eset jlásí trojana v karanténě

[Márty84]

Vypnete trvale Windows Defender


Presunte ComboFix na plochu, jinak to nebude fungovat.
Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

File::
c:\windows\inf\msstp.vbe
c:\windows\system32\mncmhkrsn.vbe

Folder::
c:\programdata\AVG

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=-
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"MSStp"=-
"mncmhkrsnSrv"=-
"Adobe ARM"=-

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

DDS::
uStart Page = hxxp://www.default-search.net?sid=503&a ... 57&src=hmp

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

[Horst_Fuchs]

ComboFix 14-07-07.01 - 1 07.07.2014 10:06:43.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3990.2068 [GMT 2:00]
Spuštěný z: c:\users\1\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\1\Desktop\CFScript.txt
AV: ESET Smart Security 7.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: ESET Personální firewall *Disabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 7.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
FILE ::
"c:\windows\inf\msstp.vbe"
"c:\windows\system32\mncmhkrsn.vbe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\AVG
c:\programdata\AVG\AWL\AvgRep.xml
c:\programdata\AVG\AWL\Program Statistics\ProgramStatistics.2013.tudb
c:\programdata\AVG\AWL\TUProgMan.10.tudb
c:\programdata\AVG\AWL\TUProgManagerCache.10.tudb
c:\programdata\AVG\AWL\TUTuningIndex.10.2.tudb
c:\programdata\AVG\AWL\TUUtilitiesSvc.13.tudb
c:\programdata\AVG\AWL0017AF00CB2D66E747252E51DEEE1451.xml
c:\programdata\AVG\AWL0018B728F3561D5528C413F1314026FD.xml
c:\programdata\AVG\AWL2014\TTUSvc.tt
c:\programdata\AVG\AWL2014\TUProgRating.10.tudb
c:\programdata\AVG\AWL2014\TUReportData.10.tudb
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-06-07 do 2014-07-07 )))))))))))))))))))))))))))))))
.
.
2014-07-07 08:09 . 2014-07-07 08:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-07-06 16:20 . 2014-06-17 22:10 1941352 ----a-w- c:\program files\Win rar.exe
2014-07-06 16:19 . 2014-07-06 16:20 -------- d-----w- c:\program files\Creative zvukovka
2014-07-06 16:18 . 2014-06-22 20:09 4622781 ----a-w- c:\program files\screen hunter.exe
2014-07-06 16:17 . 2014-06-15 20:52 1595776 ----a-w- c:\program files\eset smart.exe
2014-07-06 16:15 . 2014-07-06 16:15 -------- d-----w- c:\program files\Microsoft.Office.2007.CZ.Full+KEY
2014-07-06 16:14 . 2014-07-06 16:15 -------- d-----w- c:\program files\Adobe Photoshop CS
2014-07-05 17:22 . 2014-07-05 17:22 -------- d-----w- c:\program files (x86)\DVDVideoSoft
2014-07-05 17:03 . 2014-07-05 17:03 -------- d-----w- c:\windows\Adobe Illustrator CS
2014-07-05 17:02 . 2014-07-05 17:03 -------- d-----w- c:\program files\Adobe Illustrator CS
2014-07-05 14:59 . 2014-07-05 14:59 -------- d-----w- c:\programdata\Martau
2014-07-05 14:59 . 2014-07-05 15:25 -------- d-----w- c:\program files\Total Uninstall 6
2014-07-04 10:34 . 2014-07-04 10:34 -------- d-----w- c:\programdata\FLEXnet
2014-07-04 09:42 . 2014-07-04 09:42 -------- d-----w- c:\windows\SysWow64\spool
2014-07-04 09:42 . 2014-07-04 09:42 -------- d-----w- c:\windows\SysWow64\Macromed
2014-07-04 06:12 . 2014-06-05 10:54 10779000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{850218A7-0995-40B5-A930-83AE58ED7475}\mpengine.dll
2014-06-30 09:44 . 2014-07-01 10:40 122584 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-06-30 09:44 . 2014-06-30 09:44 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-06-30 09:44 . 2014-06-30 09:44 -------- d-----w- c:\programdata\Malwarebytes
2014-06-30 09:44 . 2014-05-12 05:26 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-06-30 09:44 . 2014-05-12 05:26 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-06-30 09:44 . 2014-05-12 05:25 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-06-30 08:48 . 2010-08-30 06:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll
2014-06-30 08:47 . 2014-06-30 09:36 -------- d-----w- C:\AdwCleaner
2014-06-29 22:00 . 2014-06-29 22:00 -------- d-----w- c:\windows\SysWow64\Adobe
2014-06-29 22:00 . 2001-10-26 21:16 16384 ----a-w- c:\windows\SysWow64\FileOps.exe
2014-06-26 04:22 . 2014-06-29 10:19 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-06-26 04:22 . 2014-06-26 04:22 -------- d--h--w- c:\programdata\Common Files
2014-06-26 04:22 . 2014-07-05 17:22 -------- d-----w- c:\program files (x86)\Common Files\DVDVideoSoft
2014-06-22 20:09 . 2014-06-22 20:09 -------- d-----w- c:\program files (x86)\Wisdom-soft ScreenHunter 5 Free
2014-06-22 17:49 . 2014-07-06 16:17 -------- d-----w- c:\program files\ostatky
2014-06-22 08:39 . 2014-07-06 16:11 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2014-06-17 23:37 . 2014-06-17 23:37 -------- d-----w- c:\program files (x86)\Microsoft Works
2014-06-17 23:36 . 2014-06-17 23:36 -------- d-----w- c:\windows\PCHEALTH
2014-06-17 23:35 . 2014-06-17 23:35 -------- d-----w- c:\program files\Microsoft Office
2014-06-17 23:35 . 2014-06-17 23:35 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2014-06-17 23:34 . 2014-06-17 23:38 -------- d-----w- c:\programdata\Microsoft Help
2014-06-17 23:34 . 2014-06-17 23:34 -------- d-----r- C:\MSOCache
2014-06-17 22:35 . 2014-06-17 23:21 -------- d-----w- c:\programdata\Creative
2014-06-17 22:30 . 2009-12-08 13:52 230912 ----a-w- c:\windows\system32\APOMgr64.DLL
2014-06-17 22:30 . 2009-12-08 13:50 177664 ----a-w- c:\windows\SysWow64\APOMngr.DLL
2014-06-17 22:30 . 2009-11-30 16:54 89088 ----a-w- c:\windows\system32\CmdRtr64.DLL
2014-06-17 22:30 . 2009-11-30 16:53 73728 ----a-w- c:\windows\SysWow64\CmdRtr.DLL
2014-06-17 22:30 . 2007-12-11 16:47 23292 ----a-w- c:\windows\ksaudENG.reg
2014-06-17 22:30 . 2007-07-05 08:27 2630 ----a-w- c:\windows\MixerName.reg
2014-06-17 22:30 . 2014-06-17 22:30 466520 ----a-w- c:\windows\system32\wrap_oal.dll
2014-06-17 22:30 . 2014-06-17 22:30 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2014-06-17 22:30 . 2014-06-17 22:30 123480 ----a-w- c:\windows\system32\OpenAL32.dll
2014-06-17 22:30 . 2014-06-17 22:30 109144 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2014-06-17 22:30 . 2012-01-13 09:23 1944064 ------w- c:\windows\system32\Sens_oal.dll
2014-06-17 22:30 . 2012-01-13 09:21 2906586 ------w- c:\windows\SysWow64\Sens_oal.dll
2014-06-17 22:29 . 2014-06-17 22:29 -------- d-----w- c:\program files (x86)\Common Files\Creative
2014-06-17 22:29 . 2014-06-17 22:29 -------- d--h--w- c:\program files (x86)\Creative Installation Information
2014-06-17 22:29 . 2014-06-17 22:29 -------- d-----w- c:\program files (x86)\Common Files\Creative Labs Shared
2014-06-17 22:29 . 2014-06-17 23:20 -------- d-----w- c:\program files (x86)\Creative
2014-06-17 22:29 . 2014-06-30 07:29 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2014-06-17 22:10 . 2014-06-17 22:10 -------- d-----w- c:\program files\WinRAR
2014-06-17 21:16 . 2014-06-17 21:16 -------- d-----w- c:\windows\Downloaded Installations
2014-06-17 21:10 . 2014-06-17 21:10 -------- d-----w- c:\windows\SysWow64\bitstreams
2014-06-17 21:10 . 2013-10-26 18:30 364544 --s-a-w- c:\windows\SysWow64\ssleay32.dll
2014-06-17 21:10 . 2013-10-26 18:30 192512 --s-a-w- c:\windows\SysWow64\libidn-11.dll
2014-06-17 21:10 . 2013-10-26 18:30 171008 --s-a-w- c:\windows\SysWow64\libssh2.dll
2014-06-17 21:10 . 2013-10-26 18:30 133632 --s-a-w- c:\windows\SysWow64\librtmp.dll
2014-06-17 21:10 . 2013-06-12 13:15 119888 --s-a-w- c:\windows\SysWow64\pthreadGC2.dll
2014-06-17 21:10 . 2013-06-12 13:15 100864 --s-a-w- c:\windows\SysWow64\zlib1.dll
2014-06-17 21:10 . 2012-05-26 23:36 55808 --s-a-w- c:\windows\SysWow64\pthreadVC2.dll
2014-06-17 21:10 . 2013-10-26 18:30 538126 --s-a-w- c:\windows\SysWow64\libcurl-4.dll
2014-06-17 21:10 . 2013-10-26 18:30 1704448 --s-a-w- c:\windows\SysWow64\libeay32.dll
2014-06-17 21:10 . 2012-09-25 21:46 472424 --s-a-w- c:\windows\SysWow64\cudart32_50_35.dll
2014-06-17 21:10 . 2014-06-17 22:35 -------- d-----w- c:\program files (x86)\Minecraft 1.4 Free Full Download
2014-06-16 02:09 . 2014-06-16 02:09 -------- d-s---w- c:\windows\system32\CompatTel
2014-06-16 01:52 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-06-16 01:52 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2014-06-16 01:52 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2014-06-16 01:52 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-06-16 01:52 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2014-06-16 01:45 . 2014-06-16 01:45 -------- d-----w- c:\windows\Migration
2014-06-16 01:39 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2014-06-16 01:34 . 2014-06-16 01:34 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2014-06-16 01:33 . 2014-06-16 01:33 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-15 21:33 . 2014-01-28 02:32 228864 ----a-w- c:\windows\system32\wwansvc.dll
2014-06-15 21:33 . 2013-10-30 02:32 335360 ----a-w- c:\windows\system32\msieftp.dll
2014-06-15 21:33 . 2013-10-30 02:19 301568 ----a-w- c:\windows\SysWow64\msieftp.dll
2014-06-15 21:33 . 2013-03-19 05:53 48640 ----a-w- c:\windows\system32\wwanprotdim.dll
2014-06-15 21:33 . 2013-07-04 12:50 633856 ----a-w- c:\windows\system32\comctl32.dll
2014-06-15 21:33 . 2013-07-04 11:50 530432 ----a-w- c:\windows\SysWow64\comctl32.dll
2014-06-15 21:33 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2014-06-15 21:33 . 2013-07-09 04:52 175104 ----a-w- c:\windows\SysWow64\wintrust.dll
2014-06-15 21:31 . 2014-04-05 02:47 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2014-06-15 21:30 . 2013-07-25 09:25 1888768 ----a-w- c:\windows\system32\WMVDECOD.DLL
2014-06-15 21:27 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2014-06-15 21:26 . 2014-06-08 09:13 506368 ----a-w- c:\windows\system32\aepdu.dll
2014-06-15 21:12 . 2013-10-12 02:30 830464 ----a-w- c:\windows\system32\nshwfp.dll
2014-06-15 21:12 . 2013-10-12 02:29 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-06-15 21:12 . 2013-10-12 02:29 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-06-15 21:12 . 2013-10-12 02:03 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
2014-06-15 21:12 . 2013-10-12 02:01 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2014-06-15 21:12 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
2014-06-15 20:53 . 2014-06-15 20:53 -------- d-----w- c:\program files\ESET
2014-06-15 20:26 . 2014-06-15 20:26 -------- d-----w- c:\program files (x86)\Google
2014-06-15 19:01 . 2014-06-17 23:36 -------- d-----w- c:\program files (x86)\Microsoft.NET
2014-06-15 18:21 . 2014-06-15 18:21 -------- d-----w- c:\windows\system32\SPReview
2014-06-15 18:21 . 2014-06-15 18:21 -------- d-----w- c:\windows\system32\EventProviders
2014-06-15 18:19 . 2010-11-20 13:34 295808 ----a-w- c:\windows\system32\drivers\volsnap.sys
2014-06-15 18:18 . 2010-11-20 13:27 529408 ----a-w- c:\windows\system32\wbemcomn.dll
2014-06-15 18:18 . 2010-11-20 13:27 244736 ----a-w- c:\program files\Windows Portable Devices\sqmapi.dll
2014-06-15 18:18 . 2010-11-20 13:27 244736 ----a-w- c:\windows\system32\sqmapi.dll
2014-06-15 18:07 . 2011-03-11 06:41 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2014-06-15 18:07 . 2011-03-11 06:41 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2014-06-15 18:07 . 2011-03-11 06:41 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2014-06-15 18:07 . 2011-03-11 06:33 2565632 ----a-w- c:\windows\system32\esent.dll
2014-06-15 18:07 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\SysWow64\esent.dll
2014-06-15 18:07 . 2011-03-11 06:41 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2014-06-15 18:07 . 2011-03-11 06:41 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2014-06-15 18:07 . 2011-03-11 06:30 96768 ----a-w- c:\windows\system32\fsutil.exe
2014-06-15 18:07 . 2011-03-11 05:31 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2014-06-15 18:07 . 2011-03-11 04:37 91648 ----a-w- c:\windows\system32\drivers\USBSTOR.SYS
2014-06-15 18:02 . 2014-06-15 18:02 -------- d-----w- c:\windows\SysWow64\Wat
2014-06-15 18:02 . 2014-06-15 18:02 -------- d-----w- c:\windows\system32\Wat
2014-06-15 18:00 . 2014-06-15 18:00 144 ----a-w- c:\windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-06-15 17:51 . 2014-06-15 17:51 -------- d-----w- c:\windows\system32\MRT
2014-06-15 17:18 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2014-06-15 17:11 . 2014-06-15 16:16 -------- d-----w- c:\windows\Panther
2014-06-15 17:06 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2014-06-15 17:06 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-06-16 01:35 . 2014-06-16 01:35 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2014-06-16 01:34 . 2014-06-16 01:34 243200 ----a-w- c:\windows\system32\webcheck.dll
2014-06-15 18:51 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2014-06-15 18:51 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2014-05-20 22:33 . 2014-05-20 22:33 734208 ----a-w- c:\windows\system32\MetroIntelGenericUIFramework.dll
2014-05-20 22:33 . 2014-05-20 22:33 64000 ----a-w- c:\windows\system32\Intel_OpenCL_ICD64.dll
2014-05-20 22:33 . 2014-05-20 22:33 60416 ----a-w- c:\windows\SysWow64\Intel_OpenCL_ICD32.dll
2014-05-20 22:33 . 2014-05-20 22:33 358912 ----a-w- c:\windows\system32\IntelOpenCL64.dll
2014-05-20 22:33 . 2014-05-20 22:33 294912 ----a-w- c:\windows\SysWow64\IntelOpenCL32.dll
2014-05-20 22:33 . 2014-05-20 22:33 278344 ----a-w- c:\windows\SysWow64\IntelCpHeciSvc.exe
2014-05-20 22:33 . 2014-05-20 22:33 182784 ----a-w- c:\windows\system32\igfxCoIn_v3621.dll
2014-05-20 22:33 . 2014-05-20 22:33 5120 ----a-w- c:\windows\system32\igfxLHMLibv2_0.dll
2014-05-20 22:33 . 2014-05-20 22:33 5120 ----a-w- c:\windows\system32\igfxLHMLib.dll
2014-05-20 22:33 . 2014-05-20 22:33 443720 ----a-w- c:\windows\system32\igfxTray.exe
2014-05-20 22:33 . 2014-05-20 22:33 373248 ----a-w- c:\windows\system32\igfxOSP.dll
2014-05-20 22:33 . 2014-05-20 22:33 31408 ----a-w- c:\windows\system32\igfxexps.dll
2014-05-20 22:33 . 2014-05-20 22:33 30720 ----a-w- c:\windows\SysWow64\igfxexps32.dll
2014-05-20 22:33 . 2014-05-20 22:33 249856 ----a-w- c:\windows\system32\igfxLHM.dll
2014-05-20 22:33 . 2014-05-20 22:33 243528 ----a-w- c:\windows\system32\igfxHK.exe
2014-05-20 22:33 . 2014-05-20 22:33 218808 ----a-w- c:\windows\system32\iglhcp64.dll
2014-05-20 22:33 . 2014-05-20 22:33 190792 ----a-w- c:\windows\system32\igfxext.exe
2014-05-20 22:33 . 2014-05-20 22:33 183800 ----a-w- c:\windows\SysWow64\iglhcp32.dll
2014-05-20 22:33 . 2014-05-20 22:33 1137080 ----a-w- c:\windows\system32\iglhsip64.dll
2014-05-20 22:33 . 2014-05-20 22:33 1132960 ----a-w- c:\windows\SysWow64\iglhsip32.dll
2014-05-20 22:33 . 2014-05-20 22:33 70144 ----a-w- c:\windows\system32\igfxCUIServicePS.dll
2014-05-20 22:33 . 2014-05-20 22:33 69632 ----a-w- c:\windows\system32\igfxDHLibv2_0.dll
2014-05-20 22:33 . 2014-05-20 22:33 655360 ----a-w- c:\windows\system32\igfxDH.dll
2014-05-20 22:33 . 2014-05-20 22:33 57856 ----a-w- c:\windows\system32\igfxDHLib.dll
2014-05-20 22:33 . 2014-05-20 22:33 501064 ----a-w- c:\windows\system32\igfxEM.exe
2014-05-20 22:33 . 2014-05-20 22:33 314696 ----a-w- c:\windows\system32\igfxCUIService.exe
2014-05-20 22:33 . 2014-05-20 22:33 267264 ----a-w- c:\windows\system32\igfxDI.dll
2014-05-20 22:33 . 2014-05-20 22:33 212992 ----a-w- c:\windows\system32\igfxDTCM.dll
2014-05-20 22:33 . 2014-05-20 22:33 10752 ----a-w- c:\windows\system32\igfxDILib.dll
2014-05-20 22:33 . 2014-05-20 22:33 10240 ----a-w- c:\windows\system32\igfxEMLibv2_0.dll
2014-05-20 22:33 . 2014-05-20 22:33 10240 ----a-w- c:\windows\system32\igfxEMLib.dll
2014-05-20 22:33 . 2014-05-20 22:33 10240 ----a-w- c:\windows\system32\igfxDILibv2_0.dll
2014-05-20 22:33 . 2014-05-20 22:33 4590152 ----a-w- c:\windows\system32\igdusc64.dll
2014-05-20 22:33 . 2014-05-20 22:33 3658520 ----a-w- c:\windows\SysWow64\igdusc32.dll
2014-05-20 22:33 . 2014-05-20 22:33 254976 ----a-w- c:\windows\system32\igfxCPL.cpl
2014-05-20 22:33 . 2014-05-20 22:33 2023936 ----a-w- c:\windows\system32\igfxcmjit64.dll
2014-05-20 22:33 . 2014-05-20 22:33 187408 ----a-w- c:\windows\system32\igfxcmrt64.dll
2014-05-20 22:33 . 2014-05-20 22:33 182784 ----a-w- c:\windows\system32\igfx11cmrt64.dll
2014-05-20 22:33 . 2014-05-20 22:33 1755648 ----a-w- c:\windows\SysWow64\igfxcmjit32.dll
2014-05-20 22:33 . 2014-05-20 22:33 158032 ----a-w- c:\windows\SysWow64\igfxcmrt32.dll
2014-05-20 22:33 . 2014-05-20 22:33 155136 ----a-w- c:\windows\SysWow64\igfx11cmrt32.dll
2014-05-20 22:33 . 2014-05-20 22:33 16586584 ----a-w- c:\windows\system32\igdumdim64.dll
2014-05-20 22:33 . 2014-05-20 22:33 433560 ----a-w- c:\windows\system32\igdmd64.dll
2014-05-20 22:33 . 2014-05-20 22:33 348088 ----a-w- c:\windows\SysWow64\igdmd32.dll
2014-05-20 22:33 . 2014-05-20 22:33 1673216 ----a-w- c:\windows\system32\igdrcl64.dll
2014-05-20 22:33 . 2014-05-20 22:33 16114320 ----a-w- c:\windows\SysWow64\igdumdim32.dll
2014-05-20 22:33 . 2014-05-20 22:33 1551872 ----a-w- c:\windows\SysWow64\igdrcl32.dll
2014-05-20 22:33 . 2014-05-20 22:33 3791872 ----a-w- c:\windows\system32\drivers\igdkmd64.sys
2014-05-20 22:33 . 2014-05-20 22:33 23048704 ----a-w- c:\windows\system32\igdfcl64.dll
2014-05-20 22:33 . 2014-05-20 22:33 18032640 ----a-w- c:\windows\SysWow64\igdfcl32.dll
2014-05-20 22:33 . 2014-05-20 22:33 330240 ----a-w- c:\windows\system32\igdbcl64.dll
2014-05-20 22:33 . 2014-05-20 22:33 291328 ----a-w- c:\windows\SysWow64\igdbcl32.dll
2014-05-20 22:33 . 2014-05-20 22:33 223744 ----a-w- c:\windows\system32\igdde64.dll
2014-05-20 22:33 . 2014-05-20 22:33 183808 ----a-w- c:\windows\SysWow64\igdde32.dll
2014-05-20 22:33 . 2014-05-20 22:33 160256 ----a-w- c:\windows\system32\igdail64.dll
2014-05-20 22:33 . 2014-05-20 22:33 142848 ----a-w- c:\windows\SysWow64\igdail32.dll
2014-05-20 22:33 . 2014-05-20 22:33 17791136 ----a-w- c:\windows\system32\igd10iumd64.dll
2014-05-20 22:33 . 2014-05-20 22:33 8120320 ----a-w- c:\windows\system32\ig7icd64.dll
2014-05-20 22:33 . 2014-05-20 22:33 6364672 ----a-w- c:\windows\SysWow64\ig7icd32.dll
2014-05-20 22:33 . 2014-05-20 22:33 17409536 ----a-w- c:\windows\SysWow64\igd10iumd32.dll
2014-05-20 22:33 . 2014-05-20 22:33 94208 ----a-w- c:\windows\system32\IccLibDll_x64.dll
2014-05-20 22:33 . 2014-05-20 22:33 4342088 ----a-w- c:\windows\system32\Gfxv4_0.exe
2014-05-20 22:33 . 2014-05-20 22:33 4338504 ----a-w- c:\windows\system32\Gfxv2_0.exe
2014-05-20 22:33 . 2014-05-20 22:33 929608 ----a-w- c:\windows\system32\GfxUIEx.exe
2014-05-20 22:33 . 2014-05-20 22:33 543560 ----a-w- c:\windows\system32\DPTopologyApp.exe
2014-05-20 22:33 . 2014-05-20 22:33 543048 ----a-w- c:\windows\system32\DPTopologyAppv2_0.exe
2014-05-20 22:33 . 2014-05-20 22:33 392520 ----a-w- c:\windows\system32\CustomModeApp.exe
2014-05-20 22:33 . 2014-05-20 22:33 392008 ----a-w- c:\windows\system32\CustomModeAppv2_0.exe
2014-05-20 22:33 . 2014-05-20 22:33 152392 ----a-w- c:\windows\system32\difx64.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2014-7-5 113664]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [x]
S2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service;c:\windows\system32\igfxCUIService.exe;c:\windows\SYSNATIVE\igfxCUIService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S3 ksaud;Creative USB Audio Driver;c:\windows\system32\drivers\ksaud.sys;c:\windows\SYSNATIVE\drivers\ksaud.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-15 20:26 1091912 ----a-w- c:\program files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-07-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-06-15 20:26]
.
2014-07-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-06-15 20:26]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2014-02-24 5581888]
"Creative SB Monitoring Utility"="sbavmon.dll" [2009-12-16 109056]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-10 - (no file)
.
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Celkový čas: 2014-07-07 10:12:50 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-07-07 08:12
ComboFix2.txt 2014-07-06 21:55
.
Před spuštěním: Volných bajtů: 912 930 291 712
Po spuštění: Volných bajtů: 912 854 274 048
.
- - End Of File - - 363EEA1C8919716B53EBBA2DBF43A1E4
A36C5E4F47E84449FF07ED3517B43A31

[Márty84]

Hlavne ze jsem psal s vykricnikem a cervene, ze mate CF dat na plochu

Ale mate stesti, tentokrat to zbastil a mazal


Dejte novy log z tohoto RSITx64 - http://images.malwareremoval.com/random/RSITx64.exe .

[Horst_Fuchs]

Mám ho celou dobu na ploše

[Márty84]

Mám ho celou dobu na ploše

ComboFix 14-07-07.01 - 1 07.07.2014 10:06:43.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3990.2068 [GMT 2:00]
Spuštěný z: c:\users\1\Downloads\ComboFix.exe

[Horst_Fuchs]

Je to moc dlouhé, rozdělím to na dvě části...

[Horst_Fuchs]

Logfile of random's system information tool 1.10 (written by random/random)
Run by 1 at 2014-07-07 10:26:33
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 871 GB (91%) free of 954 GB
Total RAM: 3990 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:26:35, on 7.7.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\1.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7187 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\Dwm.exe"
"taskhost.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Windows\System32\rundll32.exe" sbavmon.dll,SBAVMonitor
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\explorer.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3796.0.56882917\301723220" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,5,15 --gpu-vendor-id=0x8086 --gpu-device-id=0x0152 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3621 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3796.2.1139452917\1382974157" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3796.3.2038206012\895156910" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3796.5.577599334\1286154014" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3796.6.1732496485\1892596094" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/NewSuggestType_A7_Stable_R2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_66/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3796.8.1131012889\457830215" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\1\Downloads\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2014-02-24 5581888]
"Creative SB Monitoring Utility"=RunDll32 sbavmon.dll,SBAVMonitor []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-07-07 10:21:30 ----D---- C:\rsit
2014-07-07 10:21:30 ----D---- C:\Program Files\trend micro
2014-07-07 10:12:52 ----D---- C:\Windows\temp
2014-07-07 10:12:50 ----A---- C:\ComboFix.txt
2014-07-07 10:10:21 ----SHD---- C:\$RECYCLE.BIN
2014-07-06 23:34:28 ----A---- C:\Windows\zip.exe
2014-07-06 23:34:28 ----A---- C:\Windows\SWSC.exe
2014-07-06 23:34:28 ----A---- C:\Windows\SWREG.exe
2014-07-06 23:34:28 ----A---- C:\Windows\sed.exe
2014-07-06 23:34:28 ----A---- C:\Windows\PEV.exe
2014-07-06 23:34:28 ----A---- C:\Windows\NIRCMD.exe
2014-07-06 23:34:28 ----A---- C:\Windows\MBR.exe
2014-07-06 23:34:28 ----A---- C:\Windows\grep.exe
2014-07-06 23:34:21 ----D---- C:\Qoobox
2014-07-06 23:34:10 ----D---- C:\Windows\erdnt
2014-07-06 21:19:49 ----AD---- C:\ProgramData\TEMP
2014-07-06 18:20:46 ----A---- C:\Program Files\Win rar.exe
2014-07-06 18:19:44 ----D---- C:\Program Files\Creative zvukovka
2014-07-06 18:18:32 ----A---- C:\Program Files\screen hunter.exe
2014-07-06 18:17:47 ----A---- C:\Program Files\eset smart.exe
2014-07-06 18:15:27 ----D---- C:\Program Files\Microsoft.Office.2007.CZ.Full+KEY
2014-07-06 18:14:49 ----D---- C:\Program Files\Adobe Photoshop CS
2014-07-05 19:22:27 ----D---- C:\Users\1\AppData\Roaming\OpenCandy
2014-07-05 19:22:27 ----D---- C:\Program Files (x86)\DVDVideoSoft
2014-07-05 19:11:58 ----D---- C:\Users\1\AppData\Roaming\Macromedia
2014-07-05 19:03:18 ----D---- C:\Windows\Adobe Illustrator CS
2014-07-05 19:02:50 ----D---- C:\Program Files\Adobe Illustrator CS
2014-07-05 16:59:09 ----D---- C:\ProgramData\Martau
2014-07-05 16:59:05 ----D---- C:\Program Files\Total Uninstall 6
2014-07-04 12:34:29 ----D---- C:\ProgramData\FLEXnet
2014-07-04 11:42:52 ----D---- C:\Windows\SYSWOW64\spool
2014-07-04 11:42:38 ----D---- C:\Windows\SYSWOW64\Macromed
2014-06-30 11:44:46 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-06-30 11:44:19 ----D---- C:\ProgramData\Malwarebytes
2014-06-30 11:44:19 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-30 11:44:19 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-06-30 11:44:19 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-06-30 11:44:19 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-06-30 10:48:11 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-06-30 10:47:58 ----D---- C:\AdwCleaner
2014-06-30 00:00:11 ----D---- C:\Windows\SYSWOW64\Adobe
2014-06-30 00:00:11 ----A---- C:\Windows\SYSWOW64\FileOps.exe
2014-06-26 06:24:02 ----D---- C:\Users\1\AppData\Roaming\AVG
2014-06-26 06:22:25 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-06-26 06:22:24 ----HD---- C:\ProgramData\Common Files
2014-06-26 06:22:09 ----D---- C:\Users\1\AppData\Roaming\DVDVideoSoft
2014-06-22 22:09:53 ----D---- C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free
2014-06-22 19:49:58 ----D---- C:\Program Files\ostatky
2014-06-22 10:39:10 ----D---- C:\Program Files (x86)\Adobe
2014-06-22 10:38:59 ----D---- C:\ProgramData\Adobe
2014-06-18 01:37:07 ----D---- C:\Program Files (x86)\Microsoft Works
2014-06-18 01:36:56 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2014-06-18 01:36:45 ----D---- C:\Windows\PCHEALTH
2014-06-18 01:35:17 ----D---- C:\Program Files\Microsoft Office
2014-06-18 01:35:13 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2014-06-18 01:34:53 ----D---- C:\Program Files (x86)\Microsoft Office
2014-06-18 01:34:52 ----D---- C:\ProgramData\Microsoft Help
2014-06-18 01:34:40 ----RD---- C:\MSOCache
2014-06-18 00:35:36 ----D---- C:\ProgramData\Creative
2014-06-18 00:30:53 ----A---- C:\Windows\system32\kschimp.ini
2014-06-18 00:30:35 ----A---- C:\Windows\SYSWOW64\CmdRtr.DLL
2014-06-18 00:30:35 ----A---- C:\Windows\SYSWOW64\APOMngr.DLL
2014-06-18 00:30:35 ----A---- C:\Windows\system32\CmdRtr64.DLL
2014-06-18 00:30:35 ----A---- C:\Windows\system32\APOMgr64.DLL
2014-06-18 00:30:13 ----N---- C:\Windows\SYSWOW64\Sens_oal.dll
2014-06-18 00:30:13 ----N---- C:\Windows\system32\Sens_oal.dll
2014-06-18 00:30:13 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2014-06-18 00:30:13 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2014-06-18 00:30:13 ----A---- C:\Windows\system32\wrap_oal.dll
2014-06-18 00:30:13 ----A---- C:\Windows\system32\OpenAL32.dll
2014-06-18 00:29:56 ----HD---- C:\Program Files (x86)\Creative Installation Information
2014-06-18 00:29:34 ----D---- C:\Program Files (x86)\Creative
2014-06-18 00:11:14 ----D---- C:\Users\1\AppData\Roaming\WinRAR
2014-06-18 00:10:19 ----D---- C:\Program Files\WinRAR
2014-06-17 23:16:26 ----D---- C:\Windows\Downloaded Installations
2014-06-17 23:10:10 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-06-17 23:10:10 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-06-17 23:10:10 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-06-17 23:10:10 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-06-17 23:10:10 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-06-17 23:10:10 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-06-17 23:10:10 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-06-17 23:10:10 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-06-17 23:10:09 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-06-17 23:10:09 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-06-17 23:10:09 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-06-17 23:10:05 ----D---- C:\Program Files (x86)\Minecraft 1.4 Free Full Download
2014-06-16 18:29:49 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-06-16 18:29:49 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-06-16 18:29:49 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-06-16 18:29:49 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-06-16 18:29:49 ----A---- C:\Windows\system32\WMPhoto.dll
2014-06-16 18:29:49 ----A---- C:\Windows\explorer.exe
2014-06-16 18:29:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-06-16 18:29:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-06-16 18:29:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-06-16 18:29:48 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-06-16 18:29:48 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-06-16 18:29:48 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-06-16 18:29:48 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-16 18:29:48 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-06-16 18:29:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-06-16 18:29:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-06-16 18:29:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-06-16 18:29:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-06-16 18:29:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-06-16 18:29:47 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-06-16 18:29:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-06-16 18:29:47 ----A---- C:\Windows\system32\urlmon.dll
2014-06-16 18:29:47 ----A---- C:\Windows\system32\msfeeds.dll
2014-06-16 18:29:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-06-16 18:29:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-06-16 18:29:47 ----A---- C:\Windows\system32\dxtmsft.dll
2014-06-16 18:29:46 ----A---- C:\Windows\system32\iesetup.dll
2014-06-16 18:29:46 ----A---- C:\Windows\system32\iertutil.dll
2014-06-16 18:29:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-06-16 18:29:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-06-16 18:29:45 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-06-16 18:29:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-06-16 18:29:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-06-16 18:29:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-06-16 18:29:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-06-16 18:29:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-06-16 18:29:45 ----A---- C:\Windows\system32\jsproxy.dll
2014-06-16 18:29:45 ----A---- C:\Windows\system32\ieui.dll
2014-06-16 18:29:45 ----A---- C:\Windows\system32\iernonce.dll
2014-06-16 18:29:45 ----A---- C:\Windows\system32\ieframe.dll
2014-06-16 18:29:45 ----A---- C:\Windows\system32\dxtrans.dll
2014-06-16 18:29:44 ----A---- C:\Windows\system32\vbscript.dll
2014-06-16 18:29:44 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-06-16 18:29:44 ----A---- C:\Windows\system32\mshtmled.dll
2014-06-16 18:29:44 ----A---- C:\Windows\system32\jscript9diag.dll
2014-06-16 18:29:44 ----A---- C:\Windows\system32\jscript9.dll
2014-06-16 18:29:44 ----A---- C:\Windows\system32\ieUnatt.exe
2014-06-16 18:29:43 ----A---- C:\Windows\system32\wininet.dll
2014-06-16 18:29:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-16 18:29:43 ----A---- C:\Windows\system32\msrating.dll
2014-06-16 18:29:43 ----A---- C:\Windows\system32\mshtml.dll
2014-06-16 18:29:43 ----A---- C:\Windows\system32\ieapfltr.dll
2014-06-16 18:29:35 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-06-16 18:29:35 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-06-16 18:29:35 ----A---- C:\Windows\system32\d3d10warp.dll
2014-06-16 18:29:35 ----A---- C:\Windows\system32\d2d1.dll
2014-06-16 18:29:34 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-06-16 18:29:34 ----A---- C:\Windows\system32\spoolsv.exe
2014-06-16 18:29:34 ----A---- C:\Windows\splwow64.exe
2014-06-16 18:29:33 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-06-16 18:29:33 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-06-16 18:29:33 ----A---- C:\Windows\system32\qedit.dll
2014-06-16 04:13:40 ----D---- C:\Users\1\AppData\Roaming\Adobe
2014-06-16 04:09:46 ----SD---- C:\Windows\system32\CompatTel
2014-06-16 03:52:07 ----A---- C:\Windows\system32\wmploc.DLL
2014-06-16 03:52:06 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-06-16 03:52:06 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-06-16 03:52:05 ----A---- C:\Windows\system32\wmp.dll
2014-06-16 03:46:52 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-06-16 03:45:18 ----D---- C:\Windows\Migration
2014-06-16 03:39:26 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-06-16 03:35:02 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-06-16 03:35:01 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-06-16 03:35:01 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-06-16 03:35:01 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-06-16 03:35:01 ----A---- C:\Windows\system32\elshyph.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\url.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-06-16 03:35:00 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-06-16 03:35:00 ----A---- C:\Windows\system32\jsIntl.dll
2014-06-16 03:34:59 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-06-16 03:34:59 ----A---- C:\Windows\system32\msls31.dll
2014-06-16 03:34:59 ----A---- C:\Windows\system32\msfeedssync.exe
2014-06-16 03:34:59 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-06-16 03:34:59 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-06-16 03:34:58 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-06-16 03:34:58 ----A---- C:\Windows\system32\mshtmler.dll
2014-06-16 03:34:58 ----A---- C:\Windows\system32\iesysprep.dll
2014-06-16 03:34:58 ----A---- C:\Windows\system32\ieapfltr.dat
2014-06-16 03:34:57 ----A---- C:\Windows\system32\wextract.exe
2014-06-16 03:34:57 ----A---- C:\Windows\system32\webcheck.dll
2014-06-16 03:34:57 ----A---- C:\Windows\system32\url.dll
2014-06-16 03:34:57 ----A---- C:\Windows\system32\licmgr10.dll
2014-06-16 03:34:57 ----A---- C:\Windows\system32\inseng.dll
2014-06-16 03:34:57 ----A---- C:\Windows\system32\iexpress.exe
2014-06-16 03:34:57 ----A---- C:\Windows\system32\iedkcs32.dll
2014-06-16 03:34:57 ----A---- C:\Windows\system32\icardie.dll
2014-06-16 03:34:56 ----A---- C:\Windows\system32\pngfilt.dll
2014-06-16 03:34:56 ----A---- C:\Windows\system32\occache.dll
2014-06-16 03:34:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-06-16 03:34:56 ----A---- C:\Windows\system32\mshta.exe
2014-06-16 03:34:56 ----A---- C:\Windows\system32\jscript.dll
2014-06-16 03:34:56 ----A---- C:\Windows\system32\imgutil.dll
2014-06-16 03:34:55 ----A---- C:\Windows\system32\iepeers.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-16 03:33:45 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-16 03:33:45 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2014-06-16 03:33:45 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-06-16 03:33:45 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-06-16 03:33:45 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-06-16 03:33:45 ----A---- C:\Windows\system32\XpsPrint.dll
2014-06-16 03:33:45 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-06-16 03:33:45 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-06-16 03:33:44 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2014-06-16 03:33:44 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-06-16 03:33:44 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2014-06-16 03:33:44 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2014-06-16 03:33:44 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2014-06-16 03:33:44 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2014-06-16 03:33:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2014-06-16 03:33:44 ----A---- C:\Windows\system32\FntCache.dll
2014-06-16 03:33:44 ----A---- C:\Windows\system32\dxgi.dll
2014-06-16 03:33:44 ----A---- C:\Windows\system32\DWrite.dll
2014-06-16 03:33:44 ----A---- C:\Windows\system32\d3d10core.dll
2014-06-16 03:33:44 ----A---- C:\Windows\system32\d3d10_1core.dll
2014-06-16 03:33:44 ----A---- C:\Windows\system32\d3d10_1.dll
2014-06-16 03:33:44 ----A---- C:\Windows\system32\d3d10.dll
2014-06-16 03:33:43 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2014-06-16 03:33:43 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-06-16 03:33:43 ----A---- C:\Windows\system32\UIAnimation.dll
2014-06-16 03:33:43 ----A---- C:\Windows\system32\d3d10level9.dll
2014-06-15 23:33:16 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-06-15 23:33:16 ----A---- C:\Windows\system32\wwansvc.dll
2014-06-15 23:33:16 ----A---- C:\Windows\system32\wwanprotdim.dll
2014-06-15 23:33:16 ----A---- C:\Windows\system32\msieftp.dll
2014-06-15 23:33:04 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-06-15 23:33:04 ----A---- C:\Windows\system32\comctl32.dll
2014-06-15 23:33:02 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-06-15 23:33:02 ----A---- C:\Windows\system32\wintrust.dll
2014-06-15 23:32:41 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2014-06-15 23:32:41 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2014-06-15 23:32:41 ----A---- C:\Windows\system32\dhcpcore6.dll
2014-06-15 23:32:40 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2014-06-15 23:32:35 ----A---- C:\Windows\system32\shell32.dll
2014-06-15 23:32:34 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-06-15 23:32:28 ----A---- C:\Windows\system32\consent.exe
2014-06-15 23:32:28 ----A---- C:\Windows\system32\appinfo.dll
2014-06-15 23:32:13 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-06-15 23:32:13 ----A---- C:\Windows\system32\usp10.dll
2014-06-15 23:32:09 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-06-15 23:32:09 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-06-15 23:32:09 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-06-15 23:32:09 ----A---- C:\Windows\system32\cryptsvc.dll
2014-06-15 23:32:09 ----A---- C:\Windows\system32\cryptnet.dll
2014-06-15 23:32:09 ----A---- C:\Windows\system32\crypt32.dll
2014-06-15 23:32:00 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-06-15 23:32:00 ----A---- C:\Windows\system32\wer.dll
2014-06-15 23:31:59 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-06-15 23:31:59 ----A---- C:\Windows\system32\imagehlp.dll
2014-06-15 23:31:59 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-06-15 23:31:59 ----A---- C:\Windows\system32\drivers\netio.sys
2014-06-15 23:31:59 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-06-15 23:31:56 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-06-15 23:31:56 ----A---- C:\Windows\system32\tzres.dll
2014-06-15 23:31:47 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-06-15 23:31:47 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-06-15 23:31:47 ----A---- C:\Windows\system32\msxml6.dll
2014-06-15 23:31:47 ----A---- C:\Windows\system32\msxml3.dll
2014-06-15 23:31:46 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2014-06-15 23:31:46 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-06-15 23:31:46 ----A---- C:\Windows\system32\msxml6r.dll
2014-06-15 23:31:46 ----A---- C:\Windows\system32\msxml3r.dll
2014-06-15 23:31:33 ----A---- C:\Windows\system32\drivers\afd.sys
2014-06-15 23:31:32 ----A---- C:\Windows\system32\win32k.sys
2014-06-15 23:31:32 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-06-15 23:31:32 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-06-15 23:31:30 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-06-15 23:31:27 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-06-15 23:31:27 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-06-15 23:31:27 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-06-15 23:31:27 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-06-15 23:31:27 ----A---- C:\Windows\system32\credui.dll
2014-06-15 23:31:27 ----A---- C:\Windows\system32\authui.dll
2014-06-15 23:31:20 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-06-15 23:31:20 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-06-15 23:31:20 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-06-15 23:31:20 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-06-15 23:31:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-06-15 23:31:20 ----A---- C:\Windows\system32\lpk.dll
2014-06-15 23:31:20 ----A---- C:\Windows\system32\fontsub.dll
2014-06-15 23:31:20 ----A---- C:\Windows\system32\dciman32.dll
2014-06-15 23:31:20 ----A---- C:\Windows\system32\atmlib.dll
2014-06-15 23:31:20 ----A---- C:\Windows\system32\atmfd.dll
2014-06-15 23:31:18 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-06-15 23:31:18 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-06-15 23:31:18 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-06-15 23:31:18 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-06-15 23:31:18 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-06-15 23:31:18 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-06-15 23:31:18 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-06-15 23:31:18 ----A---- C:\Windows\system32\RMActivate.exe
2014-06-15 23:31:17 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-06-15 23:31:17 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-06-15 23:31:17 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-06-15 23:31:17 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-06-15 23:31:17 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-06-15 23:31:17 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-06-15 23:31:17 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-06-15 23:31:17 ----A---- C:\Windows\system32\secproc_isv.dll
2014-06-15 23:31:17 ----A---- C:\Windows\system32\secproc.dll
2014-06-15 23:31:17 ----A---- C:\Windows\system32\msdrm.dll
2014-06-15 23:31:13 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-06-15 23:31:13 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-06-15 23:31:13 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-06-15 23:31:13 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-06-15 23:31:13 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-06-15 23:31:13 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-06-15 23:31:13 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-06-15 23:31:12 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-06-15 23:31:12 ----A---- C:\Windows\system32\d3d11.dll
2014-06-15 23:31:09 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2014-06-15 23:31:09 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-06-15 23:30:57 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-06-15 23:30:57 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-06-15 23:30:56 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-06-15 23:30:55 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-06-15 23:30:55 ----A---- C:\Windows\system32\rpcrt4.dll
2014-06-15 23:30:54 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-06-15 23:30:54 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2014-06-15 23:30:51 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2014-06-15 23:30:51 ----A---- C:\Windows\SYSWOW64\netevent.dll
2014-06-15 23:30:51 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2014-06-15 23:30:51 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2014-06-15 23:30:51 ----A---- C:\Windows\system32\nlasvc.dll
2014-06-15 23:30:51 ----A---- C:\Windows\system32\nlaapi.dll
2014-06-15 23:30:51 ----A---- C:\Windows\system32\netevent.dll
2014-06-15 23:30:51 ----A---- C:\Windows\system32\netcorehc.dll
2014-06-15 23:30:51 ----A---- C:\Windows\system32\ncsi.dll
2014-06-15 23:30:51 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-06-15 23:30:51 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2014-06-15 23:30:44 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-06-15 23:30:44 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-06-15 23:30:42 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-06-15 23:30:42 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-06-15 23:30:42 ----A---- C:\Windows\system32\WebClnt.dll
2014-06-15 23:30:42 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-06-15 23:30:42 ----A---- C:\Windows\system32\davclnt.dll
2014-06-15 23:30:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-06-15 23:30:38 ----A---- C:\Windows\system32\schannel.dll
2014-06-15 23:30:38 ----A---- C:\Windows\system32\lsasrv.dll
2014-06-15 23:30:38 ----A---- C:\Windows\system32\kerberos.dll
2014-06-15 23:30:37 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-06-15 23:30:37 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-06-15 23:30:37 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-06-15 23:30:36 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-06-15 23:30:36 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-06-15 23:30:36 ----A---- C:\Windows\system32\winlogon.exe
2014-06-15 23:30:36 ----A---- C:\Windows\system32\msv1_0.dll
2014-06-15 23:30:36 ----A---- C:\Windows\system32\KernelBase.dll
2014-06-15 23:30:35 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-06-15 23:30:35 ----A---- C:\Windows\system32\objsel.dll
2014-06-15 23:30:35 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-06-15 23:30:35 ----A---- C:\Windows\system32\drivers\cng.sys
2014-06-15 23:30:34 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-06-15 23:30:34 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-06-15 23:30:34 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-06-15 23:30:34 ----A---- C:\Windows\system32\wdigest.dll
2014-06-15 23:30:34 ----A---- C:\Windows\system32\TSpkg.dll
2014-06-15 23:30:33 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-06-15 23:30:33 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-06-15 23:30:33 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-06-15 23:30:33 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-06-15 23:30:33 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-06-15 23:30:33 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-06-15 23:30:33 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-06-15 23:30:33 ----A---- C:\Windows\system32\wincredprovider.dll
2014-06-15 23:30:33 ----A---- C:\Windows\system32\sspicli.dll
2014-06-15 23:30:33 ----A---- C:\Windows\system32\smss.exe
2014-06-15 23:30:33 ----A---- C:\Windows\system32\lsass.exe
2014-06-15 23:30:33 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-06-15 23:30:33 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-06-15 23:30:33 ----A---- C:\Windows\system32\dimsroam.dll
2014-06-15 23:30:33 ----A---- C:\Windows\system32\csrsrv.dll
2014-06-15 23:30:33 ----A---- C:\Windows\system32\cngprovider.dll
2014-06-15 23:30:33 ----A---- C:\Windows\system32\capiprovider.dll
2014-06-15 23:30:33 ----A---- C:\Windows\system32\adprovider.dll
2014-06-15 23:30:32 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-06-15 23:30:32 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-06-15 23:30:32 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-06-15 23:30:32 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-06-15 23:30:32 ----A---- C:\Windows\system32\sspisrv.dll
2014-06-15 23:30:32 ----A---- C:\Windows\system32\secur32.dll
2014-06-15 23:30:32 ----A---- C:\Windows\system32\ncrypt.dll
2014-06-15 23:30:32 ----A---- C:\Windows\system32\credssp.dll
2014-06-15 23:30:32 ----A---- C:\Windows\system32\apisetschema.dll
2014-06-15 23:27:56 ----A---- C:\Windows\system32\OxpsConverter.exe
2014-06-15 23:27:52 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-06-15 23:27:52 ----A---- C:\Windows\system32\mswsock.dll
2014-06-15 23:27:50 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-06-15 23:27:49 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-06-15 23:27:49 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-06-15 23:27:49 ----A---- C:\Windows\SYSWOW64\user.exe
2014-06-15 23:27:49 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-06-15 23:27:49 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-06-15 23:27:49 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-06-15 23:27:49 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-06-15 23:27:49 ----A---- C:\Windows\system32\wow64win.dll
2014-06-15 23:27:49 ----A---- C:\Windows\system32\wow64cpu.dll
2014-06-15 23:27:49 ----A---- C:\Windows\system32\wow64.dll
2014-06-15 23:27:49 ----A---- C:\Windows\system32\winsrv.dll
2014-06-15 23:27:49 ----A---- C:\Windows\system32\ntvdm64.dll
2014-06-15 23:27:49 ----A---- C:\Windows\system32\kernel32.dll
2014-06-15 23:27:49 ----A---- C:\Windows\system32\conhost.exe
2014-06-15 23:27:47 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-06-15 23:27:47 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-06-15 23:27:47 ----A---- C:\Windows\system32\gdi32.dll
2014-06-15 23:27:46 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-15 23:27:30 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-06-15 23:27:30 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-06-15 23:27:30 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-06-15 23:27:30 ----A---- C:\Windows\system32\tdh.dll
2014-06-15 23:27:30 ----A---- C:\Windows\system32\ntdll.dll
2014-06-15 23:27:30 ----A---- C:\Windows\system32\advapi32.dll
2014-06-15 23:27:24 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-06-15 23:27:24 ----A---- C:\Windows\system32\iologmsg.dll
2014-06-15 23:27:24 ----A---- C:\Windows\system32\drivers\storport.sys
2014-06-15 23:27:24 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-06-15 23:27:24 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-06-15 23:27:16 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-06-15 23:27:16 ----A---- C:\Windows\system32\shdocvw.dll
2014-06-15 23:27:02 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-06-15 23:27:02 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-06-15 23:27:02 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-06-15 23:27:02 ----A---- C:\Windows\system32\wscript.exe
2014-06-15 23:27:02 ----A---- C:\Windows\system32\scrrun.dll
2014-06-15 23:27:02 ----A---- C:\Windows\system32\cscript.exe
2014-06-15 23:27:00 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2014-06-15 23:27:00 ----A---- C:\Windows\system32\win32spl.dll
2014-06-15 23:26:59 ----A---- C:\Windows\system32\aepdu.dll
2014-06-15 23:26:59 ----A---- C:\Windows\system32\aeinv.dll
2014-06-15 23:26:57 ----A---- C:\Windows\system32\taskhost.exe
2014-06-15 23:26:53 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2014-06-15 23:26:53 ----A---- C:\Windows\system32\cryptdlg.dll
2014-06-15 23:26:23 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-06-15 23:26:23 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-06-15 23:26:23 ----A---- C:\Windows\system32\cdd.dll
2014-06-15 23:26:12 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-06-15 23:26:10 ----A---- C:\Windows\SYSWOW64\certutil.exe
2014-06-15 23:26:10 ----A---- C:\Windows\system32\certutil.exe
2014-06-15 23:26:09 ----A---- C:\Windows\SYSWOW64\certenc.dll
2014-06-15 23:26:09 ----A---- C:\Windows\system32\certenc.dll
2014-06-15 23:12:52 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-06-15 23:12:52 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-06-15 23:12:52 ----A---- C:\Windows\system32\nshwfp.dll
2014-06-15 23:12:52 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-06-15 23:12:52 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-06-15 23:12:36 ----A---- C:\Windows\system32\scavengeui.dll
2014-06-15 22:54:37 ----D---- C:\Users\1\AppData\Roaming\ESET
2014-06-15 22:53:32 ----D---- C:\ProgramData\ESET
2014-06-15 22:53:32 ----D---- C:\Program Files\ESET
2014-06-15 22:45:04 ----D---- C:\Users\1\AppData\Roaming\Zoner
2014-06-15 22:26:09 ----D---- C:\Program Files (x86)\Google
2014-06-15 21:01:08 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-06-15 20:21:40 ----D---- C:\Windows\system32\SPReview
2014-06-15 20:21:34 ----D---- C:\Windows\system32\EventProviders
2014-06-15 20:20:26 ----A---- C:\Windows\system32\netfxperf.dll
2014-06-15 20:20:26 ----A---- C:\Windows\system32\dfshim.dll
2014-06-15 20:20:23 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-06-15 20:20:21 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-06-15 20:20:21 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-06-15 20:20:18 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2014-06-15 20:20:18 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2014-06-15 20:20:18 ----A---- C:\Windows\system32\sysmain.dll
2014-06-15 20:20:17 ----A---- C:\Windows\system32\MSVidCtl.dll
2014-06-15 20:20:16 ----A---- C:\Windows\system32\mscoree.dll
2014-06-15 20:20:16 ----A---- C:\Windows\system32\mmcndmgr.dll
2014-06-15 20:20:15 ----A---- C:\Windows\system32\xpsservices.dll
2014-06-15 20:20:15 ----A---- C:\Windows\system32\mf.dll
2014-06-15 20:20:13 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2014-06-15 20:20:13 ----A---- C:\Windows\system32\taskschd.dll
2014-06-15 20:20:13 ----A---- C:\Windows\system32\spwizui.dll
2014-06-15 20:20:13 ----A---- C:\Windows\system32\schedsvc.dll
2014-06-15 20:20:13 ----A---- C:\Windows\system32\ole32.dll
2014-06-15 20:20:12 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-06-15 20:20:12 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2014-06-15 20:20:12 ----A---- C:\Windows\system32\wevtsvc.dll
2014-06-15 20:20:12 ----A---- C:\Windows\system32\vssapi.dll
2014-06-15 20:20:12 ----A---- C:\Windows\system32\RacEngn.dll
2014-06-15 20:20:12 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2014-06-15 20:20:12 ----A---- C:\Windows\system32\ExplorerFrame.dll
2014-06-15 20:20:12 ----A---- C:\Windows\system32\diagperf.dll
2014-06-15 20:20:11 ----A---- C:\Windows\system32\UIRibbon.dll
2014-06-15 20:20:11 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2014-06-15 20:20:10 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2014-06-15 20:20:10 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2014-06-15 20:20:10 ----A---- C:\Windows\system32\WsmSvc.dll
2014-06-15 20:20:10 ----A---- C:\Windows\system32\WMVCORE.DLL
2014-06-15 20:20:10 ----A---- C:\Windows\system32\WinSAT.exe
2014-06-15 20:20:10 ----A---- C:\Windows\system32\spreview.exe
2014-06-15 20:20:10 ----A---- C:\Windows\system32\spinstall.exe
2014-06-15 20:20:10 ----A---- C:\Windows\system32\rdpdd.dll
2014-06-15 20:20:10 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2014-06-15 20:20:10 ----A---- C:\Windows\system32\PresentationHost.exe
2014-06-15 20:20:10 ----A---- C:\Windows\system32\MPSSVC.dll
2014-06-15 20:20:10 ----A---- C:\Windows\system32\CertEnroll.dll
2014-06-15 20:20:09 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2014-06-15 20:20:09 ----A---- C:\Windows\system32\SearchFolder.dll
2014-06-15 20:20:09 ----A---- C:\Windows\system32\d3d9.dll
2014-06-15 20:20:09 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2014-06-15 20:20:08 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2014-06-15 20:20:08 ----A---- C:\Windows\system32\VSSVC.exe
2014-06-15 20:20:08 ----A---- C:\Windows\system32\gpsvc.dll
2014-06-15 20:20:08 ----A---- C:\Windows\system32\dwmcore.dll
2014-06-15 20:20:08 ----A---- C:\Windows\system32\drivers\http.sys
2014-06-15 20:20:08 ----A---- C:\Windows\system32\dbgeng.dll
2014-06-15 20:20:07 ----A---- C:\Windows\SYSWOW64\ole32.dll
2014-06-15 20:20:07 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2014-06-15 20:20:07 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-06-15 20:20:07 ----A---- C:\Windows\system32\termsrv.dll
2014-06-15 20:20:07 ----A---- C:\Windows\system32\qmgr.dll
2014-06-15 20:20:07 ----A---- C:\Windows\system32\audiosrv.dll
2014-06-15 20:20:07 ----A---- C:\Windows\system32\actxprxy.dll
2014-06-15 20:20:06 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2014-06-15 20:20:06 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2014-06-15 20:20:06 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2014-06-15 20:20:06 ----A---- C:\Windows\system32\winhttp.dll
2014-06-15 20:20:06 ----A---- C:\Windows\system32\setupapi.dll
2014-06-15 20:20:06 ----A---- C:\Windows\system32\QAGENTRT.DLL
2014-06-15 20:20:06 ----A---- C:\Windows\system32\propsys.dll
2014-06-15 20:20:06 ----A---- C:\Windows\system32\netlogon.dll
2014-06-15 20:20:06 ----A---- C:\Windows\system32\mstsc.exe
2014-06-15 20:20:06 ----A---- C:\Windows\system32\imapi2fs.dll
2014-06-15 20:20:05 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2014-06-15 20:20:05 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-06-15 20:20:05 ----A---- C:\Windows\system32\WSDApi.dll
2014-06-15 20:20:05 ----A---- C:\Windows\system32\werconcpl.dll
2014-06-15 20:20:05 ----A---- C:\Windows\system32\wbengine.exe
2014-06-15 20:20:05 ----A---- C:\Windows\system32\user32.dll
2014-06-15 20:20:05 ----A---- C:\Windows\system32\taskeng.exe
2014-06-15 20:20:05 ----A---- C:\Windows\system32\rpcss.dll
2014-06-15 20:20:05 ----A---- C:\Windows\system32\odbc32.dll
2014-06-15 20:20:04 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2014-06-15 20:20:04 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-06-15 20:20:04 ----A---- C:\Windows\system32\tsmf.dll
2014-06-15 20:20:04 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2014-06-15 20:20:04 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-06-15 20:20:04 ----A---- C:\Windows\system32\drivers\netbt.sys
2014-06-15 20:20:04 ----A---- C:\Windows\system32\dhcpcore.dll
2014-06-15 20:20:04 ----A---- C:\Windows\system32\certmgr.dll
2014-06-15 20:20:03 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-06-15 20:20:03 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2014-06-15 20:20:03 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\ws2_32.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\wmpps.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\wmicmiplugin.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\shlwapi.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\netshell.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\netcfgx.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\msdtctm.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\lsm.exe
2014-06-15 20:20:03 ----A---- C:\Windows\system32\framedynos.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\comdlg32.dll
2014-06-15 20:20:03 ----A---- C:\Windows\system32\apphelp.dll
2014-06-15 20:20:02 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2014-06-15 20:20:02 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2014-06-15 20:20:02 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2014-06-15 20:20:02 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2014-06-15 20:20:02 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2014-06-15 20:20:02 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2014-06-15 20:20:02 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2014-06-15 20:20:02 ----A---- C:\Windows\system32\wpdshext.dll
2014-06-15 20:20:02 ----A---- C:\Windows\system32\Vault.dll
2014-06-15 20:20:02 ----A---- C:\Windows\system32\samsrv.dll
2014-06-15 20:20:02 ----A---- C:\Windows\system32\Query.dll
2014-06-15 20:20:02 ----A---- C:\Windows\system32\QAGENT.DLL
2014-06-15 20:20:02 ----A---- C:\Windows\system32\lpksetup.exe
2014-06-15 20:20:02 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2014-06-15 20:20:02 ----A---- C:\Windows\system32\drvstore.dll
2014-06-15 20:20:02 ----A---- C:\Windows\system32\cmd.exe
2014-06-15 20:20:02 ----A---- C:\Windows\system32\BFE.DLL
2014-06-15 20:20:02 ----A---- C:\Windows\system32\azroles.dll
2014-06-15 20:20:01 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-06-15 20:20:01 ----A---- C:\Windows\SYSWOW64\Query.dll
2014-06-15 20:20:01 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2014-06-15 20:20:01 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2014-06-15 20:20:01 ----A---- C:\Windows\system32\Wldap32.dll
2014-06-15 20:20:01 ----A---- C:\Windows\system32\taskcomp.dll
2014-06-15 20:20:01 ----A---- C:\Windows\system32\sxs.dll
2014-06-15 20:20:01 ----A---- C:\Windows\system32\mcbuilder.exe
2014-06-15 20:20:01 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2014-06-15 20:20:00 ----A---- C:\Windows\SYSWOW64\upnp.dll
2014-06-15 20:20:00 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2014-06-15 20:20:00 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2014-06-15 20:20:00 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2014-06-15 20:20:00 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2014-06-15 20:20:00 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2014-06-15 20:20:00 ----A---- C:\Windows\system32\winsta.dll
2014-06-15 20:20:00 ----A---- C:\Windows\system32\webservices.dll
2014-06-15 20:20:00 ----A---- C:\Windows\system32\sqlsrv32.dll
2014-06-15 20:20:00 ----A---- C:\Windows\system32\SessEnv.dll
2014-06-15 20:20:00 ----A---- C:\Windows\system32\pnidui.dll
2014-06-15 20:20:00 ----A---- C:\Windows\system32\mfds.dll
2014-06-15 20:20:00 ----A---- C:\Windows\system32\ipsmsnap.dll
2014-06-15 20:20:00 ----A---- C:\Windows\system32\hgprint.dll
2014-06-15 20:19:59 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2014-06-15 20:19:59 ----A---- C:\Windows\SYSWOW64\userenv.dll
2014-06-15 20:19:59 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2014-06-15 20:19:59 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2014-06-15 20:19:59 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2014-06-15 20:19:59 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2014-06-15 20:19:59 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2014-06-15 20:19:59 ----A---- C:\Windows\system32\WMNetMgr.dll
2014-06-15 20:19:59 ----A---- C:\Windows\system32\wlanpref.dll
2014-06-15 20:19:59 ----A---- C:\Windows\system32\vpnike.dll
2014-06-15 20:19:59 ----A---- C:\Windows\system32\userenv.dll
2014-06-15 20:19:59 ----A---- C:\Windows\system32\schtasks.exe
2014-06-15 20:19:59 ----A---- C:\Windows\system32\prncache.dll
2014-06-15 20:19:59 ----A---- C:\Windows\system32\mcmde.dll
2014-06-15 20:19:59 ----A---- C:\Windows\system32\fveapi.dll
2014-06-15 20:19:59 ----A---- C:\Windows\system32\drivers\volsnap.sys
2014-06-15 20:19:59 ----A---- C:\Windows\system32\drivers\rdbss.sys
2014-06-15 20:19:59 ----A---- C:\Windows\system32\drivers\msrpc.sys
2014-06-15 20:19:59 ----A---- C:\Windows\system32\dot3api.dll
2014-06-15 20:19:58 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2014-06-15 20:19:58 ----A---- C:\Windows\SYSWOW64\cmd.exe
2014-06-15 20:19:58 ----A---- C:\Windows\system32\wmpmde.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\WMPEncEn.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\wmpeffects.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\SyncCenter.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\srvsvc.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\sppobjs.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\shsvcs.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\photowiz.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\mfreadwrite.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\IPSECSVC.DLL
2014-06-15 20:19:58 ----A---- C:\Windows\system32\FXSSVC.exe
2014-06-15 20:19:58 ----A---- C:\Windows\system32\framedyn.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\evr.dll
2014-06-15 20:19:58 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2014-06-15 20:19:58 ----A---- C:\Windows\system32\AudioSes.dll
2014-06-15 20:19:57 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2014-06-15 20:19:57 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-06-15 20:19:57 ----A---- C:\Windows\SYSWOW64\propsys.dll
2014-06-15 20:19:57 ----A---- C:\Windows\SYSWOW64\mfds.dll
2014-06-15 20:19:57 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2014-06-15 20:19:57 ----A---- C:\Windows\SYSWOW64\azroles.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\WinSATAPI.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\tcpipcfg.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\stobject.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\spp.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\QSHVHOST.DLL
2014-06-15 20:19:57 ----A---- C:\Windows\system32\netid.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\netdiagfx.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\localsec.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\inetpp.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\imapi2.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\fde.dll
2014-06-15 20:19:57 ----A---- C:\Windows\system32\drivers\udfs.sys
2014-06-15 20:19:57 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2014-06-15 20:19:57 ----A---- C:\Windows\system32\bcryptprimitives.dll
2014-06-15 20:19:56 ----A---- C:\Windows\SYSWOW64\themeui.dll
2014-06-15 20:19:56 ----A---- C:\Windows\system32\scansetting.dll
2014-06-15 20:19:56 ----A---- C:\Windows\system32\printui.dll
2014-06-15 20:19:56 ----A---- C:\Windows\system32\mspbda.dll
2014-06-15 20:19:56 ----A---- C:\Windows\system32\msinfo32.exe
2014-06-15 20:19:56 ----A---- C:\Windows\system32\biocpl.dll
2014-06-15 20:19:53 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2014-06-15 20:19:53 ----A---- C:\Windows\SYSWOW64\spp.dll
2014-06-15 20:19:53 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2014-06-15 20:19:53 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2014-06-15 20:19:53 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2014-06-15 20:19:53 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2014-06-15 20:19:53 ----A---- C:\Windows\system32\wusa.exe
2014-06-15 20:19:53 ----A---- C:\Windows\system32\wiaservc.dll
2014-06-15 20:19:53 ----A---- C:\Windows\system32\vds.exe
2014-06-15 20:19:53 ----A---- C:\Windows\system32\rpchttp.dll
2014-06-15 20:19:53 ----A---- C:\Windows\system32\pla.dll
2014-06-15 20:19:53 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2014-06-15 20:19:53 ----A---- C:\Windows\system32\msdri.dll
2014-06-15 20:19:53 ----A---- C:\Windows\system32\mscms.dll
2014-06-15 20:19:53 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2014-06-15 20:19:53 ----A---- C:\Windows\system32\drivers\pci.sys
2014-06-15 20:19:53 ----A---- C:\Windows\system32\aitagent.exe
2014-06-15 20:19:52 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2014-06-15 20:19:52 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2014-06-15 20:19:52 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll

[Horst_Fuchs]

2014-06-15 20:19:52 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2014-06-15 20:19:52 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-06-15 20:19:52 ----A---- C:\Windows\SYSWOW64\calc.exe
2014-06-15 20:19:52 ----A---- C:\Windows\system32\XpsRasterService.dll
2014-06-15 20:19:52 ----A---- C:\Windows\system32\wpdbusenum.dll
2014-06-15 20:19:52 ----A---- C:\Windows\system32\wisptis.exe
2014-06-15 20:19:52 ----A---- C:\Windows\system32\sppwinob.dll
2014-06-15 20:19:52 ----A---- C:\Windows\system32\PkgMgr.exe
2014-06-15 20:19:52 ----A---- C:\Windows\system32\ocsetup.exe
2014-06-15 20:19:52 ----A---- C:\Windows\system32\ocsetapi.dll
2014-06-15 20:19:52 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2014-06-15 20:19:52 ----A---- C:\Windows\system32\eapp3hst.dll
2014-06-15 20:19:52 ----A---- C:\Windows\system32\DXP.dll
2014-06-15 20:19:52 ----A---- C:\Windows\system32\drivers\volmgr.sys
2014-06-15 20:19:52 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2014-06-15 20:19:52 ----A---- C:\Windows\system32\drivers\msdsm.sys
2014-06-15 20:19:52 ----A---- C:\Windows\system32\ci.dll
2014-06-15 20:19:51 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2014-06-15 20:19:51 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2014-06-15 20:19:51 ----A---- C:\Windows\SYSWOW64\sxs.dll
2014-06-15 20:19:51 ----A---- C:\Windows\SYSWOW64\stobject.dll
2014-06-15 20:19:51 ----A---- C:\Windows\SYSWOW64\netshell.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\wcncsvc.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\upnp.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\thumbcache.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\t2embed.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\scecli.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\Robocopy.exe
2014-06-15 20:19:51 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2014-06-15 20:19:51 ----A---- C:\Windows\system32\mprapi.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\hal.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\eapphost.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\DxpTaskSync.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\dwmredir.dll
2014-06-15 20:19:51 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2014-06-15 20:19:50 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2014-06-15 20:19:50 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2014-06-15 20:19:50 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2014-06-15 20:19:50 ----A---- C:\Windows\SYSWOW64\prncache.dll
2014-06-15 20:19:50 ----A---- C:\Windows\SYSWOW64\printui.dll
2014-06-15 20:19:50 ----A---- C:\Windows\SYSWOW64\net1.exe
2014-06-15 20:19:50 ----A---- C:\Windows\system32\wdc.dll
2014-06-15 20:19:50 ----A---- C:\Windows\system32\themeui.dll
2014-06-15 20:19:50 ----A---- C:\Windows\system32\puiobj.dll
2014-06-15 20:19:50 ----A---- C:\Windows\system32\onex.dll
2014-06-15 20:19:50 ----A---- C:\Windows\system32\msasn1.dll
2014-06-15 20:19:50 ----A---- C:\Windows\system32\iasrad.dll
2014-06-15 20:19:50 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2014-06-15 20:19:50 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2014-06-15 20:19:50 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2014-06-15 20:19:49 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2014-06-15 20:19:49 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2014-06-15 20:19:49 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2014-06-15 20:19:49 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2014-06-15 20:19:49 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2014-06-15 20:19:49 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2014-06-15 20:19:49 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2014-06-15 20:19:49 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\wscapi.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\wlangpui.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\wiadefui.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\VAN.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\TabSvc.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\StructuredQuery.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\srchadmin.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\SndVol.exe
2014-06-15 20:19:49 ----A---- C:\Windows\system32\sdengin2.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\scesrv.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\samcli.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\regapi.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\rasmans.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\QUTIL.DLL
2014-06-15 20:19:49 ----A---- C:\Windows\system32\netcenter.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\msftedit.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\iasacct.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\dskquoui.dll
2014-06-15 20:19:49 ----A---- C:\Windows\system32\drivers\termdd.sys
2014-06-15 20:19:49 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2014-06-15 20:19:48 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-06-15 20:19:48 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2014-06-15 20:19:48 ----A---- C:\Windows\SYSWOW64\webservices.dll
2014-06-15 20:19:48 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2014-06-15 20:19:48 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2014-06-15 20:19:48 ----A---- C:\Windows\SYSWOW64\fde.dll
2014-06-15 20:19:48 ----A---- C:\Windows\system32\wksprt.exe
2014-06-15 20:19:48 ----A---- C:\Windows\system32\tapisrv.dll
2014-06-15 20:19:48 ----A---- C:\Windows\system32\setupcl.exe
2014-06-15 20:19:48 ----A---- C:\Windows\system32\rastls.dll
2014-06-15 20:19:48 ----A---- C:\Windows\system32\drivers\msahci.sys
2014-06-15 20:19:48 ----A---- C:\Windows\system32\drivers\acpi.sys
2014-06-15 20:19:47 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-06-15 20:19:47 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2014-06-15 20:19:47 ----A---- C:\Windows\SYSWOW64\pla.dll
2014-06-15 20:19:47 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2014-06-15 20:19:47 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2014-06-15 20:19:47 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2014-06-15 20:19:47 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\riched20.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\netiohlp.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\mtxclu.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\msconfig.exe
2014-06-15 20:19:47 ----A---- C:\Windows\system32\mimefilt.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\lsmproxy.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\ListSvc.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\hgcpl.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\fdeploy.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2014-06-15 20:19:47 ----A---- C:\Windows\system32\drivers\raspptp.sys
2014-06-15 20:19:47 ----A---- C:\Windows\system32\drivers\ks.sys
2014-06-15 20:19:47 ----A---- C:\Windows\system32\clusapi.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\basecsp.dll
2014-06-15 20:19:47 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2014-06-15 20:19:46 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2014-06-15 20:19:46 ----A---- C:\Windows\SYSWOW64\winmm.dll
2014-06-15 20:19:46 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2014-06-15 20:19:46 ----A---- C:\Windows\SYSWOW64\onex.dll
2014-06-15 20:19:46 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2014-06-15 20:19:46 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2014-06-15 20:19:46 ----A---- C:\Windows\system32\themecpl.dll
2014-06-15 20:19:46 ----A---- C:\Windows\system32\sharemediacpl.dll
2014-06-15 20:19:46 ----A---- C:\Windows\system32\SensorsCpl.dll
2014-06-15 20:19:46 ----A---- C:\Windows\system32\RpcRtRemote.dll
2014-06-15 20:19:46 ----A---- C:\Windows\system32\powercpl.dll
2014-06-15 20:19:46 ----A---- C:\Windows\system32\netjoin.dll
2014-06-15 20:19:46 ----A---- C:\Windows\system32\nci.dll
2014-06-15 20:19:46 ----A---- C:\Windows\system32\Narrator.exe
2014-06-15 20:19:46 ----A---- C:\Windows\system32\logoncli.dll
2014-06-15 20:19:46 ----A---- C:\Windows\system32\Faultrep.dll
2014-06-15 20:19:46 ----A---- C:\Windows\system32\eudcedit.exe
2014-06-15 20:19:46 ----A---- C:\Windows\system32\dnscmmc.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\samcli.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\regapi.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\proquota.exe
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\msutb.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\autochk.exe
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2014-06-15 20:19:45 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\wwanconn.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\wpd_ci.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\wlanui.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\wkssvc.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\vpnikeapi.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\sppcomapi.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\shsetup.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\sdclt.exe
2014-06-15 20:19:45 ----A---- C:\Windows\system32\prntvpt.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\nshipsec.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\mscorier.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\fms.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\drivers\winusb.sys
2014-06-15 20:19:45 ----A---- C:\Windows\system32\drivers\wanarp.sys
2014-06-15 20:19:45 ----A---- C:\Windows\system32\drivers\scsiport.sys
2014-06-15 20:19:45 ----A---- C:\Windows\system32\cabview.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\bcdsrv.dll
2014-06-15 20:19:45 ----A---- C:\Windows\system32\autochk.exe
2014-06-15 20:19:45 ----A---- C:\Windows\system32\autofmt.exe
2014-06-15 20:19:45 ----A---- C:\Windows\system32\autoconv.exe
2014-06-15 20:19:45 ----A---- C:\Windows\system32\audiodg.exe
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\wdc.dll
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\netid.dll
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\nci.dll
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2014-06-15 20:19:44 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-06-15 20:19:44 ----A---- C:\Windows\system32\wmpsrcwp.dll
2014-06-15 20:19:44 ----A---- C:\Windows\system32\SmiEngine.dll
2014-06-15 20:19:44 ----A---- C:\Windows\system32\mprddm.dll
2014-06-15 20:19:44 ----A---- C:\Windows\system32\mblctr.exe
2014-06-15 20:19:44 ----A---- C:\Windows\system32\fontext.dll
2014-06-15 20:19:44 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2014-06-15 20:19:44 ----A---- C:\Windows\system32\dps.dll
2014-06-15 20:19:44 ----A---- C:\Windows\system32\Display.dll
2014-06-15 20:19:44 ----A---- C:\Windows\system32\batmeter.dll
2014-06-15 20:19:44 ----A---- C:\Windows\system32\AxInstSv.dll
2014-06-15 20:19:43 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2014-06-15 20:19:43 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2014-06-15 20:19:43 ----A---- C:\Windows\SYSWOW64\Vault.dll
2014-06-15 20:19:43 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2014-06-15 20:19:43 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2014-06-15 20:19:43 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2014-06-15 20:19:43 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2014-06-15 20:19:43 ----A---- C:\Windows\system32\wpccpl.dll
2014-06-15 20:19:43 ----A---- C:\Windows\system32\usercpl.dll
2014-06-15 20:19:43 ----A---- C:\Windows\system32\sppsvc.exe
2014-06-15 20:19:43 ----A---- C:\Windows\system32\SndVolSSO.dll
2014-06-15 20:19:43 ----A---- C:\Windows\system32\rtutils.dll
2014-06-15 20:19:43 ----A---- C:\Windows\system32\rasppp.dll
2014-06-15 20:19:43 ----A---- C:\Windows\system32\provsvc.dll
2014-06-15 20:19:43 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2014-06-15 20:19:43 ----A---- C:\Windows\system32\DiagCpl.dll
2014-06-15 20:19:43 ----A---- C:\Windows\system32\bootres.dll
2014-06-15 20:19:42 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2014-06-15 20:19:42 ----A---- C:\Windows\SYSWOW64\userinit.exe
2014-06-15 20:19:42 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2014-06-15 20:19:42 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2014-06-15 20:19:42 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2014-06-15 20:19:42 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2014-06-15 20:19:42 ----A---- C:\Windows\SYSWOW64\Display.dll
2014-06-15 20:19:42 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2014-06-15 20:19:42 ----A---- C:\Windows\system32\untfs.dll
2014-06-15 20:19:42 ----A---- C:\Windows\system32\taskmgr.exe
2014-06-15 20:19:42 ----A---- C:\Windows\system32\proquota.exe
2014-06-15 20:19:42 ----A---- C:\Windows\system32\prnfldr.dll
2014-06-15 20:19:42 ----A---- C:\Windows\system32\pdh.dll
2014-06-15 20:19:42 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2014-06-15 20:19:42 ----A---- C:\Windows\system32\hbaapi.dll
2014-06-15 20:19:42 ----A---- C:\Windows\system32\dxdiagn.dll
2014-06-15 20:19:42 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2014-06-15 20:19:42 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2014-06-15 20:19:42 ----A---- C:\Windows\system32\dot3cfg.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2014-06-15 20:19:41 ----A---- C:\Windows\SYSWOW64\cabview.dll
2014-06-15 20:19:41 ----A---- C:\Windows\system32\zipfldr.dll
2014-06-15 20:19:41 ----A---- C:\Windows\system32\userinit.exe
2014-06-15 20:19:41 ----A---- C:\Windows\system32\slui.exe
2014-06-15 20:19:41 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2014-06-15 20:19:41 ----A---- C:\Windows\system32\accessibilitycpl.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\VAN.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\scecli.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\mscms.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\localsec.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\fontext.dll
2014-06-15 20:19:40 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\twext.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\taskbarcpl.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\sud.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\OobeFldr.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\networkmap.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\dot3svc.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\DeviceCenter.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\cryptui.dll
2014-06-15 20:19:40 ----A---- C:\Windows\system32\ActionCenter.dll
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2014-06-15 20:19:39 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\uxlib.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\tzutil.exe
2014-06-15 20:19:39 ----A---- C:\Windows\system32\systemcpl.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\sysclass.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\syncui.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\sisbkup.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\shwebsvc.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\sdcpl.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\recovery.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\recdisc.exe
2014-06-15 20:19:39 ----A---- C:\Windows\system32\netplwiz.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\isoburn.exe
2014-06-15 20:19:39 ----A---- C:\Windows\system32\httpapi.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\efscore.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\dsuiext.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\drivers\mpio.sys
2014-06-15 20:19:39 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2014-06-15 20:19:39 ----A---- C:\Windows\system32\certcli.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\cca.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\bcdedit.exe
2014-06-15 20:19:39 ----A---- C:\Windows\system32\azroleui.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\autoplay.dll
2014-06-15 20:19:39 ----A---- C:\Windows\system32\asycfilt.dll
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\wusa.exe
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\sud.dll
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2014-06-15 20:19:38 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2014-06-15 20:19:38 ----A---- C:\Windows\system32\wlanmsm.dll
2014-06-15 20:19:38 ----A---- C:\Windows\system32\vdsutil.dll
2014-06-15 20:19:38 ----A---- C:\Windows\system32\spwizeng.dll
2014-06-15 20:19:38 ----A---- C:\Windows\system32\sdrsvc.dll
2014-06-15 20:19:38 ----A---- C:\Windows\system32\ncryptui.dll
2014-06-15 20:19:38 ----A---- C:\Windows\system32\msvidc32.dll
2014-06-15 20:19:38 ----A---- C:\Windows\system32\MFPlay.dll
2014-06-15 20:19:38 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2014-06-15 20:19:38 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\syncui.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\ftp.exe
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\efscore.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2014-06-15 20:19:37 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\termmgr.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\ssText3d.scr
2014-06-15 20:19:37 ----A---- C:\Windows\system32\sqlcese30.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\sethc.exe
2014-06-15 20:19:37 ----A---- C:\Windows\system32\ReAgent.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\rdpd3d.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\ntlanman.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\msscp.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\iyuv_32.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\iTVData.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\iprtrmgr.dll
2014-06-15 20:19:37 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\sethc.exe
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\riched20.dll
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2014-06-15 20:19:36 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\wavemsp.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\srvcli.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\srrstr.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\sppnp.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\slwga.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\ntprint.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\nslookup.exe
2014-06-15 20:19:36 ----A---- C:\Windows\system32\NAPHLPR.DLL
2014-06-15 20:19:36 ----A---- C:\Windows\system32\msiexec.exe
2014-06-15 20:19:36 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2014-06-15 20:19:36 ----A---- C:\Windows\system32\bcdboot.exe
2014-06-15 20:19:36 ----A---- C:\Windows\system32\acppage.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\migisol.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\fms.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\dpx.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2014-06-15 20:19:35 ----A---- C:\Windows\SYSWOW64\activeds.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\wvc.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\wsqmcons.exe
2014-06-15 20:19:35 ----A---- C:\Windows\system32\wsnmp32.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\wmpdxm.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\wkscli.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\WinSCard.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\remotepg.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\networkexplorer.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\net1.exe
2014-06-15 20:19:35 ----A---- C:\Windows\system32\ftp.exe
2014-06-15 20:19:35 ----A---- C:\Windows\system32\dfrgui.exe
2014-06-15 20:19:35 ----A---- C:\Windows\system32\certprop.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\cabinet.dll
2014-06-15 20:19:35 ----A---- C:\Windows\system32\blackbox.dll
2014-06-15 20:19:34 ----A---- C:\Windows\twain_32.dll
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\wvc.dll
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\twext.dll
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\qcap.dll
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\qasf.dll
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2014-06-15 20:19:34 ----A---- C:\Windows\SYSWOW64\mstask.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\wmdrmdev.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\WerFaultSecure.exe
2014-06-15 20:19:34 ----A---- C:\Windows\system32\unimdmat.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-06-15 20:19:34 ----A---- C:\Windows\system32\OpcServices.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\msyuv.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\msrle32.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\mfps.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\mapistub.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\mapi32.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\iscsium.dll
2014-06-15 20:19:34 ----A---- C:\Windows\system32\diskraid.exe
2014-06-15 20:19:34 ----A---- C:\Windows\system32\Bubbles.scr
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\ssText3d.scr
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\slwga.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2014-06-15 20:19:33 ----A---- C:\Windows\SYSWOW64\acppage.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\wmpshell.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2014-06-15 20:19:33 ----A---- C:\Windows\system32\umb.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\tsbyuv.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\tlscsp.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\seclogon.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\Ribbons.scr
2014-06-15 20:19:33 ----A---- C:\Windows\system32\rdpencom.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\qasf.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\perfmon.exe
2014-06-15 20:19:33 ----A---- C:\Windows\system32\netutils.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2014-06-15 20:19:33 ----A---- C:\Windows\system32\Mystify.scr
2014-06-15 20:19:33 ----A---- C:\Windows\system32\muifontsetup.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\ifsutil.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\FXSAPI.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\drivers\umbus.sys
2014-06-15 20:19:33 ----A---- C:\Windows\system32\dbghelp.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\AzSqlExt.dll
2014-06-15 20:19:33 ----A---- C:\Windows\system32\ActionQueue.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\runonce.exe
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\raschap.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\onexui.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\input.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2014-06-15 20:19:32 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-06-15 20:19:32 ----A---- C:\Windows\system32\wpdwcn.dll
2014-06-15 20:19:32 ----A---- C:\Windows\system32\WMVSDECD.DLL
2014-06-15 20:19:32 ----A---- C:\Windows\system32\WMADMOD.DLL
2014-06-15 20:19:32 ----A---- C:\Windows\system32\wiavideo.dll
2014-06-15 20:19:32 ----A---- C:\Windows\system32\vdsbas.dll
2014-06-15 20:19:32 ----A---- C:\Windows\system32\syssetup.dll
2014-06-15 20:19:32 ----A---- C:\Windows\system32\runonce.exe
2014-06-15 20:19:32 ----A---- C:\Windows\system32\raschap.dll
2014-06-15 20:19:32 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2014-06-15 20:19:32 ----A---- C:\Windows\system32\nltest.exe
2014-06-15 20:19:32 ----A---- C:\Windows\system32\mstask.dll
2014-06-15 20:19:32 ----A---- C:\Windows\system32\MdSched.exe
2014-06-15 20:19:32 ----A---- C:\Windows\system32\Mcx2Svc.dll
2014-06-15 20:19:32 ----A---- C:\Windows\system32\drivers\rmcast.sys
2014-06-15 20:19:32 ----A---- C:\Windows\bfsvc.exe
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\shacct.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\pdh.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\logagent.exe
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\Bubbles.scr
2014-06-15 20:19:31 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2014-06-15 20:19:31 ----A---- C:\Windows\system32\WPDSp.dll
2014-06-15 20:19:31 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2014-06-15 20:19:31 ----A---- C:\Windows\system32\wmdrmnet.dll
2014-06-15 20:19:31 ----A---- C:\Windows\system32\vss_ps.dll
2014-06-15 20:19:31 ----A---- C:\Windows\system32\tabcal.exe
2014-06-15 20:19:31 ----A---- C:\Windows\system32\shacct.dll
2014-06-15 20:19:31 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2014-06-15 20:19:31 ----A---- C:\Windows\system32\qdv.dll
2014-06-15 20:19:31 ----A---- C:\Windows\system32\qcap.dll
2014-06-15 20:19:31 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2014-06-15 20:19:31 ----A---- C:\Windows\system32\msnetobj.dll
2014-06-15 20:19:31 ----A---- C:\Windows\system32\logman.exe
2014-06-15 20:19:31 ----A---- C:\Windows\system32\cscapi.dll
2014-06-15 20:19:31 ----A---- C:\Windows\system32\bitsadmin.exe
2014-06-15 20:19:30 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2014-06-15 20:19:30 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2014-06-15 20:19:30 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2014-06-15 20:19:30 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2014-06-15 20:19:30 ----A---- C:\Windows\SYSWOW64\logman.exe
2014-06-15 20:19:30 ----A---- C:\Windows\system32\spbcd.dll
2014-06-15 20:19:30 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2014-06-15 20:19:28 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2014-06-15 20:19:28 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2014-06-15 20:19:28 ----A---- C:\Windows\system32\fphc.dll
2014-06-15 20:19:28 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2014-06-15 20:19:28 ----A---- C:\Windows\system32\dot3ui.dll
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\utildll.dll
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\takeown.exe
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\Ribbons.scr
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\Mystify.scr
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\fphc.dll
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2014-06-15 20:19:27 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2014-06-15 20:19:27 ----A---- C:\Windows\system32\takeown.exe
2014-06-15 20:19:27 ----A---- C:\Windows\system32\PnPUnattend.exe
2014-06-15 20:19:27 ----A---- C:\Windows\system32\EhStorAPI.dll
2014-06-15 20:19:27 ----A---- C:\Windows\system32\amstream.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\qdv.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2014-06-15 20:19:26 ----A---- C:\Windows\SYSWOW64\cca.dll
2014-06-15 20:19:26 ----A---- C:\Windows\system32\WavDest.dll
2014-06-15 20:19:26 ----A---- C:\Windows\system32\vfwwdm32.dll
2014-06-15 20:19:26 ----A---- C:\Windows\system32\shimgvw.dll
2014-06-15 20:19:26 ----A---- C:\Windows\system32\QCLIPROV.DLL
2014-06-15 20:19:26 ----A---- C:\Windows\system32\nrpsrv.dll
2014-06-15 20:19:26 ----A---- C:\Windows\system32\MultiDigiMon.exe
2014-06-15 20:19:26 ----A---- C:\Windows\system32\KMSVC.DLL
2014-06-15 20:19:26 ----A---- C:\Windows\system32\iasrecst.dll
2014-06-15 20:19:26 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2014-06-15 20:19:26 ----A---- C:\Windows\system32\fdProxy.dll
2014-06-15 20:19:26 ----A---- C:\Windows\system32\drivers\pacer.sys
2014-06-15 20:19:26 ----A---- C:\Windows\system32\djoin.exe
2014-06-15 20:19:26 ----A---- C:\Windows\system32\cmstp.exe
2014-06-15 20:19:26 ----A---- C:\Windows\system32\CertPolEng.dll
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\relog.exe
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2014-06-15 20:19:25 ----A---- C:\Windows\SYSWOW64\amstream.dll
2014-06-15 20:19:25 ----A---- C:\Windows\system32\sscore.dll
2014-06-15 20:19:25 ----A---- C:\Windows\system32\relog.exe
2014-06-15 20:19:25 ----A---- C:\Windows\system32\mydocs.dll
2014-06-15 20:19:25 ----A---- C:\Windows\system32\msdmo.dll
2014-06-15 20:19:25 ----A---- C:\Windows\system32\mobsync.exe
2014-06-15 20:19:25 ----A---- C:\Windows\system32\itircl.dll
2014-06-15 20:19:25 ----A---- C:\Windows\system32\iscsicli.exe
2014-06-15 20:19:25 ----A---- C:\Windows\system32\dot3msm.dll
2014-06-15 20:19:25 ----A---- C:\Windows\system32\diskpart.exe
2014-06-15 20:19:25 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\resutils.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\netutils.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\itircl.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\findstr.exe
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2014-06-15 20:19:24 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2014-06-15 20:19:24 ----A---- C:\Windows\system32\sppc.dll
2014-06-15 20:19:24 ----A---- C:\Windows\system32\schedcli.dll
2014-06-15 20:19:24 ----A---- C:\Windows\system32\onexui.dll
2014-06-15 20:19:24 ----A---- C:\Windows\system32\mciqtz32.dll
2014-06-15 20:19:24 ----A---- C:\Windows\system32\manage-bde.exe
2014-06-15 20:19:24 ----A---- C:\Windows\system32\luainstall.dll
2014-06-15 20:19:24 ----A---- C:\Windows\system32\choice.exe
2014-06-15 20:19:24 ----A---- C:\Windows\system32\FXSTIFF.dll
2014-06-15 20:19:24 ----A---- C:\Windows\system32\findstr.exe
2014-06-15 20:19:24 ----A---- C:\Windows\system32\eappgnui.dll
2014-06-15 20:19:24 ----A---- C:\Windows\system32\drivers\tunnel.sys
2014-06-15 20:19:24 ----A---- C:\Windows\system32\drivers\dfsc.sys
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\sppc.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\spopk.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\perfts.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\imm32.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2014-06-15 20:19:23 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\wshbth.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\UIRibbonRes.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\TRAPI.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\spopk.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\repair-bde.exe
2014-06-15 20:19:23 ----A---- C:\Windows\system32\RDPENCDD.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\odbcconf.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\LogonUI.exe
2014-06-15 20:19:23 ----A---- C:\Windows\system32\inetmib1.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\FXSMON.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\fixmapi.exe
2014-06-15 20:19:23 ----A---- C:\Windows\system32\elsTrans.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\dsauth.dll
2014-06-15 20:19:23 ----A---- C:\Windows\system32\drivers\tdi.sys
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\sscore.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\shgina.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\riched32.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2014-06-15 20:19:22 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2014-06-15 20:19:22 ----A---- C:\Windows\system32\wsdchngr.dll
2014-06-15 20:19:22 ----A---- C:\Windows\system32\shgina.dll
2014-06-15 20:19:22 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2014-06-15 20:19:22 ----A---- C:\Windows\system32\napdsnap.dll
2014-06-15 20:19:22 ----A---- C:\Windows\system32\FXSUNATD.exe
2014-06-15 20:19:22 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2014-06-15 20:19:22 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2014-06-15 20:19:22 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2014-06-15 20:19:22 ----A---- C:\Windows\system32\cscdll.dll
2014-06-15 20:19:22 ----A---- C:\Windows\system32\bitsperf.dll
2014-06-15 20:19:21 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2014-06-15 20:19:21 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-06-15 20:19:21 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2014-06-15 20:19:21 ----A---- C:\Windows\SYSWOW64\browseui.dll
2014-06-15 20:19:21 ----A---- C:\Windows\system32\wshirda.dll
2014-06-15 20:19:21 ----A---- C:\Windows\system32\spwmp.dll
2014-06-15 20:19:21 ----A---- C:\Windows\system32\riched32.dll
2014-06-15 20:19:21 ----A---- C:\Windows\system32\rdpcfgex.dll
2014-06-15 20:19:21 ----A---- C:\Windows\system32\dxmasf.dll
2014-06-15 20:19:21 ----A---- C:\Windows\system32\drivers\scfilter.sys
2014-06-15 20:19:21 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2014-06-15 20:19:21 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2014-06-15 20:19:21 ----A---- C:\Windows\system32\drivers\hidusb.sys
2014-06-15 20:19:21 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2014-06-15 20:19:21 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2014-06-15 20:19:21 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2014-06-15 20:19:21 ----A---- C:\Windows\system32\drivers\cdrom.sys
2014-06-15 20:19:21 ----A---- C:\Windows\system32\drivers\appid.sys
2014-06-15 20:19:21 ----A---- C:\Windows\system32\C_ISCII.DLL
2014-06-15 20:19:21 ----A---- C:\Windows\system32\browseui.dll
2014-06-15 20:19:20 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2014-06-15 20:19:20 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2014-06-15 20:19:20 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2014-06-15 20:19:20 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-06-15 20:19:20 ----A---- C:\Windows\system32\shunimpl.dll
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDTUQ.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDTUF.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDSG.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDSF.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDPO.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDNEPR.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\kbdlk41a.dll
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDINTAM.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDINBEN.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDGR1.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\KBDGKL.DLL
2014-06-15 20:19:20 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\spwizres.dll
2014-06-15 20:19:19 ----A---- C:\Windows\system32\pifmgr.dll
2014-06-15 20:19:19 ----A---- C:\Windows\system32\nlsbres.dll
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDUS.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDTURME.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDMON.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDMAORI.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDLT1.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDINTEL.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDINORI.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDINMAR.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDINKAN.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDINHIN.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDGEO.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDCZ1.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDBULG.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDBLR.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-06-15 20:19:19 ----A---- C:\Windows\system32\BlbEvents.dll
2014-06-15 20:19:13 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2014-06-15 20:19:13 ----A---- C:\Windows\system32\dpx.dll
2014-06-15 20:19:10 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2014-06-15 20:19:08 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2014-06-15 20:18:32 ----A---- C:\Windows\system32\wbemcomn.dll
2014-06-15 20:18:30 ----A---- C:\Windows\system32\sqmapi.dll
2014-06-15 20:07:29 ----A---- C:\Windows\SYSWOW64\esent.dll
2014-06-15 20:07:29 ----A---- C:\Windows\system32\esent.dll
2014-06-15 20:07:29 ----A---- C:\Windows\system32\drivers\nvstor.sys
2014-06-15 20:07:29 ----A---- C:\Windows\system32\drivers\nvraid.sys
2014-06-15 20:07:29 ----A---- C:\Windows\system32\drivers\amdsata.sys
2014-06-15 20:07:28 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2014-06-15 20:07:28 ----A---- C:\Windows\system32\fsutil.exe
2014-06-15 20:07:28 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-06-15 20:07:28 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2014-06-15 20:07:28 ----A---- C:\Windows\system32\drivers\amdxata.sys
2014-06-15 20:02:55 ----D---- C:\Windows\SYSWOW64\Wat
2014-06-15 20:02:54 ----D---- C:\Windows\system32\Wat
2014-06-15 20:00:01 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-06-15 19:51:11 ----D---- C:\Windows\system32\MRT
2014-06-15 19:51:10 ----A---- C:\Windows\system32\MRT.exe
2014-06-15 19:18:18 ----A---- C:\Windows\system32\browserchoice.exe
2014-06-15 19:11:20 ----D---- C:\Windows\Panther
2014-06-15 19:06:14 ----A---- C:\Windows\system32\WUDFx.dll
2014-06-15 19:06:14 ----A---- C:\Windows\system32\WUDFSvc.dll
2014-06-15 19:06:14 ----A---- C:\Windows\system32\WUDFPlatform.dll
2014-06-15 19:06:14 ----A---- C:\Windows\system32\WUDFHost.exe
2014-06-15 19:06:14 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2014-06-15 19:06:14 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2014-06-15 19:06:14 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2014-06-15 19:02:17 ----A---- C:\Windows\SYSWOW64\wmi.dll
2014-06-15 19:02:17 ----A---- C:\Windows\system32\wmi.dll
2014-06-15 19:02:17 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2014-06-15 18:58:26 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-06-15 18:58:26 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-06-15 18:58:26 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-06-15 18:58:09 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-06-15 18:58:09 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-06-15 18:58:09 ----A---- C:\Windows\system32\tquery.dll
2014-06-15 18:58:09 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-06-15 18:58:09 ----A---- C:\Windows\system32\mssrch.dll
2014-06-15 18:58:08 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-06-15 18:58:08 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-06-15 18:58:08 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-06-15 18:58:08 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-06-15 18:58:08 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-06-15 18:58:08 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-06-15 18:58:08 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2014-06-15 18:58:08 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-06-15 18:58:08 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-06-15 18:58:08 ----A---- C:\Windows\system32\mssvp.dll
2014-06-15 18:58:08 ----A---- C:\Windows\system32\mssphtb.dll
2014-06-15 18:58:08 ----A---- C:\Windows\system32\mssph.dll
2014-06-15 18:58:08 ----A---- C:\Windows\system32\msscntrs.dll
2014-06-15 18:58:02 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2014-06-15 18:58:02 ----A---- C:\Windows\system32\ntshrui.dll
2014-06-15 18:57:55 ----A---- C:\Windows\system32\xmllite.dll
2014-06-15 18:57:54 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2014-06-15 18:57:50 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-06-15 18:57:50 ----A---- C:\Windows\system32\webio.dll
2014-06-15 18:57:35 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-06-15 18:57:35 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-06-15 18:57:35 ----A---- C:\Windows\system32\quartz.dll
2014-06-15 18:57:35 ----A---- C:\Windows\system32\qdvd.dll
2014-06-15 18:57:33 ----A---- C:\Windows\system32\odbctrac.dll
2014-06-15 18:57:33 ----A---- C:\Windows\system32\odbccu32.dll
2014-06-15 18:57:33 ----A---- C:\Windows\system32\odbccr32.dll
2014-06-15 18:57:33 ----A---- C:\Windows\system32\odbccp32.dll
2014-06-15 18:57:32 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2014-06-15 18:57:32 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2014-06-15 18:57:32 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2014-06-15 18:57:32 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2014-06-15 18:57:32 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2014-06-15 18:56:35 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-06-15 18:56:35 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-06-15 18:56:35 ----A---- C:\Windows\system32\drivers\srv.sys
2014-06-15 18:56:25 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-06-15 18:56:25 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-06-15 18:56:25 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2014-06-15 18:56:25 ----A---- C:\Windows\system32\tsgqec.dll
2014-06-15 18:56:25 ----A---- C:\Windows\system32\mstscax.dll
2014-06-15 18:56:25 ----A---- C:\Windows\system32\aaclient.dll
2014-06-15 18:55:59 ----A---- C:\Windows\SYSWOW64\sbe.dll
2014-06-15 18:55:59 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2014-06-15 18:55:59 ----A---- C:\Windows\system32\sbe.dll
2014-06-15 18:55:59 ----A---- C:\Windows\system32\CPFilters.dll
2014-06-15 18:55:58 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-06-15 18:55:58 ----A---- C:\Windows\system32\poqexec.exe
2014-06-15 18:55:39 ----A---- C:\Windows\system32\mfc42u.dll
2014-06-15 18:55:39 ----A---- C:\Windows\system32\drivers\usb8023.sys
2014-06-15 18:55:38 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2014-06-15 18:55:38 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2014-06-15 18:55:38 ----A---- C:\Windows\system32\mfc42.dll
2014-06-15 18:55:36 ----A---- C:\Windows\system32\profsvc.dll
2014-06-15 18:55:36 ----A---- C:\Windows\system32\profprov.dll
2014-06-15 18:55:29 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2014-06-15 18:55:29 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2014-06-15 18:55:29 ----A---- C:\Windows\system32\dpnet.dll
2014-06-15 18:55:29 ----A---- C:\Windows\system32\dpnaddr.dll
2014-06-15 18:55:13 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2014-06-15 18:55:13 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-06-15 18:55:13 ----A---- C:\Windows\system32\rdrmemptylst.exe
2014-06-15 18:55:13 ----A---- C:\Windows\system32\rdpwsx.dll
2014-06-15 18:55:13 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-06-15 18:55:13 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-06-15 18:55:13 ----A---- C:\Windows\system32\dnscacheugc.exe
2014-06-15 18:55:13 ----A---- C:\Windows\system32\dnsapi.dll
2014-06-15 18:54:53 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2014-06-15 18:54:53 ----A---- C:\Windows\SYSWOW64\gameux.dll
2014-06-15 18:54:53 ----A---- C:\Windows\system32\Wpc.dll
2014-06-15 18:54:53 ----A---- C:\Windows\system32\gameux.dll
2014-06-15 18:54:45 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2014-06-15 18:54:45 ----A---- C:\Windows\system32\psisdecd.dll
2014-06-15 18:53:37 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-06-15 18:53:36 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2014-06-15 18:53:36 ----A---- C:\Windows\system32\prevhost.exe
2014-06-15 18:53:26 ----A---- C:\Windows\system32\winresume.exe
2014-06-15 18:53:26 ----A---- C:\Windows\system32\winload.exe
2014-06-15 18:53:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-06-15 18:53:26 ----A---- C:\Windows\system32\kdusb.dll
2014-06-15 18:53:26 ----A---- C:\Windows\system32\kdcom.dll
2014-06-15 18:53:26 ----A---- C:\Windows\system32\kd1394.dll
2014-06-15 18:53:25 ----A---- C:\Windows\SYSWOW64\synceng.dll
2014-06-15 18:53:25 ----A---- C:\Windows\system32\synceng.dll
2014-06-15 18:53:15 ----A---- C:\Windows\system32\netapi32.dll
2014-06-15 18:53:15 ----A---- C:\Windows\system32\browser.dll
2014-06-15 18:53:14 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2014-06-15 18:53:14 ----A---- C:\Windows\SYSWOW64\browcli.dll
2014-06-15 18:53:14 ----A---- C:\Windows\system32\browcli.dll
2014-06-15 18:53:13 ----A---- C:\Windows\system32\msi.dll
2014-06-15 18:53:12 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-06-15 18:53:07 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-06-15 18:52:48 ----A---- C:\Windows\system32\drivers\partmgr.sys
2014-06-15 18:52:17 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-06-15 18:52:17 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2014-06-15 18:52:17 ----A---- C:\Windows\SYSWOW64\devobj.dll
2014-06-15 18:52:17 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2014-06-15 18:52:17 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-06-15 18:52:17 ----A---- C:\Windows\system32\cfgmgr32.dll
2014-06-15 18:45:54 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-06-15 18:45:54 ----A---- C:\Windows\system32\srcore.dll
2014-06-15 18:45:54 ----A---- C:\Windows\system32\rstrui.exe
2014-06-15 18:45:39 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-06-15 18:45:39 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2014-06-15 18:45:39 ----A---- C:\Windows\system32\oleaut32.dll
2014-06-15 18:45:39 ----A---- C:\Windows\system32\oleacc.dll
2014-06-15 18:45:15 ----A---- C:\Windows\system32\inetcomm.dll
2014-06-15 18:45:14 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-06-15 18:45:12 ----A---- C:\Windows\system32\WFS.exe
2014-06-15 18:45:12 ----A---- C:\Windows\system32\FXSCOVER.exe
2014-06-15 18:45:11 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2014-06-15 18:45:11 ----A---- C:\Windows\system32\msvcrt.dll
2014-06-15 18:45:09 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-06-15 18:45:08 ----A---- C:\Windows\system32\localspl.dll
2014-06-15 18:45:06 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2014-06-15 18:45:03 ----A---- C:\Windows\system32\cdosys.dll
2014-06-15 18:44:58 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2014-06-15 18:44:58 ----A---- C:\Windows\system32\EncDec.dll
2014-06-15 18:41:10 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-06-15 18:41:10 ----A---- C:\Windows\system32\packager.dll
2014-06-15 18:37:35 ----A---- C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-06-15 18:35:40 ----A---- C:\Windows\SYSWOW64\OpenCL.DLL
2014-06-15 18:35:40 ----A---- C:\Windows\system32\OpenCL.DLL
2014-06-15 18:32:47 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-06-15 18:32:47 ----A---- C:\Windows\system32\rdpcore.dll
2014-06-15 18:32:47 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-06-15 18:31:55 ----N---- C:\Windows\system32\MpSigStub.exe
2014-06-15 18:28:43 ----A---- C:\Windows\system32\wups2.dll
2014-06-15 18:28:43 ----A---- C:\Windows\system32\wucltux.dll
2014-06-15 18:28:43 ----A---- C:\Windows\system32\wuaueng.dll
2014-06-15 18:28:43 ----A---- C:\Windows\system32\wuauclt.exe
2014-06-15 18:28:38 ----A---- C:\Windows\system32\wups.dll
2014-06-15 18:28:38 ----A---- C:\Windows\system32\wudriver.dll
2014-06-15 18:28:38 ----A---- C:\Windows\system32\wuapi.dll
2014-06-15 18:28:19 ----A---- C:\Windows\system32\wuwebv.dll
2014-06-15 18:28:19 ----A---- C:\Windows\system32\wuapp.exe
2014-06-15 18:23:13 ----A---- C:\Windows\system32\RTNUninst64.dll
2014-06-15 18:23:13 ----A---- C:\Windows\system32\RtNicProp64.dll
2014-06-15 18:23:13 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2014-06-15 18:23:10 ----D---- C:\Program Files (x86)\Realtek
2014-06-15 18:21:38 ----A---- C:\Windows\system32\drivers\IntelMEFWVer.dll
2014-06-15 18:21:32 ----D---- C:\ProgramData\Intel
2014-06-15 18:21:28 ----D---- C:\Program Files\Intel
2014-06-15 18:21:11 ----SHD---- C:\Windows\Installer
2014-06-15 18:20:55 ----A---- C:\Windows\system32\Wdfres.dll
2014-06-15 18:20:55 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2014-06-15 18:20:48 ----A---- C:\Windows\system32\WdfCoInstaller01011.dll
2014-06-15 18:20:48 ----A---- C:\Windows\system32\drivers\TeeDriverx64.sys
2014-06-15 18:20:47 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-06-15 18:20:47 ----D---- C:\Users\1\AppData\Roaming\InstallShield
2014-06-15 18:20:16 ----D---- C:\Program Files (x86)\Intel
2014-06-15 18:20:16 ----A---- C:\Windows\SYSWOW64\CSVer.dll
2014-06-15 18:19:41 ----D---- C:\gigabyte-H61M-DS2 DVI
2014-06-15 18:17:04 ----D---- C:\Users\1\AppData\Roaming\Identities
2014-06-15 18:16:47 ----SD---- C:\Users\1\AppData\Roaming\Microsoft
2014-06-15 18:16:47 ----D---- C:\Users\1\AppData\Roaming\Media Center Programs
2014-06-15 18:16:37 ----SHD---- C:\ProgramData\Šablony
2014-06-15 18:16:37 ----SHD---- C:\ProgramData\Plocha
2014-06-15 18:16:37 ----SHD---- C:\ProgramData\Oblíbené položky
2014-06-15 18:16:37 ----SHD---- C:\ProgramData\Nabídka Start
2014-06-15 18:16:37 ----SHD---- C:\ProgramData\Dokumenty
2014-06-15 18:16:37 ----SHD---- C:\ProgramData\Data aplikací
2014-06-15 18:16:37 ----D---- C:\Recovery
2014-06-15 18:16:34 ----D---- C:\Windows\SoftwareDistribution
2014-06-15 18:11:51 ----D---- C:\Windows\Prefetch
2014-06-15 18:11:38 ----SHD---- C:\System Volume Information
2014-06-15 18:11:38 ----ASH---- C:\pagefile.sys
2014-06-15 18:11:38 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2014-07-07 10:21:30 ----RD---- C:\Program Files
2014-07-07 10:14:44 ----D---- C:\Windows\System32
2014-07-07 10:14:44 ----D---- C:\Windows\inf
2014-07-07 10:14:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-07-07 10:13:13 ----D---- C:\Windows\system32\config
2014-07-07 10:12:52 ----D---- C:\Windows\system32\drivers
2014-07-07 10:12:52 ----D---- C:\Windows
2014-07-07 10:10:22 ----A---- C:\Windows\system.ini
2014-07-07 10:10:17 ----D---- C:\Windows\system32\drivers\etc
2014-07-07 10:09:11 ----D---- C:\ProgramData
2014-07-07 10:08:00 ----D---- C:\Windows\SYSWOW64\drivers
2014-07-07 10:08:00 ----D---- C:\Windows\SysWOW64
2014-07-07 10:08:00 ----D---- C:\Windows\AppPatch
2014-07-07 10:08:00 ----D---- C:\Program Files (x86)\Common Files
2014-07-05 19:27:34 ----RD---- C:\Program Files (x86)
2014-07-05 19:22:31 ----RSD---- C:\Windows\assembly
2014-07-05 18:37:00 ----D---- C:\Windows\winsxs
2014-07-04 11:43:49 ----RSD---- C:\Windows\Fonts
2014-06-30 22:22:17 ----D---- C:\Windows\Downloaded Program Files
2014-06-29 20:36:51 ----D---- C:\Windows\system32\Tasks
2014-06-19 07:50:46 ----D---- C:\Windows\rescache
2014-06-19 06:29:16 ----D---- C:\Windows\system32\LogFiles
2014-06-18 18:59:19 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-06-18 18:59:19 ----D---- C:\Windows\system32\cs-CZ
2014-06-18 06:18:13 ----D---- C:\Windows\system32\drivers\UMDF
2014-06-18 03:00:41 ----D---- C:\Windows\system32\catroot2
2014-06-18 03:00:41 ----D---- C:\Windows\system32\catroot
2014-06-18 01:37:00 ----D---- C:\Program Files (x86)\MSBuild
2014-06-18 01:36:55 ----D---- C:\Windows\ShellNew
2014-06-18 01:36:45 ----SD---- C:\ProgramData\Microsoft
2014-06-18 01:36:06 ----HD---- C:\Program Files\Common Files\Microsoft Shared
2014-06-18 01:35:04 ----A---- C:\Windows\win.ini
2014-06-18 00:30:33 ----D---- C:\Windows\system32\DriverStore
2014-06-17 03:31:51 ----D---- C:\Windows\Microsoft.NET
2014-06-17 03:21:37 ----D---- C:\Windows\SYSWOW64\en-US
2014-06-17 03:21:37 ----D---- C:\Windows\system32\en-US
2014-06-17 03:21:37 ----D---- C:\Windows\PolicyDefinitions
2014-06-17 03:21:37 ----D---- C:\Program Files\Internet Explorer
2014-06-17 03:21:37 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-16 04:10:51 ----D---- C:\Windows\system32\wdi
2014-06-16 04:09:55 ----D---- C:\Program Files\Windows Media Player
2014-06-16 04:09:55 ----D---- C:\Program Files (x86)\Windows Media Player
2014-06-16 04:09:52 ----D---- C:\Windows\SYSWOW64\migration
2014-06-16 04:09:52 ----D---- C:\Windows\system32\migration
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\zh-TW
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\zh-HK
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\zh-CN
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\tr-TR
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\sv-SE
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\ru-RU
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\pt-PT
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\pt-BR
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\nb-NO
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\ko-KR
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\ja-JP
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\it-IT
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\fr-FR
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\fi-FI
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\es-ES
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\el-GR
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\de-DE
2014-06-16 04:09:51 ----D---- C:\Windows\SYSWOW64\da-DK
2014-06-16 04:09:51 ----D---- C:\Windows\system32\zh-TW
2014-06-16 04:09:51 ----D---- C:\Windows\system32\zh-HK
2014-06-16 04:09:51 ----D---- C:\Windows\system32\tr-TR
2014-06-16 04:09:51 ----D---- C:\Windows\system32\sv-SE
2014-06-16 04:09:51 ----D---- C:\Windows\system32\pt-PT
2014-06-16 04:09:51 ----D---- C:\Windows\system32\pt-BR
2014-06-16 04:09:51 ----D---- C:\Windows\system32\pl-PL
2014-06-16 04:09:51 ----D---- C:\Windows\system32\nl-NL
2014-06-16 04:09:51 ----D---- C:\Windows\system32\ko-KR
2014-06-16 04:09:51 ----D---- C:\Windows\system32\it-IT
2014-06-16 04:09:51 ----D---- C:\Windows\system32\hu-HU
2014-06-16 04:09:51 ----D---- C:\Windows\system32\fr-FR
2014-06-16 04:09:51 ----D---- C:\Windows\system32\fi-FI
2014-06-16 04:09:51 ----D---- C:\Windows\system32\es-ES
2014-06-16 04:09:51 ----D---- C:\Windows\system32\el-GR
2014-06-16 04:09:50 ----D---- C:\Windows\system32\zh-CN
2014-06-16 04:09:50 ----D---- C:\Windows\system32\ru-RU
2014-06-16 04:09:50 ----D---- C:\Windows\system32\nb-NO
2014-06-16 04:09:50 ----D---- C:\Windows\system32\ja-JP
2014-06-16 04:09:50 ----D---- C:\Windows\system32\de-DE
2014-06-16 04:09:50 ----D---- C:\Windows\system32\da-DK
2014-06-16 04:09:49 ----D---- C:\Program Files\Windows Defender
2014-06-16 04:09:49 ----D---- C:\Program Files (x86)\Windows Defender
2014-06-16 04:09:46 ----D---- C:\Program Files\Windows Journal
2014-06-16 03:39:26 ----D---- C:\Windows\Logs
2014-06-15 22:26:12 ----D---- C:\Windows\Tasks
2014-06-15 20:53:43 ----D---- C:\Program Files\Windows Sidebar
2014-06-15 20:53:43 ----D---- C:\Program Files\Windows Portable Devices
2014-06-15 20:53:43 ----D---- C:\Program Files\Windows Photo Viewer
2014-06-15 20:53:43 ----D---- C:\Program Files\Windows Mail
2014-06-15 20:53:43 ----D---- C:\Program Files\DVD Maker
2014-06-15 20:53:43 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-06-15 20:53:43 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-06-15 20:53:43 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-06-15 20:53:43 ----D---- C:\Program Files (x86)\Windows Mail
2014-06-15 20:53:42 ----D---- C:\Windows\servicing
2014-06-15 20:53:42 ----D---- C:\Windows\ehome
2014-06-15 20:53:42 ----D---- C:\Program Files\Common Files\System
2014-06-15 20:53:39 ----D---- C:\Windows\SYSWOW64\wbem
2014-06-15 20:53:39 ----D---- C:\Windows\SYSWOW64\sppui
2014-06-15 20:53:39 ----D---- C:\Windows\SYSWOW64\Setup
2014-06-15 20:53:39 ----D---- C:\Windows\SYSWOW64\oobe
2014-06-15 20:53:39 ----D---- C:\Windows\SYSWOW64\migwiz
2014-06-15 20:53:39 ----D---- C:\Windows\SYSWOW64\manifeststore
2014-06-15 20:53:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-06-15 20:53:39 ----D---- C:\Windows\SYSWOW64\cs
2014-06-15 20:53:39 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2014-06-15 20:53:34 ----D---- C:\Windows\system32\Setup
2014-06-15 20:53:34 ----D---- C:\Windows\system32\oobe
2014-06-15 20:53:34 ----D---- C:\Windows\system32\cs
2014-06-15 20:53:34 ----D---- C:\Windows\system32\AdvancedInstallers
2014-06-15 20:53:33 ----D---- C:\Windows\system32\wbem
2014-06-15 20:53:33 ----D---- C:\Windows\system32\sppui
2014-06-15 20:53:33 ----D---- C:\Windows\system32\migwiz
2014-06-15 20:53:33 ----D---- C:\Windows\system32\manifeststore
2014-06-15 20:53:33 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-06-15 20:53:33 ----D---- C:\Windows\system32\Dism
2014-06-15 20:53:22 ----D---- C:\Windows\system32\Boot
2014-06-15 20:51:48 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2014-06-15 20:51:47 ----A---- C:\Windows\system32\msclmd.dll
2014-06-15 19:51:11 ----D---- C:\Windows\debug
2014-06-15 19:10:57 ----D---- C:\Windows\Setup
2014-06-15 18:35:30 ----D---- C:\Windows\system32\CodeIntegrity
2014-06-15 18:23:01 ----D---- C:\Windows\system32\restore
2014-06-15 18:16:46 ----RD---- C:\Users
2014-06-15 18:16:37 ----D---- C:\Program Files\Windows NT
2014-06-15 18:14:54 ----D---- C:\Windows\system32\sysprep

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-05-21 3791872]
R3 ksaud;Creative USB Audio Driver; C:\Windows\system32\drivers\ksaud.sys [2011-07-06 1148288]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2010-02-12 286720]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2014-02-24 1343408]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-05-21 314696]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-15 116648]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-05-21 278344]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2014-06-18 79360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-15 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-30 111616]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-06-15 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[Horst_Fuchs]

Aha, tak tím pádem se omlouvám.
Jsem idiot, měl jsem za to, že to mám na ploše.
Tam mám tedy pouze ikonku.
Pardon, beru zpět.

[Márty84]

To neva, hlavne ze CF mazal


Vypada to, ze hlavni havet je fuc. Tak si dame jeste jeden sken a domazem zbytky.



Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

[Horst_Fuchs]

OTL logfile created on: 7.7.2014 11:14:27 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\1\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17126)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,90 Gb Total Physical Memory | 1,84 Gb Available Physical Memory | 47,34% Memory free
7,79 Gb Paging File | 5,44 Gb Available in Paging File | 69,87% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 849,66 Gb Free Space | 91,22% Space Free | Partition Type: NTFS
Drive D: | 199,00 Mb Total Space | 156,83 Mb Free Space | 78,81% Space Free | Partition Type: NTFS
Drive E: | 446,06 Gb Total Space | 430,71 Gb Free Space | 96,56% Space Free | Partition Type: NTFS
Drive F: | 19,40 Gb Total Space | 19,32 Gb Free Space | 99,55% Space Free | Partition Type: NTFS
Drive G: | 103,02 Mb Total Space | 89,27 Mb Free Space | 86,65% Space Free | Partition Type: NTFS

Computer Name: 1-PC | User Name: 1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.07.07 10:42:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\1\Desktop\OTL.exe
PRC - [2014.06.05 15:58:39 | 000,860,488 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014.05.08 15:48:38 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014.02.24 16:27:06 | 001,343,408 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
PRC - [2013.09.16 12:18:28 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013.09.16 12:17:42 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2010.02.12 10:23:12 | 000,286,720 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe


========== Modules (No Company Name) ==========

MOD - [2014.06.05 15:58:38 | 000,414,536 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppgooglenaclpluginchrome.dll
MOD - [2014.06.05 15:58:36 | 004,217,672 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll
MOD - [2014.06.05 15:58:32 | 000,716,616 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
MOD - [2014.06.05 15:58:31 | 000,126,280 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll
MOD - [2014.06.05 15:58:30 | 001,732,424 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll


========== Services (SafeList) ==========

SRV:64bit: - [2014.05.30 11:21:05 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014.05.21 00:33:44 | 000,314,696 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\igfxCUIService.exe -- (igfxCUIService1.0.0.0)
SRV:64bit: - [2014.02.24 16:27:06 | 001,343,408 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2013.08.27 14:32:30 | 000,828,376 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:64bit: - [2013.08.27 14:32:14 | 000,747,520 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2014.06.18 00:29:47 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2014.05.21 00:33:48 | 000,278,344 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2014.05.08 15:48:38 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.09.16 12:18:28 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013.09.16 12:17:42 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2013.09.11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.12 10:23:12 | 000,286,720 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2014.05.21 00:33:36 | 003,791,872 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013.09.17 14:17:38 | 000,239,320 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2013.09.17 14:17:38 | 000,220,232 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64bit: - [2013.09.17 14:17:38 | 000,168,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2013.09.17 14:17:38 | 000,062,136 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64bit: - [2013.09.17 14:17:38 | 000,044,120 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF)
DRV:64bit: - [2013.09.16 12:17:42 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.09.29 11:30:34 | 000,646,248 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.07.06 10:10:44 | 001,148,288 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ksaud.sys -- (ksaud)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}: "URL" = http://www.default-search.net/search?si ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}: "URL" = http://www.default-search.net/search?si ... earchTerms}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1117010101-3544123735-585248775-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1117010101-3544123735-585248775-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
IE - HKU\S-1-5-21-1117010101-3544123735-585248775-1000\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}: "URL" = http://www.default-search.net/search?si ... earchTerms}
IE - HKU\S-1-5-21-1117010101-3544123735-585248775-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1117010101-3544123735-585248775-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2014.06.15 22:53:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014.06.15 22:53:33 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Error reading preferences file
CHR - Extension: Překlad stránek [WEB2CZ] = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\adjojfndhdhfajgnmocchjiojbodndbn\1.1_0\
CHR - Extension: Dokumenty Google = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Disk Google = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: WOT = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\2.5.15_0\
CHR - Extension: YouTube = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhledávání Google = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: AdBlock = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.5_0\
CHR - Extension: Minimal = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfhcmjkebafbfikmbkhdpbmfpfjgiog\1.0_0\
CHR - Extension: Adblock Pro = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihbdekhabokeegljfmgaihohnpahancf\2.1_0\
CHR - Extension: Peněženka Google = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2014.07.07 10:10:17 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4:64bit: - HKLM..\Run: [Creative SB Monitoring Utility] C:\Windows\SysNative\SBAVMon.dll (Creative Technology Ltd.)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1117010101-3544123735-585248775-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1117010101-3544123735-585248775-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{242356C5-5B73-41ED-93FB-E04F666B0102}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014.07.07 10:42:46 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\1\Desktop\OTL.exe
[2014.07.07 10:21:30 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.07.07 10:21:30 | 000,000,000 | ---D | C] -- C:\rsit
[2014.07.07 10:12:52 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2014.07.07 10:10:21 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014.07.06 23:34:28 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2014.07.06 23:34:28 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2014.07.06 23:34:28 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2014.07.06 23:34:21 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014.07.06 23:34:10 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014.07.06 21:19:49 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2014.07.06 21:19:47 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\Spoon
[2014.07.06 18:19:44 | 000,000,000 | ---D | C] -- C:\Program Files\Creative zvukovka
[2014.07.06 18:17:47 | 001,595,776 | ---- | C] (ESET) -- C:\Program Files\eset smart.exe
[2014.07.06 18:15:27 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.Office.2007.CZ.Full+KEY
[2014.07.06 18:14:49 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Photoshop CS
[2014.07.05 19:22:27 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\OpenCandy
[2014.07.05 19:22:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft
[2014.07.05 19:11:58 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\Macromedia
[2014.07.05 19:03:18 | 000,000,000 | ---D | C] -- C:\Windows\Adobe Illustrator CS
[2014.07.05 19:02:50 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Illustrator CS
[2014.07.05 16:59:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Martau
[2014.07.05 16:59:05 | 000,000,000 | ---D | C] -- C:\Program Files\Total Uninstall 6
[2014.07.04 12:34:29 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2014.07.04 11:42:52 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\spool
[2014.07.04 11:42:38 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2014.06.30 11:44:46 | 000,122,584 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014.06.30 11:44:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014.06.30 11:44:19 | 000,091,352 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2014.06.30 11:44:19 | 000,063,704 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014.06.30 11:44:19 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2014.06.30 11:44:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014.06.30 11:44:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014.06.30 10:48:11 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\Windows\SysWow64\sqlite3.dll
[2014.06.30 10:47:58 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.06.30 00:00:11 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Adobe
[2014.06.26 06:24:02 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\AVG
[2014.06.26 06:24:02 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\AVG
[2014.06.26 06:22:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
[2014.06.26 06:22:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
[2014.06.26 06:22:24 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2014.06.26 06:22:09 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\DVDVideoSoft
[2014.06.26 06:22:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft
[2014.06.22 22:09:53 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wisdom-soft ScreenHunter 5 Free
[2014.06.22 22:09:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wisdom-soft ScreenHunter 5 Free
[2014.06.22 22:09:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free
[2014.06.22 19:50:46 | 000,000,000 | ---D | C] -- C:\Users\1\Documents\Word, Pdf, apod
[2014.06.22 19:50:34 | 000,000,000 | ---D | C] -- C:\Users\1\Documents\Válet šunky.cz
[2014.06.22 19:50:04 | 000,000,000 | ---D | C] -- C:\Users\1\Documents\Toy traveling
[2014.06.22 19:49:58 | 000,000,000 | ---D | C] -- C:\Program Files\ostatky
[2014.06.22 19:48:48 | 000,000,000 | ---D | C] -- C:\Users\1\Documents\go to prague
[2014.06.22 19:48:48 | 000,000,000 | ---D | C] -- C:\Users\1\Documents\FCB
[2014.06.22 19:48:40 | 000,000,000 | ---D | C] -- C:\Users\1\Documents\CVS2
[2014.06.22 19:26:39 | 000,000,000 | -HSD | C] -- C:\Users\1\AppData\Local\EmieUserList
[2014.06.22 19:26:39 | 000,000,000 | -HSD | C] -- C:\Users\1\AppData\Local\EmieSiteList
[2014.06.22 10:39:48 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\Adobe
[2014.06.22 10:39:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2014.06.22 10:39:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2014.06.22 10:38:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2014.06.18 01:38:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2014.06.18 01:37:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2014.06.18 01:36:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2014.06.18 01:36:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2014.06.18 01:36:45 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2014.06.18 01:35:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2014.06.18 01:35:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2014.06.18 01:34:55 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\Microsoft Help
[2014.06.18 01:34:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2014.06.18 01:34:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2014.06.18 01:34:40 | 000,000,000 | R--D | C] -- C:\MSOCache
[2014.06.18 00:35:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2014.06.18 00:30:13 | 002,906,586 | ---- | C] (Creative) -- C:\Windows\SysWow64\Sens_oal.dll
[2014.06.18 00:30:13 | 001,944,064 | ---- | C] (Creative) -- C:\Windows\SysNative\Sens_oal.dll
[2014.06.18 00:30:13 | 000,466,520 | ---- | C] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2014.06.18 00:30:13 | 000,445,016 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2014.06.18 00:30:13 | 000,123,480 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2014.06.18 00:30:13 | 000,109,144 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2014.06.18 00:29:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Creative
[2014.06.18 00:29:56 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Creative Installation Information
[2014.06.18 00:29:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
[2014.06.18 00:29:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Creative Labs Shared
[2014.06.18 00:29:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative
[2014.06.18 00:29:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2014.06.18 00:11:14 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\WinRAR
[2014.06.18 00:10:32 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014.06.18 00:10:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014.06.18 00:10:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2014.06.17 23:16:26 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Installations
[2014.06.17 23:10:10 | 000,364,544 | --S- | C] (The OpenSSL Project, http://www.openssl.org/) -- C:\Windows\SysWow64\ssleay32.dll
[2014.06.17 23:10:10 | 000,171,008 | --S- | C] (The libssh2 library, http://www.libssh2.org/) -- C:\Windows\SysWow64\libssh2.dll
[2014.06.17 23:10:10 | 000,119,888 | --S- | C] (Open Source Software community LGPL) -- C:\Windows\SysWow64\pthreadGC2.dll
[2014.06.17 23:10:10 | 000,055,808 | --S- | C] (Open Source Software community LGPL) -- C:\Windows\SysWow64\pthreadVC2.dll
[2014.06.17 23:10:10 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\bitstreams
[2014.06.17 23:10:09 | 001,704,448 | --S- | C] (The OpenSSL Project, http://www.openssl.org/) -- C:\Windows\SysWow64\libeay32.dll
[2014.06.17 23:10:09 | 000,472,424 | --S- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\cudart32_50_35.dll
[2014.06.17 23:10:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Minecraft 1.4 Free Full Download
[2014.06.17 23:09:57 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\Programs
[2014.06.16 18:29:49 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2014.06.16 18:29:49 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2014.06.16 18:29:49 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2014.06.16 18:29:49 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2014.06.16 18:29:49 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2014.06.16 18:29:49 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2014.06.16 18:29:48 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2014.06.16 18:29:48 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2014.06.16 18:29:48 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2014.06.16 18:29:48 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2014.06.16 18:29:47 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2014.06.16 18:29:47 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2014.06.16 18:29:47 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2014.06.16 18:29:47 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2014.06.16 18:29:47 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2014.06.16 18:29:47 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2014.06.16 18:29:47 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2014.06.16 18:29:47 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2014.06.16 18:29:46 | 002,040,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2014.06.16 18:29:46 | 000,608,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2014.06.16 18:29:46 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2014.06.16 18:29:45 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2014.06.16 18:29:45 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2014.06.16 18:29:45 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2014.06.16 18:29:45 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2014.06.16 18:29:45 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2014.06.16 18:29:45 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2014.06.16 18:29:45 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2014.06.16 18:29:44 | 005,782,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2014.06.16 18:29:44 | 001,249,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2014.06.16 18:29:44 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2014.06.16 18:29:44 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2014.06.16 18:29:44 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2014.06.16 18:29:44 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2014.06.16 18:29:43 | 000,940,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2014.06.16 18:29:43 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2014.06.16 18:29:43 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2014.06.16 18:29:35 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2014.06.16 18:29:35 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2014.06.16 18:29:34 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2014.06.16 18:29:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2014.06.16 18:29:33 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2014.06.16 18:29:33 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2014.06.16 04:13:40 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\Adobe
[2014.06.16 04:09:46 | 000,000,000 | --SD | C] -- C:\Windows\SysNative\CompatTel
[2014.06.16 03:52:07 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2014.06.16 03:52:06 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2014.06.16 03:52:06 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2014.06.16 03:52:05 | 014,631,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2014.06.16 03:45:18 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2014.06.16 03:39:26 | 000,028,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEUDINIT.EXE
[2014.06.16 03:35:02 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2014.06.16 03:35:01 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2014.06.16 03:35:01 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2014.06.16 03:35:01 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2014.06.16 03:35:00 | 000,942,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2014.06.16 03:35:00 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2014.06.16 03:35:00 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2014.06.16 03:35:00 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2014.06.16 03:35:00 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2014.06.16 03:35:00 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2014.06.16 03:35:00 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2014.06.16 03:35:00 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2014.06.16 03:35:00 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2014.06.16 03:35:00 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2014.06.16 03:35:00 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2014.06.16 03:35:00 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2014.06.16 03:35:00 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2014.06.16 03:35:00 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2014.06.16 03:35:00 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2014.06.16 03:35:00 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2014.06.16 03:35:00 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2014.06.16 03:35:00 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2014.06.16 03:35:00 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2014.06.16 03:35:00 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2014.06.16 03:34:59 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2014.06.16 03:34:59 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2014.06.16 03:34:59 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2014.06.16 03:34:59 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2014.06.16 03:34:58 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2014.06.16 03:34:58 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2014.06.16 03:34:58 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2014.06.16 03:34:58 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2014.06.16 03:34:58 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2014.06.16 03:34:58 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2014.06.16 03:34:57 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2014.06.16 03:34:57 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2014.06.16 03:34:57 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2014.06.16 03:34:57 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2014.06.16 03:34:57 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2014.06.16 03:34:57 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2014.06.16 03:34:56 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2014.06.16 03:34:56 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2014.06.16 03:34:56 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2014.06.16 03:34:56 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2014.06.16 03:34:56 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2014.06.16 03:34:56 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2014.06.16 03:34:55 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2014.06.16 03:33:45 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2014.06.16 03:33:45 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2014.06.16 03:33:45 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2014.06.16 03:33:45 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2014.06.16 03:33:45 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2014.06.16 03:33:45 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2014.06.16 03:33:45 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014.06.16 03:33:45 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014.06.16 03:33:45 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014.06.16 03:33:45 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014.06.16 03:33:45 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014.06.16 03:33:45 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014.06.16 03:33:45 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2014.06.16 03:33:45 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2014.06.16 03:33:45 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014.06.16 03:33:45 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014.06.16 03:33:44 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2014.06.16 03:33:44 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2014.06.16 03:33:44 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2014.06.16 03:33:44 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2014.06.16 03:33:44 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2014.06.16 03:33:44 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2014.06.16 03:33:44 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2014.06.16 03:33:43 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2014.06.16 03:33:43 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2014.06.16 03:33:43 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2014.06.15 23:33:16 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2014.06.15 23:33:16 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2014.06.15 23:33:16 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2014.06.15 23:33:04 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2014.06.15 23:33:02 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2014.06.15 23:32:41 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2014.06.15 23:32:41 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2014.06.15 23:32:41 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2014.06.15 23:32:28 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2014.06.15 23:32:13 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2014.06.15 23:32:09 | 001,474,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2014.06.15 23:32:09 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2014.06.15 23:32:00 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wer.dll
[2014.06.15 23:32:00 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2014.06.15 23:31:59 | 000,376,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2014.06.15 23:31:59 | 000,288,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2014.06.15 23:31:59 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2014.06.15 23:31:46 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml6r.dll
[2014.06.15 23:31:46 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml6r.dll
[2014.06.15 23:31:46 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2014.06.15 23:31:46 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2014.06.15 23:31:32 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys
[2014.06.15 23:31:32 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys
[2014.06.15 23:31:30 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2014.06.15 23:31:27 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2014.06.15 23:31:27 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2014.06.15 23:31:27 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credui.dll
[2014.06.15 23:31:27 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
[2014.06.15 23:31:27 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
[2014.06.15 23:31:20 | 000,368,128 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2014.06.15 23:31:20 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2014.06.15 23:31:20 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2014.06.15 23:31:20 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2014.06.15 23:31:20 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2014.06.15 23:31:20 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2014.06.15 23:31:20 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2014.06.15 23:31:20 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2014.06.15 23:31:18 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2014.06.15 23:31:18 | 000,626,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2014.06.15 23:31:18 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2014.06.15 23:31:18 | 000,572,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2014.06.15 23:31:18 | 000,553,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2014.06.15 23:31:18 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2014.06.15 23:31:18 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2014.06.15 23:31:18 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2014.06.15 23:31:17 | 000,528,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
[2014.06.15 23:31:17 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2014.06.15 23:31:17 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2014.06.15 23:31:17 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2014.06.15 23:31:17 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2014.06.15 23:31:17 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2014.06.15 23:31:17 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2014.06.15 23:31:17 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2014.06.15 23:31:17 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2014.06.15 23:31:13 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2014.06.15 23:31:13 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2014.06.15 23:31:12 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2014.06.15 23:31:12 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2014.06.15 23:31:09 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2014.06.15 23:30:57 | 001,888,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2014.06.15 23:30:57 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2014.06.15 23:30:55 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2014.06.15 23:30:51 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2014.06.15 23:30:51 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2014.06.15 23:30:51 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2014.06.15 23:30:51 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2014.06.15 23:30:51 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2014.06.15 23:30:51 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2014.06.15 23:30:44 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2014.06.15 23:30:44 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys
[2014.06.15 23:30:42 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2014.06.15 23:30:39 | 005,550,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2014.06.15 23:30:38 | 001,460,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2014.06.15 23:30:37 | 003,969,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2014.06.15 23:30:37 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2014.06.15 23:30:36 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2014.06.15 23:30:36 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2014.06.15 23:30:35 | 000,722,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\objsel.dll
[2014.06.15 23:30:35 | 000,538,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\objsel.dll
[2014.06.15 23:30:33 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2014.06.15 23:30:33 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2014.06.15 23:30:33 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cngprovider.dll
[2014.06.15 23:30:33 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adprovider.dll
[2014.06.15 23:30:33 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\capiprovider.dll
[2014.06.15 23:30:33 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpapiprovider.dll
[2014.06.15 23:30:33 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cngprovider.dll
[2014.06.15 23:30:33 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adprovider.dll
[2014.06.15 23:30:33 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\capiprovider.dll
[2014.06.15 23:30:33 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpapiprovider.dll
[2014.06.15 23:30:33 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dimsroam.dll
[2014.06.15 23:30:33 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2014.06.15 23:30:33 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wincredprovider.dll
[2014.06.15 23:30:33 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dimsroam.dll
[2014.06.15 23:30:33 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wincredprovider.dll
[2014.06.15 23:30:32 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2014.06.15 23:30:32 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2014.06.15 23:30:32 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2014.06.15 23:30:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2014.06.15 23:30:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2014.06.15 23:27:56 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2014.06.15 23:27:49 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2014.06.15 23:27:49 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2014.06.15 23:27:49 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2014.06.15 23:27:49 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2014.06.15 23:27:49 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2014.06.15 23:27:49 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2014.06.15 23:27:49 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2014.06.15 23:27:49 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2014.06.15 23:27:49 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2014.06.15 23:27:49 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2014.06.15 23:27:49 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2014.06.15 23:27:49 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2014.06.15 23:27:49 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2014.06.15 23:27:49 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2014.06.15 23:27:49 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2014.06.15 23:27:49 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll

[Horst_Fuchs]

[2014.06.15 23:27:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2014.06.15 23:27:49 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2014.06.15 23:27:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2014.06.15 23:27:49 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2014.06.15 23:27:47 | 000,404,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2014.06.15 23:27:47 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2014.06.15 23:27:46 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2014.06.15 23:27:30 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2014.06.15 23:27:30 | 000,878,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2014.06.15 23:27:30 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdh.dll
[2014.06.15 23:27:30 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2014.06.15 23:27:24 | 000,190,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2014.06.15 23:27:24 | 000,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2014.06.15 23:27:24 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iologmsg.dll
[2014.06.15 23:27:24 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iologmsg.dll
[2014.06.15 23:27:16 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2014.06.15 23:27:02 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrrun.dll
[2014.06.15 23:27:02 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrrun.dll
[2014.06.15 23:27:02 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscript.exe
[2014.06.15 23:27:02 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshom.ocx
[2014.06.15 23:27:02 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscript.exe
[2014.06.15 23:27:02 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshom.ocx
[2014.06.15 23:27:00 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2014.06.15 23:27:00 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2014.06.15 23:26:59 | 000,506,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2014.06.15 23:26:59 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2014.06.15 23:26:57 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2014.06.15 23:26:53 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll
[2014.06.15 23:26:53 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll
[2014.06.15 23:26:23 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2014.06.15 23:26:23 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2014.06.15 23:26:10 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2014.06.15 23:26:10 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2014.06.15 23:26:09 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certenc.dll
[2014.06.15 23:26:09 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certenc.dll
[2014.06.15 23:12:52 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshwfp.dll
[2014.06.15 23:12:52 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2014.06.15 23:12:52 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FWPUCLNT.DLL
[2014.06.15 23:12:52 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2014.06.15 23:12:36 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
[2014.06.15 22:54:37 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\ESET
[2014.06.15 22:54:37 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\ESET
[2014.06.15 22:53:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2014.06.15 22:53:32 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2014.06.15 22:53:32 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2014.06.15 22:45:04 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\Zoner
[2014.06.15 22:26:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014.06.15 22:26:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2014.06.15 22:26:07 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\Google
[2014.06.15 22:25:57 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\Deployment
[2014.06.15 22:25:57 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\Apps
[2014.06.15 21:01:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2014.06.15 20:21:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2014.06.15 20:21:34 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2014.06.15 20:20:26 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2014.06.15 20:20:26 | 000,048,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2014.06.15 20:20:23 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2014.06.15 20:20:21 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2014.06.15 20:20:21 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2014.06.15 20:20:18 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll
[2014.06.15 20:20:18 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll
[2014.06.15 20:20:16 | 003,205,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmcndmgr.dll
[2014.06.15 20:20:15 | 004,120,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2014.06.15 20:20:15 | 003,008,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xpsservices.dll
[2014.06.15 20:20:13 | 002,086,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2014.06.15 20:20:13 | 001,197,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskschd.dll
[2014.06.15 20:20:13 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizui.dll
[2014.06.15 20:20:12 | 003,207,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2014.06.15 20:20:12 | 001,866,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2014.06.15 20:20:12 | 001,753,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vssapi.dll
[2014.06.15 20:20:12 | 001,556,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RacEngn.dll
[2014.06.15 20:20:12 | 001,340,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagperf.dll
[2014.06.15 20:20:12 | 001,334,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2014.06.15 20:20:12 | 001,326,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NaturalLanguage6.dll
[2014.06.15 20:20:11 | 003,860,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbon.dll
[2014.06.15 20:20:11 | 000,299,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcupdate_GenuineIntel.dll
[2014.06.15 20:20:10 | 003,957,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSAT.exe
[2014.06.15 20:20:10 | 003,027,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVCORE.DLL
[2014.06.15 20:20:10 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2014.06.15 20:20:10 | 000,598,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spinstall.exe
[2014.06.15 20:20:10 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2014.06.15 20:20:10 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spreview.exe
[2014.06.15 20:20:10 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2014.06.15 20:20:10 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpdd.dll
[2014.06.15 20:20:10 | 000,109,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2014.06.15 20:20:10 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2014.06.15 20:20:09 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthFWSnapin.dll
[2014.06.15 20:20:09 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
[2014.06.15 20:20:09 | 001,115,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RacEngn.dll
[2014.06.15 20:20:09 | 000,867,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
[2014.06.15 20:20:08 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuthFWSnapin.dll
[2014.06.15 20:20:08 | 003,391,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
[2014.06.15 20:20:08 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2014.06.15 20:20:07 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2014.06.15 20:20:07 | 000,958,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2014.06.15 20:20:07 | 000,750,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2014.06.15 20:20:06 | 001,900,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll
[2014.06.15 20:20:06 | 001,244,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2fs.dll
[2014.06.15 20:20:06 | 001,212,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll
[2014.06.15 20:20:06 | 001,116,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2014.06.15 20:20:06 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netlogon.dll
[2014.06.15 20:20:05 | 001,281,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\werconcpl.dll
[2014.06.15 20:20:05 | 001,049,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2014.06.15 20:20:05 | 001,008,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2014.06.15 20:20:05 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbc32.dll
[2014.06.15 20:20:05 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
[2014.06.15 20:20:05 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe
[2014.06.15 20:20:04 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certmgr.dll
[2014.06.15 20:20:04 | 001,371,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2014.06.15 20:20:04 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceApi.dll
[2014.06.15 20:20:04 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2014.06.15 20:20:04 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsmf.dll
[2014.06.15 20:20:03 | 002,652,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netshell.dll
[2014.06.15 20:20:03 | 001,509,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdtctm.dll
[2014.06.15 20:20:03 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TSWorkspace.dll
[2014.06.15 20:20:03 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
[2014.06.15 20:20:03 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2014.06.15 20:20:03 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmicmiplugin.dll
[2014.06.15 20:20:03 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll
[2014.06.15 20:20:03 | 000,481,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpps.dll
[2014.06.15 20:20:03 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shlwapi.dll
[2014.06.15 20:20:03 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.exe
[2014.06.15 20:20:03 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
[2014.06.15 20:20:03 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ws2_32.dll
[2014.06.15 20:20:03 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedynos.dll
[2014.06.15 20:20:03 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpmonui.dll
[2014.06.15 20:20:02 | 002,543,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdshext.dll
[2014.06.15 20:20:02 | 002,522,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
[2014.06.15 20:20:02 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Query.dll
[2014.06.15 20:20:02 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Vault.dll
[2014.06.15 20:20:02 | 000,897,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroles.dll
[2014.06.15 20:20:02 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2014.06.15 20:20:02 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetup.exe
[2014.06.15 20:20:02 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll
[2014.06.15 20:20:02 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmd.exe
[2014.06.15 20:20:02 | 000,281,600 | ---- | C] (Microsoft) -- C:\Windows\SysNative\DShowRdpFilter.dll
[2014.06.15 20:20:02 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsmf.dll
[2014.06.15 20:20:02 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QAGENT.DLL
[2014.06.15 20:20:02 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3api.dll
[2014.06.15 20:20:01 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sxs.dll
[2014.06.15 20:20:01 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskcomp.dll
[2014.06.15 20:20:01 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll
[2014.06.15 20:20:01 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wldap32.dll
[2014.06.15 20:20:01 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcbuilder.exe
[2014.06.15 20:20:00 | 002,151,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmcndmgr.dll
[2014.06.15 20:20:00 | 001,808,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pnidui.dll
[2014.06.15 20:20:00 | 001,158,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webservices.dll
[2014.06.15 20:20:00 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlsrv32.dll
[2014.06.15 20:20:00 | 000,732,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2fs.dll
[2014.06.15 20:20:00 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ipsmsnap.dll
[2014.06.15 20:20:00 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfds.dll
[2014.06.15 20:20:00 | 000,252,928 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\DShowRdpFilter.dll
[2014.06.15 20:20:00 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsta.dll
[2014.06.15 20:20:00 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgprint.dll
[2014.06.15 20:20:00 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\upnp.dll
[2014.06.15 20:20:00 | 000,049,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2014.06.15 20:19:59 | 001,712,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xpsservices.dll
[2014.06.15 20:19:59 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certmgr.dll
[2014.06.15 20:19:59 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanpref.dll
[2014.06.15 20:19:59 | 001,243,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMNetMgr.dll
[2014.06.15 20:19:59 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcmde.dll
[2014.06.15 20:19:59 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2014.06.15 20:19:59 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll
[2014.06.15 20:19:59 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schtasks.exe
[2014.06.15 20:19:59 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnike.dll
[2014.06.15 20:19:59 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mcbuilder.exe
[2014.06.15 20:19:59 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prncache.dll
[2014.06.15 20:19:59 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userenv.dll
[2014.06.15 20:19:59 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3api.dll
[2014.06.15 20:19:58 | 002,262,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncCenter.dll
[2014.06.15 20:19:58 | 002,072,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPEncEn.dll
[2014.06.15 20:19:58 | 001,082,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll
[2014.06.15 20:19:58 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2014.06.15 20:19:58 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\evr.dll
[2014.06.15 20:19:58 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpeffects.dll
[2014.06.15 20:19:58 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\photowiz.dll
[2014.06.15 20:19:58 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmd.exe
[2014.06.15 20:19:58 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2014.06.15 20:19:58 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedyn.dll
[2014.06.15 20:19:58 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2014.06.15 20:19:57 | 000,762,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroles.dll
[2014.06.15 20:19:57 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localsec.dll
[2014.06.15 20:19:57 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2.dll
[2014.06.15 20:19:57 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSATAPI.dll
[2014.06.15 20:19:57 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netdiagfx.dll
[2014.06.15 20:19:57 | 000,298,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcryptprimitives.dll
[2014.06.15 20:19:57 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfds.dll
[2014.06.15 20:19:57 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll
[2014.06.15 20:19:57 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tcpipcfg.dll
[2014.06.15 20:19:57 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spp.dll
[2014.06.15 20:19:57 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSHVHOST.DLL
[2014.06.15 20:19:57 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedynos.dll
[2014.06.15 20:19:57 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fde.dll
[2014.06.15 20:19:57 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll
[2014.06.15 20:19:57 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netid.dll
[2014.06.15 20:19:56 | 002,755,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll
[2014.06.15 20:19:56 | 001,050,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\printui.dll
[2014.06.15 20:19:56 | 000,571,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mspbda.dll
[2014.06.15 20:19:56 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\biocpl.dll
[2014.06.15 20:19:56 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msinfo32.exe
[2014.06.15 20:19:56 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scansetting.dll
[2014.06.15 20:19:53 | 000,854,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbghelp.dll
[2014.06.15 20:19:53 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscms.dll
[2014.06.15 20:19:53 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2014.06.15 20:19:53 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhotoScreensaver.scr
[2014.06.15 20:19:53 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2014.06.15 20:19:53 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wusa.exe
[2014.06.15 20:19:53 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2014.06.15 20:19:53 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
[2014.06.15 20:19:53 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IPHLPAPI.DLL
[2014.06.15 20:19:53 | 000,144,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\basecsp.dll
[2014.06.15 20:19:53 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitagent.exe
[2014.06.15 20:19:52 | 000,934,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallControlPanel.dll
[2014.06.15 20:19:52 | 000,780,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2014.06.15 20:19:52 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlsrv32.dll
[2014.06.15 20:19:52 | 000,776,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\calc.exe
[2014.06.15 20:19:52 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\evr.dll
[2014.06.15 20:19:52 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXP.dll
[2014.06.15 20:19:52 | 000,418,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
[2014.06.15 20:19:52 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wisptis.exe
[2014.06.15 20:19:52 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapp3hst.dll
[2014.06.15 20:19:52 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSATAPI.dll
[2014.06.15 20:19:52 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll
[2014.06.15 20:19:52 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll
[2014.06.15 20:19:52 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PkgMgr.exe
[2014.06.15 20:19:52 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetup.exe
[2014.06.15 20:19:52 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetapi.dll
[2014.06.15 20:19:51 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbon.dll
[2014.06.15 20:19:51 | 002,494,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netshell.dll
[2014.06.15 20:19:51 | 001,457,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DxpTaskSync.dll
[2014.06.15 20:19:51 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSMPEG2ENC.DLL
[2014.06.15 20:19:51 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
[2014.06.15 20:19:51 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PerfCenterCPL.dll
[2014.06.15 20:19:51 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapphost.dll
[2014.06.15 20:19:51 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\upnp.dll
[2014.06.15 20:19:51 | 000,263,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
[2014.06.15 20:19:51 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scecli.dll
[2014.06.15 20:19:51 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprapi.dll
[2014.06.15 20:19:51 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2014.06.15 20:19:51 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll
[2014.06.15 20:19:51 | 000,128,000 | ---- | C] (Microsoft) -- C:\Windows\SysNative\Robocopy.exe
[2014.06.15 20:19:51 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\thumbcache.dll
[2014.06.15 20:19:51 | 000,078,720 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\drivers\HpSAMD.sys
[2014.06.15 20:19:50 | 002,851,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll
[2014.06.15 20:19:50 | 001,363,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll
[2014.06.15 20:19:50 | 000,932,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\printui.dll
[2014.06.15 20:19:50 | 000,675,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXPTaskRingtone.dll
[2014.06.15 20:19:50 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiobj.dll
[2014.06.15 20:19:50 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpeffects.dll
[2014.06.15 20:19:50 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onex.dll
[2014.06.15 20:19:50 | 000,179,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys
[2014.06.15 20:19:50 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\net1.exe
[2014.06.15 20:19:50 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2014.06.15 20:19:50 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prncache.dll
[2014.06.15 20:19:50 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2014.06.15 20:19:49 | 001,750,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pnidui.dll
[2014.06.15 20:19:49 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcenter.dll
[2014.06.15 20:19:49 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdengin2.dll
[2014.06.15 20:19:49 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2014.06.15 20:19:49 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll
[2014.06.15 20:19:49 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2014.06.15 20:19:49 | 000,475,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlangpui.dll
[2014.06.15 20:19:49 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiadefui.dll
[2014.06.15 20:19:49 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlangpui.dll
[2014.06.15 20:19:49 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll
[2014.06.15 20:19:49 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srchadmin.dll
[2014.06.15 20:19:49 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVol.exe
[2014.06.15 20:19:49 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scansetting.dll
[2014.06.15 20:19:49 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquoui.dll
[2014.06.15 20:19:49 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSHVHOST.DLL
[2014.06.15 20:19:49 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2014.06.15 20:19:49 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QUTIL.DLL
[2014.06.15 20:19:49 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\regapi.dll
[2014.06.15 20:19:49 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samcli.dll
[2014.06.15 20:19:49 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
[2014.06.15 20:19:48 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SyncCenter.dll
[2014.06.15 20:19:48 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webservices.dll
[2014.06.15 20:19:48 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appwiz.cpl
[2014.06.15 20:19:48 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TabletPC.cpl
[2014.06.15 20:19:48 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2014.06.15 20:19:48 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
[2014.06.15 20:19:48 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2014.06.15 20:19:48 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netdiagfx.dll
[2014.06.15 20:19:48 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fde.dll
[2014.06.15 20:19:48 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupcl.exe
[2014.06.15 20:19:48 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll
[2014.06.15 20:19:47 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSMPEG2ENC.DLL
[2014.06.15 20:19:47 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayCpl.dll
[2014.06.15 20:19:47 | 000,633,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched20.dll
[2014.06.15 20:19:47 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DXPTaskRingtone.dll
[2014.06.15 20:19:47 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2.dll
[2014.06.15 20:19:47 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mtxclu.dll
[2014.06.15 20:19:47 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgcpl.dll
[2014.06.15 20:19:47 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
[2014.06.15 20:19:47 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msconfig.exe
[2014.06.15 20:19:47 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netiohlp.dll
[2014.06.15 20:19:47 | 000,166,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\basecsp.dll
[2014.06.15 20:19:47 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdeploy.dll
[2014.06.15 20:19:47 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsmproxy.dll
[2014.06.15 20:19:47 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mimefilt.dll
[2014.06.15 20:19:47 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2014.06.15 20:19:46 | 002,250,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsCpl.dll
[2014.06.15 20:19:46 | 002,193,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themecpl.dll
[2014.06.15 20:19:46 | 001,624,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPEncEn.dll
[2014.06.15 20:19:46 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Narrator.exe
[2014.06.15 20:19:46 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autofmt.exe
[2014.06.15 20:19:46 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercpl.dll
[2014.06.15 20:19:46 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eudcedit.exe
[2014.06.15 20:19:46 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sharemediacpl.dll
[2014.06.15 20:19:46 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Faultrep.dll
[2014.06.15 20:19:46 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onex.dll
[2014.06.15 20:19:46 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netjoin.dll
[2014.06.15 20:19:46 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logoncli.dll
[2014.06.15 20:19:46 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscmmc.dll
[2014.06.15 20:19:46 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nci.dll
[2014.06.15 20:19:46 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hbaapi.dll
[2014.06.15 20:19:46 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RpcRtRemote.dll
[2014.06.15 20:19:45 | 001,264,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdclt.exe
[2014.06.15 20:19:45 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoconv.exe
[2014.06.15 20:19:45 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autochk.exe
[2014.06.15 20:19:45 | 000,763,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autofmt.exe
[2014.06.15 20:19:45 | 000,679,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoconv.exe
[2014.06.15 20:19:45 | 000,668,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autochk.exe
[2014.06.15 20:19:45 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpd_ci.dll
[2014.06.15 20:19:45 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshipsec.dll
[2014.06.15 20:19:45 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercpl.dll
[2014.06.15 20:19:45 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanui.dll
[2014.06.15 20:19:45 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ipsmsnap.dll
[2014.06.15 20:19:45 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msihnd.dll
[2014.06.15 20:19:45 | 000,303,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msinfo32.exe
[2014.06.15 20:19:45 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srchadmin.dll
[2014.06.15 20:19:45 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppcomapi.dll
[2014.06.15 20:19:45 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanconn.dll
[2014.06.15 20:19:45 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapphost.dll
[2014.06.15 20:19:45 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedyn.dll
[2014.06.15 20:19:45 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpipcfg.dll
[2014.06.15 20:19:45 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schtasks.exe
[2014.06.15 20:19:45 | 000,171,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scsiport.sys
[2014.06.15 20:19:45 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdsrv.dll
[2014.06.15 20:19:45 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msutb.dll
[2014.06.15 20:19:45 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiohlp.dll
[2014.06.15 20:19:45 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prntvpt.dll
[2014.06.15 20:19:45 | 000,155,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscorier.dll
[2014.06.15 20:19:45 | 000,154,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscorier.dll
[2014.06.15 20:19:45 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2014.06.15 20:19:45 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shsetup.dll
[2014.06.15 20:19:45 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2014.06.15 20:19:45 | 000,116,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2014.06.15 20:19:45 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\regapi.dll
[2014.06.15 20:19:45 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mimefilt.dll
[2014.06.15 20:19:45 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnikeapi.dll
[2014.06.15 20:19:45 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\proquota.exe
[2014.06.15 20:19:44 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll
[2014.06.15 20:19:44 | 001,066,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll
[2014.06.15 20:19:44 | 000,957,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mblctr.exe
[2014.06.15 20:19:44 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmiEngine.dll
[2014.06.15 20:19:44 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
[2014.06.15 20:19:44 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontext.dll
[2014.06.15 20:19:44 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll
[2014.06.15 20:19:44 | 000,665,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuxiliaryDisplayCpl.dll
[2014.06.15 20:19:44 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
[2014.06.15 20:19:44 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\untfs.dll
[2014.06.15 20:19:44 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
[2014.06.15 20:19:44 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpsrcwp.dll
[2014.06.15 20:19:44 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprddm.dll
[2014.06.15 20:19:44 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QAGENT.DLL
[2014.06.15 20:19:44 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netid.dll
[2014.06.15 20:19:44 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nci.dll
[2014.06.15 20:19:43 | 002,217,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bootres.dll
[2014.06.15 20:19:43 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DxpTaskSync.dll
[2014.06.15 20:19:43 | 001,326,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanpref.dll
[2014.06.15 20:19:43 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DiagCpl.dll
[2014.06.15 20:19:43 | 001,003,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMNetMgr.dll
[2014.06.15 20:19:43 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Vault.dll
[2014.06.15 20:19:43 | 000,812,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpccpl.dll
[2014.06.15 20:19:43 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2014.06.15 20:19:43 | 000,433,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MCEWMDRMNDBootstrap.dll
[2014.06.15 20:19:43 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksproxy.ax
[2014.06.15 20:19:43 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskmgr.exe
[2014.06.15 20:19:43 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2014.06.15 20:19:43 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasppp.dll
[2014.06.15 20:19:43 | 000,098,816 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\Robocopy.exe
[2014.06.15 20:19:43 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSTPager.ax
[2014.06.15 20:19:43 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2014.06.15 20:19:42 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll
[2014.06.15 20:19:42 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prnfldr.dll
[2014.06.15 20:19:42 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\untfs.dll
[2014.06.15 20:19:42 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\termmgr.dll
[2014.06.15 20:19:42 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
[2014.06.15 20:19:42 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mtxclu.dll
[2014.06.15 20:19:42 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pdh.dll
[2014.06.15 20:19:42 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eudcedit.exe
[2014.06.15 20:19:42 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxdiagn.dll
[2014.06.15 20:19:42 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAC3ENC.DLL
[2014.06.15 20:19:42 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskmgr.exe
[2014.06.15 20:19:42 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll
[2014.06.15 20:19:42 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDShServiceObj.dll
[2014.06.15 20:19:42 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hbaapi.dll
[2014.06.15 20:19:42 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3cfg.dll
[2014.06.15 20:19:42 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\proquota.exe
[2014.06.15 20:19:42 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\userinit.exe
[2014.06.15 20:19:41 | 003,745,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\accessibilitycpl.dll
[2014.06.15 20:19:41 | 002,202,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsCpl.dll
[2014.06.15 20:19:41 | 002,157,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themecpl.dll
[2014.06.15 20:19:41 | 000,856,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FirewallControlPanel.dll
[2014.06.15 20:19:41 | 000,649,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appwiz.cpl
[2014.06.15 20:19:41 | 000,416,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiadefui.dll
[2014.06.15 20:19:41 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PhotoScreensaver.scr
[2014.06.15 20:19:41 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\zipfldr.dll
[2014.06.15 20:19:41 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slui.exe
[2014.06.15 20:19:41 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hgcpl.dll
[2014.06.15 20:19:41 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\defaultlocationcpl.dll
[2014.06.15 20:19:41 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppcomapi.dll
[2014.06.15 20:19:41 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasppp.dll
[2014.06.15 20:19:41 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2014.06.15 20:19:41 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logoncli.dll
[2014.06.15 20:19:41 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shsetup.dll
[2014.06.15 20:19:41 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscmmc.dll
[2014.06.15 20:19:41 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userinit.exe
[2014.06.15 20:19:40 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkmap.dll
[2014.06.15 20:19:40 | 001,644,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcenter.dll
[2014.06.15 20:19:40 | 001,065,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptui.dll
[2014.06.15 20:19:40 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OobeFldr.dll
[2014.06.15 20:19:40 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontext.dll
[2014.06.15 20:19:40 | 000,780,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenter.dll
[2014.06.15 20:19:40 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sud.dll
[2014.06.15 20:19:40 | 000,740,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\batmeter.dll
[2014.06.15 20:19:40 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2014.06.15 20:19:40 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PerfCenterCPL.dll
[2014.06.15 20:19:40 | 000,600,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
[2014.06.15 20:19:40 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCenter.dll
[2014.06.15 20:19:40 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\localsec.dll
[2014.06.15 20:19:40 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanui.dll
[2014.06.15 20:19:40 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl
[2014.06.15 20:19:40 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVol.exe
[2014.06.15 20:19:40 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprddm.dll
[2014.06.15 20:19:40 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskbarcpl.dll
[2014.06.15 20:19:40 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OnLineIDCpl.dll
[2014.06.15 20:19:40 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2014.06.15 20:19:40 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scecli.dll
[2014.06.15 20:19:40 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twext.dll
[2014.06.15 20:19:40 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prntvpt.dll
[2014.06.15 20:19:40 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscories.dll
[2014.06.15 20:19:39 | 003,727,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\accessibilitycpl.dll
[2014.06.15 20:19:39 | 001,003,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptui.dll
[2014.06.15 20:19:39 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdcpl.dll
[2014.06.15 20:19:39 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl
[2014.06.15 20:19:39 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsuiext.dll
[2014.06.15 20:19:39 | 000,516,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\main.cpl
[2014.06.15 20:19:39 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroleui.dll
[2014.06.15 20:19:39 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2014.06.15 20:19:39 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shwebsvc.dll
[2014.06.15 20:19:39 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\systemcpl.dll
[2014.06.15 20:19:39 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizeng.dll
[2014.06.15 20:19:39 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdedit.exe
[2014.06.15 20:19:39 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MediaMetadataHandler.dll
[2014.06.15 20:19:39 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroleui.dll
[2014.06.15 20:19:39 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\efscore.dll
[2014.06.15 20:19:39 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recdisc.exe
[2014.06.15 20:19:39 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAC3ENC.DLL
[2014.06.15 20:19:39 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysclass.dll
[2014.06.15 20:19:39 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syncui.dll
[2014.06.15 20:19:39 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VBICodec.ax
[2014.06.15 20:19:39 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll
[2014.06.15 20:19:39 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adsldp.dll
[2014.06.15 20:19:39 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netjoin.dll
[2014.06.15 20:19:39 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoplay.dll
[2014.06.15 20:19:39 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxlib.dll
[2014.06.15 20:19:39 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recovery.dll
[2014.06.15 20:19:39 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cca.dll
[2014.06.15 20:19:39 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\isoburn.exe
[2014.06.15 20:19:39 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\w32tm.exe
[2014.06.15 20:19:39 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdeploy.dll
[2014.06.15 20:19:39 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tzutil.exe
[2014.06.15 20:19:39 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpapi.dll
[2014.06.15 20:19:39 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sisbkup.dll
[2014.06.15 20:19:38 | 002,130,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\networkmap.dll
[2014.06.15 20:19:38 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sud.dll
[2014.06.15 20:19:38 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenter.dll
[2014.06.15 20:19:38 | 000,549,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenterCPL.dll
[2014.06.15 20:19:38 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizeng.dll
[2014.06.15 20:19:38 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2014.06.15 20:19:38 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prnfldr.dll
[2014.06.15 20:19:38 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Faultrep.dll
[2014.06.15 20:19:38 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wusa.exe
[2014.06.15 20:19:38 | 000,312,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MCEWMDRMNDBootstrap.dll
[2014.06.15 20:19:38 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\photowiz.dll
[2014.06.15 20:19:38 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MediaMetadataHandler.dll
[2014.06.15 20:19:38 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll
[2014.06.15 20:19:38 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OnLineIDCpl.dll
[2014.06.15 20:19:38 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll
[2014.06.15 20:19:38 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayServices.dll
[2014.06.15 20:19:38 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptui.dll
[2014.06.15 20:19:38 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksxbar.ax
[2014.06.15 20:19:37 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl
[2014.06.15 20:19:37 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscp.dll
[2014.06.15 20:19:37 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenterCPL.dll
[2014.06.15 20:19:37 | 000,474,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx
[2014.06.15 20:19:37 | 000,446,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlcese30.dll
[2014.06.15 20:19:37 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shwebsvc.dll
[2014.06.15 20:19:37 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\termmgr.dll
[2014.06.15 20:19:37 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx
[2014.06.15 20:19:37 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl
[2014.06.15 20:19:37 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ssText3d.scr
[2014.06.15 20:19:37 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdm.tsp
[2014.06.15 20:19:37 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2014.06.15 20:19:37 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iTVData.dll
[2014.06.15 20:19:37 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iprtrmgr.dll
[2014.06.15 20:19:37 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sethc.exe
[2014.06.15 20:19:37 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iprtrmgr.dll
[2014.06.15 20:19:37 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\defaultlocationcpl.dll
[2014.06.15 20:19:37 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\efscore.dll
[2014.06.15 20:19:37 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syncui.dll
[2014.06.15 20:19:37 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ifsutil.dll
[2014.06.15 20:19:37 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoplay.dll
[2014.06.15 20:19:37 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntlanman.dll
[2014.06.15 20:19:37 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserAccountControlSettings.dll
[2014.06.15 20:19:37 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3cfg.dll
[2014.06.15 20:19:37 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpd3d.dll
[2014.06.15 20:19:37 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ftp.exe
[2014.06.15 20:19:37 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sisbkup.dll
[2014.06.15 20:19:36 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OobeFldr.dll
[2014.06.15 20:19:36 | 000,781,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
[2014.06.15 20:19:36 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
[2014.06.15 20:19:36 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2014.06.15 20:19:36 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmmgrtn.dll
[2014.06.15 20:19:36 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DeviceCenter.dll
[2014.06.15 20:19:36 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\systemcpl.dll
[2014.06.15 20:19:36 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntprint.dll
[2014.06.15 20:19:36 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntprint.dll
[2014.06.15 20:19:36 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srrstr.dll
[2014.06.15 20:19:36 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sethc.exe
[2014.06.15 20:19:36 | 000,255,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wavemsp.dll
[2014.06.15 20:19:36 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairingFolder.dll
[2014.06.15 20:19:36 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquoui.dll
[2014.06.15 20:19:36 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksproxy.ax
[2014.06.15 20:19:36 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdboot.exe
[2014.06.15 20:19:36 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl
[2014.06.15 20:19:36 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPHLPR.DLL
[2014.06.15 20:19:36 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srvcli.dll
[2014.06.15 20:19:36 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nslookup.exe
[2014.06.15 20:19:36 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPHLPR.DLL
[2014.06.15 20:19:36 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppnp.dll
[2014.06.15 20:19:36 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSTPager.ax
[2014.06.15 20:19:36 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acppage.dll
[2014.06.15 20:19:36 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slwga.dll
[2014.06.15 20:19:35 | 001,672,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkexplorer.dll
[2014.06.15 20:19:35 | 000,840,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\blackbox.dll
[2014.06.15 20:19:35 | 000,685,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsuiext.dll
[2014.06.15 20:19:35 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfrgui.exe
[2014.06.15 20:19:35 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wvc.dll
[2014.06.15 20:19:35 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2014.06.15 20:19:35 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfrgui.exe
[2014.06.15 20:19:35 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2014.06.15 20:19:35 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpdxm.dll
[2014.06.15 20:19:35 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshipsec.dll
[2014.06.15 20:19:35 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3ui.dll
[2014.06.15 20:19:35 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsqmcons.exe
[2014.06.15 20:19:35 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpx.dll
[2014.06.15 20:19:35 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2014.06.15 20:19:35 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wavemsp.dll
[2014.06.15 20:19:35 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSCard.dll
[2014.06.15 20:19:35 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\activeds.dll
[2014.06.15 20:19:35 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpsrcwp.dll
[2014.06.15 20:19:35 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll
[2014.06.15 20:19:35 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2014.06.15 20:19:35 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\remotepg.dll
[2014.06.15 20:19:35 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\net1.exe
[2014.06.15 20:19:35 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kstvtune.ax
[2014.06.15 20:19:35 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\migisol.dll
[2014.06.15 20:19:35 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabinet.dll
[2014.06.15 20:19:35 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2014.06.15 20:19:35 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\isoburn.exe
[2014.06.15 20:19:35 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wkscli.dll
[2014.06.15 20:19:35 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsnmp32.dll
[2014.06.15 20:19:35 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ftp.exe
[2014.06.15 20:19:35 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tzutil.exe
[2014.06.15 20:19:35 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\httpapi.dll
[2014.06.15 20:19:34 | 001,911,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
[2014.06.15 20:19:34 | 000,899,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Bubbles.scr
[2014.06.15 20:19:34 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmdev.dll
[2014.06.15 20:19:34 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\main.cpl
[2014.06.15 20:19:34 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wvc.dll
[2014.06.15 20:19:34 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimgapi.dll
[2014.06.15 20:19:34 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskraid.exe
[2014.06.15 20:19:34 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdm.tsp
[2014.06.15 20:19:34 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PkgMgr.exe
[2014.06.15 20:19:34 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstask.dll
[2014.06.15 20:19:34 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qasf.dll
[2014.06.15 20:19:34 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2014.06.15 20:19:34 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetup.exe
[2014.06.15 20:19:34 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qcap.dll
[2014.06.15 20:19:34 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twext.dll
[2014.06.15 20:19:34 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupugc.exe
[2014.06.15 20:19:34 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapistub.dll
[2014.06.15 20:19:34 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapi32.dll
[2014.06.15 20:19:34 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdmat.dll
[2014.06.15 20:19:34 | 000,051,200 | ---- | C] (Twain Working Group) -- C:\Windows\twain_32.dll
[2014.06.15 20:19:34 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsium.dll
[2014.06.15 20:19:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFaultSecure.exe
[2014.06.15 20:19:34 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2014.06.15 20:19:33 | 001,087,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbghelp.dll
[2014.06.15 20:19:33 | 000,623,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSAPI.dll
[2014.06.15 20:19:33 | 000,616,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
[2014.06.15 20:19:33 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
[2014.06.15 20:19:33 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimserv.exe
[2014.06.15 20:19:33 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsAnytimeUpgradeResults.exe
[2014.06.15 20:19:33 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ssText3d.scr
[2014.06.15 20:19:33 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskraid.exe
[2014.06.15 20:19:33 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qasf.dll
[2014.06.15 20:19:33 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mystify.scr
[2014.06.15 20:19:33 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Ribbons.scr
[2014.06.15 20:19:33 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
[2014.06.15 20:19:33 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpencom.dll
[2014.06.15 20:19:33 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionQueue.dll
[2014.06.15 20:19:33 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairingFolder.dll
[2014.06.15 20:19:33 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpencom.dll
[2014.06.15 20:19:33 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ifsutil.dll
[2014.06.15 20:19:33 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfmon.exe
[2014.06.15 20:19:33 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfmon.exe
[2014.06.15 20:19:33 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpshell.dll
[2014.06.15 20:19:33 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvfw32.dll
[2014.06.15 20:19:33 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\uxlib.dll
[2014.06.15 20:19:33 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nslookup.exe
[2014.06.15 20:19:33 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2014.06.15 20:19:33 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tlscsp.dll
[2014.06.15 20:19:33 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\umb.dll
[2014.06.15 20:19:33 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPCRYPT.DLL
[2014.06.15 20:19:33 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\acppage.dll
[2014.06.15 20:19:33 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AzSqlExt.dll
[2014.06.15 20:19:33 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netutils.dll
[2014.06.15 20:19:33 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\muifontsetup.dll
[2014.06.15 20:19:33 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\slwga.dll
[2014.06.15 20:19:32 | 001,232,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMADMOD.DLL
[2014.06.15 20:19:32 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onexui.dll
[2014.06.15 20:19:32 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVSDECD.DLL
[2014.06.15 20:19:32 | 000,402,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
[2014.06.15 20:19:32 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nltest.exe
[2014.06.15 20:19:32 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\raschap.dll
[2014.06.15 20:19:32 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\raschap.dll
[2014.06.15 20:19:32 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpdxm.dll

[Horst_Fuchs]

[2014.06.15 20:19:32 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstask.dll
[2014.06.15 20:19:32 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iTVData.dll
[2014.06.15 20:19:32 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdwcn.dll
[2014.06.15 20:19:32 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxdiagn.dll
[2014.06.15 20:19:32 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll
[2014.06.15 20:19:32 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdwcn.dll
[2014.06.15 20:19:32 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsbas.dll
[2014.06.15 20:19:32 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetapi.dll
[2014.06.15 20:19:32 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vdsbas.dll
[2014.06.15 20:19:32 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\remotepg.dll
[2014.06.15 20:19:32 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MdSched.exe
[2014.06.15 20:19:32 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rmcast.sys
[2014.06.15 20:19:32 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Kswdmcap.ax
[2014.06.15 20:19:32 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiavideo.dll
[2014.06.15 20:19:32 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QUTIL.DLL
[2014.06.15 20:19:32 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserAccountControlSettings.dll
[2014.06.15 20:19:32 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2014.06.15 20:19:32 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\runonce.exe
[2014.06.15 20:19:32 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\runonce.exe
[2014.06.15 20:19:32 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PrintIsolationProxy.dll
[2014.06.15 20:19:32 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPCRYPT.DLL
[2014.06.15 20:19:32 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vpnikeapi.dll
[2014.06.15 20:19:32 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syssetup.dll
[2014.06.15 20:19:31 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2014.06.15 20:19:31 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMSPDMOD.DLL
[2014.06.15 20:19:31 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Bubbles.scr
[2014.06.15 20:19:31 | 000,527,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmnet.dll
[2014.06.15 20:19:31 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmdev.dll
[2014.06.15 20:19:31 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDSp.dll
[2014.06.15 20:19:31 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msnetobj.dll
[2014.06.15 20:19:31 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlcese30.dll
[2014.06.15 20:19:31 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdv.dll
[2014.06.15 20:19:31 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapp3hst.dll
[2014.06.15 20:19:31 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdh.dll
[2014.06.15 20:19:31 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsadmin.exe
[2014.06.15 20:19:31 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceSyncProvider.dll
[2014.06.15 20:19:31 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsadmin.exe
[2014.06.15 20:19:31 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qcap.dll
[2014.06.15 20:19:31 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
[2014.06.15 20:19:31 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprapi.dll
[2014.06.15 20:19:31 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shacct.dll
[2014.06.15 20:19:31 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSVRMGMT.DLL
[2014.06.15 20:19:31 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shacct.dll
[2014.06.15 20:19:31 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpshell.dll
[2014.06.15 20:19:31 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logman.exe
[2014.06.15 20:19:31 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logagent.exe
[2014.06.15 20:19:31 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2014.06.15 20:19:31 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tabcal.exe
[2014.06.15 20:19:31 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vss_ps.dll
[2014.06.15 20:19:31 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdmat.dll
[2014.06.15 20:19:31 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpd3d.dll
[2014.06.15 20:19:31 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscapi.dll
[2014.06.15 20:19:31 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsium.dll
[2014.06.15 20:19:31 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\lsmproxy.dll
[2014.06.15 20:19:30 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceStatus.dll
[2014.06.15 20:19:30 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WPDSp.dll
[2014.06.15 20:19:30 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceSyncProvider.dll
[2014.06.15 20:19:30 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kstvtune.ax
[2014.06.15 20:19:30 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logman.exe
[2014.06.15 20:19:30 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spbcd.dll
[2014.06.15 20:19:30 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptui.dll
[2014.06.15 20:19:28 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceStatus.dll
[2014.06.15 20:19:28 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3ui.dll
[2014.06.15 20:19:28 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fphc.dll
[2014.06.15 20:19:28 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\olethk32.dll
[2014.06.15 20:19:27 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMADMOD.DLL
[2014.06.15 20:19:27 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mystify.scr
[2014.06.15 20:19:27 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Ribbons.scr
[2014.06.15 20:19:27 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VBICodec.ax
[2014.06.15 20:19:27 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EhStorAPI.dll
[2014.06.15 20:19:27 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl
[2014.06.15 20:19:27 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\desk.cpl
[2014.06.15 20:19:27 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3msm.dll
[2014.06.15 20:19:27 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiavideo.dll
[2014.06.15 20:19:27 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Kswdmcap.ax
[2014.06.15 20:19:27 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSVRMGMT.DLL
[2014.06.15 20:19:27 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fphc.dll
[2014.06.15 20:19:27 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2014.06.15 20:19:27 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\amstream.dll
[2014.06.15 20:19:27 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapistub.dll
[2014.06.15 20:19:27 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\takeown.exe
[2014.06.15 20:19:27 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PnPUnattend.exe
[2014.06.15 20:19:27 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\takeown.exe
[2014.06.15 20:19:27 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\utildll.dll
[2014.06.15 20:19:26 | 001,148,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IMJP10.IME
[2014.06.15 20:19:26 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMSPDMOD.DLL
[2014.06.15 20:19:26 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVSDECD.DLL
[2014.06.15 20:19:26 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmnet.dll
[2014.06.15 20:19:26 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdv.dll
[2014.06.15 20:19:26 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msnetobj.dll
[2014.06.15 20:19:26 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupcln.dll
[2014.06.15 20:19:26 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppinst.dll
[2014.06.15 20:19:26 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmstp.exe
[2014.06.15 20:19:26 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmstp.exe
[2014.06.15 20:19:26 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QCLIPROV.DLL
[2014.06.15 20:19:26 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdProxy.dll
[2014.06.15 20:19:26 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QCLIPROV.DLL
[2014.06.15 20:19:26 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertPolEng.dll
[2014.06.15 20:19:26 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MuiUnattend.exe
[2014.06.15 20:19:26 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cca.dll
[2014.06.15 20:19:26 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WavDest.dll
[2014.06.15 20:19:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\djoin.exe
[2014.06.15 20:19:26 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vfwwdm32.dll
[2014.06.15 20:19:26 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsnmp32.dll
[2014.06.15 20:19:26 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MultiDigiMon.exe
[2014.06.15 20:19:26 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdhui.dll
[2014.06.15 20:19:26 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimgvw.dll
[2014.06.15 20:19:26 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HotStartUserAgent.dll
[2014.06.15 20:19:26 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nrpsrv.dll
[2014.06.15 20:19:25 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\itircl.dll
[2014.06.15 20:19:25 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msorcl32.dll
[2014.06.15 20:19:25 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskpart.exe
[2014.06.15 20:19:25 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsicli.exe
[2014.06.15 20:19:25 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsicli.exe
[2014.06.15 20:19:25 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mydocs.dll
[2014.06.15 20:19:25 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mydocs.dll
[2014.06.15 20:19:25 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskpart.exe
[2014.06.15 20:19:25 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\desk.cpl
[2014.06.15 20:19:25 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3msm.dll
[2014.06.15 20:19:25 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mobsync.exe
[2014.06.15 20:19:25 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\amstream.dll
[2014.06.15 20:19:25 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastapi.dll
[2014.06.15 20:19:25 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spbcd.dll
[2014.06.15 20:19:25 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\g711codc.ax
[2014.06.15 20:19:25 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wkscli.dll
[2014.06.15 20:19:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbisurf.ax
[2014.06.15 20:19:25 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\relog.exe
[2014.06.15 20:19:25 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\relog.exe
[2014.06.15 20:19:25 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdmo.dll
[2014.06.15 20:19:25 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AzSqlExt.dll
[2014.06.15 20:19:25 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiougc.exe
[2014.06.15 20:19:25 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netbtugc.exe
[2014.06.15 20:19:25 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BWUnpairElevated.dll
[2014.06.15 20:19:25 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sscore.dll
[2014.06.15 20:19:24 | 001,080,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onexui.dll
[2014.06.15 20:19:24 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IMJP10.IME
[2014.06.15 20:19:24 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSTIFF.dll
[2014.06.15 20:19:24 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\itircl.dll
[2014.06.15 20:19:24 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppc.dll
[2014.06.15 20:19:24 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpps.dll
[2014.06.15 20:19:24 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappgnui.dll
[2014.06.15 20:19:24 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mobsync.exe
[2014.06.15 20:19:24 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappgnui.dll
[2014.06.15 20:19:24 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\manage-bde.exe
[2014.06.15 20:19:24 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\resutils.dll
[2014.06.15 20:19:24 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\findstr.exe
[2014.06.15 20:19:24 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tlscsp.dll
[2014.06.15 20:19:24 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertPolEng.dll
[2014.06.15 20:19:24 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\findstr.exe
[2014.06.15 20:19:24 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\luainstall.dll
[2014.06.15 20:19:24 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksxbar.ax
[2014.06.15 20:19:24 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciqtz32.dll
[2014.06.15 20:19:24 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\choice.exe
[2014.06.15 20:19:24 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciqtz32.dll
[2014.06.15 20:19:24 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2014.06.15 20:19:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFaultSecure.exe
[2014.06.15 20:19:24 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schedcli.dll
[2014.06.15 20:19:24 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgentc.exe
[2014.06.15 20:19:24 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syssetup.dll
[2014.06.15 20:19:24 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\muifontsetup.dll
[2014.06.15 20:19:23 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll
[2014.06.15 20:19:23 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
[2014.06.15 20:19:23 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDPENCDD.dll
[2014.06.15 20:19:23 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppc.dll
[2014.06.15 20:19:23 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2014.06.15 20:19:23 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetmib1.dll
[2014.06.15 20:19:23 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbcconf.dll
[2014.06.15 20:19:23 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetmib1.dll
[2014.06.15 20:19:23 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\repair-bde.exe
[2014.06.15 20:19:23 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\g711codc.ax
[2014.06.15 20:19:23 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\luainstall.dll
[2014.06.15 20:19:23 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSMON.dll
[2014.06.15 20:19:23 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcconf.dll
[2014.06.15 20:19:23 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsauth.dll
[2014.06.15 20:19:23 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdiasqmmodule.dll
[2014.06.15 20:19:23 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shimgvw.dll
[2014.06.15 20:19:23 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unlodctr.exe
[2014.06.15 20:19:23 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbisurf.ax
[2014.06.15 20:19:23 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdmo.dll
[2014.06.15 20:19:23 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2014.06.15 20:19:23 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LogonUI.exe
[2014.06.15 20:19:23 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys
[2014.06.15 20:19:23 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elsTrans.dll
[2014.06.15 20:19:23 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TRAPI.dll
[2014.06.15 20:19:23 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdprefdrvapi.dll
[2014.06.15 20:19:23 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spopk.dll
[2014.06.15 20:19:23 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spopk.dll
[2014.06.15 20:19:23 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fixmapi.exe
[2014.06.15 20:19:23 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfts.dll
[2014.06.15 20:19:22 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imkr80.ime
[2014.06.15 20:19:22 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imkr80.ime
[2014.06.15 20:19:22 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\napdsnap.dll
[2014.06.15 20:19:22 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\napdsnap.dll
[2014.06.15 20:19:22 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBCAMD2.sys
[2014.06.15 20:19:22 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbrpm.sys
[2014.06.15 20:19:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsauth.dll
[2014.06.15 20:19:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscdll.dll
[2014.06.15 20:19:22 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shgina.dll
[2014.06.15 20:19:22 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsdchngr.dll
[2014.06.15 20:19:22 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsperf.dll
[2014.06.15 20:19:22 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdprefdrvapi.dll
[2014.06.15 20:19:22 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elsTrans.dll
[2014.06.15 20:19:22 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsdchngr.dll
[2014.06.15 20:19:22 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TRAPI.dll
[2014.06.15 20:19:22 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shgina.dll
[2014.06.15 20:19:22 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsperf.dll
[2014.06.15 20:19:22 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSUNATD.exe
[2014.06.15 20:19:22 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schedcli.dll
[2014.06.15 20:19:22 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll
[2014.06.15 20:19:22 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\riched32.dll
[2014.06.15 20:19:21 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshirda.dll
[2014.06.15 20:19:21 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\C_ISCII.DLL
[2014.06.15 20:19:21 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshirda.dll
[2014.06.15 20:19:21 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\C_ISCII.DLL
[2014.06.15 20:19:21 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched32.dll
[2014.06.15 20:19:21 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcfgex.dll
[2014.06.15 20:19:21 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2014.06.15 20:19:21 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2014.06.15 20:19:21 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2014.06.15 20:19:21 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2014.06.15 20:19:20 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shunimpl.dll
[2014.06.15 20:19:20 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUQ.DLL
[2014.06.15 20:19:20 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUF.DLL
[2014.06.15 20:19:20 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSG.DLL
[2014.06.15 20:19:20 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdlk41a.dll
[2014.06.15 20:19:20 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGKL.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUQ.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUF.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSG.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSF.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDPO.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDNEPR.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdlk41a.dll
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTAM.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINBEN.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGR1.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGR1.DLL
[2014.06.15 20:19:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGKL.DLL
[2014.06.15 20:19:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2014.06.15 20:19:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2014.06.15 20:19:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-ums-l1-1-0.dll
[2014.06.15 20:19:19 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlsbres.dll
[2014.06.15 20:19:19 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nlsbres.dll
[2014.06.15 20:19:19 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BlbEvents.dll
[2014.06.15 20:19:19 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pifmgr.dll
[2014.06.15 20:19:19 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pifmgr.dll
[2014.06.15 20:19:19 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDCZ1.DLL
[2014.06.15 20:19:19 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizres.dll
[2014.06.15 20:19:19 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizres.dll
[2014.06.15 20:19:19 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDCZ1.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUS.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUGHR1.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTURME.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTAJIK.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSF.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDPO.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDNEPR.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMON.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMAORI.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDLT1.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTEL.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTAM.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINORI.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINORI.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINMAR.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINMAR.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINKAN.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINKAN.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINHIN.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINHIN.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINBEN.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBULG.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBLR.DLL
[2014.06.15 20:19:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBASH.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUS.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUGHR1.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTURME.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTAJIK.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMON.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMAORI.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDLT1.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTEL.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGEO.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGEO.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBULG.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBLR.DLL
[2014.06.15 20:19:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBASH.DLL
[2014.06.15 20:19:13 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpx.dll
[2014.06.15 20:19:13 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdscore.dll
[2014.06.15 20:19:10 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqmapi.dll
[2014.06.15 20:18:32 | 000,529,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wbemcomn.dll
[2014.06.15 20:18:30 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqmapi.dll
[2014.06.15 20:07:29 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2014.06.15 20:07:29 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2014.06.15 20:07:29 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2014.06.15 20:07:28 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
[2014.06.15 20:07:28 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2014.06.15 20:07:28 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2014.06.15 20:02:55 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2014.06.15 20:02:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2014.06.15 19:51:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2014.06.15 19:18:18 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
[2014.06.15 19:11:20 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2014.06.15 19:06:14 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2014.06.15 19:06:14 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2014.06.15 19:06:14 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2014.06.15 19:06:14 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2014.06.15 19:02:17 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2014.06.15 18:58:09 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2014.06.15 18:58:09 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2014.06.15 18:58:09 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2014.06.15 18:58:09 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2014.06.15 18:58:08 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2014.06.15 18:58:08 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2014.06.15 18:58:08 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2014.06.15 18:58:08 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2014.06.15 18:58:08 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2014.06.15 18:58:08 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2014.06.15 18:58:08 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2014.06.15 18:58:08 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2014.06.15 18:58:08 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2014.06.15 18:58:02 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2014.06.15 18:57:55 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2014.06.15 18:57:50 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2014.06.15 18:57:50 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2014.06.15 18:57:35 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2014.06.15 18:57:35 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2014.06.15 18:57:35 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2014.06.15 18:57:35 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2014.06.15 18:57:33 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2014.06.15 18:57:33 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2014.06.15 18:57:33 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2014.06.15 18:57:33 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2014.06.15 18:57:32 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2014.06.15 18:57:32 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2014.06.15 18:57:32 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2014.06.15 18:57:32 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2014.06.15 18:57:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2014.06.15 18:56:25 | 003,717,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2014.06.15 18:56:25 | 003,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2014.06.15 18:56:25 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2014.06.15 18:56:25 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2014.06.15 18:56:25 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2014.06.15 18:56:25 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2014.06.15 18:55:59 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
[2014.06.15 18:55:59 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2014.06.15 18:55:59 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2014.06.15 18:55:59 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2014.06.15 18:55:59 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2014.06.15 18:55:59 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2014.06.15 18:55:58 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2014.06.15 18:55:58 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2014.06.15 18:55:39 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2014.06.15 18:55:39 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys
[2014.06.15 18:55:38 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2014.06.15 18:55:38 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2014.06.15 18:55:38 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2014.06.15 18:55:36 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2014.06.15 18:55:36 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2014.06.15 18:55:36 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\profprov.dll
[2014.06.15 18:55:29 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll
[2014.06.15 18:55:29 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll
[2014.06.15 18:55:29 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnaddr.dll
[2014.06.15 18:55:29 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnaddr.dll
[2014.06.15 18:55:13 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2014.06.15 18:55:13 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2014.06.15 18:55:13 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2014.06.15 18:55:13 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2014.06.15 18:55:13 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2014.06.15 18:55:13 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2014.06.15 18:54:54 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\fpb.rs
[2014.06.15 18:54:54 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysNative\fpb.rs
[2014.06.15 18:54:54 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc-nz.rs
[2014.06.15 18:54:54 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc-nz.rs
[2014.06.15 18:54:54 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegibbfc.rs
[2014.06.15 18:54:54 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegibbfc.rs
[2014.06.15 18:54:54 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\csrr.rs
[2014.06.15 18:54:54 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysNative\csrr.rs
[2014.06.15 18:54:54 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cob-au.rs
[2014.06.15 18:54:54 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cob-au.rs
[2014.06.15 18:54:54 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\usk.rs
[2014.06.15 18:54:54 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysNative\usk.rs
[2014.06.15 18:54:54 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\grb.rs
[2014.06.15 18:54:54 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysNative\grb.rs
[2014.06.15 18:54:54 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi.rs
[2014.06.15 18:54:54 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi.rs
[2014.06.15 18:54:54 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\djctq.rs
[2014.06.15 18:54:54 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysNative\djctq.rs
[2014.06.15 18:54:53 | 002,746,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2014.06.15 18:54:53 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2014.06.15 18:54:53 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wpc.dll
[2014.06.15 18:54:53 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Wpc.dll
[2014.06.15 18:54:53 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-pt.rs
[2014.06.15 18:54:53 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-pt.rs
[2014.06.15 18:54:51 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cero.rs
[2014.06.15 18:54:51 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cero.rs
[2014.06.15 18:54:51 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\esrb.rs
[2014.06.15 18:54:51 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysNative\esrb.rs
[2014.06.15 18:54:51 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc.rs
[2014.06.15 18:54:51 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc.rs
[2014.06.15 18:54:51 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-fi.rs
[2014.06.15 18:54:51 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-fi.rs
[2014.06.15 18:54:45 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2014.06.15 18:54:45 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2014.06.15 18:54:45 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2014.06.15 18:54:45 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2014.06.15 18:54:45 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2014.06.15 18:54:45 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mpeg2Data.ax
[2014.06.15 18:54:45 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2014.06.15 18:54:45 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSDvbNP.ax
[2014.06.15 18:54:45 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mpeg2Data.ax
[2014.06.15 18:54:45 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSDvbNP.ax
[2014.06.15 18:53:36 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2014.06.15 18:53:36 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2014.06.15 18:53:26 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2014.06.15 18:53:26 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2014.06.15 18:53:26 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2014.06.15 18:53:26 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2014.06.15 18:53:26 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2014.06.15 18:53:26 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2014.06.15 18:53:26 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2014.06.15 18:53:26 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2014.06.15 18:53:25 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2014.06.15 18:53:25 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2014.06.15 18:53:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2014.06.15 18:53:14 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2014.06.15 18:53:14 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2014.06.15 18:53:13 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2014.06.15 18:52:17 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2014.06.15 18:52:17 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cfgmgr32.dll
[2014.06.15 18:52:17 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2014.06.15 18:45:54 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2014.06.15 18:45:54 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2014.06.15 18:45:39 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2014.06.15 18:45:39 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2014.06.15 18:45:12 | 000,974,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WFS.exe
[2014.06.15 18:45:12 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2014.06.15 18:45:11 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2014.06.15 18:45:08 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2014.06.15 18:45:06 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2014.06.15 18:45:03 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2014.06.15 18:44:58 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2014.06.15 18:44:58 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2014.06.15 18:41:10 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2014.06.15 18:41:10 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2014.06.15 18:37:38 | 000,000,000 | -HSD | C] -- C:\Users\1\IntelGraphicsProfiles
[2014.06.15 18:35:40 | 000,064,000 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.DLL
[2014.06.15 18:35:40 | 000,060,416 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.DLL
[2014.06.15 18:35:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel
[2014.06.15 18:32:47 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2014.06.15 18:32:47 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2014.06.15 18:28:43 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2014.06.15 18:28:43 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2014.06.15 18:28:43 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2014.06.15 18:28:38 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2014.06.15 18:28:38 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2014.06.15 18:28:38 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2014.06.15 18:28:19 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2014.06.15 18:28:19 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2014.06.15 18:23:13 | 000,646,248 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2014.06.15 18:23:13 | 000,107,552 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll
[2014.06.15 18:23:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2014.06.15 18:21:38 | 000,016,344 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\IntelMEFWVer.dll
[2014.06.15 18:21:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2014.06.15 18:21:28 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2014.06.15 18:21:11 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2014.06.15 18:21:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent
[2014.06.15 18:20:55 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2014.06.15 18:20:55 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2014.06.15 18:20:48 | 001,795,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01011.dll
[2014.06.15 18:20:48 | 000,099,288 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\TeeDriverx64.sys
[2014.06.15 18:20:47 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2014.06.15 18:20:47 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\InstallShield
[2014.06.15 18:20:16 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2014.06.15 18:20:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2014.06.15 18:19:41 | 000,000,000 | ---D | C] -- C:\gigabyte-H61M-DS2 DVI
[2014.06.15 18:17:14 | 000,000,000 | R--D | C] -- C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014.06.15 18:17:14 | 000,000,000 | R--D | C] -- C:\Users\1\Searches
[2014.06.15 18:17:14 | 000,000,000 | R--D | C] -- C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014.06.15 18:17:04 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\Identities
[2014.06.15 18:17:01 | 000,000,000 | R--D | C] -- C:\Users\1\Contacts
[2014.06.15 18:16:58 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\VirtualStore
[2014.06.15 18:16:47 | 000,000,000 | --SD | C] -- C:\Users\1\AppData\Roaming\Microsoft
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\Videos
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\Saved Games
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\Pictures
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\Music
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\Links
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\Favorites
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\Downloads
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\Documents
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\Desktop
[2014.06.15 18:16:47 | 000,000,000 | R--D | C] -- C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\AppData\Local\Temporary Internet Files
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Šablony
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Soubory cookie
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\SendTo
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Poslední
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Okolní tiskárny
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Okolní síť
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Documents\Obrázky
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Nabídka Start
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Local Settings
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Documents\Hudba
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\AppData\Local\History
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Documents\Filmy
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Dokumenty
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\Data aplikací
[2014.06.15 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\1\AppData\Local\Data aplikací
[2014.06.15 18:16:47 | 000,000,000 | -H-D | C] -- C:\Users\1\AppData
[2014.06.15 18:16:47 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\Temp
[2014.06.15 18:16:47 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Local\Microsoft
[2014.06.15 18:16:47 | 000,000,000 | ---D | C] -- C:\Users\1\AppData\Roaming\Media Center Programs
[2014.06.15 18:16:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2014.06.15 18:16:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2014.06.15 18:16:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2014.06.15 18:16:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2014.06.15 18:16:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2014.06.15 18:16:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2014.06.15 18:16:37 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2014.06.15 18:16:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2014.06.15 18:16:37 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2014.06.15 18:16:37 | 000,000,000 | ---D | C] -- C:\Recovery
[2014.06.15 18:16:34 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2014.06.15 18:11:51 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2014.06.15 18:11:38 | 000,000,000 | -HSD | C] -- C:\System Volume Information

========== Files - Modified Within 30 Days ==========

[2014.07.07 11:12:16 | 000,010,320 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.07.07 11:12:16 | 000,010,320 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.07.07 10:56:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.07.07 10:42:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\1\Desktop\OTL.exe
[2014.07.07 10:34:00 | 000,000,942 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.07.07 10:14:44 | 001,582,262 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014.07.07 10:14:44 | 000,668,138 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2014.07.07 10:14:44 | 000,653,526 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014.07.07 10:14:44 | 000,140,798 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2014.07.07 10:14:44 | 000,121,398 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014.07.07 10:10:17 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2014.07.07 10:10:09 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.07.07 10:09:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.07.07 10:09:54 | 3137,581,056 | -HS- | M] () -- C:\hiberfil.sys
[2014.07.06 23:48:09 | 000,001,110 | ---- | M] () -- C:\Users\1\Desktop\ComboFix – zástupce.lnk
[2014.07.06 18:11:23 | 000,002,305 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[2014.07.05 16:59:08 | 000,000,839 | ---- | M] () -- C:\Users\Public\Desktop\Total Uninstall 6.lnk
[2014.07.04 12:15:28 | 002,344,840 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014.07.01 12:40:13 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014.06.30 11:44:22 | 000,001,102 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014.06.22 22:09:16 | 004,622,781 | ---- | M] () -- C:\Program Files\screen hunter.exe
[2014.06.18 06:18:43 | 000,000,284 | RH-- | M] () -- C:\Windows\ctfile.rfc
[2014.06.18 06:18:17 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2014.06.18 00:30:13 | 000,466,520 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2014.06.18 00:30:13 | 000,445,016 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2014.06.18 00:30:13 | 000,123,480 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2014.06.18 00:30:13 | 000,109,144 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2014.06.18 00:10:13 | 001,941,352 | ---- | M] () -- C:\Program Files\Win rar.exe
[2014.06.17 03:03:26 | 001,557,208 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014.06.16 03:35:02 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2014.06.16 03:35:01 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2014.06.16 03:35:01 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2014.06.16 03:35:01 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2014.06.16 03:35:00 | 000,942,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2014.06.16 03:35:00 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2014.06.16 03:35:00 | 000,610,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2014.06.16 03:35:00 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2014.06.16 03:35:00 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2014.06.16 03:35:00 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2014.06.16 03:35:00 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2014.06.16 03:35:00 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2014.06.16 03:35:00 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2014.06.16 03:35:00 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2014.06.16 03:35:00 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2014.06.16 03:35:00 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2014.06.16 03:35:00 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2014.06.16 03:35:00 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2014.06.16 03:35:00 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2014.06.16 03:35:00 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2014.06.16 03:35:00 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2014.06.16 03:35:00 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2014.06.16 03:35:00 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2014.06.16 03:35:00 | 000,016,284 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2014.06.16 03:35:00 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2014.06.16 03:34:59 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2014.06.16 03:34:59 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2014.06.16 03:34:59 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2014.06.16 03:34:59 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2014.06.16 03:34:58 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2014.06.16 03:34:58 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2014.06.16 03:34:58 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2014.06.16 03:34:58 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2014.06.16 03:34:58 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2014.06.16 03:34:58 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2014.06.16 03:34:57 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2014.06.16 03:34:57 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2014.06.16 03:34:57 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2014.06.16 03:34:57 | 000,101,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2014.06.16 03:34:57 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2014.06.16 03:34:57 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2014.06.16 03:34:57 | 000,016,284 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2014.06.16 03:34:56 | 000,774,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2014.06.16 03:34:56 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2014.06.16 03:34:56 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2014.06.16 03:34:56 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2014.06.16 03:34:56 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2014.06.16 03:34:56 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2014.06.16 03:34:55 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2014.06.16 03:33:45 | 002,776,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2014.06.16 03:33:45 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2014.06.16 03:33:45 | 001,682,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2014.06.16 03:33:45 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2014.06.16 03:33:45 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2014.06.16 03:33:45 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2014.06.16 03:33:45 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014.06.16 03:33:45 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014.06.16 03:33:45 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014.06.16 03:33:45 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014.06.16 03:33:45 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014.06.16 03:33:45 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014.06.16 03:33:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2014.06.16 03:33:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2014.06.16 03:33:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014.06.16 03:33:45 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014.06.16 03:33:45 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014.06.16 03:33:44 | 001,643,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2014.06.16 03:33:44 | 001,238,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2014.06.16 03:33:44 | 000,363,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2014.06.16 03:33:44 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2014.06.16 03:33:44 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2014.06.16 03:33:44 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2014.06.16 03:33:44 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2014.06.16 03:33:43 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2014.06.16 03:33:43 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2014.06.16 03:33:43 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2014.06.15 22:52:15 | 001,595,776 | ---- | M] (ESET) -- C:\Program Files\eset smart.exe
[2014.06.15 20:51:48 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msclmd.dll
[2014.06.15 20:51:47 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msclmd.dll
[2014.06.15 20:00:01 | 000,000,144 | ---- | M] () -- C:\Windows\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2014.06.15 18:37:35 | 000,000,451 | ---- | M] () -- C:\Windows\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
[2014.06.15 18:21:04 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2014.06.15 18:21:03 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
[2014.06.15 18:15:19 | 000,067,884 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2014.06.15 18:15:19 | 000,067,884 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2014.06.15 18:14:10 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014.06.08 11:13:05 | 000,506,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2014.06.08 11:08:04 | 000,424,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll

========== Files Created - No Company Name ==========

[2014.07.07 10:56:14 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.07.06 23:48:09 | 000,001,110 | ---- | C] () -- C:\Users\1\Desktop\ComboFix – zástupce.lnk
[2014.07.06 23:34:28 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2014.07.06 23:34:28 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2014.07.06 23:34:28 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2014.07.06 23:34:28 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2014.07.06 23:34:28 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2014.07.06 18:20:46 | 001,941,352 | ---- | C] () -- C:\Program Files\Win rar.exe
[2014.07.06 18:18:32 | 004,622,781 | ---- | C] () -- C:\Program Files\screen hunter.exe
[2014.07.06 18:11:23 | 000,002,065 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ImageReady CS.lnk
[2014.07.06 18:11:23 | 000,002,058 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS.lnk
[2014.07.05 19:04:49 | 000,002,573 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CS.lnk
[2014.07.05 19:04:49 | 000,002,305 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[2014.07.05 16:59:08 | 000,000,851 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Uninstall 6.lnk
[2014.07.05 16:59:08 | 000,000,839 | ---- | C] () -- C:\Users\Public\Desktop\Total Uninstall 6.lnk
[2014.06.30 11:44:22 | 000,001,102 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014.06.30 00:00:11 | 000,016,384 | ---- | C] () -- C:\Windows\SysWow64\FileOps.exe
[2014.06.22 19:52:19 | 000,000,000 | ---- | C] () -- C:\Users\1\Documents\Retro hip-hop mejdlo 31.8.12 Brandýs nad Labem.flv
[2014.06.22 19:52:18 | 014,215,335 | ---- | C] () -- C:\Users\1\Documents\643 098 e-mailů.csv
[2014.06.22 19:52:18 | 000,259,999 | ---- | C] () -- C:\Users\1\Documents\CV - Marek Hlávka.pdf
[2014.06.22 10:39:12 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2014.06.18 06:18:17 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2014.06.18 00:30:53 | 000,033,326 | ---- | C] () -- C:\Windows\SysNative\kschimp.ini
[2014.06.18 00:30:35 | 000,230,912 | ---- | C] () -- C:\Windows\SysNative\APOMgr64.DLL
[2014.06.18 00:30:35 | 000,177,664 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2014.06.18 00:30:35 | 000,089,088 | ---- | C] () -- C:\Windows\SysNative\CmdRtr64.DLL
[2014.06.18 00:30:35 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2014.06.18 00:30:14 | 000,023,292 | ---- | C] () -- C:\Windows\ksaudENG.reg
[2014.06.18 00:30:14 | 000,002,630 | ---- | C] () -- C:\Windows\MixerName.reg
[2014.06.18 00:30:14 | 000,000,284 | RH-- | C] () -- C:\Windows\ctfile.rfc
[2014.06.17 23:10:10 | 000,192,512 | --S- | C] () -- C:\Windows\SysWow64\libidn-11.dll
[2014.06.17 23:10:10 | 000,133,632 | --S- | C] () -- C:\Windows\SysWow64\librtmp.dll
[2014.06.17 23:10:10 | 000,100,864 | --S- | C] () -- C:\Windows\SysWow64\zlib1.dll
[2014.06.17 23:10:10 | 000,043,810 | --S- | C] () -- C:\Windows\SysWow64\poclbm130302.cl
[2014.06.17 23:10:10 | 000,023,825 | --S- | C] () -- C:\Windows\SysWow64\scrypt130511.cl
[2014.06.17 23:10:10 | 000,013,062 | --S- | C] () -- C:\Windows\SysWow64\phatk121016.cl
[2014.06.17 23:10:09 | 000,538,126 | --S- | C] () -- C:\Windows\SysWow64\libcurl-4.dll
[2014.06.17 23:10:09 | 000,044,727 | --S- | C] () -- C:\Windows\SysWow64\diablo130302.cl
[2014.06.17 23:10:09 | 000,030,802 | --S- | C] () -- C:\Windows\SysWow64\diakgcn121016.cl
[2014.06.16 03:46:52 | 001,557,208 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014.06.16 03:35:00 | 000,016,284 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2014.06.16 03:34:57 | 000,016,284 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2014.06.15 22:26:12 | 000,000,942 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.06.15 22:26:11 | 000,000,938 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.06.15 20:20:10 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2014.06.15 20:19:24 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2014.06.15 20:19:17 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2014.06.15 20:19:17 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2014.06.15 20:19:10 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2014.06.15 20:00:01 | 000,000,144 | ---- | C] () -- C:\Windows\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2014.06.15 19:06:14 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2014.06.15 18:37:35 | 000,000,451 | ---- | C] () -- C:\Windows\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
[2014.06.15 18:23:13 | 000,074,272 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll
[2014.06.15 18:21:04 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2014.06.15 18:21:03 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
[2014.06.15 18:20:56 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2014.06.15 18:17:15 | 000,001,393 | ---- | C] () -- C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014.06.15 18:15:03 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2014.06.15 18:15:03 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2014.06.15 18:14:10 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014.06.15 18:11:38 | 3137,581,056 | -HS- | C] () -- C:\hiberfil.sys
[2014.05.21 00:33:38 | 000,348,088 | ---- | C] () -- C:\Windows\SysWow64\igdmd32.dll
[2014.05.21 00:33:32 | 000,183,808 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2014.05.21 00:33:32 | 000,142,848 | ---- | C] () -- C:\Windows\SysWow64\igdail32.dll
[2013.08.27 14:00:08 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
[2009.02.24 12:40:02 | 000,001,352 | ---- | C] () -- C:\ProgramData\cfSB1090.ini
[2009.02.24 12:40:02 | 000,001,352 | ---- | C] () -- C:\ProgramData\cfSB0910.ini
[2009.02.24 12:40:02 | 000,001,346 | ---- | C] () -- C:\ProgramData\cfSB1100.ini
[2009.02.24 12:40:02 | 000,001,302 | ---- | C] () -- C:\ProgramData\cfSB0300.ini
[2009.02.24 12:40:02 | 000,001,282 | ---- | C] () -- C:\ProgramData\cfSB0471.ini
[2009.02.24 12:40:02 | 000,001,208 | ---- | C] () -- C:\ProgramData\cfSB0490.ini
[2009.02.24 12:40:02 | 000,001,027 | ---- | C] () -- C:\ProgramData\cfSB0560.ini
[2009.02.24 12:40:02 | 000,001,026 | ---- | C] () -- C:\ProgramData\cfSB0271.ini
[2009.02.24 12:40:02 | 000,001,026 | ---- | C] () -- C:\ProgramData\cfSB0270.ini
[2009.02.24 12:40:02 | 000,000,590 | ---- | C] () -- C:\ProgramData\cfSB0950.ini

========== ZeroAccess Check ==========

[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014.03.25 04:43:12 | 014,175,744 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014.03.25 04:09:54 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014.06.26 06:24:02 | 000,000,000 | ---D | M] -- C:\Users\1\AppData\Roaming\AVG
[2014.07.05 19:23:01 | 000,000,000 | ---D | M] -- C:\Users\1\AppData\Roaming\DVDVideoSoft
[2014.06.15 22:54:37 | 000,000,000 | ---D | M] -- C:\Users\1\AppData\Roaming\ESET
[2014.07.05 19:22:28 | 000,000,000 | ---D | M] -- C:\Users\1\AppData\Roaming\OpenCandy
[2014.06.15 22:45:04 | 000,000,000 | ---D | M] -- C:\Users\1\AppData\Roaming\Zoner

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 158 bytes -> C:\ProgramData\TEMP:1CE11B51

< End of report >

[Horst_Fuchs]

OTL Extras logfile created on: 7.7.2014 11:14:27 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\1\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17126)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,90 Gb Total Physical Memory | 1,84 Gb Available Physical Memory | 47,34% Memory free
7,79 Gb Paging File | 5,44 Gb Available in Paging File | 69,87% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 849,66 Gb Free Space | 91,22% Space Free | Partition Type: NTFS
Drive D: | 199,00 Mb Total Space | 156,83 Mb Free Space | 78,81% Space Free | Partition Type: NTFS
Drive E: | 446,06 Gb Total Space | 430,71 Gb Free Space | 96,56% Space Free | Partition Type: NTFS
Drive F: | 19,40 Gb Total Space | 19,32 Gb Free Space | 99,55% Space Free | Partition Type: NTFS
Drive G: | 103,02 Mb Total Space | 89,27 Mb Free Space | 86,65% Space Free | Partition Type: NTFS

Computer Name: 1-PC | User Name: 1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1117010101-3544123735-585248775-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{06C97DBB-AAD2-42FA-8CDA-2A92DBD1C5E9}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{0D595AE3-EC9E-4DA7-88A2-AB398360A687}" = rport=139 | protocol=6 | dir=out | app=system |
"{0FC446A5-CD95-49A8-A155-8602A6BFCBC3}" = lport=139 | protocol=6 | dir=in | app=system |
"{25AA65BA-0E9A-4887-ABB5-EAD3A7DDBF4C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2650B5EB-4EF9-4DCB-85EC-0007DFD33292}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{2EC4344B-7C59-4A58-9554-48D2EB35A916}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{47F28D37-3F91-44BF-A09C-9676BBE96D96}" = rport=138 | protocol=17 | dir=out | app=system |
"{52500A57-CD80-4CEA-91D7-F6199062AB0C}" = lport=2869 | protocol=6 | dir=in | app=system |
"{5B01AB6F-F796-4EEF-BE5A-AF6B4ADBCD7E}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{62C776C3-3E04-40F7-93B9-A673B9B786A7}" = lport=10243 | protocol=6 | dir=in | app=system |
"{7C73DD3E-CAAC-4821-90C3-30A83ED88E39}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8155CC5D-838E-4888-8A8A-DE1CC5D7FB58}" = rport=445 | protocol=6 | dir=out | app=system |
"{82DCEDFE-9110-405F-9A12-6E779F460125}" = rport=10243 | protocol=6 | dir=out | app=system |
"{8C68ECDF-7F76-4625-A487-31CB4AFDA293}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{90A42BB2-53BE-4D2F-9173-844D6C8CEEBC}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9316116D-A71B-4CC7-96C3-37846476E49D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{972B7046-0E73-4FFA-9ED8-D053978885A5}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B445F47F-1CA3-40B4-B713-594CB70B86F1}" = rport=137 | protocol=17 | dir=out | app=system |
"{CDE5F765-1E71-4AE5-9AAA-2AAA8ABAA07B}" = lport=138 | protocol=17 | dir=in | app=system |
"{D520276E-E24F-4385-A0E1-F580C0C234BB}" = lport=445 | protocol=6 | dir=in | app=system |
"{F3F2FD5C-53D7-4267-8789-1BE182F1E30C}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F55C97C9-5E73-465F-B2E0-D256C009995D}" = lport=137 | protocol=17 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0266A492-CF2A-45DD-AB11-EF9B7956BB0D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{04AE1224-C82E-425E-826F-B5A72B104D71}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{2177EDEA-CC0C-4B2F-AFCA-1F6850425D4E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{23D5B63B-906E-4204-8D11-2E9E9307FEE3}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{356F002B-BB8A-4EE1-A7F1-E02CD8F6C720}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{385C73BF-EEF9-43EC-B966-0EB0116E5051}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4407F242-C8F0-4099-848E-C970807D36B2}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{467E6D86-C892-4E41-A4FC-58AD8489A6EC}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4712E0D4-8509-4E2F-A752-37FB36602474}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{4DCF850D-B5F4-4B81-B76B-E9799A178A13}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5B87790D-AE53-4036-9367-61A42AE93ECC}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{5BD0E465-99C2-4964-8F16-A822EB99AD9A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{694D3BBA-224E-4EF9-A28C-6964FDE04126}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{8115561F-BAAB-45EC-B806-FC7DDE9C2C08}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8287A252-6E8F-4273-99C9-D796B9061246}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{AFC371E2-9BBB-4434-83FB-78EFB3C32BA2}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{B6EBFABA-37B0-481E-B131-FF28F5079404}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BF285880-A009-4EC9-8F88-7F626A570439}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DE8ECE22-2539-4177-8C60-DC8363203010}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E8D50FF3-03DA-4817-9BC0-56FE8A009775}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{EFA80CE0-5FF4-447A-915A-8AF6F2695E0C}" = protocol=6 | dir=out | app=system |
"{F29EF5C4-202C-4473-88D4-F80EDEB86D2F}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{F7FB2571-2EAC-43A5-986C-896BDED717A3}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{50813B8C-FCBB-3C61-8039-EAAA93029066}" = Microsoft .NET Framework 4.5.1 (CSY)
"{750374DE-064B-403F-8F3E-252760CE6381}" = ESET Smart Security
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{B5E06417-A4AC-4225-B36E-7E34C91616E7}" = Intel® Trusted Connect Service Client
"Total Uninstall 6_is1" = Total Uninstall 6.5.0
"WinRAR archiver" = WinRAR 5.10 beta 4 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{4F3E17F8-F1C8-4A4B-9EB8-1EE2D190CDA9}" = Adobe Setup
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{91A4AD99-69CE-4745-97B7-0E0DFBECFDE5}" = Adobe Illustrator CS
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.07) - Czech
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"AudioCS" = Creative Audio Control Panel
"Console Launcher" = Creative Console Launcher
"Creative Sound Blaster Properties x64 Edition" = Creative Sound Blaster Properties x64 Edition
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Free YouTube Download_is1" = Free YouTube Download version 3.2.41.623
"Google Chrome" = Google Chrome
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verze 2.0.2.1012
"Wisdom-soft ScreenHunter 5.1 Free" = Wisdom-soft ScreenHunter 5.1 Free

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 15.6.2014 12:59:27 | Computer Name = 1-PC | Source = EventSystem | ID = 4621
Description =

Error - 15.6.2014 14:45:59 | Computer Name = 1-PC | Source = EventSystem | ID = 4621
Description =

Error - 15.6.2014 15:06:32 | Computer Name = 1-PC | Source = .NET Runtime Optimization Service | ID = 1101
Description =

Error - 15.6.2014 15:08:08 | Computer Name = 1-PC | Source = .NET Runtime Optimization Service | ID = 1101
Description =

Error - 15.6.2014 15:08:09 | Computer Name = 1-PC | Source = .NET Runtime Optimization Service | ID = 1101
Description =

Error - 15.6.2014 16:40:54 | Computer Name = 1-PC | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE verze 6.1.7601.17514 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 794 Čas spuštění: 01cf88d7132a4347 Čas ukončení: 32 Cesta k aplikaci: C:\Windows\Explorer.EXE

ID
hlášení: 4e8d7b38-f4cd-11e3-a3e4-94de80199625

Error - 18.6.2014 0:18:04 | Computer Name = 1-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: rundll32.exe_sbavmon.dll, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc9e0 Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.18409,
časové razítko: 0x5315a05a Kód výjimky: 0xc0000002 Posun chyby: 0x000000000000940d
ID
chybujícího procesu: 0x9ec Čas spuštění chybující aplikace: 0x01cf8a7c0535947b Cesta
k chybující aplikaci: C:\Windows\System32\rundll32.exe Cesta k chybujícímu modulu:
C:\Windows\system32\KERNELBASE.dll ID zprávy: 8a9e1c53-f69f-11e3-99c8-94de80199625

Error - 22.6.2014 14:00:23 | Computer Name = 1-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro E:\Windows\avastSS.scr se nezdařilo.
Závislé
sestavení Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 5.7.2014 12:23:02 | Computer Name = 1-PC | Source = MsiInstaller | ID = 11719
Description =

Error - 5.7.2014 13:26:13 | Computer Name = 1-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: SettingsManagerSetup.exe, verze: 5.0.0.0,
časové razítko: 0x51a70926 Název chybujícího modulu: System.dll, verze: 0.0.0.0,
časové razítko: 0x4f47e2c7 Kód výjimky: 0xc0000005 Posun chyby: 0x00001c70 ID chybujícího
procesu: 0xd24 Čas spuštění chybující aplikace: 0x01cf9876165d1550 Cesta k chybující
aplikaci: C:\Users\1\AppData\Roaming\OpenCandy\CA8692110905469D8E1E60B1A4AF5C5A\SettingsManagerSetup.exe
Cesta
k chybujícímu modulu: C:\Users\1\AppData\Local\Temp\nsc9FBB.tmp\System.dll ID zprávy:
75bdce0f-0469-11e4-b058-94de80199625

[ System Events ]
Error - 6.7.2014 15:23:53 | Computer Name = 1-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: cdrom

Error - 6.7.2014 17:51:57 | Computer Name = 1-PC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 6.7.2014 17:53:47 | Computer Name = 1-PC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 6.7.2014 18:15:04 | Computer Name = 1-PC | Source = DCOM | ID = 10010
Description =

Error - 7.7.2014 4:06:35 | Computer Name = 1-PC | Source = Application Popup | ID = 1060
Description = Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě
s tímto systémem. Požádejte dodavatele softwaru o kompatibilní verzi ovladače.

Error - 7.7.2014 4:07:55 | Computer Name = 1-PC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 7.7.2014 4:09:08 | Computer Name = 1-PC | Source = Application Popup | ID = 1060
Description = Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě
s tímto systémem. Požádejte dodavatele softwaru o kompatibilní verzi ovladače.

Error - 7.7.2014 4:09:09 | Computer Name = 1-PC | Source = Application Popup | ID = 1060
Description = Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě
s tímto systémem. Požádejte dodavatele softwaru o kompatibilní verzi ovladače.

Error - 7.7.2014 4:09:27 | Computer Name = 1-PC | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.

Error - 7.7.2014 4:10:13 | Computer Name = 1-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: cdrom


< End of report >

[Márty84]

Vy jste do OTL nezkopiroval ten text a bez nej je mi ten log temer k nicemu. Takze repete a tentokrat poradne




28.7. pro neaktivitu http://forum.viry.cz/viewtopic.php?f=12&t=123975