Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o preventivku, bylo pár Trojanu, reklam, únos homepag

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Edrak
Návštěvník
Návštěvník
Příspěvky: 6
Registrován: 12 lis 2014 13:50

Prosím o preventivku, bylo pár Trojanu, reklam, únos homepag

#1 Příspěvek od Edrak »

Prosím o preventivku, kolega si nainstaloval pár Trojanu, reklam, a únos homepage..
Chtěl zkouknout fotbal.

Logfile of random's system information tool 1.10 (written by random/random)
Run by aleksandr at 2014-11-12 13:46:06
Microsoft Windows 8
System drive C: has 617 GB (91%) free of 682 GB
Total RAM: 3970 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:46:22, on 12-11-2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17148)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\aleksandr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sony13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sony13.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "c:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [mikporw] C:\Windows\system32\rundll32.exe "C:\Users\aleksandr\AppData\Local\mikporw.dll",mikporw
O4 - HKCU\..\Run: [BrowserChoice] "C:\Windows\BrowserChoice\browserchoice.exe" /run
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: Send til Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Send til Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Send til Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - (no file)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: McAfee Application Installer Cleanup (0168681415793250) (0168681415793250mcinstcleanup) - McAfee, Inc. - C:\Windows\TEMP\016868~1.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Activation Service (McAWFwk) - Unknown owner - c:\PROGRA~1\mcafee\msc\mcawfwk.exe (file missing)
O23 - Service: McAfee Content Filter (mfeicfcoreocp) - Unknown owner - C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe (file missing)
O23 - Service: Mobile Broadband HL Service - Unknown owner - C:\ProgramData\MobileBrServ\mbbservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NetworkSupport - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe
O23 - Service: NFC Proxy Service (NFCProxyService) - Sony Corporation - C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: VAIO Care Performance Service (SampleCollector) - Unknown owner - C:\Program Files\Sony\VAIO Care\VCPerfService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: VAIO Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
O23 - Service: VAIO Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
O23 - Service: VAIO Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VCService - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update\VUAgent.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 11498 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"dwm.exe"
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 836002091728
\??\C:\Windows\system32\conhost.exe 0x4

C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\ProgramData\MobileBrServ\mbbservice.exe"
"C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe"
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
"C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe"
/QuitInfo:00000000000006F4;00000000000006F8;
/loadhooks /Parent:0000000000000bf4
"C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.EXE"
"C:\Program Files\Internet Explorer\iexplore.exe" http://192.168.1.1/?version=22.001.07.00.03
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a7736d08-f7dc-4d5a-98cb-c5fd721ab963 -SystemEventPortName:HostProcess-38e8d201-1593-4963-9a93-601312c97071 -IoCancelEventPortName:HostProcess-2393a15d-b4d1-4003-aedf-1d2d2c1f2b68 -NonStateChangingEventPortName:HostProcess-2202d4e3-c062-4be6-97fe-c6bde98a973f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4d04cbf2-7570-46be-9c37-b54f50715b6a -DeviceGroupId:WudfDefaultDevicePool
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\DllHost.exe /Processid:{CB45D4CA-8A34-4EF1-9957-6134E5270E83}
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e20ad920-d575-4c74-a89e-7327b53f8c48 -SystemEventPortName:HostProcess-ba5f0ed7-4c0c-4985-bd0d-bb62d7934860 -IoCancelEventPortName:HostProcess-2690b023-9a92-41eb-b6dc-a32e28c28544 -NonStateChangingEventPortName:HostProcess-465f6ca8-a35f-4d1b-abbb-5433f8e4c1ff -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c64af007-93cd-46a6-ad98-35aa3d882147 -DeviceGroupId:WpdFsGroup
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3104 CREDAT:267521 /prefetch:2
C:\Windows\system32\DllHost.exe /Processid:{B32DAC50-97B2-4BF7-A8DB-418294621529}
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SONYAPO
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Windows\System32\igfxtray.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\rundll32.exe" "C:\Users\aleksandr\AppData\Local\mikporw.dll",mikporw
"C:\Windows\BrowserChoice\browserchoice.exe" /run
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
"C:\Program Files\Sony\VAIO Improvement\vim.exe" -User /RestartByRestartManager:836D9AF7-211E-45df-B3B9-323CFBF864DB
"C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
"C:\Program Files\Internet Explorer\iexplore.exe" -restart /WERRESTART
"C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4336 CREDAT:267521 /prefetch:2
"C:\Windows\System32\WWAHost.exe" -ServerName:Windows.BrowserChoice
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4336 CREDAT:267523 /prefetch:2
"C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe" -Embedding
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe" /Stationary
"C:\Program Files\Sony\VAIO Update\VUAgent.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Sony\VAIO Care\VCPerfService.exe" "/service" "/sstates" "/sampleinterval=10000" "/procinterval=5" "/dllinterval=120" "/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1" "/counter=\Network Interface(*)\Bytes Total/sec:1" "/expandcounter=\Processor Information(*)\Processor Frequency:1" "&" "/expandcounter=\Processor(*)\% Idle Time:1" "/expandcounter=\Processor(*)\% C1 Time:1" "/expandcounter=\Processor(*)\% C2 Time:1" "/expandcounter=\Processor(*)\%C3 & Time:1" "/expandcounter=\Processor(*)\% Processor Time:1" "/directory=C:\ProgramData\Sony Corporation\VAIO Care\inteldata"
"C:\Users\aleksandr\Downloads\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-12 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-11-12 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-12 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-11-12 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-09-07 1215632]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-09-07 1215632]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-08-08 11554688]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-30 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-30 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-30 440640]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"mikporw"=C:\Users\aleksandr\AppData\Local\mikporw.dll [2014-11-08 479232]
"BrowserChoice"=C:\Windows\BrowserChoice\browserchoice.exe [2012-08-15 86696]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-10-01 7767832]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-04-23 508256]
"ISBMgr.exe"=C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2012-08-18 68776]
"PMBVolumeWatcher"=C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2012-07-27 724576]
"Adobe Reader Speed Launcher"=c:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-15 35736]
"Adobe ARM"=c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-06-25 152896]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-12 5225064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-30 439296]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-12 13:46:07 ----D---- C:\Program Files\trend micro
2014-11-12 13:46:06 ----D---- C:\rsit
2014-11-12 13:26:22 ----D---- C:\Users\aleksandr\AppData\Roaming\AVAST Software
2014-11-12 13:25:13 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-11-12 13:25:13 ----A---- C:\Windows\system32\drivers\aswStm.sys
2014-11-12 13:25:13 ----A---- C:\Windows\system32\drivers\aswSP.sys
2014-11-12 13:25:13 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2014-11-12 13:25:13 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-11-12 13:25:13 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2014-11-12 13:25:13 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-11-12 13:25:13 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2014-11-12 13:25:10 ----A---- C:\Windows\system32\aswBoot.exe
2014-11-12 13:25:02 ----A---- C:\Windows\avastSS.scr
2014-11-12 13:22:13 ----D---- C:\Program Files\AVAST Software
2014-11-12 13:17:43 ----D---- C:\ProgramData\AVAST Software
2014-11-12 13:10:56 ----A---- C:\Windows\system32\FNTCACHE.DAT
2014-11-12 12:54:53 ----SD---- C:\Windows\SYSWOW64\Microsoft
2014-11-12 12:37:29 ----D---- C:\Program Files (x86)\VS Revo Group
2014-11-12 12:09:43 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-12 11:37:21 ----D---- C:\Users\aleksandr\AppData\Roaming\iolo
2014-11-12 11:04:03 ----D---- C:\Users\aleksandr\AppData\Roaming\SUPERAntiSpyware.com
2014-11-12 11:03:30 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2014-11-12 11:03:30 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-12 04:28:23 ----A---- C:\Windows\system32\dnsapi.dll
2014-11-12 04:28:18 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-11-12 04:28:18 ----A---- C:\Windows\system32\WsmSvc.dll
2014-11-12 04:28:16 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-11-12 04:28:15 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-11-12 04:28:15 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-11-12 04:28:14 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-11-12 04:28:14 ----A---- C:\Windows\system32\rpchttp.dll
2014-11-12 04:28:14 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2014-11-12 04:28:13 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-11-12 04:28:13 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2014-11-12 04:28:13 ----A---- C:\Windows\SYSWOW64\FXSCOMEX.dll
2014-11-12 04:28:13 ----A---- C:\Windows\system32\FXSCOMEX.dll
2014-11-12 04:28:12 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2014-11-12 04:28:12 ----A---- C:\Windows\system32\FXST30.dll
2014-11-12 04:28:12 ----A---- C:\Windows\system32\FXSAPI.dll
2014-11-12 04:28:11 ----A---- C:\Windows\system32\FXSTIFF.dll
2014-11-12 04:26:05 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 04:26:05 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 04:26:04 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 04:26:04 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-12 04:16:27 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 04:16:27 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-12 04:16:16 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-11-12 04:16:15 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-11-12 04:16:04 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 04:15:46 ----A---- C:\Windows\system32\rdpcorets.dll
2014-11-12 04:15:46 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 04:15:45 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 04:15:45 ----A---- C:\Windows\system32\SHCore.dll
2014-11-12 04:15:45 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 04:15:44 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2014-11-12 04:15:44 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 04:15:40 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 04:15:40 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 04:15:11 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 04:15:10 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 04:15:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 04:15:06 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 04:15:05 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-11-12 04:15:04 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-11-12 04:14:52 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 04:14:52 ----A---- C:\Windows\system32\packager.dll
2014-11-12 04:13:51 ----A---- C:\Windows\system32\mshtml.dll
2014-11-12 04:13:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-12 04:13:45 ----A---- C:\Windows\system32\ieframe.dll
2014-11-12 04:13:44 ----A---- C:\Windows\system32\wininet.dll
2014-11-12 04:13:43 ----A---- C:\Windows\system32\iertutil.dll
2014-11-12 04:13:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-12 04:13:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-12 04:13:40 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-12 04:13:40 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-12 04:13:40 ----A---- C:\Windows\system32\urlmon.dll
2014-11-12 04:13:38 ----A---- C:\Windows\system32\uxtheme.dll
2014-11-12 04:13:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-12 04:13:37 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-12 04:13:37 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-11-12 04:13:37 ----A---- C:\Windows\system32\iesysprep.dll
2014-11-12 04:13:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-12 04:13:36 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-12 04:13:36 ----A---- C:\Windows\system32\jscript9.dll
2014-11-12 04:13:36 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-12 04:13:35 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-11-12 04:13:34 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-12 04:13:34 ----A---- C:\Windows\system32\jscript.dll
2014-11-12 04:13:34 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-12 04:13:33 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-12 04:13:33 ----A---- C:\Windows\system32\msrating.dll
2014-11-12 04:13:32 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-12 04:13:32 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-12 04:13:32 ----A---- C:\Windows\system32\iernonce.dll
2014-11-12 04:13:32 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-12 04:13:31 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2014-11-12 04:13:31 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-12 04:13:31 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-12 04:13:31 ----A---- C:\Windows\system32\UXInit.dll
2014-11-12 04:13:30 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-12 04:13:30 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-12 04:13:30 ----A---- C:\Windows\system32\iesetup.dll
2014-11-12 04:13:30 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-12 04:13:29 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2014-11-12 04:13:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-12 00:37:57 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2014-11-12 00:37:57 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2014-11-12 00:36:37 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-11-12 00:35:33 ----D---- C:\ProgramData\Oracle
2014-11-11 11:08:21 ----A---- C:\Windows\system32\ntdll.dll
2014-11-11 11:08:19 ----A---- C:\Windows\system32\localspl.dll
2014-11-11 11:08:18 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-11-11 11:08:17 ----A---- C:\Windows\system32\storagewmi.dll
2014-11-11 11:08:16 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-11-11 11:08:16 ----A---- C:\Windows\system32\d3d10warp.dll
2014-11-11 11:08:14 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-11-11 11:08:14 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2014-11-11 11:08:14 ----A---- C:\Windows\system32\winload.exe
2014-11-11 11:08:13 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2014-11-11 11:08:13 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-11-11 11:08:13 ----A---- C:\Windows\system32\wcmsvc.dll
2014-11-11 11:08:13 ----A---- C:\Windows\system32\dwmapi.dll
2014-11-11 11:08:12 ----A---- C:\Windows\system32\win32spl.dll
2014-11-11 11:08:12 ----A---- C:\Windows\system32\wcmcsp.dll
2014-11-11 11:08:12 ----A---- C:\Windows\system32\profsvc.dll
2014-11-11 11:08:12 ----A---- C:\Windows\system32\drivers\volsnap.sys
2014-11-11 11:08:12 ----A---- C:\Windows\system32\defragsvc.dll
2014-11-11 11:08:10 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-11-11 11:08:10 ----A---- C:\Windows\SYSWOW64\KBDRUM.DLL
2014-11-11 11:08:10 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-11-11 11:08:10 ----A---- C:\Windows\system32\KBDRUM.DLL
2014-11-11 11:08:10 ----A---- C:\Windows\system32\KBDRU.DLL
2014-11-11 11:08:10 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-11-11 11:08:10 ----A---- C:\Windows\system32\Defrag.exe
2014-11-11 11:08:09 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-11-11 11:08:09 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-11-11 11:08:09 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-11-11 11:08:09 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-11-11 11:08:09 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-11-11 11:08:09 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-11-10 16:35:53 ----RD---- C:\Windows\BrowserChoice
2014-11-10 16:07:44 ----A---- C:\Windows\system32\netcfg-322890546.txt
2014-11-10 16:02:08 ----A---- C:\Windows\system32\netcfg-322554562.txt
2014-11-10 16:01:33 ----A---- C:\Windows\system32\netcfg-322519468.txt
2014-11-10 15:58:17 ----A---- C:\Windows\system32\netcfg-322323484.txt
2014-11-10 15:54:48 ----A---- C:\Windows\system32\netcfg-322113640.txt
2014-11-10 15:53:52 ----A---- C:\Windows\system32\netcfg-322057765.txt
2014-11-10 15:45:49 ----A---- C:\Windows\system32\netcfg-321574984.txt
2014-11-10 15:45:10 ----A---- C:\Windows\system32\netcfg-321535875.txt
2014-11-10 15:41:24 ----A---- C:\Windows\system32\netcfg-321309750.txt
2014-11-10 15:40:36 ----A---- C:\Windows\system32\netcfg-321261875.txt
2014-11-10 15:34:21 ----A---- C:\Windows\system32\netcfg-320887078.txt
2014-11-10 15:31:51 ----A---- C:\Windows\system32\netcfg-320736781.txt
2014-11-10 15:30:48 ----A---- C:\Windows\system32\netcfg-320674312.txt
2014-11-10 15:22:51 ----A---- C:\Windows\system32\netcfg-320196703.txt
2014-11-10 15:22:03 ----A---- C:\Windows\system32\netcfg-320149421.txt
2014-11-10 11:12:13 ----A---- C:\Windows\system32\netcfg-305158953.txt
2014-11-10 11:11:28 ----A---- C:\Windows\system32\netcfg-305114718.txt
2014-11-10 11:10:44 ----A---- C:\Windows\system32\netcfg-305070500.txt
2014-11-10 11:10:39 ----A---- C:\Windows\system32\netcfg-305065156.txt
2014-11-09 19:16:29 ----A---- C:\Windows\system32\netcfg-247809296.txt
2014-11-09 19:16:28 ----A---- C:\Windows\system32\netcfg-247808265.txt
2014-11-09 09:48:10 ----A---- C:\Windows\system32\netcfg-213710343.txt
2014-11-09 09:47:05 ----A---- C:\Windows\system32\netcfg-213645578.txt
2014-11-09 09:43:21 ----A---- C:\Windows\system32\netcfg-213421062.txt
2014-11-09 09:43:18 ----A---- C:\Windows\system32\netcfg-213418062.txt
2014-11-09 09:42:14 ----A---- C:\Windows\system32\netcfg-213351687.txt
2014-11-09 08:36:50 ----A---- C:\Windows\system32\netcfg-209429984.txt
2014-11-09 08:30:35 ----A---- C:\Windows\system32\netcfg-209055406.txt
2014-11-09 08:30:31 ----A---- C:\Windows\system32\netcfg-209051500.txt
2014-11-09 08:29:37 ----A---- C:\Windows\system32\netcfg-208996750.txt
2014-11-09 08:29:36 ----A---- C:\Windows\system32\netcfg-208996218.txt
2014-11-08 21:31:21 ----A---- C:\Windows\system32\netcfg-169501437.txt
2014-11-08 21:31:19 ----A---- C:\Windows\system32\netcfg-169499468.txt
2014-11-08 16:08:43 ----D---- C:\ProgramData\Windows Genuine Advantage
2014-11-08 08:33:30 ----A---- C:\Windows\system32\netcfg-122829890.txt
2014-11-08 08:32:15 ----A---- C:\Windows\system32\netcfg-122755093.txt
2014-11-08 08:30:50 ----A---- C:\Windows\system32\netcfg-122670015.txt
2014-11-08 08:30:47 ----A---- C:\Windows\system32\netcfg-122666906.txt
2014-11-08 08:29:50 ----A---- C:\Windows\system32\netcfg-122610015.txt
2014-11-08 08:29:49 ----A---- C:\Windows\system32\netcfg-122609343.txt
2014-11-07 21:31:05 ----A---- C:\Windows\system32\netcfg-83085453.txt
2014-11-07 21:30:56 ----A---- C:\Windows\system32\netcfg-83076656.txt
2014-11-07 12:20:02 ----A---- C:\Windows\system32\netcfg-50022765.txt
2014-11-07 12:19:55 ----A---- C:\Windows\system32\netcfg-50015562.txt
2014-11-07 11:18:44 ----A---- C:\Windows\system32\dskquota.dll
2014-11-07 11:18:40 ----A---- C:\Windows\SYSWOW64\dskquota.dll
2014-11-07 11:18:09 ----A---- C:\Windows\system32\hal.dll
2014-11-07 11:17:51 ----A---- C:\Windows\system32\mfnetsrc.dll
2014-11-07 11:17:50 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2014-11-07 11:17:50 ----A---- C:\Windows\system32\mfnetcore.dll
2014-11-07 11:17:49 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2014-11-07 11:17:49 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2014-11-07 11:17:49 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2014-11-07 11:17:18 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-11-07 11:17:13 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-11-07 11:17:11 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-11-07 11:17:10 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-11-07 11:17:09 ----A---- C:\Windows\system32\WSDApi.dll
2014-11-07 11:17:09 ----A---- C:\Windows\system32\NotificationUI.exe
2014-11-07 11:17:08 ----A---- C:\Windows\system32\drivers\storport.sys
2014-11-07 11:17:06 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2014-11-07 11:17:04 ----A---- C:\Windows\system32\drivers\dfsc.sys
2014-11-07 11:16:14 ----A---- C:\Windows\system32\dwmcore.dll
2014-11-07 11:16:13 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-11-07 11:16:13 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2014-11-07 11:16:13 ----A---- C:\Windows\explorer.exe
2014-11-07 11:16:11 ----A---- C:\Windows\system32\mfcore.dll
2014-11-07 11:16:10 ----A---- C:\Windows\system32\samsrv.dll
2014-11-07 11:16:09 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2014-11-07 11:16:06 ----A---- C:\Windows\system32\vds.exe
2014-11-07 11:16:05 ----A---- C:\Windows\system32\winresume.exe
2014-11-07 11:16:05 ----A---- C:\Windows\system32\mscms.dll
2014-11-07 11:16:04 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2014-11-07 11:16:03 ----A---- C:\Windows\SYSWOW64\mscms.dll
2014-11-07 11:16:02 ----A---- C:\Windows\system32\vdsutil.dll
2014-11-07 11:16:02 ----A---- C:\Windows\system32\samlib.dll
2014-11-07 11:16:01 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2014-11-07 11:16:00 ----A---- C:\Windows\system32\MbaeParserTask.exe
2014-11-07 11:16:00 ----A---- C:\Windows\system32\DeviceSetupManager.dll
2014-11-07 11:15:57 ----A---- C:\Windows\SYSWOW64\samlib.dll
2014-11-07 11:15:55 ----A---- C:\Windows\system32\drivers\BthAvrcpTg.sys
2014-11-07 11:15:44 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-11-07 11:14:03 ----A---- C:\Windows\system32\resetengmig.dll
2014-11-07 11:13:59 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2014-11-07 11:13:54 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2014-11-07 11:13:54 ----A---- C:\Windows\system32\StructuredQuery.dll
2014-11-07 11:13:53 ----A---- C:\Windows\system32\mfplat.dll
2014-11-07 11:13:48 ----A---- C:\Windows\system32\reseteng.dll
2014-11-07 11:13:47 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2014-11-07 11:13:42 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-11-07 11:13:41 ----A---- C:\Windows\system32\drivers\netio.sys
2014-11-07 11:13:37 ----A---- C:\Windows\system32\Windows.Storage.Compression.dll
2014-11-07 11:13:35 ----A---- C:\Windows\system32\bdesvc.dll
2014-11-07 11:13:32 ----A---- C:\Windows\system32\dhcpcore6.dll
2014-11-07 11:13:31 ----A---- C:\Windows\system32\ListSvc.dll
2014-11-07 11:13:30 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2014-11-07 11:13:30 ----A---- C:\Windows\system32\SpaceControl.dll
2014-11-07 11:13:28 ----A---- C:\Windows\system32\drivers\battc.sys
2014-11-07 11:13:27 ----A---- C:\Windows\system32\drivers\sdstor.sys
2014-11-07 11:13:25 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Compression.dll
2014-11-07 11:13:25 ----A---- C:\Windows\SYSWOW64\input.dll
2014-11-07 11:13:24 ----A---- C:\Windows\system32\input.dll
2014-11-07 11:13:23 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-11-07 11:13:23 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2014-11-07 11:13:23 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2014-11-07 11:13:09 ----A---- C:\Windows\system32\microsoft-windows-pdc.dll
2014-11-07 11:13:07 ----A---- C:\Windows\SYSWOW64\PCPKsp.dll
2014-11-07 11:13:07 ----A---- C:\Windows\system32\mswsock.dll
2014-11-07 11:13:06 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2014-11-07 11:13:05 ----A---- C:\Windows\system32\dhcpcore.dll
2014-11-07 11:13:03 ----A---- C:\Windows\SYSWOW64\AppxSip.dll
2014-11-07 11:13:02 ----A---- C:\Windows\system32\FntCache.dll
2014-11-07 11:13:01 ----A---- C:\Windows\system32\AppxSip.dll
2014-11-07 11:13:00 ----A---- C:\Windows\system32\sysreset.exe
2014-11-07 11:12:59 ----A---- C:\Windows\system32\BdeUISrv.exe
2014-11-07 11:12:57 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2014-11-07 11:12:57 ----A---- C:\Windows\system32\PCPKsp.dll
2014-11-07 11:12:57 ----A---- C:\Windows\system32\dhcpcsvc.dll
2014-11-07 11:12:43 ----A---- C:\Windows\SYSWOW64\kbdhebl3.dll
2014-11-07 11:12:43 ----A---- C:\Windows\system32\kbdhebl3.dll
2014-11-07 11:09:50 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2014-11-07 11:09:50 ----A---- C:\Windows\system32\Taskmgr.exe
2014-11-07 11:09:48 ----A---- C:\Windows\system32\WebcamUi.dll
2014-11-07 11:09:45 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2014-11-07 11:09:44 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2014-11-07 11:09:43 ----A---- C:\Windows\system32\wpnapps.dll
2014-11-07 11:09:41 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2014-11-07 11:09:41 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2014-11-07 11:09:36 ----A---- C:\Windows\system32\vdsldr.exe
2014-11-07 11:09:35 ----A---- C:\Windows\SYSWOW64\vds_ps.dll
2014-11-07 11:09:35 ----A---- C:\Windows\system32\vds_ps.dll
2014-11-07 11:08:28 ----A---- C:\Windows\system32\rfxvmt.dll
2014-11-07 11:08:28 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-11-07 11:08:24 ----A---- C:\Windows\system32\drivers\BthhfHid.sys
2014-11-07 11:08:23 ----A---- C:\Windows\system32\drivers\BtaMPM.sys
2014-11-07 11:01:26 ----A---- C:\Windows\SYSWOW64\Display.dll
2014-11-07 11:01:26 ----A---- C:\Windows\system32\Display.dll
2014-11-07 11:01:25 ----A---- C:\Windows\SYSWOW64\KBDKURD.DLL
2014-11-07 11:01:25 ----A---- C:\Windows\system32\KBDKURD.DLL
2014-11-07 11:01:21 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-11-07 10:54:27 ----A---- C:\Windows\system32\glcndFilter.dll
2014-11-07 10:54:18 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2014-11-07 10:54:14 ----A---- C:\Windows\system32\winhttp.dll
2014-11-07 10:54:12 ----A---- C:\Windows\system32\ole32.dll
2014-11-07 10:54:10 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2014-11-07 10:54:08 ----A---- C:\Windows\SYSWOW64\ole32.dll
2014-11-07 10:54:07 ----A---- C:\Windows\HelpPane.exe
2014-11-07 10:54:03 ----A---- C:\Windows\system32\wlansvc.dll
2014-11-07 10:53:51 ----A---- C:\Windows\system32\wlanapi.dll
2014-11-07 10:53:51 ----A---- C:\Windows\system32\dafWCN.dll
2014-11-07 10:53:50 ----A---- C:\Windows\system32\wlanmsm.dll
2014-11-07 10:53:47 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2014-11-07 10:53:47 ----A---- C:\Windows\system32\wlansec.dll
2014-11-07 10:53:46 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2014-11-07 10:53:44 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2014-11-07 10:53:44 ----A---- C:\Windows\system32\rdpclip.exe
2014-11-07 10:53:39 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2014-11-07 10:53:38 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2014-11-07 10:53:36 ----A---- C:\Windows\system32\wcncsvc.dll
2014-11-07 10:53:33 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2014-11-07 10:53:33 ----A---- C:\Windows\system32\WcnApi.dll
2014-11-07 10:53:32 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2014-11-07 10:53:32 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2014-11-07 10:53:32 ----A---- C:\Windows\system32\fdWCN.dll
2014-11-07 10:53:30 ----A---- C:\Windows\system32\wfdprov.dll
2014-11-07 10:53:30 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2014-11-07 10:53:29 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2014-11-07 10:53:16 ----A---- C:\Windows\system32\drivers\processr.sys
2014-11-07 10:53:15 ----A---- C:\Windows\system32\drivers\intelppm.sys
2014-11-07 10:53:15 ----A---- C:\Windows\system32\drivers\amdppm.sys
2014-11-07 10:53:15 ----A---- C:\Windows\system32\drivers\amdk8.sys
2014-11-07 10:53:13 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2014-11-07 10:53:13 ----A---- C:\Windows\system32\wlanhlp.dll
2014-11-07 10:53:13 ----A---- C:\Windows\system32\drivers\fxppm.sys
2014-11-07 10:53:04 ----A---- C:\Windows\system32\iscsilog.dll
2014-11-07 10:52:20 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-07 10:30:26 ----A---- C:\Windows\system32\msctf.dll
2014-11-07 10:30:25 ----A---- C:\Windows\SYSWOW64\msctf.dll
2014-11-07 10:30:21 ----A---- C:\Windows\system32\SettingSync.dll
2014-11-07 10:30:20 ----A---- C:\Windows\system32\shdocvw.dll
2014-11-07 10:30:19 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-11-07 10:30:19 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2014-11-07 10:30:19 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2014-11-07 10:30:19 ----A---- C:\Windows\system32\mbsmsapi.dll
2014-11-07 10:30:18 ----A---- C:\Windows\system32\SettingSyncInfo.dll
2014-11-07 10:30:06 ----A---- C:\Windows\SYSWOW64\SettingSyncInfo.dll
2014-11-07 10:29:15 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-11-07 10:29:09 ----A---- C:\Windows\system32\drivers\pdc.sys
2014-11-07 10:28:37 ----A---- C:\Windows\system32\wvc.dll
2014-11-07 10:28:37 ----A---- C:\Windows\system32\wdc.dll
2014-11-07 10:28:36 ----A---- C:\Windows\SYSWOW64\wdc.dll
2014-11-07 10:28:35 ----A---- C:\Windows\SYSWOW64\wvc.dll
2014-11-07 10:04:08 ----A---- C:\Windows\system32\newdev.dll
2014-11-07 10:04:07 ----A---- C:\Windows\SYSWOW64\newdev.dll
2014-11-07 10:04:06 ----A---- C:\Windows\SYSWOW64\newdev.exe
2014-11-07 10:04:06 ----A---- C:\Windows\SYSWOW64\ndadmin.exe
2014-11-07 10:04:06 ----A---- C:\Windows\system32\newdev.exe
2014-11-07 10:04:06 ----A---- C:\Windows\system32\ndadmin.exe
2014-11-07 09:51:51 ----A---- C:\Windows\SYSWOW64\wusa.exe
2014-11-07 09:51:51 ----A---- C:\Windows\system32\wusa.exe
2014-11-07 09:35:32 ----A---- C:\Windows\system32\drivers\evbda.sys
2014-11-07 09:35:19 ----A---- C:\Windows\system32\WpcMon.exe
2014-11-07 09:35:13 ----A---- C:\Windows\system32\WinSAT.exe
2014-11-07 09:35:08 ----A---- C:\Windows\system32\drivers\bxvbda.sys
2014-11-07 09:35:06 ----A---- C:\Windows\system32\vssapi.dll
2014-11-07 09:34:58 ----A---- C:\Windows\system32\RacEngn.dll
2014-11-07 09:34:58 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2014-11-07 09:34:56 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2014-11-07 09:34:55 ----A---- C:\Windows\system32\uDWM.dll
2014-11-07 09:34:54 ----A---- C:\Windows\system32\MMDevAPI.dll
2014-11-07 09:34:53 ----A---- C:\Windows\system32\provcore.dll
2014-11-07 09:34:51 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2014-11-07 09:34:46 ----A---- C:\Windows\system32\WinSATAPI.dll
2014-11-07 09:34:42 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2014-11-07 09:34:42 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2014-11-07 09:34:41 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2014-11-07 09:34:40 ----A---- C:\Windows\system32\apphelp.dll
2014-11-07 09:34:39 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2014-11-07 09:34:38 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2014-11-07 09:34:38 ----A---- C:\Windows\system32\combase.dll
2014-11-07 09:34:37 ----A---- C:\Windows\system32\MFPlay.dll
2014-11-07 09:34:33 ----A---- C:\Windows\system32\WWAHost.exe
2014-11-07 09:34:32 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2014-11-07 09:34:28 ----A---- C:\Windows\system32\WinTypes.dll
2014-11-07 09:34:28 ----A---- C:\Windows\system32\fveapi.dll
2014-11-07 09:34:27 ----A---- C:\Windows\system32\ReAgent.dll
2014-11-07 09:34:26 ----A---- C:\Windows\system32\wlidcredprov.dll
2014-11-07 09:34:26 ----A---- C:\Windows\system32\taskeng.exe
2014-11-07 09:34:26 ----A---- C:\Windows\system32\mfsvr.dll
2014-11-07 09:34:26 ----A---- C:\Windows\system32\mfsrcsnk.dll
2014-11-07 09:34:25 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2014-11-07 09:34:25 ----A---- C:\Windows\system32\bcdsrv.dll
2014-11-07 09:34:23 ----A---- C:\Windows\system32\wpnprv.dll
2014-11-07 09:34:23 ----A---- C:\Windows\system32\propsys.dll
2014-11-07 09:34:22 ----A---- C:\Windows\system32\drivers\acpi.sys
2014-11-07 09:34:21 ----A---- C:\Windows\system32\VAN.dll
2014-11-07 09:34:20 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2014-11-07 09:34:19 ----A---- C:\Windows\system32\services.exe
2014-11-07 09:34:17 ----A---- C:\Windows\system32\fveapibase.dll
2014-11-07 09:34:15 ----A---- C:\Windows\system32\mmcss.dll
2014-11-07 09:34:08 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2014-11-07 09:34:08 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2014-11-07 09:34:07 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2014-11-07 09:34:05 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2014-11-07 09:34:05 ----A---- C:\Windows\system32\TpmTasks.dll
2014-11-07 09:34:04 ----A---- C:\Windows\system32\ProximityService.dll
2014-11-07 09:34:03 ----A---- C:\Windows\SYSWOW64\PackageStateRoaming.dll
2014-11-07 09:34:02 ----A---- C:\Windows\SYSWOW64\provcore.dll
2014-11-07 09:34:02 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-11-07 09:34:02 ----A---- C:\Windows\system32\msvproc.dll
2014-11-07 09:34:00 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2014-11-07 09:34:00 ----A---- C:\Windows\SYSWOW64\propsys.dll
2014-11-07 09:33:59 ----A---- C:\Windows\SYSWOW64\avrt.dll
2014-11-07 09:33:59 ----A---- C:\Windows\system32\avrt.dll
2014-11-07 09:33:58 ----A---- C:\Windows\SYSWOW64\VAN.dll
2014-11-07 09:33:58 ----A---- C:\Windows\SYSWOW64\combase.dll
2014-11-07 09:33:57 ----A---- C:\Windows\SYSWOW64\svchost.exe
2014-11-07 09:33:57 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2014-11-07 09:33:57 ----A---- C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2014-11-07 09:33:55 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2014-11-07 09:33:55 ----A---- C:\Windows\system32\perfdisk.dll
2014-11-07 09:33:55 ----A---- C:\Windows\system32\batmeter.dll
2014-11-07 09:33:54 ----A---- C:\Windows\system32\SettingSyncHost.exe
2014-11-07 09:33:54 ----A---- C:\Windows\system32\aelupsvc.dll
2014-11-07 09:33:53 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2014-11-07 09:33:52 ----A---- C:\Windows\SYSWOW64\perfdisk.dll
2014-11-07 09:33:52 ----A---- C:\Windows\system32\svchost.exe
2014-11-07 09:33:48 ----A---- C:\Windows\SYSWOW64\wlidcredprov.dll
2014-11-07 09:33:48 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2014-11-07 09:33:47 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-11-07 09:33:43 ----A---- C:\Windows\system32\winsrv.dll
2014-11-07 09:33:42 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2014-11-07 09:33:42 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2014-11-07 09:33:42 ----A---- C:\Windows\system32\perfnet.dll
2014-11-07 09:33:42 ----A---- C:\Windows\system32\mfh264enc.dll
2014-11-07 09:33:41 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2014-11-07 09:33:37 ----A---- C:\Windows\SYSWOW64\mfh264enc.dll
2014-11-07 09:33:37 ----A---- C:\Windows\system32\lpksetup.exe
2014-11-07 09:33:36 ----A---- C:\Windows\system32\twinapi.dll
2014-11-07 09:33:36 ----A---- C:\Windows\system32\dwm.exe
2014-11-07 09:33:36 ----A---- C:\Windows\system32\DevPropMgr.dll
2014-11-07 09:33:35 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-11-07 09:33:34 ----A---- C:\Windows\system32\drvinst.exe
2014-11-07 09:33:33 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-11-07 09:33:32 ----A---- C:\Windows\system32\dxgi.dll
2014-11-07 09:33:32 ----A---- C:\Windows\system32\DAFWSD.dll
2014-11-07 09:33:31 ----A---- C:\Windows\SYSWOW64\perfnet.dll
2014-11-07 09:33:31 ----A---- C:\Windows\system32\d3d11.dll
2014-11-07 09:33:30 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-11-07 09:33:29 ----A---- C:\Windows\system32\webio.dll
2014-11-07 09:33:29 ----A---- C:\Windows\system32\perfos.dll
2014-11-07 09:33:28 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-11-07 09:33:28 ----A---- C:\Windows\system32\RpcEpMap.dll
2014-11-07 09:33:25 ----A---- C:\Windows\system32\umpo.dll
2014-11-07 09:33:25 ----A---- C:\Windows\system32\lpremove.exe
2014-11-07 09:33:24 ----A---- C:\Windows\system32\drivers\ws2ifsl.sys
2014-11-07 09:33:24 ----A---- C:\Windows\system32\cryptdlg.dll
2014-11-07 09:33:23 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2014-11-07 09:33:23 ----A---- C:\Windows\system32\vsstrace.dll
2014-11-07 09:33:22 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2014-11-07 09:33:22 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2014-11-07 09:33:21 ----A---- C:\Windows\system32\sdbinst.exe
2014-11-07 09:33:18 ----A---- C:\Windows\SYSWOW64\perfproc.dll
2014-11-07 09:33:18 ----A---- C:\Windows\SYSWOW64\perfos.dll
2014-11-07 09:33:18 ----A---- C:\Windows\SYSWOW64\perfctrs.dll
2014-11-07 09:33:18 ----A---- C:\Windows\system32\perfproc.dll
2014-11-07 09:33:18 ----A---- C:\Windows\system32\perfctrs.dll
2014-11-07 09:33:15 ----A---- C:\Windows\SYSWOW64\eventcls.dll
2014-11-07 09:33:15 ----A---- C:\Windows\system32\eventcls.dll
2014-11-07 09:33:14 ----A---- C:\Windows\system32\MUILanguageCleanup.dll
2014-11-07 09:33:14 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2014-11-07 09:33:12 ----A---- C:\Windows\system32\lpksetupproxyserv.dll
2014-11-07 09:33:10 ----A---- C:\Windows\system32\shimeng.dll
2014-11-07 09:33:09 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2014-11-07 09:30:47 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-11-07 09:30:45 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2014-11-07 09:30:45 ----A---- C:\Windows\system32\WSShared.dll
2014-11-07 09:30:44 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-11-07 09:30:43 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-07 09:30:43 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2014-11-07 09:30:43 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-07 09:30:43 ----A---- C:\Windows\system32\Robocopy.exe
2014-11-07 09:30:41 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-11-07 09:30:28 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-11-07 09:30:27 ----A---- C:\Windows\system32\user32.dll
2014-11-07 09:30:27 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-11-07 09:30:26 ----A---- C:\Windows\system32\srvsvc.dll
2014-11-07 09:30:26 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-11-07 09:30:25 ----A---- C:\Windows\system32\msdtctm.dll
2014-11-07 09:30:24 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2014-11-07 09:30:24 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-11-07 09:30:23 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-11-07 09:30:18 ----A---- C:\Windows\SYSWOW64\sscore.dll
2014-11-07 09:30:18 ----A---- C:\Windows\system32\sscore.dll
2014-11-07 09:29:58 ----A---- C:\Windows\system32\twinui.dll
2014-11-07 09:29:57 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-11-07 09:29:53 ----A---- C:\Windows\system32\authui.dll
2014-11-07 09:29:50 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-11-07 09:29:49 ----A---- C:\Windows\system32\msi.dll
2014-11-07 09:29:48 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-07 09:29:47 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-11-07 09:29:47 ----A---- C:\Windows\system32\actxprxy.dll
2014-11-07 09:29:25 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2014-11-07 09:29:23 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2014-11-07 09:29:21 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2014-11-07 09:29:21 ----A---- C:\Windows\system32\UIAutomationCore.dll
2014-11-07 09:29:20 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-11-07 09:29:19 ----A---- C:\Windows\system32\ubpm.dll
2014-11-07 09:29:19 ----A---- C:\Windows\system32\drivers\tpm.sys
2014-11-07 09:29:18 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2014-11-07 09:29:17 ----A---- C:\Windows\system32\drivers\crashdmp.sys
2014-11-07 09:29:16 ----A---- C:\Windows\system32\drivers\dumpfve.sys
2014-11-07 09:29:12 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-11-07 09:28:58 ----A---- C:\Windows\system32\wups.dll
2014-11-07 09:28:47 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2014-11-07 09:28:46 ----A---- C:\Windows\system32\msftedit.dll
2014-11-07 09:28:41 ----A---- C:\Windows\SYSWOW64\winmm.dll
2014-11-07 09:28:41 ----A---- C:\Windows\system32\wwansvc.dll
2014-11-07 09:28:41 ----A---- C:\Windows\system32\wwanconn.dll
2014-11-07 09:28:41 ----A---- C:\Windows\system32\winmmbase.dll
2014-11-07 09:28:41 ----A---- C:\Windows\system32\winmm.dll
2014-11-07 09:28:41 ----A---- C:\Windows\system32\WerFault.exe
2014-11-07 09:28:40 ----A---- C:\Windows\system32\WinSCard.dll
2014-11-07 09:28:39 ----A---- C:\Windows\SYSWOW64\winmmbase.dll
2014-11-07 09:28:39 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2014-11-07 09:28:38 ----A---- C:\Windows\system32\drivers\sdbus.sys
2014-11-07 09:28:38 ----A---- C:\Windows\system32\drivers\msgpioclx.sys
2014-11-07 09:28:38 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2014-11-07 09:28:37 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2014-11-07 09:28:37 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2014-11-07 09:28:36 ----A---- C:\Windows\system32\Wwanadvui.dll
2014-11-07 09:28:36 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-11-07 09:28:35 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2014-11-07 09:28:35 ----A---- C:\Windows\system32\openfiles.exe
2014-11-07 09:28:34 ----A---- C:\Windows\SYSWOW64\openfiles.exe
2014-11-07 09:28:34 ----A---- C:\Windows\system32\wwanmm.dll
2014-11-07 09:28:34 ----A---- C:\Windows\system32\drivers\udfs.sys
2014-11-07 09:28:33 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2014-11-07 09:28:33 ----A---- C:\Windows\SYSWOW64\LocationApi.dll
2014-11-07 09:28:33 ----A---- C:\Windows\system32\LocationApi.dll
2014-11-07 09:28:31 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-11-07 09:28:31 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-11-07 09:28:31 ----A---- C:\Windows\system32\wwanprotdim.dll
2014-11-07 09:28:30 ----A---- C:\Windows\system32\nshwfp.dll
2014-11-07 09:28:30 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-11-07 09:28:01 ----A---- C:\Windows\system32\resutils.dll
2014-11-07 09:28:01 ----A---- C:\Windows\system32\clusapi.dll
2014-11-07 09:27:59 ----A---- C:\Windows\SYSWOW64\resutils.dll
2014-11-07 09:27:58 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2014-11-07 09:27:57 ----A---- C:\Windows\system32\drivers\spaceport.sys
2014-11-07 09:27:37 ----A---- C:\Windows\system32\MPSSVC.dll
2014-11-07 09:27:37 ----A---- C:\Windows\system32\FirewallAPI.dll
2014-11-07 09:27:36 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-11-07 09:27:36 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2014-11-07 09:27:36 ----A---- C:\Windows\system32\WebClnt.dll
2014-11-07 09:27:36 ----A---- C:\Windows\system32\drivers\disk.sys
2014-11-07 09:27:35 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-11-07 09:27:35 ----A---- C:\Windows\system32\icfupgd.dll
2014-11-07 09:27:35 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2014-11-07 09:27:35 ----A---- C:\Windows\system32\davclnt.dll
2014-11-07 09:27:32 ----A---- C:\Windows\system32\wfapigp.dll
2014-11-07 09:27:31 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2014-11-07 08:51:08 ----A---- C:\Windows\system32\kernel32.dll
2014-11-07 08:51:07 ----A---- C:\Windows\system32\gpedit.dll
2014-11-07 08:51:06 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-11-07 08:51:06 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2014-11-07 08:51:05 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2014-11-07 08:51:05 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-11-07 08:47:20 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2014-11-07 08:46:08 ----A---- C:\Windows\system32\tssdisai.dll
2014-11-07 08:46:05 ----A---- C:\Windows\system32\poqexec.exe
2014-11-07 07:58:00 ----A---- C:\Windows\system32\netcfg-34300281.txt
2014-11-06 23:42:37 ----A---- C:\Windows\system32\netcfg-4577546.txt
2014-11-06 22:04:26 ----A---- C:\Windows\system32\netcfg-94718.txt
2014-11-06 22:04:14 ----A---- C:\Windows\system32\netcfg-82484.txt
2014-11-06 22:04:14 ----A---- C:\Windows\system32\netcfg-82140.txt
2014-11-06 22:04:13 ----A---- C:\Windows\system32\netcfg-81562.txt
2014-11-06 22:04:09 ----A---- C:\Windows\system32\netcfg-77062.txt
2014-11-06 22:04:08 ----A---- C:\Windows\system32\netcfg-76781.txt
2014-11-06 22:04:08 ----A---- C:\Windows\system32\netcfg-76421.txt
2014-11-06 22:04:08 ----A---- C:\Windows\system32\netcfg-76062.txt
2014-11-06 22:04:06 ----A---- C:\Windows\system32\netcfg-74750.txt
2014-11-06 21:43:10 ----A---- C:\Windows\system32\netcfg-232375.txt
2014-11-06 21:42:56 ----A---- C:\Windows\system32\netcfg-218187.txt
2014-11-06 21:42:56 ----A---- C:\Windows\system32\netcfg-217859.txt
2014-11-06 21:42:55 ----A---- C:\Windows\system32\netcfg-217343.txt
2014-11-06 21:42:49 ----A---- C:\Windows\system32\netcfg-211687.txt
2014-11-06 21:42:49 ----A---- C:\Windows\system32\netcfg-211328.txt
2014-11-06 21:42:49 ----A---- C:\Windows\system32\netcfg-210875.txt
2014-11-06 21:42:48 ----A---- C:\Windows\system32\netcfg-210593.txt
2014-11-06 21:42:47 ----A---- C:\Windows\system32\netcfg-209453.txt
2014-11-06 19:06:41 ----A---- C:\Windows\system32\netcfg-348978890.txt
2014-11-06 17:03:16 ----A---- C:\Windows\system32\netcfg-341574453.txt
2014-11-06 17:00:33 ----A---- C:\Windows\system32\netcfg-341411500.txt
2014-11-06 16:36:26 ----A---- C:\Windows\system32\netcfg-339964156.txt
2014-11-06 16:34:19 ----A---- C:\Windows\system32\netcfg-339837265.txt
2014-11-06 16:27:56 ----A---- C:\Windows\system32\netcfg-339454171.txt
2014-11-06 14:32:20 ----A---- C:\Windows\system32\netcfg-332518093.txt
2014-11-06 13:06:15 ----A---- C:\Windows\system32\netcfg-327352656.txt
2014-11-06 13:05:10 ----A---- C:\Windows\system32\netcfg-327287859.txt
2014-11-06 12:37:10 ----A---- C:\Windows\system32\netcfg-325608140.txt
2014-11-06 12:35:00 ----A---- C:\Windows\system32\netcfg-325478156.txt
2014-11-06 11:24:58 ----A---- C:\Windows\system32\netcfg-321276203.txt
2014-11-06 11:23:47 ----A---- C:\Windows\system32\netcfg-321204859.txt
2014-11-05 18:10:07 ----A---- C:\Windows\system32\netcfg-259184828.txt
2014-11-05 18:08:55 ----A---- C:\Windows\system32\netcfg-259113125.txt
2014-11-05 18:07:35 ----A---- C:\Windows\system32\netcfg-259033671.txt
2014-11-05 18:00:20 ----A---- C:\Windows\system32\drivers\mod7700.sys
2014-11-05 18:00:20 ----A---- C:\Windows\system32\drivers\ewusbnet.sys
2014-11-05 18:00:20 ----A---- C:\Windows\system32\drivers\ewusbmdm.sys
2014-11-05 18:00:20 ----A---- C:\Windows\system32\drivers\ewusbfake.sys
2014-11-05 18:00:20 ----A---- C:\Windows\system32\drivers\ewdcsc.sys
2014-11-05 18:00:03 ----D---- C:\Program Files (x86)\Mobile Partner
2014-11-05 17:52:17 ----A---- C:\Windows\system32\netcfg-258115500.txt
2014-11-05 17:47:27 ----A---- C:\Windows\system32\netcfg-257824859.txt
2014-11-05 17:47:15 ----A---- C:\Windows\system32\netcfg-257812984.txt
2014-11-05 17:42:52 ----A---- C:\Windows\system32\netcfg-257550375.txt
2014-11-05 17:40:09 ----A---- C:\Windows\system32\netcfg-257392390.txt
2014-11-05 17:32:21 ----A---- C:\Windows\system32\netcfg-256923921.txt
2014-11-05 17:31:40 ----A---- C:\Windows\system32\netcfg-256883046.txt
2014-11-05 17:28:38 ----A---- C:\Windows\system32\netcfg-256701187.txt
2014-11-05 17:27:54 ----A---- C:\Windows\system32\netcfg-256656812.txt
2014-11-05 17:07:06 ----A---- C:\Windows\system32\netcfg-255409078.txt
2014-11-05 14:04:19 ----A---- C:\Windows\system32\netcfg-244442328.txt
2014-11-05 06:51:22 ----A---- C:\Windows\system32\netcfg-218465359.txt
2014-11-05 06:51:05 ----A---- C:\Windows\system32\netcfg-218448609.txt
2014-11-05 06:48:10 ----A---- C:\Windows\system32\netcfg-218272953.txt
2014-11-05 06:48:06 ----A---- C:\Windows\system32\netcfg-218269031.txt
2014-11-05 06:47:12 ----A---- C:\Windows\system32\netcfg-218214890.txt
2014-11-05 06:47:11 ----A---- C:\Windows\system32\netcfg-218214171.txt
2014-11-05 03:00:37 ----A---- C:\Windows\system32\netcfg-204620250.txt
2014-11-05 03:00:34 ----A---- C:\Windows\system32\netcfg-204617343.txt
2014-11-05 02:59:33 ----A---- C:\Windows\system32\netcfg-204556328.txt
2014-11-05 02:59:33 ----A---- C:\Windows\system32\netcfg-204555703.txt
2014-11-04 18:17:40 ----A---- C:\Windows\system32\netcfg-173243531.txt
2014-11-04 18:17:38 ----A---- C:\Windows\system32\netcfg-173240890.txt
2014-11-04 11:39:03 ----A---- C:\Windows\system32\netcfg-149326109.txt
2014-11-04 11:38:00 ----A---- C:\Windows\system32\netcfg-149262843.txt
2014-11-04 11:23:22 ----A---- C:\Windows\system32\netcfg-148385265.txt
2014-11-04 11:22:13 ----A---- C:\Windows\system32\netcfg-148315734.txt
2014-11-04 10:59:42 ----D---- C:\Windows\system32\MRT
2014-11-04 10:59:35 ----A---- C:\Windows\system32\MRT.exe
2014-11-04 10:42:48 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-11-04 10:42:48 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-11-04 10:39:40 ----A---- C:\Windows\system32\netcfg-145763046.txt
2014-11-04 10:38:34 ----A---- C:\Windows\system32\netcfg-145697015.txt
2014-11-04 08:34:02 ----A---- C:\Windows\system32\netcfg-138224921.txt
2014-11-04 08:25:41 ----A---- C:\Windows\system32\netcfg-137723781.txt
2014-11-04 08:20:30 ----A---- C:\Windows\system32\netcfg-137413609.txt
2014-11-04 03:20:38 ----A---- C:\Windows\system32\netcfg-119421250.txt
2014-11-04 02:35:03 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2014-11-04 02:27:46 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2014-11-04 02:21:54 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-11-04 02:21:50 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-11-04 02:21:45 ----A---- C:\Windows\system32\wmpmde.dll
2014-11-04 02:21:44 ----A---- C:\Windows\system32\winmde.dll
2014-11-04 02:21:42 ----A---- C:\Windows\system32\Windows.Globalization.dll
2014-11-04 02:21:41 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2014-11-04 02:21:41 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2014-11-04 02:21:40 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2014-11-04 02:21:39 ----A---- C:\Windows\system32\TimeBrokerServer.dll
2014-11-04 02:21:38 ----A---- C:\Windows\system32\drivers\bthport.sys
2014-11-04 02:21:37 ----A---- C:\Windows\SYSWOW64\winmde.dll
2014-11-04 02:21:37 ----A---- C:\Windows\system32\wpdbusenum.dll
2014-11-04 02:21:36 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2014-11-04 02:21:36 ----A---- C:\Windows\system32\netcfgx.dll
2014-11-04 02:21:36 ----A---- C:\Windows\system32\drvstore.dll
2014-11-04 02:21:35 ----A---- C:\Windows\system32\usbmon.dll
2014-11-04 02:21:34 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-11-04 02:21:34 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2014-11-04 02:21:33 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2014-11-04 02:21:30 ----A---- C:\Windows\system32\drivers\rfcomm.sys
2014-11-04 02:21:30 ----A---- C:\Windows\system32\discan.dll
2014-11-04 02:21:28 ----A---- C:\Windows\system32\NdisImPlatform.dll
2014-11-04 02:21:28 ----A---- C:\Windows\system32\drivers\storahci.sys
2014-11-04 02:21:27 ----A---- C:\Windows\system32\DevDispItemProvider.dll
2014-11-04 02:21:26 ----A---- C:\Windows\system32\fsquirt.exe
2014-11-04 02:21:19 ----A---- C:\Windows\system32\WSDPrintProxy.DLL
2014-11-04 02:21:18 ----A---- C:\Windows\SYSWOW64\DevDispItemProvider.dll
2014-11-04 02:21:17 ----A---- C:\Windows\system32\drivers\mouhid.sys
2014-11-04 02:21:15 ----A---- C:\Windows\system32\drivers\monitor.sys
2014-11-04 02:21:08 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2014-11-04 02:21:08 ----A---- C:\Windows\system32\drivers\bthenum.sys
2014-11-04 02:17:18 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2014-11-04 02:17:16 ----A---- C:\Windows\system32\sysmain.dll
2014-11-04 02:17:16 ----A---- C:\Windows\system32\drivers\rdbss.sys
2014-11-04 02:17:15 ----A---- C:\Windows\system32\VSSVC.exe
2014-11-04 02:17:14 ----A---- C:\Windows\system32\BCP47Langs.dll
2014-11-04 02:17:13 ----A---- C:\Windows\system32\netprofmsvc.dll
2014-11-04 02:17:12 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2014-11-04 02:17:11 ----A---- C:\Windows\system32\netprofm.dll
2014-11-04 02:17:09 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2014-11-04 02:17:07 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2014-11-04 02:17:06 ----A---- C:\Windows\system32\stobject.dll
2014-11-04 02:17:06 ----A---- C:\Windows\system32\netplwiz.dll
2014-11-04 02:17:06 ----A---- C:\Windows\system32\bisrv.dll
2014-11-04 02:17:06 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2014-11-04 02:17:05 ----A---- C:\Windows\system32\psmsrv.dll
2014-11-04 02:17:05 ----A---- C:\Windows\system32\Magnify.exe
2014-11-04 02:17:04 ----A---- C:\Windows\system32\taskhost.exe
2014-11-04 02:17:03 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2014-11-04 02:17:02 ----A---- C:\Windows\SYSWOW64\stobject.dll
2014-11-04 02:17:02 ----A---- C:\Windows\system32\DevicePairing.dll
2014-11-04 02:17:00 ----A---- C:\Windows\system32\AuthHost.exe
2014-11-04 02:16:59 ----A---- C:\Windows\SYSWOW64\netprofm.dll
2014-11-04 02:16:59 ----A---- C:\Windows\SYSWOW64\Magnify.exe
2014-11-04 02:16:59 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2014-11-04 02:16:59 ----A---- C:\Windows\system32\taskhostex.exe
2014-11-04 02:16:58 ----A---- C:\Windows\system32\biwinrt.dll
2014-11-04 02:16:57 ----A---- C:\Windows\SYSWOW64\biwinrt.dll
2014-11-04 02:16:51 ----A---- C:\Windows\system32\muifontsetup.dll
2014-11-04 02:16:50 ----A---- C:\Windows\SYSWOW64\npmproxy.dll
2014-11-04 02:16:50 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2014-11-04 02:16:46 ----A---- C:\Windows\SYSWOW64\nlmsprep.dll
2014-11-04 02:16:46 ----A---- C:\Windows\SYSWOW64\nlmproxy.dll
2014-11-04 02:14:46 ----A---- C:\Windows\system32\mmc.exe
2014-11-04 02:14:45 ----A---- C:\Windows\system32\wlidsvc.dll
2014-11-04 02:14:43 ----A---- C:\Windows\SYSWOW64\mmc.exe
2014-11-04 02:14:39 ----A---- C:\Windows\system32\setupapi.dll
2014-11-04 02:14:37 ----A---- C:\Windows\system32\Windows.Media.dll
2014-11-04 02:14:36 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2014-11-04 02:14:35 ----A---- C:\Windows\system32\drivers\msgpiowin32.sys
2014-11-04 02:14:34 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-11-04 02:14:34 ----A---- C:\Windows\system32\drivers\partmgr.sys
2014-11-04 02:14:33 ----A---- C:\Windows\system32\WSDMon.dll
2014-11-04 02:14:32 ----A---- C:\Windows\system32\MP4SDECD.DLL
2014-11-04 02:14:32 ----A---- C:\Windows\system32\inetpp.dll
2014-11-04 02:14:31 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2014-11-04 02:14:31 ----A---- C:\Windows\system32\wiaacmgr.exe
2014-11-04 02:14:29 ----A---- C:\Windows\SYSWOW64\wiaacmgr.exe
2014-11-04 02:14:28 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2014-11-04 02:14:28 ----A---- C:\Windows\system32\ncbservice.dll
2014-11-04 02:14:28 ----A---- C:\Windows\system32\httpprxm.dll
2014-11-04 02:14:28 ----A---- C:\Windows\system32\adhsvc.dll
2014-11-04 02:14:26 ----A---- C:\Windows\system32\keepaliveprovider.dll
2014-11-04 02:14:26 ----A---- C:\Windows\system32\httpprxp.dll
2014-11-04 02:14:26 ----A---- C:\Windows\system32\adhapi.dll
2014-11-04 02:01:41 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-11-04 02:01:41 ----A---- C:\Windows\system32\untfs.dll
2014-11-04 02:01:41 ----A---- C:\Windows\system32\autochk.exe
2014-11-04 02:01:40 ----A---- C:\Windows\SYSWOW64\autochk.exe
2014-11-04 02:00:07 ----A---- C:\Windows\system32\tquery.dll
2014-11-04 02:00:06 ----A---- C:\Windows\system32\wmp.dll
2014-11-04 02:00:03 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-11-04 02:00:01 ----A---- C:\Windows\system32\mssrch.dll
2014-11-04 01:59:56 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-11-04 01:59:48 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-11-04 01:59:44 ----A---- C:\Windows\system32\MSAudDecMFT.dll
2014-11-04 01:59:41 ----A---- C:\Windows\SYSWOW64\MSAudDecMFT.dll
2014-11-04 01:59:39 ----A---- C:\Windows\system32\kd_02_10ec.dll
2014-11-04 01:59:38 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-11-04 01:59:37 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-11-04 01:59:36 ----A---- C:\Windows\system32\rsaenh.dll
2014-11-04 01:59:36 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-11-04 01:59:35 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-11-04 01:59:35 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-04 01:59:34 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-11-04 01:59:32 ----A---- C:\Windows\system32\dwmredir.dll
2014-11-04 01:59:32 ----A---- C:\Windows\system32\conhost.exe
2014-11-04 01:59:32 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-04 01:59:31 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-04 01:59:31 ----A---- C:\Windows\system32\Windows.Networking.dll
2014-11-04 01:59:31 ----A---- C:\Windows\system32\mssph.dll
2014-11-04 01:59:30 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2014-11-04 01:59:30 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-04 01:59:30 ----A---- C:\Windows\system32\audiodg.exe
2014-11-04 01:59:28 ----A---- C:\Windows\system32\RecoveryDrive.exe
2014-11-04 01:59:27 ----A---- C:\Windows\system32\wpncore.dll
2014-11-04 01:59:26 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-11-04 01:59:20 ----A---- C:\Windows\system32\MFMediaEngine.dll
2014-11-04 01:59:19 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2014-11-04 01:59:19 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2014-11-04 01:59:19 ----A---- C:\Windows\system32\ci.dll
2014-11-04 01:59:18 ----A---- C:\Windows\system32\XpsRasterService.dll
2014-11-04 01:59:18 ----A---- C:\Windows\system32\rascfg.dll
2014-11-04 01:59:18 ----A---- C:\Windows\system32\fhengine.dll
2014-11-04 01:59:18 ----A---- C:\Windows\system32\dmvdsitf.dll
2014-11-04 01:59:17 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-11-04 01:59:16 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2014-11-04 01:59:16 ----A---- C:\Windows\system32\mfreadwrite.dll
2014-11-04 01:59:12 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2014-11-04 01:59:12 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-11-04 01:59:11 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2014-11-04 01:59:11 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-11-04 01:59:11 ----A---- C:\Windows\system32\kdvm.dll
2014-11-04 01:59:10 ----A---- C:\Windows\system32\iuilp.dll
2014-11-04 01:59:09 ----A---- C:\Windows\SYSWOW64\dmvdsitf.dll
2014-11-04 01:59:09 ----A---- C:\Windows\system32\drivers\hidbth.sys
2014-11-04 01:59:08 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2014-11-04 01:59:08 ----A---- C:\Windows\system32\wscsvc.dll
2014-11-04 01:59:08 ----A---- C:\Windows\system32\kdnet.dll
2014-11-04 01:59:08 ----A---- C:\Windows\system32\drivers\wanarp.sys
2014-11-04 01:59:08 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-11-04 01:59:07 ----A---- C:\Windows\system32\mssvp.dll
2014-11-04 01:59:07 ----A---- C:\Windows\system32\GenuineCenter.dll
2014-11-04 01:59:07 ----A---- C:\Windows\system32\fhevents.dll
2014-11-04 01:59:07 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2014-11-04 01:59:06 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-11-04 01:59:06 ----A---- C:\Windows\system32\fmifs.dll
2014-11-04 01:59:05 ----A---- C:\Windows\SYSWOW64\fmifs.dll
2014-11-04 01:59:05 ----A---- C:\Windows\system32\msshooks.dll
2014-11-04 01:59:05 ----A---- C:\Windows\system32\fhsrchapi.dll
2014-11-04 01:59:05 ----A---- C:\Windows\system32\fhcfg.dll
2014-11-04 01:59:04 ----A---- C:\Windows\system32\mssprxy.dll
2014-11-04 01:59:04 ----A---- C:\Windows\system32\mssphtb.dll
2014-11-04 01:59:04 ----A---- C:\Windows\system32\fhsvc.dll
2014-11-04 01:59:04 ----A---- C:\Windows\system32\fhcat.dll
2014-11-04 01:59:03 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2014-11-04 01:59:03 ----A---- C:\Windows\system32\rasdiag.dll
2014-11-04 01:59:03 ----A---- C:\Windows\system32\fhshl.dll
2014-11-04 01:59:03 ----A---- C:\Windows\system32\fhlisten.dll
2014-11-04 01:59:02 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2014-11-04 01:59:02 ----A---- C:\Windows\system32\fhsrchph.dll
2014-11-04 01:59:02 ----A---- C:\Windows\system32\fhmanagew.exe
2014-11-04 01:59:02 ----A---- C:\Windows\system32\fhcleanup.dll
2014-11-04 01:59:01 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2014-11-04 01:59:01 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2014-11-04 01:59:01 ----A---- C:\Windows\system32\rasmxs.dll
2014-11-04 01:59:01 ----A---- C:\Windows\system32\mssitlb.dll
2014-11-04 01:59:01 ----A---- C:\Windows\system32\msscntrs.dll
2014-11-04 01:59:01 ----A---- C:\Windows\system32\fhtask.dll
2014-11-04 01:59:00 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2014-11-04 01:59:00 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2014-11-04 01:59:00 ----A---- C:\Windows\system32\rasser.dll
2014-11-04 01:59:00 ----A---- C:\Windows\system32\fhautoplay.dll
2014-11-04 01:58:59 ----A---- C:\Windows\SYSWOW64\rasser.dll
2014-11-04 01:58:52 ----A---- C:\Windows\system32\fhsvcctl.dll
2014-11-04 01:58:50 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-11-04 01:58:50 ----A---- C:\Windows\system32\spwmp.dll
2014-11-04 01:58:36 ----A---- C:\Windows\system32\dxmasf.dll
2014-11-04 01:58:35 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-11-04 01:58:35 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-11-04 01:58:35 ----A---- C:\Windows\system32\tzres.dll
2014-11-04 01:58:35 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2014-11-04 01:58:34 ----A---- C:\Windows\system32\wmploc.DLL
2014-11-04 01:58:33 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-11-04 01:06:41 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-11-04 01:06:41 ----A---- C:\Windows\system32\crypt32.dll
2014-11-04 01:01:20 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-11-04 01:01:19 ----A---- C:\Windows\system32\cdd.dll
2014-11-04 01:01:18 ----A---- C:\Windows\system32\schedsvc.dll
2014-11-04 01:00:51 ----A---- C:\Windows\system32\wuaueng.dll
2014-11-04 01:00:50 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-11-04 01:00:50 ----A---- C:\Windows\system32\wucltux.dll
2014-11-04 01:00:50 ----A---- C:\Windows\system32\wuapi.dll
2014-11-04 01:00:49 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-11-04 01:00:49 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-11-04 01:00:49 ----A---- C:\Windows\system32\wudriver.dll
2014-11-04 01:00:49 ----A---- C:\Windows\system32\wuauclt.exe
2014-11-04 01:00:48 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-11-04 01:00:48 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-11-04 01:00:48 ----A---- C:\Windows\system32\wuwebv.dll
2014-11-04 01:00:48 ----A---- C:\Windows\system32\wuaext.dll
2014-11-04 01:00:48 ----A---- C:\Windows\system32\storewuauth.dll
2014-11-04 01:00:47 ----A---- C:\Windows\system32\wuapp.exe
2014-11-04 01:00:09 ----A---- C:\Windows\system32\sppsvc.exe
2014-11-04 01:00:08 ----A---- C:\Windows\system32\WSService.dll
2014-11-04 01:00:07 ----A---- C:\Windows\system32\sppobjs.dll
2014-11-04 01:00:06 ----A---- C:\Windows\system32\WinSetupUI.dll
2014-11-04 01:00:05 ----A---- C:\Windows\SYSWOW64\sppc.dll
2014-11-04 01:00:05 ----A---- C:\Windows\system32\sppwinob.dll
2014-11-04 01:00:05 ----A---- C:\Windows\system32\sppc.dll
2014-11-04 01:00:04 ----A---- C:\Windows\SYSWOW64\WSSync.dll
2014-11-04 01:00:04 ----A---- C:\Windows\system32\WSSync.dll
2014-11-04 01:00:04 ----A---- C:\Windows\system32\drivers\dam.sys
2014-11-04 01:00:03 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2014-11-04 01:00:03 ----A---- C:\Windows\system32\WSClient.dll
2014-11-04 00:59:59 ----A---- C:\Windows\system32\setupcln.dll
2014-11-04 00:59:54 ----A---- C:\Windows\SYSWOW64\OEMLicense.dll
2014-11-04 00:59:52 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2014-11-04 00:59:51 ----A---- C:\Windows\system32\OEMLicense.dll
2014-11-04 00:59:01 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-11-04 00:59:01 ----A---- C:\Windows\system32\BFE.DLL
2014-11-04 00:59:00 ----A---- C:\Windows\system32\drivers\wfplwfs.sys
2014-11-04 00:48:14 ----A---- C:\Windows\SYSWOW64\duser.dll
2014-11-04 00:48:14 ----A---- C:\Windows\system32\wlroamextension.dll
2014-11-04 00:48:14 ----A---- C:\Windows\system32\ncsi.dll
2014-11-04 00:48:14 ----A---- C:\Windows\system32\duser.dll
2014-11-04 00:48:13 ----A---- C:\Windows\system32\WWanAPI.dll
2014-11-04 00:48:12 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2014-11-04 00:48:11 ----A---- C:\Windows\SYSWOW64\wlroamextension.dll
2014-11-04 00:48:11 ----A---- C:\Windows\system32\hotspotauth.dll
2014-11-04 00:48:10 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2014-11-04 00:48:10 ----A---- C:\Windows\system32\taskkill.exe
2014-11-04 00:48:10 ----A---- C:\Windows\system32\drivers\ks.sys
2014-11-04 00:48:09 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2014-11-04 00:48:08 ----A---- C:\Windows\system32\tasklist.exe
2014-11-04 00:48:07 ----A---- C:\Windows\SYSWOW64\tasklist.exe
2014-11-04 00:48:07 ----A---- C:\Windows\SYSWOW64\taskkill.exe
2014-11-04 00:48:07 ----A---- C:\Windows\system32\wpd_ci.dll
2014-11-04 00:48:07 ----A---- C:\Windows\system32\wersvc.dll
2014-11-04 00:48:07 ----A---- C:\Windows\system32\nlasvc.dll
2014-11-04 00:48:06 ----A---- C:\Windows\system32\nlaapi.dll
2014-11-04 00:48:05 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2014-11-04 00:41:54 ----A---- C:\Windows\system32\InkEd.dll
2014-11-04 00:38:26 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2014-11-04 00:38:26 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2014-11-04 00:37:13 ----A---- C:\Windows\system32\certutil.exe
2014-11-04 00:37:12 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-11-04 00:37:12 ----A---- C:\Windows\SYSWOW64\certutil.exe
2014-11-04 00:37:12 ----A---- C:\Windows\system32\cryptnet.dll
2014-11-04 00:07:32 ----A---- C:\Windows\SYSWOW64\synceng.dll
2014-11-04 00:07:32 ----A---- C:\Windows\system32\synceng.dll
2014-11-03 23:57:07 ----A---- C:\Windows\system32\rastls.dll
2014-11-03 23:57:06 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-11-03 23:42:17 ----A---- C:\Windows\system32\imagehlp.dll
2014-11-03 23:42:16 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-11-03 23:41:45 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-11-03 23:41:45 ----A---- C:\Windows\system32\comctl32.dll
2014-11-03 23:36:02 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-11-03 23:36:02 ----A---- C:\Windows\system32\osk.exe
2014-11-03 23:35:23 ----A---- C:\Windows\SYSWOW64\msvcp120_clr0400.dll
2014-11-03 23:35:23 ----A---- C:\Windows\system32\msvcp120_clr0400.dll
2014-11-03 23:33:03 ----A---- C:\Windows\system32\shell32.dll
2014-11-03 23:33:02 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-11-03 23:32:25 ----A---- C:\Windows\system32\lsm.dll
2014-11-03 23:29:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-03 23:29:47 ----A---- C:\Windows\system32\vbscript.dll
2014-11-03 23:29:18 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2014-11-03 23:29:18 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-11-03 23:27:45 ----A---- C:\Windows\system32\mstscax.dll
2014-11-03 23:27:43 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-11-03 23:27:42 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-11-03 23:27:42 ----A---- C:\Windows\system32\winsta.dll
2014-11-03 23:27:42 ----A---- C:\Windows\system32\termsrv.dll
2014-11-03 23:27:42 ----A---- C:\Windows\system32\mstsc.exe
2014-11-03 23:27:41 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2014-11-03 23:27:41 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-11-03 23:27:39 ----A---- C:\Windows\system32\rdpudd.dll
2014-11-03 23:24:10 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-11-03 23:24:10 ----A---- C:\Windows\system32\atmlib.dll
2014-11-03 23:24:10 ----A---- C:\Windows\system32\atmfd.dll
2014-11-03 23:24:09 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-11-03 23:24:09 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-11-03 23:24:09 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-11-03 23:24:09 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-11-03 23:24:09 ----A---- C:\Windows\system32\lpk.dll
2014-11-03 23:24:09 ----A---- C:\Windows\system32\fontsub.dll
2014-11-03 23:24:09 ----A---- C:\Windows\system32\dciman32.dll
2014-11-03 23:23:44 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-11-03 23:23:44 ----A---- C:\Windows\system32\DWrite.dll
2014-11-03 23:23:38 ----A---- C:\Windows\system32\GdiPlus.dll
2014-11-03 23:23:37 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2014-11-03 23:23:02 ----A---- C:\Windows\system32\KernelBase.dll
2014-11-03 23:23:01 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-03 23:23:01 ----A---- C:\Windows\system32\kerberos.dll
2014-11-03 23:23:01 ----A---- C:\Windows\system32\drivers\cng.sys
2014-11-03 23:23:00 ----A---- C:\Windows\system32\winlogon.exe
2014-11-03 23:23:00 ----A---- C:\Windows\system32\sspicli.dll
2014-11-03 23:23:00 ----A---- C:\Windows\system32\objsel.dll
2014-11-03 23:23:00 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-03 23:22:59 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-11-03 23:22:59 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-03 23:22:59 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-11-03 23:22:59 ----A---- C:\Windows\system32\dpapisrv.dll
2014-11-03 23:22:58 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2014-11-03 23:22:58 ----A---- C:\Windows\system32\usercpl.dll
2014-11-03 23:22:58 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-11-03 23:22:57 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-03 23:22:57 ----A---- C:\Windows\system32\wdigest.dll
2014-11-03 23:22:57 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-03 23:22:56 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-03 23:22:56 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-03 23:22:56 ----A---- C:\Windows\system32\sspisrv.dll
2014-11-03 23:22:56 ----A---- C:\Windows\system32\lsass.exe
2014-11-03 23:22:56 ----A---- C:\Windows\system32\dimsroam.dll
2014-11-03 23:22:55 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-11-03 23:22:54 ----A---- C:\Windows\system32\credssp.dll
2014-11-03 23:22:53 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-03 23:22:52 ----A---- C:\Windows\system32\workerdd.dll
2014-11-03 23:14:39 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-11-03 23:14:39 ----A---- C:\Windows\system32\gdi32.dll
2014-11-03 23:11:50 ----A---- C:\Windows\system32\drivers\usb8023.sys
2014-11-03 23:11:49 ----A---- C:\Windows\system32\drivers\usb8023x.sys
2014-11-03 23:02:54 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-11-03 23:02:54 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-11-03 23:02:26 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-11-03 23:02:26 ----A---- C:\Windows\SYSWOW64\scrobj.dll
2014-11-03 23:02:26 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-11-03 23:02:26 ----A---- C:\Windows\system32\scrrun.dll
2014-11-03 23:02:26 ----A---- C:\Windows\system32\scrobj.dll
2014-11-03 23:02:26 ----A---- C:\Windows\system32\cscript.exe
2014-11-03 23:01:55 ----A---- C:\Windows\system32\wintrust.dll
2014-11-03 23:01:54 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-11-03 23:01:54 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2014-11-03 23:01:54 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2014-11-03 23:01:54 ----A---- C:\Windows\system32\cryptsvc.dll
2014-11-03 23:01:54 ----A---- C:\Windows\system32\apprepsync.dll
2014-11-03 23:01:54 ----A---- C:\Windows\system32\apprepapi.dll
2014-11-03 22:58:10 ----A---- C:\Windows\SYSWOW64\dpnsvr.exe
2014-11-03 22:58:10 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2014-11-03 22:58:10 ----A---- C:\Windows\SYSWOW64\dpnathlp.dll
2014-11-03 22:58:10 ----A---- C:\Windows\system32\dpnsvr.exe
2014-11-03 22:58:10 ----A---- C:\Windows\system32\dpnhupnp.dll
2014-11-03 22:58:10 ----A---- C:\Windows\system32\dpnhpast.dll
2014-11-03 22:58:10 ----A---- C:\Windows\system32\dpnet.dll
2014-11-03 22:58:10 ----A---- C:\Windows\system32\dpnathlp.dll
2014-11-03 22:58:09 ----A---- C:\Windows\SYSWOW64\dpnlobby.dll
2014-11-03 22:58:09 ----A---- C:\Windows\SYSWOW64\dpnhupnp.dll
2014-11-03 22:58:09 ----A---- C:\Windows\SYSWOW64\dpnhpast.dll
2014-11-03 22:58:09 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2014-11-03 22:58:09 ----A---- C:\Windows\system32\dpnlobby.dll
2014-11-03 22:58:09 ----A---- C:\Windows\system32\dpnaddr.dll
2014-11-03 22:57:37 ----A---- C:\Windows\system32\d2d1.dll
2014-11-03 22:57:36 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-11-03 22:55:02 ----A---- C:\Windows\system32\drivers\http.sys
2014-11-03 22:53:56 ----A---- C:\Windows\system32\drivers\afd.sys
2014-11-03 22:51:13 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-11-03 22:51:13 ----A---- C:\Windows\system32\qedit.dll
2014-11-03 22:50:23 ----A---- C:\Windows\system32\msihnd.dll
2014-11-03 22:50:23 ----A---- C:\Windows\system32\appinfo.dll
2014-11-03 22:50:22 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-11-03 22:50:22 ----A---- C:\Windows\system32\consent.exe
2014-11-03 22:42:26 ----A---- C:\Windows\system32\rpcrt4.dll
2014-11-03 22:42:25 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-11-03 22:37:06 ----A---- C:\Windows\system32\RDWebAI.dll
2014-11-03 22:37:05 ----A---- C:\Windows\system32\VmHostAI.dll
2014-11-03 22:37:05 ----A---- C:\Windows\system32\appserverai.dll
2014-11-03 22:37:03 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-11-03 22:35:31 ----A---- C:\Windows\system32\msxml6.dll
2014-11-03 22:35:30 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2014-11-03 22:35:30 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-11-03 22:35:30 ----A---- C:\Windows\system32\msxml6r.dll
2014-11-03 22:01:48 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-03 22:01:48 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-03 21:13:47 ----A---- C:\Windows\system32\netcfg-97409765.txt
2014-11-03 21:13:09 ----A---- C:\Windows\system32\netcfg-97372562.txt
2014-11-03 21:11:57 ----A---- C:\Windows\system32\netcfg-97300187.txt
2014-11-03 21:11:21 ----A---- C:\Windows\system32\netcfg-97264421.txt
2014-11-03 20:50:35 ----A---- C:\Windows\system32\netcfg-96018031.txt
2014-11-03 20:50:33 ----A---- C:\Windows\system32\netcfg-96015859.txt
2014-11-03 16:03:55 ----A---- C:\Windows\system32\netcfg-78818765.txt
2014-11-03 16:03:52 ----A---- C:\Windows\system32\netcfg-78815796.txt
2014-11-03 07:30:42 ----A---- C:\Windows\system32\netcfg-48024859.txt
2014-11-03 07:30:39 ----A---- C:\Windows\system32\netcfg-48022046.txt
2014-11-02 19:46:46 ----A---- C:\Windows\system32\wups2.dll
2014-11-02 19:46:45 ----A---- C:\Windows\system32\wushareduxresources.dll
2014-11-02 19:26:05 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2014-11-02 19:09:54 ----D---- C:\Windows.old
2014-11-02 19:02:27 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2014-11-02 19:02:27 ----A---- C:\Windows\system32\SysFxUI.dll
2014-11-02 19:02:27 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-11-02 19:02:27 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2014-11-02 19:02:27 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-11-02 18:56:32 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2014-11-02 18:56:32 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-11-02 18:55:44 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2014-11-02 18:55:44 ----A---- C:\Windows\system32\drivers\UCX01000.SYS
2014-11-02 18:54:31 ----A---- C:\Windows\system32\drivers\usbprint.sys
2014-11-02 18:54:31 ----A---- C:\Windows\system32\drivers\hidi2c.sys
2014-11-02 18:54:30 ----A---- C:\Windows\system32\drivers\hidusb.sys
2014-11-02 18:54:30 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-11-02 18:54:22 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-11-02 18:54:22 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-11-02 18:54:22 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-11-02 18:54:22 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-11-02 18:54:22 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-11-02 18:54:22 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-11-02 18:30:22 ----HD---- C:\$SysReset
2014-11-02 18:25:38 ----D---- C:\Users\aleksandr\AppData\Roaming\Macromedia
2014-11-02 18:24:44 ----D---- C:\Windows\SoftwareDistribution
2014-11-02 18:24:35 ----A---- C:\Windows\system32\netcfg-857843.txt
2014-11-02 18:24:19 ----A---- C:\Windows\system32\netcfg-842031.txt
2014-11-02 18:24:06 ----A---- C:\Windows\system32\netcfg-829437.txt
2014-11-02 18:23:23 ----D---- C:\ProgramData\MobileBrServ
2014-11-02 18:20:55 ----D---- C:\Windows\SYSWOW64\VAIO Startup Setting Tool
2014-11-02 18:20:55 ----D---- C:\Windows\pss
2014-11-02 18:20:55 ----D---- C:\Users\aleksandr\AppData\Roaming\Sony Corporation
2014-11-02 18:20:41 ----D---- C:\Users\aleksandr\AppData\Roaming\Adobe
2014-11-02 18:19:17 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-11-02 18:19:17 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-11-02 18:15:30 ----D---- C:\Users\aleksandr\AppData\Roaming\Intel
2014-11-02 18:13:37 ----SD---- C:\Users\aleksandr\AppData\Roaming\Microsoft
2014-11-02 18:13:03 ----A---- C:\Windows\system32\netcfg-166625.txt
2014-11-02 18:12:19 ----SHD---- C:\Programmer
2014-11-02 18:12:19 ----SHD---- C:\Program Files\Fælles filer
2014-11-02 18:12:18 ----SHD---- C:\ProgramData\Skrivebord
2014-11-02 18:12:18 ----SHD---- C:\ProgramData\Skabeloner
2014-11-02 18:12:18 ----SHD---- C:\ProgramData\Menuen Start
2014-11-02 18:12:18 ----SHD---- C:\ProgramData\Dokumenter
2014-11-02 16:57:15 ----ASH---- C:\hiberfil.sys
2014-11-02 15:33:50 ----D---- C:\AdwCleaner
2014-11-02 14:04:47 ----D---- C:\SUPERDelete
2014-11-02 08:59:23 ----A---- C:\autoexec.bat

======List of files/folders modified in the last 1 month======

2014-11-12 13:46:22 ----D---- C:\Windows\Prefetch
2014-11-12 13:46:07 ----RD---- C:\Program Files
2014-11-12 13:45:45 ----A---- C:\Windows\SYSWOW64\log.txt
2014-11-12 13:44:08 ----D---- C:\Windows\system32\catroot2
2014-11-12 13:43:56 ----D---- C:\Windows\Temp
2014-11-12 13:41:11 ----SHD---- C:\Windows\Installer
2014-11-12 13:40:18 ----HD---- C:\ProgramData
2014-11-12 13:38:51 ----D---- C:\Windows\system32\DriverStore
2014-11-12 13:38:51 ----D---- C:\Windows\system32\Drivers
2014-11-12 13:38:51 ----D---- C:\Windows\Inf
2014-11-12 13:25:28 ----D---- C:\Windows\system32\Tasks
2014-11-12 13:25:12 ----D---- C:\Windows\WinSxS
2014-11-12 13:25:10 ----D---- C:\Windows\System32
2014-11-12 13:25:09 ----D---- C:\Windows
2014-11-12 13:22:07 ----SHD---- C:\System Volume Information
2014-11-12 13:09:34 ----D---- C:\Program Files\Common Files
2014-11-12 13:00:02 ----D---- C:\Windows\system32\sru
2014-11-12 12:56:49 ----D---- C:\Windows\Tasks
2014-11-12 12:56:25 ----RD---- C:\Program Files (x86)
2014-11-12 12:56:24 ----D---- C:\Program Files (x86)\Common Files
2014-11-12 12:55:21 ----HD---- C:\Windows\ELAMBKUP
2014-11-12 12:54:53 ----D---- C:\Windows\SysWOW64
2014-11-12 12:49:10 ----D---- C:\Windows\system32\config
2014-11-12 12:09:49 ----D---- C:\Windows\Microsoft.NET
2014-11-12 11:58:14 ----D---- C:\Program Files\Windows Defender
2014-11-12 11:58:11 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-12 11:57:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-12 11:57:51 ----D---- C:\Windows\SYSWOW64\nb-NO
2014-11-12 11:57:51 ----D---- C:\Windows\SYSWOW64\en-US
2014-11-12 11:57:51 ----D---- C:\Windows\SYSWOW64\da-DK
2014-11-12 11:57:49 ----D---- C:\Windows\system32\nb-NO
2014-11-12 11:57:49 ----D---- C:\Windows\system32\en-US
2014-11-12 11:57:49 ----D---- C:\Windows\system32\cs-CZ
2014-11-12 11:57:48 ----D---- C:\Windows\system32\da-DK
2014-11-12 11:57:27 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 11:57:19 ----D---- C:\Program Files\Internet Explorer
2014-11-12 11:57:05 ----D---- C:\Windows\SYSWOW64\bg-BG
2014-11-12 11:57:03 ----D---- C:\Windows\SYSWOW64\wbem
2014-11-12 11:57:00 ----D---- C:\Windows\system32\Boot
2014-11-12 11:56:59 ----D---- C:\Windows\system32\bg-BG
2014-11-12 11:56:56 ----D---- C:\Windows\system32\wbem
2014-11-12 11:56:50 ----RSD---- C:\Windows\Fonts
2014-11-12 11:55:59 ----D---- C:\Program Files\Windows Media Player
2014-11-12 11:55:59 ----D---- C:\Program Files\Windows Mail
2014-11-12 11:55:58 ----D---- C:\Program Files\Windows Journal
2014-11-12 11:55:54 ----D---- C:\Program Files\Windows Photo Viewer
2014-11-12 11:55:52 ----D---- C:\Program Files\Common Files\System
2014-11-12 11:55:51 ----D---- C:\Program Files (x86)\Windows Mail
2014-11-12 11:55:49 ----D---- C:\Program Files (x86)\Windows Media Player
2014-11-12 11:55:48 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-11-12 11:55:08 ----D---- C:\Windows\WinStore
2014-11-12 11:55:07 ----D---- C:\Windows\SYSWOW64\migwiz
2014-11-12 11:55:06 ----D---- C:\Windows\SYSWOW64\winrm
2014-11-12 11:55:06 ----D---- C:\Windows\SYSWOW64\pt-PT
2014-11-12 11:55:06 ----D---- C:\Windows\SYSWOW64\oobe
2014-11-12 11:54:46 ----D---- C:\Windows\SYSWOW64\XPSViewer
2014-11-12 11:54:46 ----D---- C:\Windows\SYSWOW64\WCN
2014-11-12 11:54:46 ----D---- C:\Windows\SYSWOW64\slmgr
2014-11-12 11:54:46 ----D---- C:\Windows\SYSWOW64\MUI
2014-11-12 11:54:46 ----D---- C:\Windows\SYSWOW64\migration
2014-11-12 11:54:46 ----D---- C:\Windows\SYSWOW64\drivers
2014-11-12 11:54:46 ----D---- C:\Windows\SYSWOW64\Dism
2014-11-12 11:54:45 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-11-12 11:54:45 ----D---- C:\Windows\SYSWOW64\Com
2014-11-12 11:54:35 ----RD---- C:\Windows\ImmersiveControlPanel
2014-11-12 11:54:35 ----D---- C:\Windows\PolicyDefinitions
2014-11-12 11:54:32 ----D---- C:\Windows\system32\oobe
2014-11-12 11:54:32 ----D---- C:\Windows\system32\migwiz
2014-11-12 11:54:30 ----D---- C:\Windows\system32\winrm
2014-11-12 11:54:30 ----D---- C:\Windows\system32\pt-PT
2014-11-12 11:51:54 ----D---- C:\Windows\system32\Sysprep
2014-11-12 11:51:54 ----D---- C:\Windows\system32\slmgr
2014-11-12 11:51:54 ----D---- C:\Windows\system32\migration
2014-11-12 11:51:45 ----D---- C:\Windows\system32\WCN
2014-11-12 11:51:45 ----D---- C:\Windows\system32\MUI
2014-11-12 11:51:44 ----D---- C:\Windows\system32\Dism
2014-11-12 11:51:00 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-11-12 11:50:42 ----D---- C:\Windows\system32\SystemResetPlatform
2014-11-12 11:50:41 ----D---- C:\Windows\system32\Com
2014-11-12 11:50:39 ----D---- C:\Windows\apppatch
2014-11-12 11:48:34 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-11-12 11:46:43 ----D---- C:\Windows\system32\hu-HU
2014-11-12 11:42:28 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-11-12 11:42:02 ----D---- C:\Windows\system32\sk-SK
2014-11-12 11:37:24 ----D---- C:\ProgramData\iolo
2014-11-12 11:02:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-12 07:18:17 ----D---- C:\Windows\CbsTemp
2014-11-12 00:38:07 ----D---- C:\Program Files (x86)\Java
2014-11-12 00:35:37 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-11-12 00:35:37 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-11-12 00:35:37 ----A---- C:\Windows\SYSWOW64\java.exe
2014-11-11 03:58:26 ----D---- C:\Windows\rescache
2014-11-11 03:15:30 ----RD---- C:\Windows\assembly
2014-11-10 17:01:16 ----D---- C:\ProgramData\PRICache
2014-11-10 16:50:03 ----D---- C:\Windows\system32\drivers\UMDF
2014-11-10 16:38:17 ----RD---- C:\Windows\ToastData
2014-11-10 16:34:18 ----D---- C:\Windows\system32\SecureBootUpdates
2014-11-10 16:29:41 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-11-10 16:29:40 ----D---- C:\Windows\system32\drivers\nb-NO
2014-11-10 16:29:40 ----D---- C:\Windows\system32\drivers\en-US
2014-11-10 16:29:39 ----D---- C:\Windows\system32\drivers\da-DK
2014-11-10 15:33:57 ----D---- C:\Windows\system32\NDF
2014-11-06 23:32:36 ----D---- C:\Windows\SYSWOW64\ro-RO
2014-11-06 23:32:36 ----D---- C:\Windows\servicing
2014-11-06 23:32:13 ----D---- C:\Windows\system32\ro-RO
2014-11-06 23:20:23 ----D---- C:\Windows\SYSWOW64\fi-FI
2014-11-06 23:19:44 ----D---- C:\Windows\system32\fi-FI
2014-11-06 23:04:39 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-11-06 23:03:37 ----D---- C:\Windows\system32\pl-PL
2014-11-05 18:09:59 ----D---- C:\Windows\ModemLogs
2014-11-05 03:14:11 ----D---- C:\Windows\Logs
2014-11-04 10:59:42 ----D---- C:\Windows\debug
2014-11-04 10:57:18 ----SD---- C:\ProgramData\Microsoft
2014-11-04 03:08:24 ----D---- C:\Windows\AUInstallAgent
2014-11-03 07:30:30 ----D---- C:\Windows\system32\wdi
2014-11-02 23:14:44 ----D---- C:\Windows\SYSWOW64\sl-SI
Nahoru
Edrak
Návštěvník
Návštěvník
Příspěvky: 6
Registrován: 12 lis 2014 13:50

Re: Prosím o preventivku, bylo pár Trojanu, reklam, únos hom

#2 Příspěvek od Edrak »

2014-11-02 23:14:22 ----D---- C:\Windows\system32\sl-SI
2014-11-02 23:02:42 ----D---- C:\Windows\SYSWOW64\el-GR
2014-11-02 23:01:50 ----D---- C:\Windows\system32\el-GR
2014-11-02 22:45:33 ----D---- C:\Windows\SYSWOW64\sv-SE
2014-11-02 22:43:01 ----D---- C:\Windows\system32\sv-SE
2014-11-02 18:42:30 ----D---- C:\Windows\system32\restore
2014-11-02 18:21:22 ----SHD---- C:\$Recycle.Bin
2014-11-02 18:20:39 ----D---- C:\Program Files\Sony
2014-11-02 18:14:33 ----D---- C:\Windows\system32\Recovery
2014-11-02 18:14:04 ----AD---- C:\Windows\Panther
2014-11-02 18:13:37 ----RD---- C:\Users
2014-11-02 18:12:19 ----D---- C:\Program Files\Windows NT

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-12 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-12 267632]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2012-09-10 645952]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-11-12 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-12 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-12 436624]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-12 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-12 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-11-12 116728]
R3 acpials;@sensorsalsdriver.inf,%kbfiltr.SvcDesc%;ALS Sensor Filter; C:\Windows\system32\DRIVERS\acpials.sys [2012-07-26 9728]
R3 AMPPAL;@oem17.inf,%AMPPAL.SVCDESC%;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\System32\drivers\AMPPAL.sys [2012-07-17 162344]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 btmaux;@oem8.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2012-04-24 110592]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2012-07-14 825344]
R3 iBtFltCoex;iBtFltCoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-07-04 55848]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-30 8982208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-09-07 4120464]
R3 iwdbus;@oem20.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2012-08-09 25568]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2012-08-07 62784]
R3 NETwNe64;@oem16.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\Windows\system32\DRIVERS\NETwew00.sys [2012-08-07 4273192]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 RTL8168;@oem9.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-07-26 683664]
R3 SensorsAlsDriver;@sensorsalsdriver.inf,%WudfSensorsAlsDriverDisplayName%;UMDF Reflector service for SensorsAlsDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
R3 SensorsHIDClassDriver;@sensorshidclassdriver.inf,%WudfSensorsHIDClassDriverDisplayName%;UMDF Reflector service for SensorsHIDClassDriver; C:\Windows\System32\drivers\WUDFRd.sys [2012-07-26 198656]
R3 SensorsServiceDriver;@sensorsservicedriver.inf,%WudfSensorsServiceDriverDisplayName%;UMDF Reflector service for SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
R3 SFEP;@oem4.inf,%SvcDesc%;Sony Firmware Extension Parser; C:\Windows\System32\drivers\SFEP.sys [2012-07-11 14336]
R3 sonyfelicaportm;@oem15.inf,%SvcM_Desc%;NFC Port/PaSoRi Manager; C:\Windows\System32\Drivers\sonyfelicaportm.sys [2012-07-26 45160]
R3 sonynfcport100c;@oem15.inf,%SvcC_Desc%;NFC Port/PaSoRi(sonynfcport100c); C:\Windows\System32\Drivers\sonynfcport100c.sys [2012-06-29 62056]
R3 sonynfcport100f;@oem15.inf,%SvcF_Desc%;NFC Port/PaSoRi(sonynfcport100f); C:\Windows\System32\Drivers\sonynfcport100f.sys [2012-07-26 647784]
R3 SOWS;@oem5.inf,%SOWS%;Sony Wireless State Device; C:\Windows\System32\drivers\sows.sys [2012-06-11 24280]
R3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispName%;USB RNDIS-kort; C:\Windows\System32\drivers\usb8023x.sys [2013-02-12 20992]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 AMPPALP;@oem18.inf,%AMPPALP_Desc%;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2012-07-17 162344]
S3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-06-02 2935808]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 e1yexpress;@net1yx64.inf,%E1YExpress.Service.DispName%;Intel(R) Gigabit Network Connections Driver; C:\Windows\system32\DRIVERS\e1y60x64.sys [2012-06-02 283136]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2008-12-13 116864]
S3 hwusbfake;Huawei DataCard USB Fake; C:\Windows\system32\DRIVERS\ewusbfake.sys [2008-12-30 116224]
S3 intaud_WaveExtensible;@oem19.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2012-08-09 35296]
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2012-06-28 13546344]
S3 RSPCIESTOR;@oem12.inf,%Rts5208%;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2012-07-26 339600]
S3 usb3Hub;@oem21.inf,%usb3Hub.SVCDESC%;USB-IF USB 3.0 Hub; C:\Windows\System32\drivers\usb3Hub.sys [2012-08-09 48096]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-07-17 731688]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-12 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-08-08 1091520]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-08-08 1112000]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-05-02 135952]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-07-18 627504]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-26 2445968]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-08-07 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-08-07 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-08-07 276864]
R2 Mobile Broadband HL Service;Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [2011-08-12 227680]
R2 NFCProxyService;NFC Proxy Service; C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe [2011-11-15 470528]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2012-07-27 474208]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-07-18 149296]
R2 SampleCollector;VAIO Care Performance Service; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [2012-08-06 156672]
R2 VAIO Event Service;VAIO Event Service; C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe [2012-08-18 68776]
R3 VUAgent;VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [2012-07-24 1266336]
S2 0168681415793250mcinstcleanup;McAfee Application Installer Cleanup (0168681415793250); C:\Windows\TEMP\016868~1.EXE [2013-07-30 834664]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-08-07 364416]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-30 276288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-08-04 43616]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 McAWFwk;McAfee Activation Service; c:\PROGRA~1\mcafee\msc\mcawfwk.exe []
S3 mfeicfcoreocp;McAfee Content Filter; C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe []
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-07-18 272176]
S3 NetworkSupport;NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [2012-08-18 623784]
S3 SOHCImp;VAIO Content Importer; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2012-08-08 123616]
S3 SOHDms;VAIO Digital Media Server; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2012-08-08 460512]
S3 SOHDs;VAIO Device Searcher; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2012-08-08 78048]
S3 SpfService;VAIO Entertainment Common Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2011-12-01 289952]
S3 VAIO Power Management;VAIO Power Management; C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2012-07-19 476328]
S3 VCFw;VAIO Content Folder Watcher; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2012-08-08 972000]
S3 VCService;VCService; C:\Program Files\Sony\VAIO Care\VCService.exe [2012-08-08 56000]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o preventivku, bylo pár Trojanu, reklam, únos hom

#3 Příspěvek od vyosek »

Zdravim :)

:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Po spusteni probehne stazeni databaze
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
:arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Edrak
Návštěvník
Návštěvník
Příspěvky: 6
Registrován: 12 lis 2014 13:50

Re: Prosím o preventivku, bylo pár Trojanu, reklam, únos hom

#4 Příspěvek od Edrak »

Omlouvam se, trochu to trvalo... sam si uz s pocitacem tolik nehraju jako 2-3 roky nazpet, a jenom nez jsem prisel na to, jak presne, kde, odpojit na chvili Avast, mi trosku v osmickach trvalo.. vim, ze to je nepochopitelny (-:
.......tady to je:

Zoek.exe v5.0.0.0 Updated 11-November-2014
Tool run by aleksandr on 12-11-2014 at 16:28:35,86.
Microsoft Windows 8 6.2.9200 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\aleksandr\AppData\Local\Temp\Temp1_zoek.zip\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

12-11-2014 16:30:45 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\aleksandr\.android deleted
C:\Users\aleksandr\Downloads\HDVidCodec (2).exe deleted
C:\Users\aleksandr\Downloads\HDVidCodec (3).exe deleted
C:\Users\aleksandr\Downloads\HDVidCodec (4).exe deleted
C:\Users\aleksandr\Downloads\HDVidCodec.exe deleted
C:\Users\aleksandr\Downloads\ReimageRepair.exe deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [12-11-2014 13:25]

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[12-11-2014 13:24]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://sony13.msn.com/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://sony13.msn.com/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{087354EF-6D49-410E-B1D7-4C8186D5EB0B}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{087354EF-6D49-410E-B1D7-4C8186D5EB0B} Bing Url="http://www.bing.com/search?q={searchTer ... &pc=MASEJS"
{53684558-9299-43B8-AD6A-577A250FAC2A} eBay Url="http://rover.ebay.com/rover/1/14361-113 ... earchTerms}"

==== Reset Google Chrome ======================

Nothing found to reset

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\aleksandr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\aleksandr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=8 folders=1 1184248 bytes)

==== Empty Temp Folders ======================

C:\Users\Administrator\AppData\Local\Temp emptied successfully
C:\Users\aleksandr\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\ALEKSA~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 12-11-2014 at 17:02:55,76 ======================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o preventivku, bylo pár Trojanu, reklam, únos hom

#5 Příspěvek od vyosek »

Poprosim jeste o AdwCleaner
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Edrak
Návštěvník
Návštěvník
Příspěvky: 6
Registrován: 12 lis 2014 13:50

Re: Prosím o preventivku, bylo pár Trojanu, reklam, únos hom

#6 Příspěvek od Edrak »

Tady to je a diky za pomoc... jeste muzu dotaz? Program SuperAntiSpyware se spusti spoælecne se startem kompa, dela neco ten program v free verzi, nebo je mozny ho vypnout a jen rucne skenovat, kdyz je nejake podezreni?


# AdwCleaner v4.101 - Report created 12/11/2014 at 18:03:28
# Updated 09/11/2014 by Xplode
# Database : 2014-11-11.2 [Live]
# Operating System : Windows 8 (64 bits)
# Username : aleksandr - VAIOROQ
# Running from : D:\Nuzhnie fajly\Drugie fajly, Nado znat, chto nazhat\adwcleaner_4.101.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.17148


*************************

AdwCleaner[R0].txt - [23622 octets] - [02/11/2014 15:34:23]
AdwCleaner[R1].txt - [1190 octets] - [12/11/2014 15:46:49]
AdwCleaner[R2].txt - [902 octets] - [12/11/2014 18:01:42]
AdwCleaner[S0].txt - [20822 octets] - [02/11/2014 15:37:33]
AdwCleaner[S1].txt - [824 octets] - [12/11/2014 18:03:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [883 octets] ##########
Nahoru
Edrak
Návštěvník
Návštěvník
Příspěvky: 6
Registrován: 12 lis 2014 13:50

Re: Prosím o preventivku, bylo pár Trojanu, reklam, únos hom

#7 Příspěvek od Edrak »

Tak ted jsem vas asi trochu spletl,... log ktery jste asi chtel videt, vypadal tak, jak posilam az nyni... Ja potom spustil i ten Zoek a z nej log poslal. Ze jste zadal i log z Adw jsem si v tom vasem prispevku nevsiml... omlouvam seee. Ale i jako laik se domnivam, ze tam byl pekny bordel a ten druhy log uz je v poradku...

Tady je ten prvotni se vsim bordelem, co jste chtel videt a pokud bude vlakno neprehledne, muzete tuhle zpravu smazat, nebo prehazet, upravit....

# AdwCleaner v3.311 - Report created 02/11/2014 at 15:37:33
# Updated 30/09/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : aleksandr - VAIOROQ
# Running from : C:\Users\aleksandr\Downloads\adwcleaner_3.311.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : F06DEFF2-5B9C-490D-910F-35D3A9119622
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
[#] Service Deleted : LPTSystemUpdater
[#] Service Deleted : SmdmFService
[#] Service Deleted : Update Krab Web
[#] Service Deleted : Util Krab Web
Service Deleted : {6eedbdc0-0c0f-4342-b93c-88b4d0a26cc9}Gw64

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\IePluginServices
Folder Deleted : C:\ProgramData\Registry Helper
Folder Deleted : C:\ProgramData\smdmf
Folder Deleted : C:\ProgramData\Systweak
Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\ProgramData\SharkManCoupon
Folder Deleted : C:\ProgramData\websaver
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyBestOffersToday
Folder Deleted : C:\Program Files (x86)\ASP
Folder Deleted : C:\Program Files (x86)\Bench
[!] Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\LPT
Folder Deleted : C:\Program Files (x86)\LSHunter.TV
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\Registry Helper
Folder Deleted : C:\Program Files (x86)\Settings Manager
Folder Deleted : C:\Program Files (x86)\SupTab
Folder Deleted : C:\Program Files (x86)\Krab Web
Folder Deleted : C:\Users\aleksandr\AppData\Local\BenchUpdater
Folder Deleted : C:\Users\aleksandr\AppData\Local\globalUpdate
Folder Deleted : C:\Users\aleksandr\AppData\Local\LPT
Folder Deleted : C:\Users\aleksandr\AppData\Local\Smartbar
Folder Deleted : C:\Users\aleksandr\AppData\Local\mbot_dk_59
Folder Deleted : C:\Users\aleksandr\AppData\LocalLow\Smartbar
Folder Deleted : C:\Users\aleksandr\AppData\Roaming\Systweak
Folder Deleted : C:\Users\aleksandr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSHunter.TV
Folder Deleted : C:\Users\aleksandr\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfoiamhofhcecpaclohfepobobicflie
File Deleted : C:\Windows\SysWOW64\RegistryHelperLM.ocx
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Windows\System32\sasnative64.exe
File Deleted : C:\Windows\System32\drivers\{6eedbdc0-0c0f-4342-b93c-88b4d0a26cc9}Gw64.sys
File Deleted : C:\Users\aleksandr\Desktop\Sync Folder.lnk
File Deleted : C:\Users\aleksandr\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\aleksandr\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****

Task Deleted : advanced-System Protector_startup
Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : LaunchSignup
Task Deleted : Optimizer Pro Schedule
Task Deleted : 05d20afc-1ff1-46e9-8a83-09cb39bbd70b-1
Task Deleted : 05d20afc-1ff1-46e9-8a83-09cb39bbd70b-11
Task Deleted : 05d20afc-1ff1-46e9-8a83-09cb39bbd70b-2
Task Deleted : 05d20afc-1ff1-46e9-8a83-09cb39bbd70b-3
Task Deleted : 05d20afc-1ff1-46e9-8a83-09cb39bbd70b-4
Task Deleted : 05d20afc-1ff1-46e9-8a83-09cb39bbd70b-5
Task Deleted : 05d20afc-1ff1-46e9-8a83-09cb39bbd70b-5_user
Task Deleted : 05d20afc-1ff1-46e9-8a83-09cb39bbd70b-6
Task Deleted : 05d20afc-1ff1-46e9-8a83-09cb39bbd70b-7

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome browser.lnk
Shortcut Disinfected : C:\Users\aleksandr\Desktop\Internet Explorer browser.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\aleksandr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\aleksandr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\aleksandr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\iexplore - Genvej.lnk

***** [ Registry ] *****

Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [{82726A3C-0D6D-3181-7090-7FD3971EAB3F}]
Key Deleted : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\wajam.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Infrastructure Helper]
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.bandobjectattribute
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.bho
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.dockingpanel
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbar
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbarbandobject
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.smartbardisplaystate
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.smartbarmenuform
Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.bench.nmhost
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamInternetEnhancer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamInternetEnhancer_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Bench Communicator Watcher]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Classes\.
Key Deleted : HKLM\SOFTWARE\Classes\..9
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update Krab Web
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util Krab Web
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4fd9b188-053f-4a31-bfef-9279fe7f24a2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{feadf62f-aec2-46a1-a087-40149f311df9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6b5dfdfc-8aa8-425b-96c0-5426f97862e5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4fd9b188-053f-4a31-bfef-9279fe7f24a2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{feadf62f-aec2-46a1-a087-40149f311df9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4fd9b188-053f-4a31-bfef-9279fe7f24a2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{feadf62f-aec2-46a1-a087-40149f311df9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4fd9b188-053f-4a31-bfef-9279fe7f24a2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{feadf62f-aec2-46a1-a087-40149f311df9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4fd9b188-053f-4a31-bfef-9279fe7f24a2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2498}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2498}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4fd9b188-053f-4a31-bfef-9279fe7f24a2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4fd9b188-053f-4a31-bfef-9279fe7f24a2}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2498}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Proxy
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\smartbarbackup
Key Deleted : HKCU\Software\smartbarlog
Key Deleted : HKCU\Software\SupHpUISoft
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\Tutorials
Key Deleted : HKCU\Software\TutoTag
Key Deleted : HKCU\Software\Krab Web
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\adawarebp
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\AdvertisingSupport
Key Deleted : HKLM\SOFTWARE\Bench
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\Proxy
Key Deleted : HKLM\SOFTWARE\SmdmF
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\supWPM
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\Tutorials
Key Deleted : HKLM\SOFTWARE\Uniblue
Key Deleted : HKLM\SOFTWARE\Krab Web
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BC0BF363-63AB-4FF7-8EF1-AE0D7F711B24}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Krab Web
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\5E8031606EB60A64C882918F8FF38DD4

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.17116

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v38.0.2125.111

[ File : C:\Users\aleksandr\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Startup_urls] : hxxp://www.mystartsearch.com/?type=sc&ts=14148 ... X82TUC0X2T
Deleted [Homepage] : hxxp://www.trovi.com/?gd=&ctid=CT3328140&octid ... E4BD&SSPV=
Deleted [Extension] : kfoiamhofhcecpaclohfepobobicflie

*************************

AdwCleaner[R0].txt - [22490 octets] - [02/11/2014 15:34:23]
AdwCleaner[S0].txt - [19385 octets] - [02/11/2014 15:37:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [19446 octets] ##########
# AdwCleaner v4.101 - Report created 12/11/2014 at 15:50:47
# Updated 09/11/2014 by Xplode
# Database : 2014-11-11.2 [Live]
# Operating System : Windows 8 (64 bits)
# Username : aleksandr - VAIOROQ
# Running from : C:\Users\aleksandr\Desktop\adwcleaner_4.101.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\iolo
Folder Deleted : C:\Users\Administrator\AppData\Roaming\iolo
Folder Deleted : C:\Users\aleksandr\AppData\Roaming\iolo

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.17148


*************************

AdwCleaner[R0].txt - [23622 octets] - [02/11/2014 15:34:23]
AdwCleaner[R1].txt - [1190 octets] - [12/11/2014 15:46:49]
AdwCleaner[S0].txt - [20676 octets] - [02/11/2014 15:37:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [20737 octets] ##########
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o preventivku, bylo pár Trojanu, reklam, únos hom

#8 Příspěvek od vyosek »

:arrow: Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=30&t=133101
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Edrak
Návštěvník
Návštěvník
Příspěvky: 6
Registrován: 12 lis 2014 13:50

Re: Prosím o preventivku, bylo pár Trojanu, reklam, únos hom

#9 Příspěvek od Edrak »

No spolubydlici je trochu je trochu divnous, zase odjel... samo ze i s kompem... jemu to staci, prej to chodí... i kdyz podle me mozna v uvozovkach, kdo ví... Kazdopadne urcite dekuju za pomoc. :thumbsup: Zase nekdy za pet let :D
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o preventivku, bylo pár Trojanu, reklam, únos hom

#10 Příspěvek od vyosek »

:arrow: jeste tam toho bylo hooodne na cisteni :?:

Neni tedy zac :worship:


:closed:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“