-05-21 18:43:17 ----SD---- C:\ProgramData\Microsoft
2014-05-21 18:43:11 ----D---- C:\Windows\system32\drivers\UMDF
2014-05-21 18:43:11 ----D---- C:\Windows\System32
2014-05-21 18:41:56 ----D---- C:\Windows\system32\catroot
2014-05-21 18:41:55 ----D---- C:\Windows\system32\DriverStore
2014-05-21 18:41:53 ----HD---- C:\ProgramData
2014-05-21 18:41:33 ----D---- C:\Program Files (x86)\Common Files
2014-05-21 18:41:18 ----RD---- C:\Program Files
2014-05-21 18:41:14 ----D---- C:\Windows
2014-05-21 16:22:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-21 16:16:29 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-21 16:16:29 ----D---- C:\Windows\system32\cs-CZ
2014-05-21 16:16:02 ----D---- C:\Windows\system32\catroot2
2014-05-21 14:48:07 ----D---- C:\Windows\Microsoft.NET
2014-05-21 14:40:06 ----RSD---- C:\Windows\assembly
2014-05-21 14:33:37 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-21 14:33:36 ----D---- C:\Windows\system32\en-US
2014-05-21 14:30:07 ----A---- C:\Windows\win.ini
2014-05-21 14:20:38 ----D---- C:\Windows\SYSWOW64\wbem
2014-05-21 14:20:38 ----D---- C:\Windows\system32\wbem
2014-05-21 14:20:38 ----D---- C:\Windows\system32\drivers\en-US
2014-05-21 14:20:38 ----D---- C:\Windows\PolicyDefinitions
2014-05-21 13:33:05 ----D---- C:\Program Files\Windows Media Player
2014-05-21 13:33:05 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-21 13:33:03 ----D---- C:\Program Files\Common Files\System
2014-05-21 13:33:01 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-21 13:33:00 ----D---- C:\Program Files\Internet Explorer
2014-05-21 13:32:57 ----D---- C:\Windows\SYSWOW64\migration
2014-05-21 13:32:54 ----D---- C:\Windows\system32\migration
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\zh-TW
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\zh-HK
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\zh-CN
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\tr-TR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\sv-SE
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\ru-RU
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\pt-PT
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\pt-BR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\nb-NO
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\ko-KR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\ja-JP
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\it-IT
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\fr-FR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\fi-FI
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\es-ES
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\el-GR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\de-DE
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\da-DK
2014-05-21 13:32:49 ----D---- C:\Windows\system32\zh-HK
2014-05-21 13:32:49 ----D---- C:\Windows\system32\pt-PT
2014-05-21 13:32:49 ----D---- C:\Windows\system32\pt-BR
2014-05-21 13:32:49 ----D---- C:\Windows\system32\pl-PL
2014-05-21 13:32:49 ----D---- C:\Windows\system32\ko-KR
2014-05-21 13:32:49 ----D---- C:\Windows\system32\it-IT
2014-05-21 13:32:49 ----D---- C:\Windows\system32\hu-HU
2014-05-21 13:32:49 ----D---- C:\Windows\system32\el-GR
2014-05-21 13:32:48 ----D---- C:\Windows\system32\zh-TW
2014-05-21 13:32:48 ----D---- C:\Windows\system32\zh-CN
2014-05-21 13:32:48 ----D---- C:\Windows\system32\tr-TR
2014-05-21 13:32:48 ----D---- C:\Windows\system32\sv-SE
2014-05-21 13:32:48 ----D---- C:\Windows\system32\ru-RU
2014-05-21 13:32:48 ----D---- C:\Windows\system32\nl-NL
2014-05-21 13:32:48 ----D---- C:\Windows\system32\nb-NO
2014-05-21 13:32:48 ----D---- C:\Windows\system32\ja-JP
2014-05-21 13:32:48 ----D---- C:\Windows\system32\fr-FR
2014-05-21 13:32:48 ----D---- C:\Windows\system32\fi-FI
2014-05-21 13:32:48 ----D---- C:\Windows\system32\es-ES
2014-05-21 13:32:48 ----D---- C:\Windows\system32\de-DE
2014-05-21 13:32:48 ----D---- C:\Windows\system32\da-DK
2014-05-21 13:32:37 ----D---- C:\Windows\AppPatch
2014-05-21 13:32:36 ----D---- C:\Windows\ehome
2014-05-21 13:32:18 ----RSD---- C:\Windows\Fonts
2014-05-21 13:32:18 ----D---- C:\Program Files\Windows Defender
2014-05-21 13:32:18 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-21 13:31:50 ----D---- C:\Windows\system32\Boot
2014-05-21 13:31:47 ----D---- C:\Program Files\Windows Journal
2014-05-21 12:51:34 ----D---- C:\Windows\Logs
2014-05-21 11:33:33 ----D---- C:\Windows\debug
2014-05-21 11:04:53 ----D---- C:\Windows\system32\Tasks
2014-05-21 10:23:20 ----D---- C:\Windows\Tasks
2014-05-21 10:22:34 ----D---- C:\Windows\ShellNew
2014-05-21 10:21:50 ----D---- C:\Windows\Help
2014-05-21 10:20:28 ----D---- C:\Windows\system
2014-05-21 10:13:08 ----D---- C:\Windows\system32\restore
2014-05-21 10:07:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-21 10:06:11 ----D---- C:\Windows\system32\th-TH
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sl-SI
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sk-SK
2014-05-21 10:06:10 ----D---- C:\Windows\system32\ro-RO
2014-05-21 10:06:10 ----D---- C:\Windows\system32\lv-LV
2014-05-21 10:06:10 ----D---- C:\Windows\system32\lt-LT
2014-05-21 10:06:09 ----D---- C:\Windows\system32\hr-HR
2014-05-21 10:06:09 ----D---- C:\Windows\system32\he-IL
2014-05-21 10:06:08 ----D---- C:\Windows\system32\et-EE
2014-05-21 10:06:07 ----D---- C:\Windows\system32\bg-BG
2014-05-21 10:06:07 ----D---- C:\Windows\system32\ar-SA
2014-05-21 09:53:59 ----D---- C:\Windows\rescache
2014-05-21 09:53:51 ----SHD---- C:\$Recycle.Bin
2014-05-21 09:53:32 ----RD---- C:\Users
2014-05-21 09:53:16 ----D---- C:\Recovery
2014-05-21 09:53:16 ----D---- C:\Program Files\Windows NT
2014-05-21 09:41:24 ----D---- C:\Windows\system32\CodeIntegrity
2014-05-21 09:37:04 ----D---- C:\Windows\system32\sysprep
2014-05-19 00:21:37 ----D---- C:\dell
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\Windows\system32\DRIVERS\bcmwl664.sys [2014-05-21 4716608]
S3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2014-05-21 22592]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2010-09-30 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2010-09-30 180736]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 wltrysvc;DW WLAN Tray Service; C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [2014-05-21 48128]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-21 257712]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-21 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-21 119408]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-21 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Moc děkujiLogfile of random's system information tool 1.09 (written by random/random)
Run by Jindra M 5010 at 2014-05-21 19:22:12
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 525 GB (86%) free of 610 GB
Total RAM: 4092 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:22:15, on 21.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PcSync2.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\trend micro\Jindra M 5010.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [NSU_agent] "C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe"
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 6272 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE" "C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe"
C:\Windows\system32\WLANExt.exe 2092208
\??\C:\Windows\system32\conhost.exe "1455931478-103454450-18256600461641415349-14771683510308249829663787441909315860
C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
atieclxx
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3252.15d2e250.1811965411 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3252 "\\.\pipe\gecko-crash-server-pipe.3252" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe" --proxy-stub-channel=Flash2792.71256010.2858 --host-broker-channel=Flash2792.71256010.19454 --host-pid=2792 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe" --channel=2348.0030F1BC.1039361858 --proxy-stub-channel=Flash2792.71256010.2858 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll" --host-npapi-version=27 --type=renderer
"taskhost.exe"
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray -install -startgcw
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PcSync2.exe" /NoDialog
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{266C0069-A90F-4268-ACE9-290DAD6ACBBC}
{820D084A-2D58-4D11-8C40-2C8F8AD6B69F}
"C:\Program Files (x86)\Common Files\Nokia\MPAPI\MPAPI3s.exe" -Embedding
C:\Windows\system32\svchost.exe -k imgsvc
{83CC6A3B-F39B-4A6D-8755-ED33B7C904E8}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\Jindra M 5010\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\n8cmin6u.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
C:\Users\Jindra M 5010\AppData\Roaming\Mozilla\Firefox\Profiles\n8cmin6u.default\extensions\
toolbar@centrumholdings.com
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"=C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [2014-05-21 6301696]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PC Suite Tray"=C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2012-06-26 1516632]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"NSU_agent"=C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe [2012-02-28 190768]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-05-21 19:31:00 ----D---- C:\Windows\Panther
2014-05-21 19:30:28 ----RA---- C:\Windows\csup.txt
2014-05-21 19:30:28 ----D---- C:\Windows\system32\OEM
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfi005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfh005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfd005.dat
2014-05-21 19:29:20 ----A---- C:\Windows\system32\perfc005.dat
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\XPSViewer
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\cs
2014-05-21 19:28:51 ----D---- C:\Windows\system32\cs
2014-05-21 19:28:51 ----D---- C:\Windows\cs-CZ
2014-05-21 19:28:50 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-05-21 19:12:51 ----D---- C:\Windows.old
2014-05-21 18:49:17 ----D---- C:\Program Files (x86)\MSXML 4.0
2014-05-21 18:41:53 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\PC Suite
2014-05-21 18:41:53 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Nokia
2014-05-21 18:41:53 ----D---- C:\ProgramData\PC Suite
2014-05-21 18:41:18 ----D---- C:\Program Files\DIFX
2014-05-21 18:41:17 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2014-05-21 18:41:14 ----DC---- C:\Windows\system32\DRVSTORE
2014-05-21 18:41:05 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2014-05-21 18:40:37 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2014-05-21 18:40:36 ----D---- C:\Program Files (x86)\Nokia
2014-05-21 18:39:12 ----D---- C:\ProgramData\Installations
2014-05-21 16:43:34 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\GHISLER
2014-05-21 16:40:27 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-05-21 16:38:39 ----D---- C:\Program Files\KONICA MINOLTA
2014-05-21 16:14:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-21 14:29:00 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-05-21 14:29:00 ----A---- C:\Windows\system32\mstscax.dll
2014-05-21 14:15:34 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-21 14:15:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-21 14:15:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-21 14:15:31 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-05-21 14:15:30 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-05-21 14:15:30 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-05-21 14:15:30 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-05-21 14:15:30 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-05-21 14:15:30 ----A---- C:\Windows\system32\wksprtPS.dll
2014-05-21 14:15:30 ----A---- C:\Windows\system32\wksprt.exe
2014-05-21 14:15:30 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-05-21 14:15:30 ----A---- C:\Windows\system32\tsgqec.dll
2014-05-21 14:15:30 ----A---- C:\Windows\system32\mstsc.exe
2014-05-21 14:15:30 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-05-21 14:15:29 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-05-21 14:15:29 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-05-21 14:15:10 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-21 14:15:10 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-21 14:15:10 ----A---- C:\Windows\system32\mshtml.dll
2014-05-21 14:15:09 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-21 14:14:01 ----D---- C:\Program Files\Microsoft Silverlight
2014-05-21 14:14:01 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-05-21 14:10:42 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-21 14:10:38 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2014-05-21 14:10:38 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-05-21 14:10:36 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2014-05-21 14:10:36 ----A---- C:\Windows\system32\rdpudd.dll
2014-05-21 14:10:36 ----A---- C:\Windows\system32\rdpendp_winip.dll
2014-05-21 14:10:35 ----A---- C:\Windows\system32\rdpcorets.dll
2014-05-21 14:03:10 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-05-21 14:03:09 ----A---- C:\Windows\system32\qdvd.dll
2014-05-21 14:02:59 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-05-21 14:02:59 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-05-21 14:02:56 ----A---- C:\Windows\explorer.exe
2014-05-21 14:02:55 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-05-21 14:02:55 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-05-21 14:02:55 ----A---- C:\Windows\system32\WMPhoto.dll
2014-05-21 14:02:53 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-05-21 14:02:53 ----A---- C:\Windows\system32\d3d10warp.dll
2014-05-21 14:02:52 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-05-21 14:02:52 ----A---- C:\Windows\system32\d2d1.dll
2014-05-21 14:02:51 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-05-21 14:02:51 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-05-21 14:02:45 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2014-05-21 14:02:45 ----A---- C:\Windows\SYSWOW64\esent.dll
2014-05-21 14:02:45 ----A---- C:\Windows\system32\fsutil.exe
2014-05-21 14:02:45 ----A---- C:\Windows\system32\esent.dll
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\nvstor.sys
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\nvraid.sys
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\amdxata.sys
2014-05-21 14:02:45 ----A---- C:\Windows\system32\drivers\amdsata.sys
2014-05-21 14:00:30 ----A---- C:\Windows\system32\spoolsv.exe
2014-05-21 14:00:30 ----A---- C:\Windows\splwow64.exe
2014-05-21 13:48:08 ----D---- C:\Windows\SYSWOW64\Wat
2014-05-21 13:48:07 ----D---- C:\Windows\system32\Wat
2014-05-21 13:32:34 ----SD---- C:\Windows\system32\CompatTel
2014-05-21 13:17:47 ----A---- C:\Windows\system32\wmploc.DLL
2014-05-21 13:17:46 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-05-21 13:17:46 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-05-21 13:17:43 ----A---- C:\Windows\system32\wmp.dll
2014-05-21 13:03:06 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-05-21 13:00:54 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-21 13:00:49 ----D---- C:\Windows\Migration
2014-05-21 12:51:35 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-05-21 12:42:47 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-05-21 12:42:43 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-05-21 12:42:43 ----A---- C:\Windows\system32\elshyph.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\url.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-05-21 12:42:42 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-05-21 12:42:41 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-05-21 12:42:41 ----A---- C:\Windows\system32\jsIntl.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\wininet.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\urlmon.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\url.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-05-21 12:42:40 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-21 12:42:40 ----A---- C:\Windows\system32\msrating.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\msls31.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\mshtmler.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\msfeedssync.exe
2014-05-21 12:42:40 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\jsproxy.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\jscript9diag.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\jscript9.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ieui.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\iesysprep.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\iesetup.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\iertutil.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\iernonce.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ieframe.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ieapfltr.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ieapfltr.dat
2014-05-21 12:42:40 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\ie4uinit.exe
2014-05-21 12:42:40 ----A---- C:\Windows\system32\icardie.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-05-21 12:42:40 ----A---- C:\Windows\system32\dxtmsft.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\wextract.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\webcheck.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\vbscript.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\pngfilt.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\occache.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\mshta.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\licmgr10.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\jscript.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\inseng.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\imgutil.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\iexpress.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\ieUnatt.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\iepeers.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-05-21 12:42:39 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-05-21 12:42:39 ----A---- C:\Windows\system32\iedkcs32.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-21 12:35:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-21 12:35:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2014-05-21 12:35:44 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\XpsPrint.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\FntCache.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\dxgi.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\DWrite.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10level9.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10core.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10_1core.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10_1.dll
2014-05-21 12:35:44 ----A---- C:\Windows\system32\d3d10.dll
2014-05-21 12:35:43 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2014-05-21 12:35:43 ----A---- C:\Windows\system32\UIAnimation.dll
2014-05-21 11:41:26 ----A---- C:\Windows\system32\browserchoice.exe
2014-05-21 11:33:33 ----D---- C:\Windows\system32\MRT
2014-05-21 11:33:30 ----A---- C:\Windows\system32\MRT.exe
2014-05-21 11:29:19 ----A---- C:\Windows\system32\WUDFSvc.dll
2014-05-21 11:29:19 ----A---- C:\Windows\system32\WUDFPlatform.dll
2014-05-21 11:29:19 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2014-05-21 11:29:19 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2014-05-21 11:29:18 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2014-05-21 11:29:17 ----A---- C:\Windows\system32\WUDFx.dll
2014-05-21 11:29:17 ----A---- C:\Windows\system32\WUDFHost.exe
2014-05-21 11:23:42 ----A---- C:\Windows\SYSWOW64\wmi.dll
2014-05-21 11:23:42 ----A---- C:\Windows\system32\wmi.dll
2014-05-21 11:23:42 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2014-05-21 11:17:34 ----A---- C:\Windows\system32\advapi32.dll
2014-05-21 11:17:33 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-05-21 11:17:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-05-21 11:17:33 ----A---- C:\Windows\system32\tdh.dll
2014-05-21 11:17:33 ----A---- C:\Windows\system32\ntdll.dll
2014-05-21 11:17:32 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-05-21 11:17:23 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-05-21 11:17:23 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2014-05-21 11:17:23 ----A---- C:\Windows\SYSWOW64\devobj.dll
2014-05-21 11:17:23 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2014-05-21 11:17:23 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-05-21 11:17:22 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-05-21 11:17:22 ----A---- C:\Windows\system32\wer.dll
2014-05-21 11:16:54 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-05-21 11:16:54 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-05-21 11:16:54 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-05-21 11:16:54 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-05-21 11:16:54 ----A---- C:\Windows\system32\RMActivate.exe
2014-05-21 11:16:53 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-05-21 11:16:53 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-05-21 11:16:53 ----A---- C:\Windows\system32\secproc_isv.dll
2014-05-21 11:16:53 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-21 11:16:53 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-05-21 11:16:52 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-05-21 11:16:52 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-05-21 11:16:52 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-05-21 11:16:52 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-05-21 11:16:52 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-05-21 11:16:52 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-05-21 11:16:52 ----A---- C:\Windows\system32\secproc.dll
2014-05-21 11:16:52 ----A---- C:\Windows\system32\msdrm.dll
2014-05-21 11:16:30 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-21 11:16:29 ----A---- C:\Windows\system32\schannel.dll
2014-05-21 11:16:29 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-21 11:16:29 ----A---- C:\Windows\system32\kerberos.dll
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-21 11:16:28 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-21 11:16:28 ----A---- C:\Windows\system32\winlogon.exe
2014-05-21 11:16:28 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-21 11:16:28 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-21 11:16:27 ----A---- C:\Windows\system32\objsel.dll
2014-05-21 11:16:27 ----A---- C:\Windows\system32\ncrypt.dll
2014-05-21 11:16:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-21 11:16:27 ----A---- C:\Windows\system32\drivers\cng.sys
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-05-21 11:16:26 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-21 11:16:26 ----A---- C:\Windows\system32\wdigest.dll
2014-05-21 11:16:26 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\sspicli.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\smss.exe
2014-05-21 11:16:25 ----A---- C:\Windows\system32\lsass.exe
2014-05-21 11:16:25 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-21 11:16:25 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-21 11:16:25 ----A---- C:\Windows\system32\adprovider.dll
2014-05-21 11:16:24 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-21 11:16:24 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-21 11:16:24 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-21 11:16:24 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\secur32.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\csrsrv.dll
2014-05-21 11:16:24 ----A---- C:\Windows\system32\credssp.dll
2014-05-21 11:16:22 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-05-21 11:16:22 ----A---- C:\Windows\system32\apisetschema.dll
2014-05-21 11:15:50 ----A---- C:\Windows\system32\aepdu.dll
2014-05-21 11:15:50 ----A---- C:\Windows\system32\aeinv.dll
2014-05-21 11:15:32 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-05-21 11:15:32 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-05-21 11:15:32 ----A---- C:\Windows\system32\drivers\srv.sys
2014-05-21 11:15:16 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-05-21 11:15:16 ----A---- C:\Windows\system32\mswsock.dll
2014-05-21 11:15:10 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2014-05-21 11:15:10 ----A---- C:\Windows\SYSWOW64\gameux.dll
2014-05-21 11:15:10 ----A---- C:\Windows\system32\Wpc.dll
2014-05-21 11:15:10 ----A---- C:\Windows\system32\gameux.dll
2014-05-21 11:14:53 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-05-21 11:14:53 ----A---- C:\Windows\system32\d3d11.dll
2014-05-21 11:14:52 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2014-05-21 11:14:52 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2014-05-21 11:14:52 ----A---- C:\Windows\system32\mfc42u.dll
2014-05-21 11:14:52 ----A---- C:\Windows\system32\mfc42.dll
2014-05-21 11:14:50 ----A---- C:\Windows\system32\Wdfres.dll
2014-05-21 11:14:50 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2014-05-21 11:14:50 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-05-21 11:14:26 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-05-21 11:14:26 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-05-21 11:14:26 ----A---- C:\Windows\system32\msxml3r.dll
2014-05-21 11:14:26 ----A---- C:\Windows\system32\msxml3.dll
2014-05-21 11:14:00 ----A---- C:\Windows\system32\OxpsConverter.exe
2014-05-21 11:13:55 ----A---- C:\Windows\system32\kernel32.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-21 11:13:54 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-05-21 11:13:54 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-05-21 11:13:54 ----A---- C:\Windows\system32\wow64win.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\wow64cpu.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\wow64.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\winsrv.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\ntvdm64.dll
2014-05-21 11:13:54 ----A---- C:\Windows\system32\conhost.exe
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-21 11:13:53 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-21 11:13:52 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-21 11:13:52 ----A---- C:\Windows\SYSWOW64\user.exe
2014-05-21 11:13:48 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-05-21 11:13:48 ----A---- C:\Windows\system32\drivers\netio.sys
2014-05-21 11:13:42 ----A---- C:\Windows\SYSWOW64\sbe.dll
2014-05-21 11:13:42 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2014-05-21 11:13:42 ----A---- C:\Windows\system32\sbe.dll
2014-05-21 11:13:42 ----A---- C:\Windows\system32\CPFilters.dll
2014-05-21 11:13:25 ----A---- C:\Windows\system32\consent.exe
2014-05-21 11:13:25 ----A---- C:\Windows\system32\appinfo.dll
2014-05-21 11:13:18 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-05-21 11:13:18 ----A---- C:\Windows\system32\poqexec.exe
2014-05-21 11:13:15 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-05-21 11:13:15 ----A---- C:\Windows\system32\shdocvw.dll
2014-05-21 11:13:06 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-05-21 11:13:05 ----A---- C:\Windows\system32\shell32.dll
2014-05-21 11:13:04 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-21 11:12:55 ----A---- C:\Windows\system32\drivers\afd.sys
2014-05-21 11:12:54 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-05-21 11:12:54 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-05-21 11:12:53 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-05-21 11:12:53 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-05-21 11:12:49 ----A---- C:\Windows\SYSWOW64\certutil.exe
2014-05-21 11:12:49 ----A---- C:\Windows\system32\certutil.exe
2014-05-21 11:12:48 ----A---- C:\Windows\SYSWOW64\certenc.dll
2014-05-21 11:12:48 ----A---- C:\Windows\system32\certenc.dll
2014-05-21 11:12:42 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-05-21 11:12:42 ----A---- C:\Windows\system32\wintrust.dll
2014-05-21 11:12:20 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-05-21 11:12:20 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-05-21 11:12:20 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-05-21 11:12:20 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-21 11:12:20 ----A---- C:\Windows\system32\credui.dll
2014-05-21 11:12:20 ----A---- C:\Windows\system32\authui.dll
2014-05-21 11:12:17 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2014-05-21 11:12:17 ----A---- C:\Windows\system32\psisdecd.dll
2014-05-21 11:12:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-05-21 11:12:13 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-05-21 11:12:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-05-21 11:12:13 ----A---- C:\Windows\system32\cryptsvc.dll
2014-05-21 11:12:13 ----A---- C:\Windows\system32\cryptnet.dll
2014-05-21 11:12:13 ----A---- C:\Windows\system32\crypt32.dll
2014-05-21 11:12:01 ----A---- C:\Windows\system32\tquery.dll
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-05-21 11:12:00 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-05-21 11:12:00 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-05-21 11:12:00 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-05-21 11:12:00 ----A---- C:\Windows\system32\mssrch.dll
2014-05-21 11:12:00 ----A---- C:\Windows\system32\mssph.dll
2014-05-21 11:11:59 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-05-21 11:11:59 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-05-21 11:11:59 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-05-21 11:11:59 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2014-05-21 11:11:59 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-05-21 11:11:59 ----A---- C:\Windows\system32\mssvp.dll
2014-05-21 11:11:59 ----A---- C:\Windows\system32\mssphtb.dll
2014-05-21 11:11:59 ----A---- C:\Windows\system32\msscntrs.dll
2014-05-21 11:11:58 ----A---- C:\Windows\system32\msxml6.dll
2014-05-21 11:11:56 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-05-21 11:11:53 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2014-05-21 11:11:53 ----A---- C:\Windows\system32\ntshrui.dll
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-05-21 11:11:48 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-05-21 11:11:45 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2014-05-21 11:11:44 ----A---- C:\Windows\system32\cdosys.dll
2014-05-21 11:11:41 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-05-21 11:11:25 ----A---- C:\Windows\system32\win32k.sys
2014-05-21 11:11:22 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2014-05-21 11:11:22 ----A---- C:\Windows\system32\netcorehc.dll
2014-05-21 11:11:22 ----A---- C:\Windows\system32\ncsi.dll
2014-05-21 11:11:21 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2014-05-21 11:11:21 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2014-05-21 11:11:21 ----A---- C:\Windows\system32\nlasvc.dll
2014-05-21 11:11:21 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-05-21 11:11:20 ----A---- C:\Windows\SYSWOW64\netevent.dll
2014-05-21 11:11:20 ----A---- C:\Windows\system32\nlaapi.dll
2014-05-21 11:11:20 ----A---- C:\Windows\system32\netevent.dll
2014-05-21 11:11:20 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2014-05-21 11:11:13 ----A---- C:\Windows\system32\cryptdlg.dll
2014-05-21 11:11:12 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2014-05-21 11:11:08 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-05-21 11:11:08 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-05-21 11:11:08 ----A---- C:\Windows\system32\cdd.dll
2014-05-21 11:11:07 ----A---- C:\Windows\system32\rdrmemptylst.exe
2014-05-21 11:11:07 ----A---- C:\Windows\system32\rdpwsx.dll
2014-05-21 11:11:07 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-05-21 11:11:06 ----A---- C:\Windows\system32\drivers\usb8023.sys
2014-05-21 11:11:02 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-05-21 11:11:02 ----A---- C:\Windows\system32\webio.dll
2014-05-21 11:11:01 ----A---- C:\Windows\system32\msvcrt.dll
2014-05-21 11:11:00 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2014-05-21 11:10:56 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-05-21 11:10:56 ----A---- C:\Windows\system32\iologmsg.dll
2014-05-21 11:10:56 ----A---- C:\Windows\system32\drivers\storport.sys
2014-05-21 11:10:56 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-05-21 11:10:56 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-05-21 11:10:52 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-05-21 11:10:52 ----A---- C:\Windows\system32\qedit.dll
2014-05-21 11:10:51 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-05-21 11:10:51 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-05-21 11:10:51 ----A---- C:\Windows\system32\WebClnt.dll
2014-05-21 11:10:51 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-05-21 11:10:51 ----A---- C:\Windows\system32\davclnt.dll
2014-05-21 11:10:49 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2014-05-21 11:10:49 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2014-05-21 11:10:49 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2014-05-21 11:10:49 ----A---- C:\Windows\system32\dhcpcore6.dll
2014-05-21 11:10:47 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2014-05-21 11:10:47 ----A---- C:\Windows\SYSWOW64\browcli.dll
2014-05-21 11:10:47 ----A---- C:\Windows\system32\netapi32.dll
2014-05-21 11:10:47 ----A---- C:\Windows\system32\browser.dll
2014-05-21 11:10:47 ----A---- C:\Windows\system32\browcli.dll
2014-05-21 11:10:44 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-05-21 11:10:43 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-05-21 11:10:43 ----A---- C:\Windows\system32\gdi32.dll
2014-05-21 11:10:42 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-05-21 11:10:42 ----A---- C:\Windows\system32\imagehlp.dll
2014-05-21 11:10:41 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-05-21 11:10:40 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-05-21 11:10:40 ----A---- C:\Windows\system32\usp10.dll
2014-05-21 11:10:39 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-05-21 11:10:39 ----A---- C:\Windows\system32\msi.dll
2014-05-21 11:10:38 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2014-05-21 11:10:38 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-05-21 11:10:38 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-05-21 11:10:38 ----A---- C:\Windows\system32\dnscacheugc.exe
2014-05-21 11:10:38 ----A---- C:\Windows\system32\dnsapi.dll
2014-05-21 11:10:37 ----A---- C:\Windows\system32\odbccu32.dll
2014-05-21 11:10:37 ----A---- C:\Windows\system32\odbccr32.dll
2014-05-21 11:10:37 ----A---- C:\Windows\system32\odbccp32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2014-05-21 11:10:36 ----A---- C:\Windows\system32\odbctrac.dll
2014-05-21 11:10:34 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-05-21 11:10:34 ----A---- C:\Windows\system32\srcore.dll
2014-05-21 11:10:31 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2014-05-21 11:10:31 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-05-21 11:10:30 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-05-21 11:10:30 ----A---- C:\Windows\system32\quartz.dll
2014-05-21 11:10:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-05-21 11:10:29 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-05-21 11:10:29 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-05-21 11:10:27 ----A---- C:\Windows\system32\taskhost.exe
2014-05-21 11:10:26 ----A---- C:\Windows\system32\FXSCOVER.exe
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-05-21 11:10:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\lpk.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\fontsub.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\dciman32.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\atmlib.dll
2014-05-21 11:10:24 ----A---- C:\Windows\system32\atmfd.dll
2014-05-21 11:10:21 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-05-21 11:10:21 ----A---- C:\Windows\system32\rpcrt4.dll
2014-05-21 11:10:20 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-21 11:10:20 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-21 11:10:20 ----A---- C:\Windows\system32\localspl.dll
2014-05-21 11:10:18 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-05-21 11:10:18 ----A---- C:\Windows\system32\comctl32.dll
2014-05-21 11:10:14 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-05-21 11:10:14 ----A---- C:\Windows\system32\tzres.dll
2014-05-21 11:10:10 ----A---- C:\Windows\system32\winresume.exe
2014-05-21 11:10:10 ----A---- C:\Windows\system32\winload.exe
2014-05-21 11:10:10 ----A---- C:\Windows\system32\kdusb.dll
2014-05-21 11:10:10 ----A---- C:\Windows\system32\kdcom.dll
2014-05-21 11:10:10 ----A---- C:\Windows\system32\kd1394.dll
2014-05-21 11:10:09 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-05-21 11:10:08 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2014-05-21 11:10:08 ----A---- C:\Windows\system32\win32spl.dll
2014-05-21 11:10:07 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-05-21 11:10:07 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2014-05-21 11:10:07 ----A---- C:\Windows\system32\oleaut32.dll
2014-05-21 11:10:07 ----A---- C:\Windows\system32\oleacc.dll
2014-05-21 11:10:05 ----A---- C:\Windows\system32\drivers\usbser.sys
2014-05-21 11:10:03 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2014-05-21 11:10:03 ----A---- C:\Windows\system32\xmllite.dll
2014-05-21 11:10:01 ----A---- C:\Windows\system32\wwansvc.dll
2014-05-21 11:10:00 ----A---- C:\Windows\system32\wwanprotdim.dll
2014-05-21 11:10:00 ----A---- C:\Windows\system32\profsvc.dll
2014-05-21 11:09:58 ----A---- C:\Windows\SYSWOW64\synceng.dll
2014-05-21 11:09:58 ----A---- C:\Windows\system32\synceng.dll
2014-05-21 11:09:57 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-05-21 11:09:57 ----A---- C:\Windows\system32\msieftp.dll
2014-05-21 11:09:56 ----A---- C:\Windows\system32\dpnet.dll
2014-05-21 11:09:55 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2014-05-21 11:09:52 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2014-05-21 11:09:52 ----A---- C:\Windows\system32\EncDec.dll
2014-05-21 11:09:51 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-05-21 11:09:51 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-05-21 11:09:50 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2014-05-21 11:09:50 ----A---- C:\Windows\system32\prevhost.exe
2014-05-21 11:09:45 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2014-05-21 11:09:45 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-05-21 11:09:39 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-05-21 11:09:35 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-05-21 11:09:34 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-05-21 11:09:34 ----A---- C:\Windows\system32\inetcomm.dll
2014-05-21 11:09:28 ----A---- C:\Windows\system32\drivers\partmgr.sys
2014-05-21 11:09:22 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-05-21 11:09:22 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-05-21 11:09:22 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-05-21 11:09:22 ----A---- C:\Windows\system32\wscript.exe
2014-05-21 11:09:22 ----A---- C:\Windows\system32\scrrun.dll
2014-05-21 11:09:22 ----A---- C:\Windows\system32\cscript.exe
2014-05-21 11:09:20 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-05-21 11:09:20 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-05-21 11:09:20 ----A---- C:\Windows\system32\nshwfp.dll
2014-05-21 11:09:20 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-05-21 11:09:20 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-05-21 11:06:41 ----D---- C:\Program Files\WinRAR
2014-05-21 11:06:13 ----A---- C:\Windows\system32\ff_vfw.dll
2014-05-21 11:06:09 ----A---- C:\Windows\SYSWOW64\xvidvfw.dll
2014-05-21 11:06:09 ----A---- C:\Windows\SYSWOW64\xvidcore.dll
2014-05-21 11:06:09 ----A---- C:\Windows\SYSWOW64\x264vfw.dll
2014-05-21 11:06:09 ----A---- C:\Windows\SYSWOW64\lagarith.dll
2014-05-21 11:06:09 ----A---- C:\Windows\system32\xvidvfw.dll
2014-05-21 11:06:09 ----A---- C:\Windows\system32\xvidcore.dll
2014-05-21 11:06:09 ----A---- C:\Windows\system32\x264vfw64.dll
2014-05-21 11:06:09 ----A---- C:\Windows\system32\lagarith.dll
2014-05-21 11:06:06 ----A---- C:\Windows\SYSWOW64\unrar.dll
2014-05-21 11:06:06 ----A---- C:\Windows\system32\unrar64.dll
2014-05-21 11:06:03 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2014-05-21 11:05:57 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2014-05-21 11:05:15 ----D---- C:\Program Files\Defraggler
2014-05-21 11:04:49 ----D---- C:\Program Files\CCleaner
2014-05-21 10:48:20 ----D---- C:\Program Files\trend micro
2014-05-21 10:43:16 ----A---- C:\Windows\system32\scavengeui.dll
2014-05-21 10:42:50 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-05-21 10:42:50 ----A---- C:\Windows\system32\packager.dll
2014-05-21 10:24:41 ----D---- C:\Program Files (x86)\MozBackup
2014-05-21 10:23:54 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-05-21 10:23:54 ----A---- C:\Windows\system32\rdpcore.dll
2014-05-21 10:23:54 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-05-21 10:23:33 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Macromedia
2014-05-21 10:23:32 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Adobe
2014-05-21 10:23:18 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-21 10:23:16 ----A---- C:\Windows\ODBC.INI
2014-05-21 10:23:15 ----D---- C:\Windows\SYSWOW64\Macromed
2014-05-21 10:23:12 ----D---- C:\Windows\system32\Macromed
2014-05-21 10:21:50 ----D---- C:\Windows\Msagent
2014-05-21 10:21:46 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-21 10:16:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-21 10:15:42 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Mozilla
2014-05-21 10:15:35 ----D---- C:\ProgramData\Mozilla
2014-05-21 10:15:35 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wups2.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wucltux.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-05-21 10:14:21 ----A---- C:\Windows\system32\wuauclt.exe
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wups.dll
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wudriver.dll
2014-05-21 10:14:12 ----A---- C:\Windows\system32\wuapi.dll
2014-05-21 10:13:55 ----A---- C:\Windows\system32\wuwebv.dll
2014-05-21 10:13:55 ----A---- C:\Windows\system32\wuapp.exe
2014-05-21 10:13:20 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-05-21 10:13:10 ----D---- C:\Program Files\Microsoft Security Client
2014-05-21 10:08:24 ----D---- C:\Program Files (x86)\Cisco
2014-05-21 10:06:58 ----SHD---- C:\Windows\Installer
2014-05-21 10:06:21 ----A---- C:\Windows\system32\BCMLogon.dll
2014-05-21 10:06:07 ----A---- C:\Windows\system32\bcmwlrc.dll
2014-05-21 10:06:06 ----A---- C:\Windows\SYSWOW64\vcredist_x64.exe
2014-05-21 10:06:06 ----A---- C:\Windows\SYSWOW64\vcredist_x64.bat
2014-05-21 10:06:06 ----A---- C:\Windows\system32\wltrynt.dll
2014-05-21 10:06:06 ----A---- C:\Windows\system32\drivers\npf.sys
2014-05-21 10:06:06 ----A---- C:\Windows\system32\drivers\bcm42rly.sys
2014-05-21 10:06:06 ----A---- C:\Windows\system32\bcmttls.dll
2014-05-21 10:06:05 ----A---- C:\Windows\system32\vcredist_x64.exe
2014-05-21 10:06:05 ----A---- C:\Windows\system32\vcredist_x64.bat
2014-05-21 10:06:03 ----D---- C:\Program Files\Dell
2014-05-21 10:06:03 ----A---- C:\Windows\system32\drivers\BCMWL664.SYS
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmwlcoi.dll
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmihvui64.dll
2014-05-21 10:06:03 ----A---- C:\Windows\system32\bcmihvsrv64.dll
2014-05-21 09:53:58 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Identities
2014-05-21 09:53:33 ----SD---- C:\Users\Jindra M 5010\AppData\Roaming\Microsoft
2014-05-21 09:53:33 ----D---- C:\Users\Jindra M 5010\AppData\Roaming\Media Center Programs
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Šablony
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Plocha
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Oblíbené položky
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Nabídka Start
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Dokumenty
2014-05-21 09:53:16 ----SHD---- C:\ProgramData\Data aplikací
2014-05-21 09:34:55 ----D---- C:\Windows\SoftwareDistribution
2014-05-21 09:32:17 ----D---- C:\Windows\Prefetch
2014-05-20 16:48:50 ----A---- C:\ComboFix.txt
2014-05-20 16:31:44 ----D---- C:\Qoobox
2014-05-19 20:38:04 ----D---- C:\AdwCleaner
2014-05-19 00:23:51 ----D---- C:\AMD
2014-05-17 11:10:02 ----D---- C:\FFOutput
2014-05-13 11:23:28 ----D---- C:\Spacekace
2014-05-13 07:11:08 ----D---- C:\rsit
2014-05-10 19:54:06 ----D---- C:\Windows.old.000
======List of files/folders modified in the last 1 month======
2014-05-21 19:30:54 ----RASH---- C:\BOOTSECT.BAK
2014-05-21 19:30:52 ----SHD---- C:\Boot
2014-05-21 19:30:28 ----D---- C:\Windows\system32\Recovery
2014-05-21 19:30:28 ----D---- C:\Windows\system32\oobe
2014-05-21 19:30:28 ----D---- C:\Windows\Setup
2014-05-21 19:30:28 ----D---- C:\Drivers
2014-05-21 19:28:52 ----D---- C:\Windows\servicing
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Sidebar
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Photo Viewer
2014-05-21 19:28:52 ----D---- C:\Program Files\Windows Mail
2014-05-21 19:28:52 ----D---- C:\Program Files\DVD Maker
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-05-21 19:28:52 ----D---- C:\Program Files (x86)\Windows Mail
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\winrm
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\WCN
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\slmgr
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\MUI
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\migwiz
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\drivers
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\Dism
2014-05-21 19:28:51 ----D---- C:\Windows\SYSWOW64\com
2014-05-21 19:28:51 ----D---- C:\Windows\system32\winrm
2014-05-21 19:28:51 ----D---- C:\Windows\system32\slmgr
2014-05-21 19:28:51 ----D---- C:\Windows\system32\migwiz
2014-05-21 19:28:51 ----D---- C:\Windows\IME
2014-05-21 19:28:50 ----D---- C:\Windows\system32\WCN
2014-05-21 19:28:50 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-05-21 19:28:50 ----D---- C:\Windows\system32\MUI
2014-05-21 19:28:50 ----D---- C:\Windows\system32\Dism
2014-05-21 19:28:50 ----D---- C:\Windows\system32\com
2014-05-21 18:59:28 ----D---- C:\Windows\system32\config
2014-05-21 18:52:51 ----D---- C:\Windows\ModemLogs
2014-05-21 18:52:12 ----SHD---- C:\System Volume Information
2014-05-21 18:49:45 ----D---- C:\Windows\Temp
2014-05-21 18:49:24 ----D---- C:\Config.Msi
2014-05-21 18:49:22 ----D---- C:\Windows\winsxs
2014-05-21 18:49:17 ----RD---- C:\Program Files (x86)
2014-05-21 18:49:17 ----D---- C:\Windows\SysWOW64
2014-05-21 18:43:24 ----D---- C:\Windows\system32\drivers
2014-05-21 18:43:23 ----D---- C:\Windows\inf
2014-05-21 18:43:17 ----SD---- C:\ProgramData\Microsoft
2014-05-21 18:43:11 ----D---- C:\Windows\system32\drivers\UMDF
2014-05-21 18:43:11 ----D---- C:\Windows\System32
2014-05-21 18:41:56 ----D---- C:\Windows\system32\catroot
2014-05-21 18:41:55 ----D---- C:\Windows\system32\DriverStore
2014-05-21 18:41:53 ----HD---- C:\ProgramData
2014-05-21 18:41:33 ----D---- C:\Program Files (x86)\Common Files
2014-05-21 18:41:18 ----RD---- C:\Program Files
2014-05-21 18:41:14 ----D---- C:\Windows
2014-05-21 16:22:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-21 16:16:29 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-21 16:16:29 ----D---- C:\Windows\system32\cs-CZ
2014-05-21 16:16:02 ----D---- C:\Windows\system32\catroot2
2014-05-21 14:48:07 ----D---- C:\Windows\Microsoft.NET
2014-05-21 14:40:06 ----RSD---- C:\Windows\assembly
2014-05-21 14:33:37 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-21 14:33:36 ----D---- C:\Windows\system32\en-US
2014-05-21 14:30:07 ----A---- C:\Windows\win.ini
2014-05-21 14:20:38 ----D---- C:\Windows\SYSWOW64\wbem
2014-05-21 14:20:38 ----D---- C:\Windows\system32\wbem
2014-05-21 14:20:38 ----D---- C:\Windows\system32\drivers\en-US
2014-05-21 14:20:38 ----D---- C:\Windows\PolicyDefinitions
2014-05-21 13:33:05 ----D---- C:\Program Files\Windows Media Player
2014-05-21 13:33:05 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-21 13:33:03 ----D---- C:\Program Files\Common Files\System
2014-05-21 13:33:01 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-21 13:33:00 ----D---- C:\Program Files\Internet Explorer
2014-05-21 13:32:57 ----D---- C:\Windows\SYSWOW64\migration
2014-05-21 13:32:54 ----D---- C:\Windows\system32\migration
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\zh-TW
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\zh-HK
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\zh-CN
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\tr-TR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\sv-SE
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\ru-RU
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\pt-PT
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\pt-BR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\nb-NO
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\ko-KR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\ja-JP
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\it-IT
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\fr-FR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\fi-FI
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\es-ES
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\el-GR
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\de-DE
2014-05-21 13:32:50 ----D---- C:\Windows\SYSWOW64\da-DK
2014-05-21 13:32:49 ----D---- C:\Windows\system32\zh-HK
2014-05-21 13:32:49 ----D---- C:\Windows\system32\pt-PT
2014-05-21 13:32:49 ----D---- C:\Windows\system32\pt-BR
2014-05-21 13:32:49 ----D---- C:\Windows\system32\pl-PL
2014-05-21 13:32:49 ----D---- C:\Windows\system32\ko-KR
2014-05-21 13:32:49 ----D---- C:\Windows\system32\it-IT
2014-05-21 13:32:49 ----D---- C:\Windows\system32\hu-HU
2014-05-21 13:32:49 ----D---- C:\Windows\system32\el-GR
2014-05-21 13:32:48 ----D---- C:\Windows\system32\zh-TW
2014-05-21 13:32:48 ----D---- C:\Windows\system32\zh-CN
2014-05-21 13:32:48 ----D---- C:\Windows\system32\tr-TR
2014-05-21 13:32:48 ----D---- C:\Windows\system32\sv-SE
2014-05-21 13:32:48 ----D---- C:\Windows\system32\ru-RU
2014-05-21 13:32:48 ----D---- C:\Windows\system32\nl-NL
2014-05-21 13:32:48 ----D---- C:\Windows\system32\nb-NO
2014-05-21 13:32:48 ----D---- C:\Windows\system32\ja-JP
2014-05-21 13:32:48 ----D---- C:\Windows\system32\fr-FR
2014-05-21 13:32:48 ----D---- C:\Windows\system32\fi-FI
2014-05-21 13:32:48 ----D---- C:\Windows\system32\es-ES
2014-05-21 13:32:48 ----D---- C:\Windows\system32\de-DE
2014-05-21 13:32:48 ----D---- C:\Windows\system32\da-DK
2014-05-21 13:32:37 ----D---- C:\Windows\AppPatch
2014-05-21 13:32:36 ----D---- C:\Windows\ehome
2014-05-21 13:32:18 ----RSD---- C:\Windows\Fonts
2014-05-21 13:32:18 ----D---- C:\Program Files\Windows Defender
2014-05-21 13:32:18 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-21 13:31:50 ----D---- C:\Windows\system32\Boot
2014-05-21 13:31:47 ----D---- C:\Program Files\Windows Journal
2014-05-21 12:51:34 ----D---- C:\Windows\Logs
2014-05-21 11:33:33 ----D---- C:\Windows\debug
2014-05-21 11:04:53 ----D---- C:\Windows\system32\Tasks
2014-05-21 10:23:20 ----D---- C:\Windows\Tasks
2014-05-21 10:22:34 ----D---- C:\Windows\ShellNew
2014-05-21 10:21:50 ----D---- C:\Windows\Help
2014-05-21 10:20:28 ----D---- C:\Windows\system
2014-05-21 10:13:08 ----D---- C:\Windows\system32\restore
2014-05-21 10:07:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-21 10:06:11 ----D---- C:\Windows\system32\th-TH
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sl-SI
2014-05-21 10:06:11 ----D---- C:\Windows\system32\sk-SK
2014-05-21 10:06:10 ----D---- C:\Windows\system32\ro-RO
2014-05-21 10:06:10 ----D---- C:\Windows\system32\lv-LV
2014-05-21 10:06:10 ----D---- C:\Windows\system32\lt-LT
2014-05-21 10:06:09 ----D---- C:\Windows\system32\hr-HR
2014-05-21 10:06:09 ----D---- C:\Windows\system32\he-IL
2014-05-21 10:06:08 ----D---- C:\Windows\system32\et-EE
2014-05-21 10:06:07 ----D---- C:\Windows\system32\bg-BG
2014-05-21 10:06:07 ----D---- C:\Windows\system32\ar-SA
2014-05-21 09:53:59 ----D---- C:\Windows\rescache
2014-05-21 09:53:51 ----SHD---- C:\$Recycle.Bin
2014-05-21 09:53:32 ----RD---- C:\Users
2014-05-21 09:53:16 ----D---- C:\Recovery
2014-05-21 09:53:16 ----D---- C:\Program Files\Windows NT
2014-05-21 09:41:24 ----D---- C:\Windows\system32\CodeIntegrity
2014-05-21 09:37:04 ----D---- C:\Windows\system32\sysprep
2014-05-19 00:21:37 ----D---- C:\dell
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\Windows\system32\DRIVERS\bcmwl664.sys [2014-05-21 4716608]
S3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2014-05-21 22592]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2010-09-30 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2010-09-30 180736]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 wltrysvc;DW WLAN Tray Service; C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [2014-05-21 48128]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-21 257712]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-21 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-21 119408]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-21 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Re: Prosím o kontrolu...Pc je divné,seká se atd...
Zrejme se vam povedlo stahnout i nejaky ten darecek. Nebo si vas nasel sam, proste nahoda.jindra.paryzek píše:Minule jsem dělal reinastal také a když jsem dodělal veškeré aktualizace,ze stahuj.cz jsem stáhl microsoft essentials,ccleaner a ddefragler,vše jsem na konec ccleaner vyčistil,dal jsem log sem a bylo mi zde řečeno,že je to pěkně zadělané,tak nevím
Ted vypada log cisty. Je tedy s pc problem, nebo vse bezi jak ma?
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
jindra.paryzek
- Návštěvník
- Příspěvky: 469
- Registrován: 04 led 2007 12:37
- Bydliště: Louny
Re: Prosím o kontrolu...Pc je divné,seká se atd...
Teď vypadá vše ok,teda pokud jste tam nic neviděli vy? 
Re: Prosím o kontrolu...Pc je divné,seká se atd...
Log je cisty. Samozrejme neukaze vse (jinak bychom predtim nepouzili tolik nastroju 
), ale pokud vse bezi jak ma, melo by to byt pro tuto chvili v poradku
), ale pokud vse bezi jak ma, melo by to byt pro tuto chvili v poradku Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
jindra.paryzek
- Návštěvník
- Příspěvky: 469
- Registrován: 04 led 2007 12:37
- Bydliště: Louny
Re: Prosím o kontrolu...Pc je divné,seká se atd...
Díky za kontrolu 
Re: Prosím o kontrolu...Pc je divné,seká se atd...
Nemate zac
No a kdyby neco, staci se ozvat.
Mejte se a treba zase nekdy
No a kdyby neco, staci se ozvat.
Mejte se a treba zase nekdy
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?