VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Problem z facebooku

https://forum.viry.cz:443/viewtopic.php?t=127730

Stránka 1 z 2

Problem z facebooku

Napsal: 29 led 2013 15:39
od brpo25
Dobry den, chcel by som vas poprosit ci by ste mi nemohli pomoct. Na facebooku sme obdrzali spravu, samozrejme sme ju otvorili, stiahli dany subor. no sposobilo to poslanie tej istej spravy co sme obdrzali mi neskutocnej vacsine nasich kontaktov. Bol to subor s koncovkou .scr Takze by nas zaujimalo ci je to nieco vazne. Dakujem

Logfile of random's system information tool 1.08 (written by random/random)
Run by Bagi at 2013-01-29 15:53:40
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 181 GB (76%) free of 238 GB
Total RAM: 4091 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:53:44, on 29. 1. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Ask.com\Updater\Updater.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\Program Files\trend micro\Bagi.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-302 303 305 306 Series"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Premium MailGuard (AntiVirMailService) - Unknown owner - C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\avmailc.exe (file missing)
O23 - Service: Avira AntiVir Premium Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\sched.exe (file missing)
O23 - Service: Avira AntiVir Premium Guard (AntiVirService) - Unknown owner - C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\avguard.exe (file missing)
O23 - Service: Avira AntiVir Premium WebGuard (antivirwebservice) - Unknown owner - C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\AVWEBGRD.EXE (file missing)
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files (x86)\Ares\chatServer.exe
O23 - Service: Avira AntiVir Premium MailGuard helper service (AVEService) - Unknown owner - C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\avesvc.exe (file missing)
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12265 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe"
"taskhost.exe"
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\SysWOW64\IoctlSvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"
"C:\Program Files\TOSHIBA\TECO\TecoService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\system32\EscSvc64.exe
taskeng.exe {C8E7B211-EC22-40FB-BB0F-F543E7D6C3EF}
"C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe"
WLIDSvcM.exe 2484
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe"
"C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe"
"C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe"
"taskhost.exe"
"C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe"
"C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe"
"C:\Program Files\TOSHIBA\TECO\Teco.exe" /r
"C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe"
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Windows\System32\spool\drivers\x64\3\E_IATIIKE.EXE" /EPT "EPLTarget\P0000000000000000" /M "XP-302 303 305 306 Series"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe"
taskeng.exe {3B4ADB03-9A05-4EA7-9857-9B57A0B7CC67}
KHALMNPR.EXE /API
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=4756.add5c00.1638803317 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 4756 "\\.\pipe\gecko-crash-server-pipe.4756" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe" --proxy-stub-channel=Flash848.6C93FFC0.41 --host-broker-channel=Flash848.6C93FFC0.18467 --host-pid=848 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe" --channel=2992.0032F7C4.342171186 --proxy-stub-channel=Flash848.6C93FFC0.41 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll" --host-npapi-version=27 --type=renderer
taskeng.exe {0F1E6A94-9F0B-42E1-A865-98BA3473839E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Bagi\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\ROC_REG_JAN_DELETE.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 77576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2012-11-04 366904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Nero Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-04-09 1519272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-04-15 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}]
TOSHIBA Media Controller Plug-in - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll [2010-03-19 529784]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Nero Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-04-09 1519272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-03-10 2052392]
"SmartFaceVWatcher"=C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [2009-10-19 238080]
"TosSENotify"=C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2010-02-05 709976]
"TosReelTimeMonitor"=C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2010-03-03 35672]
"TosNC"=C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2010-03-09 595816]
"Toshiba TEMPRO"=C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [2010-02-11 1050072]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2009-11-19 307768]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2010-03-10 520760]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2009-11-05 505696]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2009-03-09 52600]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2009-08-13 570680]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2010-03-03 913720]
"Teco"=C:\Program Files\TOSHIBA\TECO\Teco.exe [2010-03-17 1489760]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2010-02-23 705368]
"TosVolRegulator"=C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-11 24376]
"Toshiba Registration"=C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [2010-02-12 136136]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2012-11-04 2419512]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-11-26 6325936]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPLTarget\P0000000000000000"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE [2012-02-29 283232]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"TWebCamera"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2010-02-24 2454840]
"NBAgent"=C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-04-03 1234216]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-15 98304]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\avgnt.exe /min []
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-12-19 41208]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-02 946352]
""= []
"ApnUpdater"=C:\Program Files (x86)\Ask.com\Updater\Updater.exe [2012-04-09 1557160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2012-10-01 68408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2013-01-29 15:20:00 ----SHD---- C:\Config.Msi
2013-01-29 15:09:51 ----D---- C:\rsit
2013-01-29 15:09:51 ----D---- C:\Program Files\trend micro
2013-01-28 15:22:47 ----D---- C:\Users\Bagi\AppData\Roaming\Malwarebytes
2013-01-28 15:22:38 ----D---- C:\ProgramData\Malwarebytes
2013-01-28 11:49:54 ----D---- C:\Users\Bagi\AppData\Roaming\SUPERAntiSpyware.com
2013-01-28 11:45:46 ----D---- C:\Users\Bagi\AppData\Roaming\ESET
2013-01-28 11:36:41 ----D---- C:\ProgramData\ESET
2013-01-28 11:36:40 ----D---- C:\Program Files\ESET
2013-01-27 23:13:15 ----D---- C:\ProgramData\AVG January 2013 Campaign
2013-01-27 11:31:17 ----D---- C:\Users\Bagi\AppData\Roaming\TuneUp Software
2013-01-27 11:28:30 ----HD---- C:\ProgramData\Common Files
2013-01-27 11:28:30 ----D---- C:\ProgramData\MFAData
2013-01-27 10:21:01 ----A---- C:\Windows\ntbtlog.txt
2013-01-21 15:29:17 ----A---- C:\Windows\SYSWOW64\EEBUtil.dll
2013-01-21 15:29:17 ----A---- C:\Windows\SYSWOW64\EEBSDKIF.dll
2013-01-21 15:29:17 ----A---- C:\Windows\SYSWOW64\EEBDSCVR.dll
2013-01-21 15:29:17 ----A---- C:\Windows\SYSWOW64\EEBAPI.dll
2013-01-21 15:29:17 ----A---- C:\Windows\SYSWOW64\EBAPI.dll
2013-01-21 15:29:15 ----D---- C:\Program Files\Common Files\EPSON
2013-01-21 15:22:03 ----A---- C:\Windows\system32\enspres.dll
2013-01-21 15:22:03 ----A---- C:\Windows\system32\ensppui.dll
2013-01-21 15:22:03 ----A---- C:\Windows\system32\ensppmon.dll
2013-01-21 15:22:02 ----D---- C:\Program Files\EpsonNet
2013-01-21 15:22:02 ----A---- C:\Windows\system32\enpres.dll
2013-01-21 15:22:02 ----A---- C:\Windows\system32\enppui.dll
2013-01-21 15:22:02 ----A---- C:\Windows\system32\enppmon.dll
2013-01-21 15:21:47 ----D---- C:\Users\Bagi\AppData\Roaming\InstallShield
2013-01-21 15:21:22 ----A---- C:\Windows\system32\esxw2ud.dll
2013-01-21 15:21:22 ----A---- C:\Windows\system32\escsvc64.exe
2013-01-21 15:21:21 ----D---- C:\Program Files (x86)\epson
2013-01-21 15:14:18 ----A---- C:\Windows\system32\E_GCINST.DLL
2013-01-21 15:14:16 ----A---- C:\Windows\system32\E_ILMIKE.DLL
2013-01-21 15:14:16 ----A---- C:\Windows\system32\E_ID4BIKE.DLL
2013-01-21 15:14:08 ----D---- C:\ProgramData\EPSON
2013-01-20 12:05:06 ----D---- C:\FIND_MOZ_EXT
2013-01-20 11:02:21 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-01-20 11:02:21 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-01-20 11:02:21 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-01-20 11:02:21 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-01-20 11:02:19 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-01-20 11:02:19 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-01-20 11:02:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-01-20 11:02:19 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-01-20 11:02:19 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-01-20 11:02:19 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-01-20 11:02:18 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-01-20 11:02:18 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-01-20 11:02:15 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2013-01-20 11:02:15 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-01-20 11:02:15 ----A---- C:\Windows\system32\D3DX9_43.dll
2013-01-20 11:02:15 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-01-20 11:02:14 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-01-20 11:02:14 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-01-20 11:02:14 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-01-20 11:02:14 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-01-20 11:02:12 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-01-20 11:02:12 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-01-20 11:02:12 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-01-20 11:02:12 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-01-20 11:02:09 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2013-01-20 11:02:09 ----A---- C:\Windows\system32\XAudio2_5.dll
2013-01-20 11:02:08 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2013-01-20 11:02:08 ----A---- C:\Windows\system32\xactengine3_5.dll
2013-01-20 11:02:08 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2013-01-20 11:02:07 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2013-01-20 11:02:07 ----A---- C:\Windows\system32\d3dcsx_42.dll
2013-01-20 11:02:06 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2013-01-20 11:02:06 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-01-20 11:02:06 ----A---- C:\Windows\system32\d3dx11_42.dll
2013-01-20 11:02:06 ----A---- C:\Windows\system32\d3dx10_42.dll
2013-01-20 11:02:05 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2013-01-20 11:02:05 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2013-01-20 11:02:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2013-01-20 11:02:05 ----A---- C:\Windows\system32\D3DX9_41.dll
2013-01-20 11:02:05 ----A---- C:\Windows\system32\d3dx10_41.dll
2013-01-20 11:02:05 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2013-01-20 11:02:04 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2013-01-20 11:02:04 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2013-01-20 11:02:04 ----A---- C:\Windows\system32\XAudio2_4.dll
2013-01-20 11:02:04 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2013-01-20 11:02:03 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2013-01-20 11:02:03 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2013-01-20 11:02:03 ----A---- C:\Windows\system32\xactengine3_4.dll
2013-01-20 11:02:03 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2013-01-20 11:02:02 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2013-01-20 11:02:02 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2013-01-20 11:02:02 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2013-01-20 11:02:02 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2013-01-20 11:02:02 ----A---- C:\Windows\system32\XAudio2_3.dll
2013-01-20 11:02:02 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2013-01-20 11:02:02 ----A---- C:\Windows\system32\xactengine3_3.dll
2013-01-20 11:02:02 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2013-01-20 11:02:01 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2013-01-20 11:02:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2013-01-20 11:02:01 ----A---- C:\Windows\system32\XAudio2_2.dll
2013-01-20 11:02:01 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2013-01-20 11:01:58 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2013-01-20 11:01:58 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-01-20 11:01:58 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-01-20 11:01:58 ----A---- C:\Windows\system32\xactengine3_2.dll
2013-01-20 11:01:58 ----A---- C:\Windows\system32\d3dx10_39.dll
2013-01-20 11:01:58 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2013-01-20 11:01:57 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-01-20 11:01:57 ----A---- C:\Windows\system32\D3DX9_39.dll
2013-01-20 11:01:56 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2013-01-20 11:01:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2013-01-20 11:01:56 ----A---- C:\Windows\system32\XAudio2_1.dll
2013-01-20 11:01:56 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2013-01-20 11:01:54 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2013-01-20 11:01:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2013-01-20 11:01:54 ----A---- C:\Windows\system32\xactengine3_1.dll
2013-01-20 11:01:54 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2013-01-20 11:01:53 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2013-01-20 11:01:53 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2013-01-20 11:01:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2013-01-20 11:01:53 ----A---- C:\Windows\system32\D3DX9_38.dll
2013-01-20 11:01:53 ----A---- C:\Windows\system32\d3dx10_38.dll
2013-01-20 11:01:53 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2013-01-20 11:01:52 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2013-01-20 11:01:52 ----A---- C:\Windows\system32\XAudio2_0.dll
2013-01-20 11:01:51 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2013-01-20 11:01:51 ----A---- C:\Windows\system32\xactengine3_0.dll
2013-01-20 11:01:50 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2013-01-20 11:01:50 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2013-01-20 11:01:50 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2013-01-20 11:01:50 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2013-01-20 11:01:50 ----A---- C:\Windows\system32\d3dx10_37.dll
2013-01-20 11:01:50 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2013-01-20 11:01:49 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2013-01-20 11:01:49 ----A---- C:\Windows\system32\D3DX9_37.dll
2013-01-20 11:01:48 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2013-01-20 11:01:48 ----A---- C:\Windows\system32\xactengine2_10.dll
2013-01-20 11:01:47 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2013-01-20 11:01:47 ----A---- C:\Windows\system32\d3dx10_36.dll
2013-01-20 11:01:46 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2013-01-20 11:01:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2013-01-20 11:01:46 ----A---- C:\Windows\system32\d3dx9_36.dll
2013-01-20 11:01:46 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2013-01-20 11:01:44 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2013-01-20 11:01:44 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2013-01-20 11:01:44 ----A---- C:\Windows\system32\xactengine2_9.dll
2013-01-20 11:01:44 ----A---- C:\Windows\system32\d3dx10_35.dll
2013-01-20 11:01:43 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2013-01-20 11:01:43 ----A---- C:\Windows\system32\d3dx9_35.dll
2013-01-20 11:01:43 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2013-01-20 11:01:41 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2013-01-20 11:01:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2013-01-20 11:01:41 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2013-01-20 11:01:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2013-01-20 11:01:41 ----A---- C:\Windows\system32\xinput1_3.dll
2013-01-20 11:01:41 ----A---- C:\Windows\system32\xactengine2_8.dll
2013-01-20 11:01:41 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2013-01-20 11:01:41 ----A---- C:\Windows\system32\d3dx9_34.dll
2013-01-20 11:01:41 ----A---- C:\Windows\system32\d3dx10_34.dll
2013-01-20 11:01:41 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2013-01-20 11:01:39 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2013-01-20 11:01:39 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2013-01-20 11:01:39 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2013-01-20 11:01:39 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2013-01-20 11:01:39 ----A---- C:\Windows\system32\xactengine2_7.dll
2013-01-20 11:01:39 ----A---- C:\Windows\system32\d3dx9_33.dll
2013-01-20 11:01:39 ----A---- C:\Windows\system32\d3dx10_33.dll
2013-01-20 11:01:39 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2013-01-20 11:01:38 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2013-01-20 11:01:38 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2013-01-20 11:01:38 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2013-01-20 11:01:38 ----A---- C:\Windows\system32\xactengine2_6.dll
2013-01-20 11:01:38 ----A---- C:\Windows\system32\xactengine2_5.dll
2013-01-20 11:01:38 ----A---- C:\Windows\system32\d3dx10.dll
2013-01-20 11:01:37 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2013-01-20 11:01:37 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2013-01-20 11:01:37 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2013-01-20 11:01:37 ----A---- C:\Windows\system32\xactengine2_4.dll
2013-01-20 11:01:37 ----A---- C:\Windows\system32\x3daudio1_1.dll
2013-01-20 11:01:37 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-01-20 11:01:36 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2013-01-20 11:01:36 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2013-01-20 11:01:36 ----A---- C:\Windows\system32\xinput1_2.dll
2013-01-20 11:01:36 ----A---- C:\Windows\system32\xactengine2_3.dll
2013-01-20 11:01:34 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2013-01-20 11:01:34 ----A---- C:\Windows\system32\xactengine2_2.dll
2013-01-20 11:01:33 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2013-01-20 11:01:33 ----A---- C:\Windows\system32\xinput1_1.dll
2013-01-20 11:01:32 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2013-01-20 11:01:32 ----A---- C:\Windows\system32\xactengine2_1.dll
2013-01-20 11:01:26 ----A---- C:\Windows\system32\d3dx9_30.dll
2013-01-20 11:01:24 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2013-01-20 11:01:24 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2013-01-20 11:01:24 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2013-01-20 11:01:24 ----A---- C:\Windows\system32\xactengine2_0.dll
2013-01-20 11:01:24 ----A---- C:\Windows\system32\x3daudio1_0.dll
2013-01-20 11:01:24 ----A---- C:\Windows\system32\d3dx9_29.dll
2013-01-20 11:01:23 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2013-01-20 11:01:23 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-01-20 11:01:22 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2013-01-20 11:01:22 ----A---- C:\Windows\system32\d3dx9_27.dll
2013-01-20 11:01:21 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2013-01-20 11:01:21 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-01-20 11:01:21 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-01-20 11:01:20 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2013-01-20 11:01:20 ----A---- C:\Windows\system32\d3dx9_24.dll
2013-01-20 10:38:26 ----D---- C:\Windows\SYSWOW64\directx
2013-01-18 23:31:37 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-01-18 10:21:51 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2013-01-18 10:21:50 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2013-01-18 10:21:37 ----D---- C:\Windows\SYSWOW64\xlive
2013-01-18 10:21:31 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-01-18 10:19:41 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2013-01-18 10:19:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2013-01-18 10:19:41 ----A---- C:\Windows\system32\d3dx10_40.dll
2013-01-18 10:19:41 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2013-01-18 10:19:40 ----A---- C:\Windows\system32\D3DX9_40.dll
2013-01-18 10:19:39 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2013-01-17 15:12:56 ----D---- C:\Program Files (x86)\Steam
2013-01-16 20:18:26 ----D---- C:\ProgramData\Sony Ericsson
2013-01-16 20:18:08 ----D---- C:\Program Files (x86)\Sony Ericsson
2013-01-15 10:22:44 ----A---- C:\Windows\system32\mshtml.dll
2013-01-15 10:22:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-01-15 10:22:38 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-01-15 10:22:38 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-01-15 10:22:38 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-01-15 10:22:37 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-01-15 10:22:37 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-01-15 10:22:37 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-01-15 10:22:37 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-01-15 10:22:30 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2013-01-15 10:22:30 ----A---- C:\Windows\SYSWOW64\esent.dll
2013-01-15 10:22:30 ----A---- C:\Windows\system32\fsutil.exe
2013-01-15 10:22:30 ----A---- C:\Windows\system32\esent.dll
2013-01-15 10:22:30 ----A---- C:\Windows\system32\drivers\storport.sys
2013-01-15 10:22:30 ----A---- C:\Windows\system32\drivers\nvstor.sys
2013-01-15 10:22:30 ----A---- C:\Windows\system32\drivers\nvraid.sys
2013-01-15 10:22:30 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2013-01-15 10:22:30 ----A---- C:\Windows\system32\drivers\amdxata.sys
2013-01-15 10:22:30 ----A---- C:\Windows\system32\drivers\amdsata.sys
2013-01-15 10:22:29 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2013-01-14 11:51:02 ----D---- C:\Users\Bagi\AppData\Roaming\mp3DirectCut
2013-01-14 11:50:31 ----D---- C:\Program Files (x86)\mp3DirectCut
2013-01-14 10:56:34 ----D---- C:\Program Files (x86)\MSXML 4.0
2013-01-14 10:54:40 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-01-14 10:54:40 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-01-14 10:54:40 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-01-14 10:54:40 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-01-14 10:54:36 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-01-14 10:54:36 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-01-14 10:54:34 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-01-14 10:54:34 ----A---- C:\Windows\system32\ncsi.dll
2013-01-14 10:54:34 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-01-14 10:54:33 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-01-14 10:54:33 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-01-14 10:54:33 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-01-14 10:54:33 ----A---- C:\Windows\system32\nlasvc.dll
2013-01-14 10:54:33 ----A---- C:\Windows\system32\nlaapi.dll
2013-01-14 10:54:33 ----A---- C:\Windows\system32\netevent.dll
2013-01-14 10:54:33 ----A---- C:\Windows\system32\netcorehc.dll
2013-01-14 10:54:33 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-01-14 10:54:33 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-01-14 10:54:33 ----A---- C:\Windows\system32\drivers\netio.sys
2013-01-14 10:54:33 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-01-14 10:54:31 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-01-14 10:52:12 ----A---- C:\Windows\system32\taskhost.exe
2013-01-14 10:13:50 ----A---- C:\Windows\system32\MRT.exe
2013-01-14 10:01:09 ----D---- C:\Windows\system32\SPReview
2013-01-14 10:00:11 ----D---- C:\Windows\system32\EventProviders
2013-01-14 00:41:54 ----A---- C:\Windows\system32\Wdfres.dll
2013-01-14 00:41:54 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-01-14 00:41:54 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-01-14 00:29:14 ----A---- C:\Windows\system32\browserchoice.exe
2013-01-14 00:12:59 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-01-14 00:12:59 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-01-14 00:12:59 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-01-14 00:12:59 ----A---- C:\Windows\system32\fontsub.dll
2013-01-14 00:12:59 ----A---- C:\Windows\system32\atmlib.dll
2013-01-14 00:12:59 ----A---- C:\Windows\system32\atmfd.dll
2013-01-14 00:12:02 ----A---- C:\Windows\system32\WUDFx.dll
2013-01-14 00:12:02 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-01-14 00:12:02 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-01-14 00:12:02 ----A---- C:\Windows\system32\WUDFHost.exe
2013-01-14 00:12:02 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-01-14 00:12:02 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-01-14 00:12:02 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-01-14 00:04:33 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2013-01-14 00:04:32 ----A---- C:\Windows\SYSWOW64\wmi.dll
2013-01-14 00:04:32 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-01-14 00:04:32 ----A---- C:\Windows\system32\wmi.dll
2013-01-14 00:04:32 ----A---- C:\Windows\system32\imagehlp.dll
2013-01-13 11:28:24 ----A---- C:\Windows\system32\netfxperf.dll
2013-01-13 11:28:24 ----A---- C:\Windows\system32\dfshim.dll
2013-01-13 11:28:16 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2013-01-13 11:28:12 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-01-13 11:28:12 ----A---- C:\Windows\system32\mstscax.dll
2013-01-13 11:28:12 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-01-13 11:28:12 ----A---- C:\Windows\system32\d3d10warp.dll
2013-01-13 11:28:09 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-01-13 11:28:07 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2013-01-13 11:28:07 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2013-01-13 11:28:07 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-01-13 11:28:07 ----A---- C:\Windows\system32\sysmain.dll
2013-01-13 11:28:04 ----A---- C:\Windows\system32\MSVidCtl.dll
2013-01-13 11:28:03 ----A---- C:\Windows\system32\wmp.dll
2013-01-13 11:28:00 ----A---- C:\Windows\system32\mscoree.dll
2013-01-13 11:27:59 ----A---- C:\Windows\system32\secproc_isv.dll
2013-01-13 11:27:59 ----A---- C:\Windows\system32\RMActivate_isv.exe
2013-01-13 11:27:59 ----A---- C:\Windows\system32\mmcndmgr.dll
2013-01-13 11:27:59 ----A---- C:\Windows\system32\mf.dll
2013-01-13 11:27:58 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2013-01-13 11:27:58 ----A---- C:\Windows\system32\xpsservices.dll
2013-01-13 11:27:58 ----A---- C:\Windows\system32\secproc.dll
2013-01-13 11:27:58 ----A---- C:\Windows\system32\RMActivate.exe
2013-01-13 11:27:57 ----A---- C:\Windows\SYSWOW64\secproc.dll
2013-01-13 11:27:57 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2013-01-13 11:27:57 ----A---- C:\Windows\system32\rpcrt4.dll
2013-01-13 11:27:56 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2013-01-13 11:27:55 ----A---- C:\Windows\system32\spwizui.dll
2013-01-13 11:27:55 ----A---- C:\Windows\system32\schedsvc.dll
2013-01-13 11:27:55 ----A---- C:\Windows\system32\ole32.dll
2013-01-13 11:27:54 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2013-01-13 11:27:53 ----A---- C:\Windows\SYSWOW64\mf.dll
2013-01-13 11:27:53 ----A---- C:\Windows\system32\wevtsvc.dll
2013-01-13 11:27:53 ----A---- C:\Windows\system32\taskschd.dll
2013-01-13 11:27:53 ----A---- C:\Windows\system32\RacEngn.dll
2013-01-13 11:27:53 ----A---- C:\Windows\system32\ExplorerFrame.dll
2013-01-13 11:27:53 ----A---- C:\Windows\system32\diagperf.dll
2013-01-13 11:27:52 ----A---- C:\Windows\system32\vssapi.dll
2013-01-13 11:27:51 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2013-01-13 11:27:51 ----A---- C:\Windows\system32\UIRibbon.dll
2013-01-13 11:27:51 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2013-01-13 11:27:51 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2013-01-13 11:27:51 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2013-01-13 11:27:50 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-01-13 11:27:49 ----A---- C:\Windows\system32\WsmSvc.dll
2013-01-13 11:27:49 ----A---- C:\Windows\system32\WMVCORE.DLL
2013-01-13 11:27:48 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2013-01-13 11:27:48 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2013-01-13 11:27:48 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2013-01-13 11:27:48 ----A---- C:\Windows\system32\PresentationHost.exe
2013-01-13 11:27:47 ----A---- C:\Windows\system32\WinSAT.exe
2013-01-13 11:27:47 ----A---- C:\Windows\system32\spreview.exe
2013-01-13 11:27:47 ----A---- C:\Windows\system32\spinstall.exe
2013-01-13 11:27:47 ----A---- C:\Windows\system32\rdpdd.dll
2013-01-13 11:27:47 ----A---- C:\Windows\system32\MPSSVC.dll
2013-01-13 11:27:47 ----A---- C:\Windows\system32\CertEnroll.dll
2013-01-13 11:27:46 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-01-13 11:27:46 ----A---- C:\Windows\system32\d3d9.dll
2013-01-13 11:27:45 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2013-01-13 11:27:45 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2013-01-13 11:27:45 ----A---- C:\Windows\system32\SearchFolder.dll
2013-01-13 11:27:45 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-01-13 11:27:45 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2013-01-13 11:27:44 ----A---- C:\Windows\system32\gpsvc.dll
2013-01-13 11:27:43 ----A---- C:\Windows\system32\VSSVC.exe
2013-01-13 11:27:43 ----A---- C:\Windows\system32\mstime.dll
2013-01-13 11:27:43 ----A---- C:\Windows\system32\dwmcore.dll
2013-01-13 11:27:43 ----A---- C:\Windows\system32\drivers\http.sys
2013-01-13 11:27:43 ----A---- C:\Windows\system32\dbgeng.dll
2013-01-13 11:27:41 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2013-01-13 11:27:40 ----A---- C:\Windows\system32\actxprxy.dll
2013-01-13 11:27:39 ----A---- C:\Windows\SYSWOW64\ole32.dll
2013-01-13 11:27:39 ----A---- C:\Windows\system32\TSWorkspace.dll
2013-01-13 11:27:39 ----A---- C:\Windows\system32\qmgr.dll
2013-01-13 11:27:39 ----A---- C:\Windows\system32\audiosrv.dll
2013-01-13 11:27:38 ----A---- C:\Windows\system32\termsrv.dll
2013-01-13 11:27:37 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2013-01-13 11:27:37 ----A---- C:\Windows\system32\netlogon.dll
2013-01-13 11:27:37 ----A---- C:\Windows\system32\mstsc.exe
2013-01-13 11:27:37 ----A---- C:\Windows\system32\imapi2fs.dll
2013-01-13 11:27:37 ----A---- C:\Windows\system32\d3d11.dll
2013-01-13 11:27:36 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2013-01-13 11:27:36 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2013-01-13 11:27:36 ----A---- C:\Windows\system32\winhttp.dll
2013-01-13 11:27:36 ----A---- C:\Windows\system32\QAGENTRT.DLL
2013-01-13 11:27:36 ----A---- C:\Windows\system32\msv1_0.dll
2013-01-13 11:27:35 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2013-01-13 11:27:35 ----A---- C:\Windows\system32\werconcpl.dll
2013-01-13 11:27:35 ----A---- C:\Windows\system32\wbengine.exe
2013-01-13 11:27:35 ----A---- C:\Windows\system32\taskeng.exe
2013-01-13 11:27:35 ----A---- C:\Windows\system32\setupapi.dll
2013-01-13 11:27:35 ----A---- C:\Windows\system32\rpcss.dll
2013-01-13 11:27:35 ----A---- C:\Windows\system32\propsys.dll
2013-01-13 11:27:35 ----A---- C:\Windows\system32\odbc32.dll
2013-01-13 11:27:35 ----A---- C:\Windows\system32\authui.dll
2013-01-13 11:27:34 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-01-13 11:27:34 ----A---- C:\Windows\system32\user32.dll
2013-01-13 11:27:33 ----A---- C:\Windows\SYSWOW64\wer.dll
2013-01-13 11:27:33 ----A---- C:\Windows\SYSWOW64\certcli.dll
2013-01-13 11:27:33 ----A---- C:\Windows\system32\WSDApi.dll
2013-01-13 11:27:33 ----A---- C:\Windows\system32\scavengeui.dll
2013-01-13 11:27:33 ----A---- C:\Windows\system32\drivers\tdx.sys
2013-01-13 11:27:33 ----A---- C:\Windows\system32\drivers\netbt.sys
2013-01-13 11:27:33 ----A---- C:\Windows\system32\dhcpcore.dll
2013-01-13 11:27:33 ----A---- C:\Windows\system32\certmgr.dll
2013-01-13 11:27:32 ----A---- C:\Windows\system32\tsmf.dll
2013-01-13 11:27:32 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2013-01-13 11:27:31 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2013-01-13 11:27:31 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2013-01-13 11:27:31 ----A---- C:\Windows\system32\shlwapi.dll
2013-01-13 11:27:31 ----A---- C:\Windows\system32\netshell.dll
2013-01-13 11:27:31 ----A---- C:\Windows\system32\msdtctm.dll
2013-01-13 11:27:31 ----A---- C:\Windows\system32\msdrm.dll
2013-01-13 11:27:31 ----A---- C:\Windows\system32\framedynos.dll
2013-01-13 11:27:30 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2013-01-13 11:27:30 ----A---- C:\Windows\SYSWOW64\mstime.dll
2013-01-13 11:27:30 ----A---- C:\Windows\system32\wmicmiplugin.dll
2013-01-13 11:27:30 ----A---- C:\Windows\system32\netcfgx.dll
2013-01-13 11:27:29 ----A---- C:\Windows\system32\ws2_32.dll
2013-01-13 11:27:29 ----A---- C:\Windows\system32\winlogon.exe
2013-01-13 11:27:28 ----A---- C:\Windows\system32\wmpps.dll
2013-01-13 11:27:28 ----A---- C:\Windows\system32\lsm.exe
2013-01-13 11:27:28 ----A---- C:\Windows\system32\dxgi.dll
2013-01-13 11:27:28 ----A---- C:\Windows\system32\comdlg32.dll
2013-01-13 11:27:28 ----A---- C:\Windows\system32\apphelp.dll
2013-01-13 11:27:27 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2013-01-13 11:27:27 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2013-01-13 11:27:27 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2013-01-13 11:27:27 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2013-01-13 11:27:27 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-01-13 11:27:27 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2013-01-13 11:27:27 ----A---- C:\Windows\system32\wpdshext.dll
2013-01-13 11:27:27 ----A---- C:\Windows\system32\Query.dll
2013-01-13 11:27:27 ----A---- C:\Windows\system32\QAGENT.DLL
2013-01-13 11:27:27 ----A---- C:\Windows\system32\mswsock.dll
2013-01-13 11:27:27 ----A---- C:\Windows\system32\drvstore.dll
2013-01-13 11:27:27 ----A---- C:\Windows\system32\BFE.DLL
2013-01-13 11:27:27 ----A---- C:\Windows\system32\azroles.dll
2013-01-13 11:27:26 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2013-01-13 11:27:26 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2013-01-13 11:27:26 ----A---- C:\Windows\system32\Vault.dll
2013-01-13 11:27:26 ----A---- C:\Windows\system32\samsrv.dll
2013-01-13 11:27:26 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2013-01-13 11:27:26 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-01-13 11:27:26 ----A---- C:\Windows\system32\cmd.exe
2013-01-13 11:27:25 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-01-13 11:27:25 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2013-01-13 11:27:25 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2013-01-13 11:27:25 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-01-13 11:27:25 ----A---- C:\Windows\system32\lpksetup.exe
2013-01-13 11:27:24 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2013-01-13 11:27:23 ----D---- C:\Users\Bagi\AppData\Roaming\DA859E
2013-01-13 11:27:23 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2013-01-13 11:27:23 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-01-13 11:27:23 ----A---- C:\Windows\SYSWOW64\Query.dll
2013-01-13 11:27:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-01-13 11:27:23 ----A---- C:\Windows\system32\Wldap32.dll
2013-01-13 11:27:23 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-01-13 11:27:23 ----A---- C:\Windows\system32\WebClnt.dll
2013-01-13 11:27:23 ----A---- C:\Windows\system32\taskcomp.dll
2013-01-13 11:27:23 ----A---- C:\Windows\system32\sxs.dll
2013-01-13 11:27:23 ----A---- C:\Windows\system32\mfds.dll
2013-01-13 11:27:23 ----A---- C:\Windows\system32\mcbuilder.exe
2013-01-13 11:27:23 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2013-01-13 11:27:22 ----A---- C:\Windows\SYSWOW64\upnp.dll
2013-01-13 11:27:22 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2013-01-13 11:27:22 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2013-01-13 11:27:22 ----A---- C:\Windows\system32\webservices.dll
2013-01-13 11:27:22 ----A---- C:\Windows\system32\pnidui.dll
2013-01-13 11:27:22 ----A---- C:\Windows\system32\ipsmsnap.dll
2013-01-13 11:27:22 ----A---- C:\Windows\system32\hgprint.dll
2013-01-13 11:27:21 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2013-01-13 11:27:21 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2013-01-13 11:27:21 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2013-01-13 11:27:21 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2013-01-13 11:27:21 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2013-01-13 11:27:21 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2013-01-13 11:27:21 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-01-13 11:27:21 ----A---- C:\Windows\system32\winsta.dll
2013-01-13 11:27:21 ----A---- C:\Windows\system32\sqlsrv32.dll
2013-01-13 11:27:21 ----A---- C:\Windows\system32\SessEnv.dll
2013-01-13 11:27:21 ----A---- C:\Windows\system32\iepeers.dll
2013-01-13 11:27:21 ----A---- C:\Windows\system32\fveapi.dll
2013-01-13 11:27:21 ----A---- C:\Windows\system32\dot3api.dll
2013-01-13 11:27:20 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2013-01-13 11:27:20 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2013-01-13 11:27:20 ----A---- C:\Windows\system32\prncache.dll
2013-01-13 11:27:20 ----A---- C:\Windows\system32\mcmde.dll
2013-01-13 11:27:20 ----A---- C:\Windows\system32\gdi32.dll
2013-01-13 11:27:20 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-01-13 11:27:20 ----A---- C:\Windows\system32\drivers\msrpc.sys
2013-01-13 11:27:19 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2013-01-13 11:27:19 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-01-13 11:27:19 ----A---- C:\Windows\SYSWOW64\userenv.dll
2013-01-13 11:27:19 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2013-01-13 11:27:19 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2013-01-13 11:27:19 ----A---- C:\Windows\system32\WMNetMgr.dll
2013-01-13 11:27:19 ----A---- C:\Windows\system32\wlanpref.dll
2013-01-13 11:27:19 ----A---- C:\Windows\system32\vpnike.dll
2013-01-13 11:27:19 ----A---- C:\Windows\system32\userenv.dll
2013-01-13 11:27:19 ----A---- C:\Windows\system32\schtasks.exe
2013-01-13 11:27:19 ----A---- C:\Windows\system32\evr.dll
2013-01-13 11:27:19 ----A---- C:\Windows\system32\drivers\rdbss.sys
2013-01-13 11:27:19 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2013-01-13 11:27:18 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2013-01-13 11:27:18 ----A---- C:\Windows\system32\photowiz.dll
2013-01-13 11:27:18 ----A---- C:\Windows\system32\IPSECSVC.DLL
2013-01-13 11:27:18 ----A---- C:\Windows\system32\FXSSVC.exe
2013-01-13 11:27:18 ----A---- C:\Windows\system32\framedyn.dll
2013-01-13 11:27:18 ----A---- C:\Windows\system32\AudioSes.dll
2013-01-13 11:27:17 ----A---- C:\Windows\SYSWOW64\cmd.exe
2013-01-13 11:27:17 ----A---- C:\Windows\system32\wmpmde.dll
2013-01-13 11:27:17 ----A---- C:\Windows\system32\WMPEncEn.dll
2013-01-13 11:27:17 ----A---- C:\Windows\system32\wmpeffects.dll
2013-01-13 11:27:17 ----A---- C:\Windows\system32\SyncCenter.dll
2013-01-13 11:27:17 ----A---- C:\Windows\system32\srvsvc.dll
2013-01-13 11:27:17 ----A---- C:\Windows\system32\sppobjs.dll
2013-01-13 11:27:17 ----A---- C:\Windows\system32\mfreadwrite.dll
2013-01-13 11:27:17 ----A---- C:\Windows\system32\aepdu.dll
2013-01-13 11:27:16 ----A---- C:\Windows\system32\shsvcs.dll
2013-01-13 11:27:16 ----A---- C:\Windows\system32\aeinv.dll
2013-01-13 11:27:15 ----A---- C:\Windows\system32\fde.dll
2013-01-13 11:27:14 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2013-01-13 11:27:14 ----A---- C:\Windows\SYSWOW64\propsys.dll
2013-01-13 11:27:14 ----A---- C:\Windows\SYSWOW64\mfds.dll
2013-01-13 11:27:14 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2013-01-13 11:27:14 ----A---- C:\Windows\system32\WinSATAPI.dll
2013-01-13 11:27:14 ----A---- C:\Windows\system32\stobject.dll
2013-01-13 11:27:13 ----A---- C:\Windows\SYSWOW64\user32.dll
2013-01-13 11:27:13 ----A---- C:\Windows\SYSWOW64\azroles.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\tcpipcfg.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\spp.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\QSHVHOST.DLL
2013-01-13 11:27:13 ----A---- C:\Windows\system32\netid.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\netdiagfx.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\localsec.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\inetpp.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\imapi2.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\drivers\udfs.sys
2013-01-13 11:27:13 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2013-01-13 11:27:13 ----A---- C:\Windows\system32\davclnt.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\credui.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\cdd.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\biocpl.dll
2013-01-13 11:27:13 ----A---- C:\Windows\system32\bcryptprimitives.dll
2013-01-13 11:27:12 ----A---- C:\Windows\system32\printui.dll
2013-01-13 11:27:12 ----A---- C:\Windows\system32\msinfo32.exe
2013-01-13 11:27:11 ----A---- C:\Windows\SYSWOW64\themeui.dll
2013-01-13 11:27:11 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2013-01-13 11:27:11 ----A---- C:\Windows\SYSWOW64\spp.dll
2013-01-13 11:27:11 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-01-13 11:27:11 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2013-01-13 11:27:11 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-01-13 11:27:11 ----A---- C:\Windows\system32\wusa.exe
2013-01-13 11:27:11 ----A---- C:\Windows\system32\scansetting.dll
2013-01-13 11:27:11 ----A---- C:\Windows\system32\pla.dll
2013-01-13 11:27:11 ----A---- C:\Windows\system32\mspbda.dll
2013-01-13 11:27:11 ----A---- C:\Windows\system32\msdri.dll
2013-01-13 11:27:11 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2013-01-13 11:27:11 ----A---- C:\Windows\system32\aitagent.exe
2013-01-13 11:27:10 ----A---- C:\Windows\system32\wiaservc.dll
2013-01-13 11:27:10 ----A---- C:\Windows\system32\vds.exe
2013-01-13 11:27:09 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2013-01-13 11:27:09 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2013-01-13 11:27:09 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2013-01-13 11:27:09 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-01-13 11:27:09 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2013-01-13 11:27:09 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2013-01-13 11:27:09 ----A---- C:\Windows\system32\XpsRasterService.dll
2013-01-13 11:27:09 ----A---- C:\Windows\system32\wisptis.exe
2013-01-13 11:27:09 ----A---- C:\Windows\system32\rpchttp.dll
2013-01-13 11:27:09 ----A---- C:\Windows\system32\PkgMgr.exe
2013-01-13 11:27:09 ----A---- C:\Windows\system32\ocsetup.exe
2013-01-13 11:27:09 ----A---- C:\Windows\system32\mscms.dll
2013-01-13 11:27:09 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2013-01-13 11:27:09 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2013-01-13 11:27:09 ----A---- C:\Windows\system32\drivers\pci.sys
2013-01-13 11:27:08 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2013-01-13 11:27:08 ----A---- C:\Windows\SYSWOW64\evr.dll
2013-01-13 11:27:08 ----A---- C:\Windows\system32\sppwinob.dll
2013-01-13 11:27:08 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-01-13 11:27:07 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2013-01-13 11:27:07 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2013-01-13 11:27:07 ----A---- C:\Windows\SYSWOW64\calc.exe
2013-01-13 11:27:07 ----A---- C:\Windows\system32\wpdbusenum.dll
2013-01-13 11:27:07 ----A---- C:\Windows\system32\wcncsvc.dll
2013-01-13 11:27:07 ----A---- C:\Windows\system32\upnp.dll
2013-01-13 11:27:07 ----A---- C:\Windows\system32\Robocopy.exe
2013-01-13 11:27:07 ----A---- C:\Windows\system32\ocsetapi.dll
2013-01-13 11:27:07 ----A---- C:\Windows\system32\mprapi.dll
2013-01-13 11:27:07 ----A---- C:\Windows\system32\eapphost.dll
2013-01-13 11:27:07 ----A---- C:\Windows\system32\eapp3hst.dll
2013-01-13 11:27:07 ----A---- C:\Windows\system32\DXP.dll
2013-01-13 11:27:07 ----A---- C:\Windows\system32\drivers\volmgr.sys
2013-01-13 11:27:07 ----A---- C:\Windows\system32\drivers\msdsm.sys
2013-01-13 11:27:07 ----A---- C:\Windows\system32\ci.dll
2013-01-13 11:27:06 ----A---- C:\Windows\SYSWOW64\sxs.dll
2013-01-13 11:27:06 ----A---- C:\Windows\SYSWOW64\netshell.dll
2013-01-13 11:27:06 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2013-01-13 11:27:06 ----A---- C:\Windows\system32\thumbcache.dll
2013-01-13 11:27:06 ----A---- C:\Windows\system32\t2embed.dll
2013-01-13 11:27:06 ----A---- C:\Windows\system32\hal.dll
2013-01-13 11:27:06 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2013-01-13 11:27:05 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2013-01-13 11:27:05 ----A---- C:\Windows\SYSWOW64\stobject.dll
2013-01-13 11:27:05 ----A---- C:\Windows\SYSWOW64\prncache.dll
2013-01-13 11:27:05 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-01-13 11:27:05 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-01-13 11:27:05 ----A---- C:\Windows\system32\themeui.dll
2013-01-13 11:27:05 ----A---- C:\Windows\system32\scecli.dll
2013-01-13 11:27:05 ----A---- C:\Windows\system32\puiobj.dll
2013-01-13 11:27:05 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2013-01-13 11:27:05 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2013-01-13 11:27:05 ----A---- C:\Windows\system32\msasn1.dll
2013-01-13 11:27:05 ----A---- C:\Windows\system32\iasrad.dll
2013-01-13 11:27:05 ----A---- C:\Windows\system32\DxpTaskSync.dll
2013-01-13 11:27:05 ----A---- C:\Windows\system32\dwmredir.dll
2013-01-13 11:27:05 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2013-01-13 11:27:05 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-01-13 11:27:05 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2013-01-13 11:27:04 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2013-01-13 11:27:04 ----A---- C:\Windows\SYSWOW64\printui.dll
2013-01-13 11:27:04 ----A---- C:\Windows\system32\onex.dll
2013-01-13 11:27:04 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2013-01-13 11:27:04 ----A---- C:\Windows\system32\aaclient.dll
2013-01-13 11:27:03 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2013-01-13 11:27:03 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2013-01-13 11:27:03 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2013-01-13 11:27:03 ----A---- C:\Windows\SYSWOW64\net1.exe
2013-01-13 11:27:03 ----A---- C:\Windows\system32\wlangpui.dll
2013-01-13 11:27:03 ----A---- C:\Windows\system32\wdc.dll
2013-01-13 11:27:03 ----A---- C:\Windows\system32\scesrv.dll
2013-01-13 11:27:03 ----A---- C:\Windows\system32\rasmans.dll
2013-01-13 11:27:03 ----A---- C:\Windows\system32\msftedit.dll
2013-01-13 11:27:03 ----A---- C:\Windows\system32\iedkcs32.dll
2013-01-13 11:27:02 ----A---- C:\Windows\system32\wiadefui.dll
2013-01-13 11:27:02 ----A---- C:\Windows\system32\VAN.dll
2013-01-13 11:27:02 ----A---- C:\Windows\system32\StructuredQuery.dll
2013-01-13 11:27:02 ----A---- C:\Windows\system32\sdengin2.dll
2013-01-13 11:27:01 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2013-01-13 11:27:01 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-01-13 11:27:01 ----A---- C:\Windows\system32\samcli.dll
2013-01-13 11:27:01 ----A---- C:\Windows\system32\netcenter.dll
2013-01-13 11:27:01 ----A---- C:\Windows\system32\dskquoui.dll
2013-01-13 11:27:00 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2013-01-13 11:27:00 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2013-01-13 11:27:00 ----A---- C:\Windows\system32\wscapi.dll
2013-01-13 11:27:00 ----A---- C:\Windows\system32\SndVol.exe
2013-01-13 11:27:00 ----A---- C:\Windows\system32\iasacct.dll
2013-01-13 11:27:00 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2013-01-13 11:26:59 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2013-01-13 11:26:59 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-01-13 11:26:59 ----A---- C:\Windows\system32\regapi.dll
2013-01-13 11:26:59 ----A---- C:\Windows\system32\drivers\termdd.sys
2013-01-13 11:26:58 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2013-01-13 11:26:58 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2013-01-13 11:26:58 ----A---- C:\Windows\system32\TabSvc.dll
2013-01-13 11:26:58 ----A---- C:\Windows\system32\srchadmin.dll
2013-01-13 11:26:58 ----A---- C:\Windows\system32\QUTIL.DLL
2013-01-13 11:26:58 ----A---- C:\Windows\system32\consent.exe
2013-01-13 11:26:57 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2013-01-13 11:26:57 ----A---- C:\Windows\SYSWOW64\webservices.dll
2013-01-13 11:26:56 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2013-01-13 11:26:56 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2013-01-13 11:26:56 ----A---- C:\Windows\SYSWOW64\fde.dll
2013-01-13 11:26:56 ----A---- C:\Windows\system32\wksprt.exe
2013-01-13 11:26:56 ----A---- C:\Windows\system32\setupcl.exe
2013-01-13 11:26:56 ----A---- C:\Windows\system32\rastls.dll
2013-01-13 11:26:56 ----A---- C:\Windows\system32\drivers\msahci.sys
2013-01-13 11:26:55 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2013-01-13 11:26:55 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2013-01-13 11:26:55 ----A---- C:\Windows\system32\drivers\acpi.sys
2013-01-13 11:26:54 ----A---- C:\Windows\system32\tapisrv.dll
2013-01-13 11:26:54 ----A---- C:\Windows\system32\netiohlp.dll
2013-01-13 11:26:54 ----A---- C:\Windows\system32\mimefilt.dll
2013-01-13 11:26:54 ----A---- C:\Windows\system32\ListSvc.dll
2013-01-13 11:26:54 ----A---- C:\Windows\system32\drivers\raspptp.sys
2013-01-13 11:26:53 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2013-01-13 11:26:53 ----A---- C:\Windows\system32\msconfig.exe
2013-01-13 11:26:53 ----A---- C:\Windows\system32\hgcpl.dll
2013-01-13 11:26:52 ----A---- C:\Windows\SYSWOW64\pla.dll
2013-01-13 11:26:52 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2013-01-13 11:26:52 ----A---- C:\Windows\system32\basecsp.dll
2013-01-13 11:26:51 ----A---- C:\Windows\SYSWOW64\winsta.dll
2013-01-13 11:26:51 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2013-01-13 11:26:51 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2013-01-13 11:26:51 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-01-13 11:26:51 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2013-01-13 11:26:51 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-01-13 11:26:51 ----A---- C:\Windows\system32\riched20.dll
2013-01-13 11:26:51 ----A---- C:\Windows\system32\mtxclu.dll
2013-01-13 11:26:51 ----A---- C:\Windows\system32\lsmproxy.dll
2013-01-13 11:26:51 ----A---- C:\Windows\system32\fdeploy.dll
2013-01-13 11:26:51 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2013-01-13 11:26:51 ----A---- C:\Windows\system32\drivers\ks.sys
2013-01-13 11:26:51 ----A---- C:\Windows\system32\dnscmmc.dll
2013-01-13 11:26:51 ----A---- C:\Windows\system32\clusapi.dll
2013-01-13 11:26:51 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2013-01-13 11:26:50 ----A---- C:\Windows\system32\RpcRtRemote.dll
2013-01-13 11:26:50 ----A---- C:\Windows\system32\logoncli.dll
2013-01-13 11:26:49 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2013-01-13 11:26:49 ----A---- C:\Windows\SYSWOW64\winmm.dll
2013-01-13 11:26:49 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2013-01-13 11:26:49 ----A---- C:\Windows\SYSWOW64\onex.dll
2013-01-13 11:26:49 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2013-01-13 11:26:49 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2013-01-13 11:26:49 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2013-01-13 11:26:49 ----A---- C:\Windows\system32\themecpl.dll
2013-01-13 11:26:49 ----A---- C:\Windows\system32\sharemediacpl.dll
2013-01-13 11:26:49 ----A---- C:\Windows\system32\SensorsCpl.dll
2013-01-13 11:26:49 ----A---- C:\Windows\system32\powercpl.dll
2013-01-13 11:26:49 ----A---- C:\Windows\system32\netjoin.dll
2013-01-13 11:26:49 ----A---- C:\Windows\system32\nci.dll
2013-01-13 11:26:49 ----A---- C:\Windows\system32\Narrator.exe
2013-01-13 11:26:49 ----A---- C:\Windows\system32\Faultrep.dll
2013-01-13 11:26:49 ----A---- C:\Windows\system32\eudcedit.exe
2013-01-13 11:26:48 ----A---- C:\Windows\SYSWOW64\samcli.dll
2013-01-13 11:26:48 ----A---- C:\Windows\SYSWOW64\proquota.exe
2013-01-13 11:26:48 ----A---- C:\Windows\SYSWOW64\msutb.dll
2013-01-13 11:26:48 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2013-01-13 11:26:48 ----A---- C:\Windows\SYSWOW64\autochk.exe
2013-01-13 11:26:48 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2013-01-13 11:26:48 ----A---- C:\Windows\system32\wkssvc.dll
2013-01-13 11:26:48 ----A---- C:\Windows\system32\vpnikeapi.dll
2013-01-13 11:26:48 ----A---- C:\Windows\system32\sppcomapi.dll
2013-01-13 11:26:48 ----A---- C:\Windows\system32\licmgr10.dll
2013-01-13 11:26:48 ----A---- C:\Windows\system32\comctl32.dll
2013-01-13 11:26:48 ----A---- C:\Windows\system32\cabview.dll
2013-01-13 11:26:48 ----A---- C:\Windows\system32\autochk.exe
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\regapi.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2013-01-13 11:26:47 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2013-01-13 11:26:47 ----A---- C:\Windows\system32\wwanconn.dll
2013-01-13 11:26:47 ----A---- C:\Windows\system32\wpd_ci.dll
2013-01-13 11:26:47 ----A---- C:\Windows\system32\wlanui.dll
2013-01-13 11:26:47 ----A---- C:\Windows\system32\shsetup.dll
2013-01-13 11:26:47 ----A---- C:\Windows\system32\sdclt.exe
2013-01-13 11:26:47 ----A---- C:\Windows\system32\prntvpt.dll
2013-01-13 11:26:47 ----A---- C:\Windows\system32\nshipsec.dll
2013-01-13 11:26:47 ----A---- C:\Windows\system32\mscorier.dll
2013-01-13 11:26:47 ----A---- C:\Windows\system32\fms.dll
2013-01-13 11:26:47 ----A---- C:\Windows\system32\drivers\winusb.sys
2013-01-13 11:26:47 ----A---- C:\Windows\system32\drivers\wanarp.sys
2013-01-13 11:26:47 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-01-13 11:26:47 ----A---- C:\Windows\system32\drivers\scsiport.sys
2013-01-13 11:26:47 ----A---- C:\Windows\system32\bcdsrv.dll
2013-01-13 11:26:47 ----A---- C:\Windows\system32\autofmt.exe
2013-01-13 11:26:47 ----A---- C:\Windows\system32\autoconv.exe
2013-01-13 11:26:47 ----A---- C:\Windows\system32\audiodg.exe
2013-01-13 11:26:46 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2013-01-13 11:26:46 ----A---- C:\Windows\SYSWOW64\netid.dll
2013-01-13 11:26:46 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2013-01-13 11:26:46 ----A---- C:\Windows\system32\SmiEngine.dll
2013-01-13 11:26:46 ----A---- C:\Windows\system32\mprddm.dll
2013-01-13 11:26:46 ----A---- C:\Windows\system32\fontext.dll
2013-01-13 11:26:46 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2013-01-13 11:26:46 ----A---- C:\Windows\system32\dps.dll
2013-01-13 11:26:46 ----A---- C:\Windows\system32\AxInstSv.dll
2013-01-13 11:26:45 ----A---- C:\Windows\SYSWOW64\wdc.dll
2013-01-13 11:26:45 ----A---- C:\Windows\SYSWOW64\Vault.dll
2013-01-13 11:26:45 ----A---- C:\Windows\SYSWOW64\untfs.dll
2013-01-13 11:26:45 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2013-01-13 11:26:45 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2013-01-13 11:26:45 ----A---- C:\Windows\SYSWOW64\rastls.dll
2013-01-13 11:26:45 ----A---- C:\Windows\SYSWOW64\nci.dll
2013-01-13 11:26:45 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2013-01-13 11:26:45 ----A---- C:\Windows\system32\wmpsrcwp.dll
2013-01-13 11:26:45 ----A---- C:\Windows\system32\qedit.dll
2013-01-13 11:26:45 ----A---- C:\Windows\system32\mblctr.exe

Re: Problem z facebooku

Napsal: 29 led 2013 17:40
od brpo25
Pardon, nevoslo to na jednu stranu

2013-01-13 11:26:45 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-01-13 11:26:45 ----A---- C:\Windows\system32\Display.dll
2013-01-13 11:26:45 ----A---- C:\Windows\system32\credssp.dll
2013-01-13 11:26:45 ----A---- C:\Windows\system32\batmeter.dll
2013-01-13 11:26:44 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2013-01-13 11:26:44 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2013-01-13 11:26:44 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2013-01-13 11:26:44 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2013-01-13 11:26:44 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-01-13 11:26:44 ----A---- C:\Windows\system32\usercpl.dll
2013-01-13 11:26:44 ----A---- C:\Windows\system32\rtutils.dll
2013-01-13 11:26:44 ----A---- C:\Windows\system32\provsvc.dll
2013-01-13 11:26:44 ----A---- C:\Windows\system32\DiagCpl.dll
2013-01-13 11:26:44 ----A---- C:\Windows\system32\bootres.dll
2013-01-13 11:26:43 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2013-01-13 11:26:43 ----A---- C:\Windows\system32\wpccpl.dll
2013-01-13 11:26:43 ----A---- C:\Windows\system32\sppsvc.exe
2013-01-13 11:26:43 ----A---- C:\Windows\system32\rasppp.dll
2013-01-13 11:26:43 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2013-01-13 11:26:42 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2013-01-13 11:26:42 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2013-01-13 11:26:42 ----A---- C:\Windows\SYSWOW64\Display.dll
2013-01-13 11:26:42 ----A---- C:\Windows\system32\SndVolSSO.dll
2013-01-13 11:26:42 ----A---- C:\Windows\system32\dxdiagn.dll
2013-01-13 11:26:42 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2013-01-13 11:26:42 ----A---- C:\Windows\system32\dot3cfg.dll
2013-01-13 11:26:41 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2013-01-13 11:26:41 ----A---- C:\Windows\SYSWOW64\userinit.exe
2013-01-13 11:26:41 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2013-01-13 11:26:41 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2013-01-13 11:26:41 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2013-01-13 11:26:41 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2013-01-13 11:26:41 ----A---- C:\Windows\system32\taskmgr.exe
2013-01-13 11:26:41 ----A---- C:\Windows\system32\shdocvw.dll
2013-01-13 11:26:41 ----A---- C:\Windows\system32\proquota.exe
2013-01-13 11:26:41 ----A---- C:\Windows\system32\prnfldr.dll
2013-01-13 11:26:41 ----A---- C:\Windows\system32\pdh.dll
2013-01-13 11:26:41 ----A---- C:\Windows\system32\hbaapi.dll
2013-01-13 11:26:41 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2013-01-13 11:26:41 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2013-01-13 11:26:41 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-01-13 11:26:40 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2013-01-13 11:26:40 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2013-01-13 11:26:40 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2013-01-13 11:26:40 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2013-01-13 11:26:40 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2013-01-13 11:26:40 ----A---- C:\Windows\SYSWOW64\cabview.dll
2013-01-13 11:26:40 ----A---- C:\Windows\system32\untfs.dll
2013-01-13 11:26:40 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2013-01-13 11:26:39 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2013-01-13 11:26:39 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2013-01-13 11:26:39 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-01-13 11:26:39 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2013-01-13 11:26:39 ----A---- C:\Windows\system32\webcheck.dll
2013-01-13 11:26:39 ----A---- C:\Windows\system32\userinit.exe
2013-01-13 11:26:39 ----A---- C:\Windows\system32\slui.exe
2013-01-13 11:26:39 ----A---- C:\Windows\system32\accessibilitycpl.dll
2013-01-13 11:26:38 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2013-01-13 11:26:38 ----A---- C:\Windows\system32\zipfldr.dll
2013-01-13 11:26:38 ----A---- C:\Windows\system32\msieftp.dll
2013-01-13 11:26:38 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2013-01-13 11:26:37 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2013-01-13 11:26:37 ----A---- C:\Windows\SYSWOW64\scecli.dll
2013-01-13 11:26:37 ----A---- C:\Windows\SYSWOW64\mscories.dll
2013-01-13 11:26:37 ----A---- C:\Windows\SYSWOW64\mscms.dll
2013-01-13 11:26:37 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2013-01-13 11:26:37 ----A---- C:\Windows\SYSWOW64\localsec.dll
2013-01-13 11:26:37 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2013-01-13 11:26:37 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2013-01-13 11:26:37 ----A---- C:\Windows\SYSWOW64\fontext.dll
2013-01-13 11:26:37 ----A---- C:\Windows\system32\sud.dll
2013-01-13 11:26:37 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2013-01-13 11:26:37 ----A---- C:\Windows\system32\networkmap.dll
2013-01-13 11:26:37 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-01-13 11:26:37 ----A---- C:\Windows\system32\dot3svc.dll
2013-01-13 11:26:37 ----A---- C:\Windows\system32\DeviceCenter.dll
2013-01-13 11:26:36 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2013-01-13 11:26:36 ----A---- C:\Windows\SYSWOW64\VAN.dll
2013-01-13 11:26:36 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2013-01-13 11:26:36 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2013-01-13 11:26:36 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-01-13 11:26:36 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2013-01-13 11:26:36 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2013-01-13 11:26:36 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2013-01-13 11:26:36 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2013-01-13 11:26:36 ----A---- C:\Windows\system32\twext.dll
2013-01-13 11:26:36 ----A---- C:\Windows\system32\taskbarcpl.dll
2013-01-13 11:26:36 ----A---- C:\Windows\system32\cryptui.dll
2013-01-13 11:26:36 ----A---- C:\Windows\system32\ActionCenter.dll
2013-01-13 11:26:35 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2013-01-13 11:26:35 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2013-01-13 11:26:35 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2013-01-13 11:26:35 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2013-01-13 11:26:35 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2013-01-13 11:26:35 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2013-01-13 11:26:35 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\uxlib.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\tzutil.exe
2013-01-13 11:26:35 ----A---- C:\Windows\system32\syncui.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\sisbkup.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\sdcpl.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\recovery.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\recdisc.exe
2013-01-13 11:26:35 ----A---- C:\Windows\system32\OobeFldr.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\isoburn.exe
2013-01-13 11:26:35 ----A---- C:\Windows\system32\httpapi.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\efscore.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\dsuiext.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\cca.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\bcdedit.exe
2013-01-13 11:26:35 ----A---- C:\Windows\system32\azroleui.dll
2013-01-13 11:26:35 ----A---- C:\Windows\system32\asycfilt.dll
2013-01-13 11:26:34 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2013-01-13 11:26:34 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2013-01-13 11:26:34 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2013-01-13 11:26:34 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2013-01-13 11:26:34 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2013-01-13 11:26:34 ----A---- C:\Windows\system32\systemcpl.dll
2013-01-13 11:26:34 ----A---- C:\Windows\system32\sysclass.dll
2013-01-13 11:26:34 ----A---- C:\Windows\system32\shwebsvc.dll
2013-01-13 11:26:34 ----A---- C:\Windows\system32\netplwiz.dll
2013-01-13 11:26:34 ----A---- C:\Windows\system32\ncryptui.dll
2013-01-13 11:26:34 ----A---- C:\Windows\system32\drivers\mpio.sys
2013-01-13 11:26:34 ----A---- C:\Windows\system32\certcli.dll
2013-01-13 11:26:34 ----A---- C:\Windows\system32\autoplay.dll
2013-01-13 11:26:34 ----A---- C:\Windows\system32\appinfo.dll
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\wusa.exe
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\sud.dll
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2013-01-13 11:26:33 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2013-01-13 11:26:33 ----A---- C:\Windows\system32\wlanmsm.dll
2013-01-13 11:26:33 ----A---- C:\Windows\system32\vdsutil.dll
2013-01-13 11:26:33 ----A---- C:\Windows\system32\spwizeng.dll
2013-01-13 11:26:33 ----A---- C:\Windows\system32\sdrsvc.dll
2013-01-13 11:26:33 ----A---- C:\Windows\system32\msvidc32.dll
2013-01-13 11:26:33 ----A---- C:\Windows\system32\MFPlay.dll
2013-01-13 11:26:33 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2013-01-13 11:26:33 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2013-01-13 11:26:32 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2013-01-13 11:26:32 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2013-01-13 11:26:32 ----A---- C:\Windows\SYSWOW64\credssp.dll
2013-01-13 11:26:32 ----A---- C:\Windows\system32\termmgr.dll
2013-01-13 11:26:32 ----A---- C:\Windows\system32\sethc.exe
2013-01-13 11:26:32 ----A---- C:\Windows\system32\msscp.dll
2013-01-13 11:26:32 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\ftp.exe
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\efscore.dll
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2013-01-13 11:26:31 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\tsgqec.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\sqlcese30.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\ReAgent.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\rdpd3d.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\ntlanman.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\iTVData.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\iprtrmgr.dll
2013-01-13 11:26:31 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2013-01-13 11:26:30 ----A---- C:\Windows\SYSWOW64\syncui.dll
2013-01-13 11:26:30 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2013-01-13 11:26:30 ----A---- C:\Windows\system32\wmdrmsdk.dll
2013-01-13 11:26:30 ----A---- C:\Windows\system32\slwga.dll
2013-01-13 11:26:30 ----A---- C:\Windows\system32\iyuv_32.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\sethc.exe
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\riched20.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2013-01-13 11:26:29 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2013-01-13 11:26:29 ----A---- C:\Windows\system32\wavemsp.dll
2013-01-13 11:26:29 ----A---- C:\Windows\system32\srvcli.dll
2013-01-13 11:26:29 ----A---- C:\Windows\system32\srrstr.dll
2013-01-13 11:26:29 ----A---- C:\Windows\system32\ntprint.dll
2013-01-13 11:26:29 ----A---- C:\Windows\system32\nslookup.exe
2013-01-13 11:26:29 ----A---- C:\Windows\system32\NAPHLPR.DLL
2013-01-13 11:26:29 ----A---- C:\Windows\system32\msiexec.exe
2013-01-13 11:26:29 ----A---- C:\Windows\system32\drmmgrtn.dll
2013-01-13 11:26:29 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2013-01-13 11:26:29 ----A---- C:\Windows\system32\bcdboot.exe
2013-01-13 11:26:29 ----A---- C:\Windows\system32\acppage.dll
2013-01-13 11:26:28 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2013-01-13 11:26:28 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2013-01-13 11:26:28 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2013-01-13 11:26:28 ----A---- C:\Windows\SYSWOW64\activeds.dll
2013-01-13 11:26:28 ----A---- C:\Windows\system32\sppnp.dll
2013-01-13 11:26:28 ----A---- C:\Windows\system32\certprop.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\migisol.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\fms.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\dpx.dll
2013-01-13 11:26:27 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2013-01-13 11:26:27 ----A---- C:\Windows\system32\wmpdxm.dll
2013-01-13 11:26:27 ----A---- C:\Windows\system32\wkscli.dll
2013-01-13 11:26:27 ----A---- C:\Windows\system32\WinSCard.dll
2013-01-13 11:26:27 ----A---- C:\Windows\system32\TSpkg.dll
2013-01-13 11:26:27 ----A---- C:\Windows\system32\remotepg.dll
2013-01-13 11:26:27 ----A---- C:\Windows\system32\networkexplorer.dll
2013-01-13 11:26:27 ----A---- C:\Windows\system32\ftp.exe
2013-01-13 11:26:27 ----A---- C:\Windows\system32\dfrgui.exe
2013-01-13 11:26:27 ----A---- C:\Windows\system32\cabinet.dll
2013-01-13 11:26:26 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2013-01-13 11:26:26 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2013-01-13 11:26:26 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2013-01-13 11:26:26 ----A---- C:\Windows\system32\wsnmp32.dll
2013-01-13 11:26:26 ----A---- C:\Windows\system32\net1.exe
2013-01-13 11:26:25 ----A---- C:\Windows\twain_32.dll
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\wvc.dll
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\twext.dll
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\qcap.dll
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\mstask.dll
2013-01-13 11:26:25 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2013-01-13 11:26:25 ----A---- C:\Windows\system32\wvc.dll
2013-01-13 11:26:25 ----A---- C:\Windows\system32\wsqmcons.exe
2013-01-13 11:26:25 ----A---- C:\Windows\system32\wmdrmdev.dll
2013-01-13 11:26:25 ----A---- C:\Windows\system32\WerFaultSecure.exe
2013-01-13 11:26:25 ----A---- C:\Windows\system32\unimdmat.dll
2013-01-13 11:26:25 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-01-13 11:26:25 ----A---- C:\Windows\system32\OpcServices.dll
2013-01-13 11:26:25 ----A---- C:\Windows\system32\msyuv.dll
2013-01-13 11:26:25 ----A---- C:\Windows\system32\mfps.dll
2013-01-13 11:26:25 ----A---- C:\Windows\system32\mapistub.dll
2013-01-13 11:26:25 ----A---- C:\Windows\system32\mapi32.dll
2013-01-13 11:26:25 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-01-13 11:26:25 ----A---- C:\Windows\system32\blackbox.dll
2013-01-13 11:26:24 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2013-01-13 11:26:24 ----A---- C:\Windows\SYSWOW64\slwga.dll
2013-01-13 11:26:24 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2013-01-13 11:26:24 ----A---- C:\Windows\SYSWOW64\qasf.dll
2013-01-13 11:26:24 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-01-13 11:26:24 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-01-13 11:26:24 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-01-13 11:26:24 ----A---- C:\Windows\system32\tsbyuv.dll
2013-01-13 11:26:24 ----A---- C:\Windows\system32\seclogon.dll
2013-01-13 11:26:24 ----A---- C:\Windows\system32\msrle32.dll
2013-01-13 11:26:24 ----A---- C:\Windows\system32\iscsium.dll
2013-01-13 11:26:24 ----A---- C:\Windows\system32\ifsutil.dll
2013-01-13 11:26:24 ----A---- C:\Windows\system32\diskraid.exe
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\msscp.dll
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2013-01-13 11:26:23 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2013-01-13 11:26:23 ----A---- C:\Windows\system32\wmpshell.dll
2013-01-13 11:26:23 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2013-01-13 11:26:23 ----A---- C:\Windows\system32\rdpencom.dll
2013-01-13 11:26:23 ----A---- C:\Windows\system32\perfmon.exe
2013-01-13 11:26:23 ----A---- C:\Windows\system32\netutils.dll
2013-01-13 11:26:23 ----A---- C:\Windows\system32\muifontsetup.dll
2013-01-13 11:26:23 ----A---- C:\Windows\system32\drivers\umbus.sys
2013-01-13 11:26:23 ----A---- C:\Windows\system32\AzSqlExt.dll
2013-01-13 11:26:22 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2013-01-13 11:26:22 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2013-01-13 11:26:22 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2013-01-13 11:26:22 ----A---- C:\Windows\SYSWOW64\acppage.dll
2013-01-13 11:26:22 ----A---- C:\Windows\system32\umb.dll
2013-01-13 11:26:22 ----A---- C:\Windows\system32\tlscsp.dll
2013-01-13 11:26:22 ----A---- C:\Windows\system32\qasf.dll
2013-01-13 11:26:22 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2013-01-13 11:26:22 ----A---- C:\Windows\system32\inseng.dll
2013-01-13 11:26:22 ----A---- C:\Windows\system32\dbghelp.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\raschap.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\input.dll
2013-01-13 11:26:21 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2013-01-13 11:26:21 ----A---- C:\Windows\system32\wpdwcn.dll
2013-01-13 11:26:21 ----A---- C:\Windows\system32\WMADMOD.DLL
2013-01-13 11:26:21 ----A---- C:\Windows\system32\wiavideo.dll
2013-01-13 11:26:21 ----A---- C:\Windows\system32\syssetup.dll
2013-01-13 11:26:21 ----A---- C:\Windows\system32\runonce.exe
2013-01-13 11:26:21 ----A---- C:\Windows\system32\raschap.dll
2013-01-13 11:26:21 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2013-01-13 11:26:21 ----A---- C:\Windows\system32\MdSched.exe
2013-01-13 11:26:21 ----A---- C:\Windows\system32\FXSAPI.dll
2013-01-13 11:26:21 ----A---- C:\Windows\system32\ActionQueue.dll
2013-01-13 11:26:21 ----A---- C:\Windows\bfsvc.exe
2013-01-13 11:26:20 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2013-01-13 11:26:20 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2013-01-13 11:26:20 ----A---- C:\Windows\SYSWOW64\runonce.exe
2013-01-13 11:26:20 ----A---- C:\Windows\SYSWOW64\onexui.dll
2013-01-13 11:26:20 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2013-01-13 11:26:20 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-01-13 11:26:20 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2013-01-13 11:26:20 ----A---- C:\Windows\system32\WMVSDECD.DLL
2013-01-13 11:26:20 ----A---- C:\Windows\system32\vdsbas.dll
2013-01-13 11:26:20 ----A---- C:\Windows\system32\mstask.dll
2013-01-13 11:26:20 ----A---- C:\Windows\system32\Mcx2Svc.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\shacct.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\logagent.exe
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2013-01-13 11:26:19 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2013-01-13 11:26:19 ----A---- C:\Windows\system32\WPDSp.dll
2013-01-13 11:26:19 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2013-01-13 11:26:19 ----A---- C:\Windows\system32\wmdrmnet.dll
2013-01-13 11:26:19 ----A---- C:\Windows\system32\vss_ps.dll
2013-01-13 11:26:19 ----A---- C:\Windows\system32\tabcal.exe
2013-01-13 11:26:19 ----A---- C:\Windows\system32\shacct.dll
2013-01-13 11:26:19 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2013-01-13 11:26:19 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2013-01-13 11:26:19 ----A---- C:\Windows\system32\qcap.dll
2013-01-13 11:26:19 ----A---- C:\Windows\system32\nltest.exe
2013-01-13 11:26:19 ----A---- C:\Windows\system32\msnetobj.dll
2013-01-13 11:26:19 ----A---- C:\Windows\system32\logman.exe
2013-01-13 11:26:19 ----A---- C:\Windows\system32\drivers\rmcast.sys
2013-01-13 11:26:19 ----A---- C:\Windows\system32\cscapi.dll
2013-01-13 11:26:19 ----A---- C:\Windows\system32\bitsadmin.exe
2013-01-13 11:26:18 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2013-01-13 11:26:18 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2013-01-13 11:26:18 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2013-01-13 11:26:18 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2013-01-13 11:26:18 ----A---- C:\Windows\system32\secproc_ssp.dll
2013-01-13 11:26:18 ----A---- C:\Windows\system32\qdv.dll
2013-01-13 11:26:18 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2013-01-13 11:26:17 ----A---- C:\Windows\SYSWOW64\pdh.dll
2013-01-13 11:26:17 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2013-01-13 11:26:17 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2013-01-13 11:26:17 ----A---- C:\Windows\system32\spbcd.dll
2013-01-13 11:26:17 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-01-13 11:26:16 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2013-01-13 11:26:16 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2013-01-13 11:26:16 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2013-01-13 11:26:16 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2013-01-13 11:26:16 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2013-01-13 11:26:16 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2013-01-13 11:26:16 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2013-01-13 11:26:16 ----A---- C:\Windows\SYSWOW64\logman.exe
2013-01-13 11:26:16 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2013-01-13 11:26:16 ----A---- C:\Windows\system32\fphc.dll
2013-01-13 11:26:16 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2013-01-13 11:26:16 ----A---- C:\Windows\system32\dot3ui.dll
2013-01-13 11:26:15 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-01-13 11:26:15 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2013-01-13 11:26:15 ----A---- C:\Windows\SYSWOW64\utildll.dll
2013-01-13 11:26:15 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-01-13 11:26:15 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2013-01-13 11:26:15 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2013-01-13 11:26:15 ----A---- C:\Windows\system32\WMPhoto.dll
2013-01-13 11:26:15 ----A---- C:\Windows\system32\takeown.exe
2013-01-13 11:26:15 ----A---- C:\Windows\system32\PnPUnattend.exe
2013-01-13 11:26:15 ----A---- C:\Windows\system32\amstream.dll
2013-01-13 11:26:14 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2013-01-13 11:26:14 ----A---- C:\Windows\SYSWOW64\takeown.exe
2013-01-13 11:26:14 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2013-01-13 11:26:14 ----A---- C:\Windows\SYSWOW64\fphc.dll
2013-01-13 11:26:14 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2013-01-13 11:26:14 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2013-01-13 11:26:14 ----A---- C:\Windows\system32\vfwwdm32.dll
2013-01-13 11:26:14 ----A---- C:\Windows\system32\EhStorAPI.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\qdv.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2013-01-13 11:26:13 ----A---- C:\Windows\SYSWOW64\cca.dll
2013-01-13 11:26:13 ----A---- C:\Windows\system32\WavDest.dll
2013-01-13 11:26:13 ----A---- C:\Windows\system32\shimgvw.dll
2013-01-13 11:26:13 ----A---- C:\Windows\system32\QCLIPROV.DLL
2013-01-13 11:26:13 ----A---- C:\Windows\system32\nrpsrv.dll
2013-01-13 11:26:13 ----A---- C:\Windows\system32\MultiDigiMon.exe
2013-01-13 11:26:13 ----A---- C:\Windows\system32\KMSVC.DLL
2013-01-13 11:26:13 ----A---- C:\Windows\system32\iasrecst.dll
2013-01-13 11:26:13 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2013-01-13 11:26:13 ----A---- C:\Windows\system32\fdProxy.dll
2013-01-13 11:26:13 ----A---- C:\Windows\system32\drivers\pacer.sys
2013-01-13 11:26:13 ----A---- C:\Windows\system32\djoin.exe
2013-01-13 11:26:13 ----A---- C:\Windows\system32\cmstp.exe
2013-01-13 11:26:13 ----A---- C:\Windows\system32\CertPolEng.dll
2013-01-13 11:26:12 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2013-01-13 11:26:12 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2013-01-13 11:26:12 ----A---- C:\Windows\system32\sscore.dll
2013-01-13 11:26:12 ----A---- C:\Windows\system32\relog.exe
2013-01-13 11:26:12 ----A---- C:\Windows\system32\mydocs.dll
2013-01-13 11:26:12 ----A---- C:\Windows\system32\iscsicli.exe
2013-01-13 11:26:12 ----A---- C:\Windows\system32\diskpart.exe
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\resutils.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\relog.exe
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\itircl.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2013-01-13 11:26:11 ----A---- C:\Windows\SYSWOW64\amstream.dll
2013-01-13 11:26:11 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2013-01-13 11:26:11 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2013-01-13 11:26:11 ----A---- C:\Windows\system32\msdmo.dll
2013-01-13 11:26:11 ----A---- C:\Windows\system32\mobsync.exe
2013-01-13 11:26:11 ----A---- C:\Windows\system32\itircl.dll
2013-01-13 11:26:11 ----A---- C:\Windows\system32\dot3msm.dll
2013-01-13 11:26:11 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2013-01-13 11:26:10 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2013-01-13 11:26:10 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2013-01-13 11:26:10 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2013-01-13 11:26:10 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2013-01-13 11:26:10 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2013-01-13 11:26:10 ----A---- C:\Windows\system32\mciqtz32.dll
2013-01-13 11:26:10 ----A---- C:\Windows\system32\choice.exe
2013-01-13 11:26:10 ----A---- C:\Windows\system32\FXSTIFF.dll
2013-01-13 11:26:10 ----A---- C:\Windows\system32\findstr.exe
2013-01-13 11:26:10 ----A---- C:\Windows\system32\eappgnui.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\sppc.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\spopk.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\netutils.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\findstr.exe
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2013-01-13 11:26:09 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\sppc.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\spopk.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\schedcli.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\repair-bde.exe
2013-01-13 11:26:09 ----A---- C:\Windows\system32\RDPENCDD.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\onexui.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\odbcconf.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\manage-bde.exe
2013-01-13 11:26:09 ----A---- C:\Windows\system32\luainstall.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\inetmib1.dll
2013-01-13 11:26:09 ----A---- C:\Windows\system32\fixmapi.exe
2013-01-13 11:26:09 ----A---- C:\Windows\system32\drivers\tunnel.sys
2013-01-13 11:26:09 ----A---- C:\Windows\system32\drivers\dfsc.sys
2013-01-13 11:26:08 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2013-01-13 11:26:08 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2013-01-13 11:26:08 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2013-01-13 11:26:08 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2013-01-13 11:26:08 ----A---- C:\Windows\system32\UIRibbonRes.dll
2013-01-13 11:26:08 ----A---- C:\Windows\system32\FXSMON.dll
2013-01-13 11:26:08 ----A---- C:\Windows\system32\elsTrans.dll
2013-01-13 11:26:07 ----A---- C:\Windows\SYSWOW64\wups.dll
2013-01-13 11:26:07 ----A---- C:\Windows\SYSWOW64\perfts.dll
2013-01-13 11:26:07 ----A---- C:\Windows\SYSWOW64\imm32.dll
2013-01-13 11:26:07 ----A---- C:\Windows\system32\wshbth.dll
2013-01-13 11:26:07 ----A---- C:\Windows\system32\TRAPI.dll
2013-01-13 11:26:07 ----A---- C:\Windows\system32\napdsnap.dll
2013-01-13 11:26:07 ----A---- C:\Windows\system32\msfeedssync.exe
2013-01-13 11:26:07 ----A---- C:\Windows\system32\LogonUI.exe
2013-01-13 11:26:07 ----A---- C:\Windows\system32\dsauth.dll
2013-01-13 11:26:07 ----A---- C:\Windows\system32\drivers\tdi.sys
2013-01-13 11:26:06 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-01-13 11:26:06 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2013-01-13 11:26:06 ----A---- C:\Windows\system32\FXSUNATD.exe
2013-01-13 11:26:05 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2013-01-13 11:26:05 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2013-01-13 11:26:05 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2013-01-13 11:26:05 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2013-01-13 11:26:05 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2013-01-13 11:26:05 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2013-01-13 11:26:05 ----A---- C:\Windows\system32\cscdll.dll
2013-01-13 11:26:05 ----A---- C:\Windows\system32\bitsperf.dll
2013-01-13 11:26:04 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2013-01-13 11:26:04 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2013-01-13 11:26:04 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2013-01-13 11:26:04 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2013-01-13 11:26:01 ----A---- C:\Windows\system32\wsdchngr.dll
2013-01-13 11:26:00 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2013-01-13 11:26:00 ----A---- C:\Windows\SYSWOW64\sscore.dll
2013-01-13 11:26:00 ----A---- C:\Windows\SYSWOW64\shgina.dll
2013-01-13 11:26:00 ----A---- C:\Windows\SYSWOW64\riched32.dll
2013-01-13 11:26:00 ----A---- C:\Windows\system32\shgina.dll
2013-01-13 11:25:59 ----A---- C:\Windows\system32\wshirda.dll
2013-01-13 11:25:59 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2013-01-13 11:25:59 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2013-01-13 11:25:58 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2013-01-13 11:25:58 ----A---- C:\Windows\system32\riched32.dll
2013-01-13 11:25:58 ----A---- C:\Windows\system32\rdpcfgex.dll
2013-01-13 11:25:58 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2013-01-13 11:25:58 ----A---- C:\Windows\system32\drivers\hidusb.sys
2013-01-13 11:25:58 ----A---- C:\Windows\system32\drivers\appid.sys
2013-01-13 11:25:57 ----A---- C:\Windows\system32\spwmp.dll
2013-01-13 11:25:57 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2013-01-13 11:25:57 ----A---- C:\Windows\system32\C_ISCII.DLL
2013-01-13 11:25:57 ----A---- C:\Windows\system32\browseui.dll
2013-01-13 11:25:56 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2013-01-13 11:25:56 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2013-01-13 11:25:56 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2013-01-13 11:25:56 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2013-01-13 11:25:56 ----A---- C:\Windows\SYSWOW64\browseui.dll
2013-01-13 11:25:56 ----A---- C:\Windows\system32\shunimpl.dll
2013-01-13 11:25:56 ----A---- C:\Windows\system32\dxmasf.dll
2013-01-13 11:25:56 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2013-01-13 11:25:56 ----A---- C:\Windows\system32\drivers\scfilter.sys
2013-01-13 11:25:56 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2013-01-13 11:25:56 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2013-01-13 11:25:56 ----A---- C:\Windows\system32\drivers\cdrom.sys
2013-01-13 11:25:55 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2013-01-13 11:25:55 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2013-01-13 11:25:55 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\system32\KBDTUQ.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\system32\KBDTUF.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\system32\KBDSG.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\system32\KBDSF.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\system32\KBDPO.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\system32\KBDNEPR.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\system32\kbdlk41a.dll
2013-01-13 11:25:55 ----A---- C:\Windows\system32\KBDINTAM.DLL
2013-01-13 11:25:55 ----A---- C:\Windows\system32\KBDINBEN.DLL
2013-01-13 11:25:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-01-13 11:25:54 ----A---- C:\Windows\system32\wmploc.DLL
2013-01-13 11:25:54 ----A---- C:\Windows\system32\KBDGR1.DLL
2013-01-13 11:25:54 ----A---- C:\Windows\system32\KBDGKL.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDUS.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDMON.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDLT1.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDGEO.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDCZ1.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDBULG.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDBLR.DLL
2013-01-13 11:25:53 ----A---- C:\Windows\system32\KBDBASH.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2013-01-13 11:25:52 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2013-01-13 11:25:52 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2013-01-13 11:25:52 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\system32\spwizres.dll
2013-01-13 11:25:52 ----A---- C:\Windows\system32\pifmgr.dll
2013-01-13 11:25:52 ----A---- C:\Windows\system32\nlsbres.dll
2013-01-13 11:25:52 ----A---- C:\Windows\system32\KBDTURME.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\system32\KBDMAORI.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\system32\KBDINTEL.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\system32\KBDINORI.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\system32\KBDINMAR.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\system32\KBDINKAN.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\system32\KBDINHIN.DLL
2013-01-13 11:25:52 ----A---- C:\Windows\system32\BlbEvents.dll
2013-01-13 11:25:46 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2013-01-13 11:25:46 ----A---- C:\Windows\system32\dpx.dll
2013-01-13 11:25:39 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2013-01-13 11:25:31 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2013-01-13 11:23:24 ----A---- C:\Windows\system32\wbemcomn.dll
2013-01-13 11:23:14 ----A---- C:\Windows\system32\sqmapi.dll
2013-01-12 21:49:13 ----A---- C:\Windows\system32\FntCache.dll
2013-01-12 21:49:12 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-01-12 21:49:12 ----A---- C:\Windows\system32\d2d1.dll
2013-01-12 16:35:29 ----A---- C:\Windows\system32\UCI64H48.dll
2013-01-12 16:27:02 ----A---- C:\Windows\system32\UCI64H55.dll
2013-01-12 15:56:31 ----D---- C:\Users\Bagi\AppData\Roaming\WinBatch
2013-01-12 10:18:52 ----D---- C:\Program Files (x86)\Google
2013-01-12 10:18:46 ----D---- C:\Program Files (x86)\Picasa3
2013-01-12 10:14:45 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-01-12 10:14:44 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2013-01-12 10:14:44 ----A---- C:\Windows\system32\xmllite.dll
2013-01-12 10:14:43 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-01-12 10:14:43 ----A---- C:\Windows\system32\win32spl.dll
2013-01-12 10:14:42 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2013-01-12 10:14:42 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2013-01-12 10:14:42 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2013-01-12 10:14:42 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2013-01-12 10:14:42 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2013-01-12 10:14:42 ----A---- C:\Windows\system32\odbctrac.dll
2013-01-12 10:14:42 ----A---- C:\Windows\system32\odbccu32.dll
2013-01-12 10:14:42 ----A---- C:\Windows\system32\odbccr32.dll
2013-01-12 10:14:42 ----A---- C:\Windows\system32\odbccp32.dll
2013-01-12 10:14:40 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-01-12 10:14:40 ----A---- C:\Windows\system32\DWrite.dll
2013-01-12 10:14:09 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2013-01-12 10:14:09 ----A---- C:\Windows\system32\poqexec.exe
2013-01-12 10:14:08 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-01-12 10:14:08 ----A---- C:\Windows\explorer.exe
2013-01-12 10:14:05 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-01-12 10:14:05 ----A---- C:\Windows\system32\tzres.dll
2013-01-12 10:13:57 ----A---- C:\Windows\system32\CPFilters.dll
2013-01-12 10:13:56 ----A---- C:\Windows\SYSWOW64\sbe.dll
2013-01-12 10:13:56 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2013-01-12 10:13:56 ----A---- C:\Windows\system32\sbe.dll
2013-01-12 10:12:41 ----A---- C:\Windows\SYSWOW64\quartz.dll
2013-01-12 10:12:41 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-01-12 10:12:41 ----A---- C:\Windows\system32\quartz.dll
2013-01-12 10:12:41 ----A---- C:\Windows\system32\qdvd.dll
2013-01-12 10:12:36 ----A---- C:\Windows\system32\ntshrui.dll
2013-01-12 10:12:35 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2013-01-12 10:12:29 ----A---- C:\Windows\system32\tquery.dll
2013-01-12 10:12:29 ----A---- C:\Windows\system32\mssrch.dll
2013-01-12 10:12:28 ----A---- C:\Windows\SYSWOW64\tquery.dll
2013-01-12 10:12:28 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2013-01-12 10:12:28 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2013-01-12 10:12:28 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2013-01-12 10:12:28 ----A---- C:\Windows\SYSWOW64\mssph.dll
2013-01-12 10:12:28 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-01-12 10:12:28 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-01-12 10:12:28 ----A---- C:\Windows\system32\mssvp.dll
2013-01-12 10:12:28 ----A---- C:\Windows\system32\mssph.dll
2013-01-12 10:12:27 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2013-01-12 10:12:27 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2013-01-12 10:12:27 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2013-01-12 10:12:27 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2013-01-12 10:12:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-01-12 10:12:27 ----A---- C:\Windows\system32\mssphtb.dll
2013-01-12 10:12:27 ----A---- C:\Windows\system32\msscntrs.dll
2013-01-12 10:12:16 ----A---- C:\Windows\SYSWOW64\webio.dll
2013-01-12 10:12:16 ----A---- C:\Windows\system32\webio.dll
2013-01-12 10:12:15 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2013-01-12 10:12:15 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-01-12 10:12:14 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-01-12 10:11:05 ----A---- C:\Windows\system32\csrsrv.dll
2013-01-12 10:11:03 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-01-12 10:11:03 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-01-12 10:10:44 ----A---- C:\Windows\system32\ieframe.dll
2013-01-12 10:10:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-01-12 10:10:38 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-01-12 10:10:38 ----A---- C:\Windows\system32\wininet.dll
2013-01-12 10:10:38 ----A---- C:\Windows\system32\urlmon.dll
2013-01-12 10:10:38 ----A---- C:\Windows\system32\iertutil.dll
2013-01-12 10:10:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-01-12 10:10:37 ----A---- C:\Windows\system32\msfeeds.dll
2013-01-12 10:10:36 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-01-12 10:10:36 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-01-12 10:10:34 ----A---- C:\Windows\SYSWOW64\url.dll
2013-01-12 10:10:34 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-01-12 10:10:34 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-01-12 10:10:34 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-01-12 10:10:34 ----A---- C:\Windows\system32\url.dll
2013-01-12 10:10:34 ----A---- C:\Windows\system32\mshtmled.dll
2013-01-12 10:10:34 ----A---- C:\Windows\system32\jsproxy.dll
2013-01-12 10:10:34 ----A---- C:\Windows\system32\ieui.dll
2013-01-12 10:09:29 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-01-12 10:09:28 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-01-12 10:09:27 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-01-12 10:09:13 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-01-12 10:09:13 ----A---- C:\Windows\system32\XpsPrint.dll
2013-01-12 10:09:13 ----A---- C:\Windows\system32\mfc42u.dll
2013-01-12 10:09:13 ----A---- C:\Windows\system32\mfc42.dll
2013-01-12 10:09:12 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2013-01-12 10:09:12 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2013-01-12 10:09:11 ----A---- C:\Windows\system32\shell32.dll
2013-01-12 10:09:10 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-01-12 10:09:04 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-01-12 10:09:04 ----A---- C:\Windows\system32\d3d10level9.dll
2013-01-12 10:09:03 ----A---- C:\Windows\system32\rdrmemptylst.exe
2013-01-12 10:09:03 ----A---- C:\Windows\system32\rdpwsx.dll
2013-01-12 10:09:03 ----A---- C:\Windows\system32\rdpcorekmts.dll
2013-01-12 10:09:02 ----A---- C:\Windows\system32\schannel.dll
2013-01-12 10:09:02 ----A---- C:\Windows\system32\lsasrv.dll
2013-01-12 10:09:01 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-01-12 10:09:01 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-01-12 10:09:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-01-12 10:09:01 ----A---- C:\Windows\system32\sspisrv.dll
2013-01-12 10:09:01 ----A---- C:\Windows\system32\sspicli.dll
2013-01-12 10:09:01 ----A---- C:\Windows\system32\secur32.dll
2013-01-12 10:09:01 ----A---- C:\Windows\system32\lsass.exe
2013-01-12 10:09:01 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-01-12 10:09:01 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-01-12 10:09:01 ----A---- C:\Windows\system32\drivers\cng.sys
2013-01-12 10:08:34 ----A---- C:\Windows\system32\msxml3.dll
2013-01-12 10:08:33 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-01-12 10:08:33 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2013-01-12 10:08:33 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-01-12 10:08:33 ----A---- C:\Windows\system32\msxml6.dll
2013-01-12 10:08:33 ----A---- C:\Windows\system32\msxml3r.dll
2013-01-12 10:08:31 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-01-12 10:08:29 ----A---- C:\Windows\system32\profsvc.dll
2013-01-12 10:08:29 ----A---- C:\Windows\system32\profprov.dll
2013-01-12 10:08:28 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2013-01-12 10:08:28 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2013-01-12 10:08:28 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-01-12 10:08:28 ----A---- C:\Windows\system32\dnscacheugc.exe
2013-01-12 10:08:28 ----A---- C:\Windows\system32\dnsapi.dll
2013-01-12 10:08:01 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2013-01-12 10:08:01 ----A---- C:\Windows\system32\dpnet.dll
2013-01-12 10:08:00 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2013-01-12 10:08:00 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-01-12 10:08:00 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-01-12 10:08:00 ----A---- C:\Windows\system32\dpnaddr.dll
2013-01-12 10:08:00 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-01-12 10:08:00 ----A---- C:\Windows\system32\d3d10_1.dll
2013-01-12 10:07:58 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-01-12 10:07:58 ----A---- C:\Windows\system32\ncrypt.dll
2013-01-12 10:07:56 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-01-12 10:07:56 ----A---- C:\Windows\system32\wintrust.dll
2013-01-12 10:07:53 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-01-12 10:07:53 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-01-12 10:07:53 ----A---- C:\Windows\system32\drivers\srv.sys
2013-01-12 10:07:51 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-01-12 10:07:51 ----A---- C:\Windows\system32\usp10.dll
2013-01-12 10:07:48 ----A---- C:\Windows\system32\Wpc.dll
2013-01-12 10:07:48 ----A---- C:\Windows\system32\gameux.dll
2013-01-12 10:07:47 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-01-12 10:07:47 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-01-12 10:07:38 ----A---- C:\Windows\system32\psisdecd.dll
2013-01-12 10:07:37 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2013-01-12 10:07:30 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2013-01-12 10:07:29 ----A---- C:\Windows\system32\drivers\afd.sys
2013-01-12 10:07:28 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-01-12 10:07:27 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2013-01-12 10:07:27 ----A---- C:\Windows\system32\kerberos.dll
2013-01-12 10:07:26 ----A---- C:\Windows\system32\msi.dll
2013-01-12 10:07:24 ----A---- C:\Windows\SYSWOW64\msi.dll
2013-01-12 10:07:18 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-01-12 10:07:18 ----A---- C:\Windows\system32\wow64win.dll
2013-01-12 10:07:18 ----A---- C:\Windows\system32\winsrv.dll
2013-01-12 10:07:18 ----A---- C:\Windows\system32\KernelBase.dll
2013-01-12 10:07:18 ----A---- C:\Windows\system32\kernel32.dll
2013-01-12 10:07:18 ----A---- C:\Windows\system32\conhost.exe
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-01-12 10:07:17 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-01-12 10:07:17 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-01-12 10:07:17 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-01-12 10:07:17 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-01-12 10:07:17 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-01-12 10:07:17 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-01-12 10:07:17 ----A---- C:\Windows\system32\wow64cpu.dll
2013-01-12 10:07:17 ----A---- C:\Windows\system32\wow64.dll
2013-01-12 10:07:17 ----A---- C:\Windows\system32\ntvdm64.dll
2013-01-12 10:07:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-01-12 10:07:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-01-12 10:07:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-01-12 10:07:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-01-12 10:07:16 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-12 10:07:16 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-12 10:07:16 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-01-12 10:07:16 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-01-12 10:07:16 ----A---- C:\Windows\SYSWOW64\user.exe
2013-01-12 10:06:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-01-12 10:06:52 ----A---- C:\Windows\system32\vbscript.dll
2013-01-12 10:06:52 ----A---- C:\Windows\system32\jscript.dll
2013-01-12 10:06:51 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-01-12 10:06:37 ----A---- C:\Windows\SYSWOW64\synceng.dll
2013-01-12 10:06:37 ----A---- C:\Windows\system32\winload.exe
2013-01-12 10:06:37 ----A---- C:\Windows\system32\synceng.dll
2013-01-12 10:06:36 ----A---- C:\Windows\system32\winresume.exe
2013-01-12 10:06:36 ----A---- C:\Windows\system32\setbcdlocale.dll
2013-01-12 10:06:36 ----A---- C:\Windows\system32\kdusb.dll
2013-01-12 10:06:36 ----A---- C:\Windows\system32\kdcom.dll
2013-01-12 10:06:36 ----A---- C:\Windows\system32\kd1394.dll
2013-01-12 10:06:21 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2013-01-12 10:06:21 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2013-01-12 10:06:21 ----A---- C:\Windows\SYSWOW64\devobj.dll
2013-01-12 10:06:21 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2013-01-12 10:06:21 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-01-12 10:06:21 ----A---- C:\Windows\system32\cfgmgr32.dll
2013-01-12 10:06:17 ----A---- C:\Windows\system32\win32k.sys
2013-01-12 10:06:15 ----A---- C:\Windows\system32\netapi32.dll
2013-01-12 10:06:15 ----A---- C:\Windows\system32\browser.dll
2013-01-12 10:06:14 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2013-01-12 10:06:14 ----A---- C:\Windows\SYSWOW64\browcli.dll
2013-01-12 10:06:14 ----A---- C:\Windows\system32\browcli.dll
2013-01-12 10:06:08 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2013-01-12 10:06:08 ----A---- C:\Windows\system32\srcore.dll
2013-01-12 10:06:08 ----A---- C:\Windows\system32\rstrui.exe
2013-01-12 10:06:08 ----A---- C:\Windows\system32\prevhost.exe
2013-01-12 10:06:07 ----A---- C:\Windows\SYSWOW64\srclient.dll
2013-01-12 10:06:06 ----A---- C:\Windows\system32\WFS.exe
2013-01-12 10:06:06 ----A---- C:\Windows\system32\FXSCOVER.exe
2013-01-12 10:06:05 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2013-01-12 10:06:05 ----A---- C:\Windows\system32\inetcomm.dll
2013-01-12 10:06:04 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2013-01-12 10:06:04 ----A---- C:\Windows\system32\msvcrt.dll
2013-01-12 10:06:01 ----A---- C:\Windows\system32\localspl.dll
2013-01-12 10:06:00 ----A---- C:\Windows\system32\drivers\bowser.sys
2013-01-12 10:05:57 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2013-01-12 10:05:57 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2013-01-12 10:05:57 ----A---- C:\Windows\system32\oleaut32.dll
2013-01-12 10:05:57 ----A---- C:\Windows\system32\oleacc.dll
2013-01-12 10:05:54 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2013-01-12 10:05:54 ----A---- C:\Windows\system32\EncDec.dll
2013-01-12 10:05:45 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2013-01-12 10:05:44 ----A---- C:\Windows\system32\cdosys.dll
2013-01-12 10:05:38 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-01-12 10:05:38 ----A---- C:\Windows\system32\ntdll.dll
2013-01-12 10:05:33 ----A---- C:\Windows\system32\spoolsv.exe
2013-01-12 10:05:33 ----A---- C:\Windows\splwow64.exe
2013-01-12 10:05:11 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-01-12 10:05:11 ----A---- C:\Windows\system32\cryptsvc.dll
2013-01-12 10:05:11 ----A---- C:\Windows\system32\crypt32.dll
2013-01-12 10:05:10 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-01-12 10:05:10 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-01-12 10:05:10 ----A---- C:\Windows\system32\cryptnet.dll
2013-01-12 09:54:18 ----N---- C:\Windows\system32\MpSigStub.exe
2013-01-12 09:54:16 ----A---- C:\Windows\SYSWOW64\packager.dll
2013-01-12 09:54:16 ----A---- C:\Windows\system32\packager.dll
2013-01-11 21:59:03 ----D---- C:\Users\Bagi\AppData\Roaming\skypePM
2013-01-11 20:07:07 ----D---- C:\ProgramData\FLEXnet
2013-01-11 19:40:14 ----D---- C:\Program Files (x86)\TeamViewer
2013-01-11 17:29:52 ----D---- C:\Users\Bagi\AppData\Roaming\Leadertech
2013-01-11 17:29:46 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2013-01-11 17:29:26 ----D---- C:\ProgramData\Logitech
2013-01-11 17:29:24 ----D---- C:\ProgramData\Logishrd
2013-01-11 17:29:18 ----D---- C:\Program Files\Logitech
2013-01-11 17:29:09 ----D---- C:\Program Files\Common Files\LogiShrd
2013-01-11 17:29:03 ----D---- C:\Users\Bagi\AppData\Roaming\Logitech
2013-01-11 17:29:03 ----D---- C:\Users\Bagi\AppData\Roaming\Logishrd
2013-01-11 17:16:07 ----D---- C:\Program Files (x86)\Bonjour
2013-01-11 17:13:40 ----D---- C:\Windows\SYSWOW64\spool
2013-01-11 16:34:52 ----D---- C:\Users\Bagi\AppData\Roaming\Publish Providers
2013-01-11 16:34:41 ----AD---- C:\ProgramData\TEMP
2013-01-11 16:34:39 ----D---- C:\Users\Bagi\AppData\Roaming\Sony
2013-01-11 16:33:00 ----D---- C:\Program Files (x86)\Vstplugins
2013-01-11 16:32:50 ----D---- C:\ProgramData\Sony
2013-01-11 16:32:33 ----D---- C:\Program Files (x86)\Sony
2013-01-11 16:09:56 ----D---- C:\Users\Bagi\AppData\Roaming\WinRAR
2013-01-11 16:09:39 ----D---- C:\Program Files (x86)\WinRAR
2013-01-11 16:00:16 ----D---- C:\Users\Bagi\AppData\Roaming\BSplayer PRO
2013-01-11 16:00:15 ----D---- C:\Program Files (x86)\BSplayerPro
2013-01-11 15:32:08 ----D---- C:\ProgramData\WinZip
2013-01-11 15:32:07 ----D---- C:\Program Files (x86)\WinZip
2013-01-11 15:11:26 ----D---- C:\Users\Bagi\AppData\Roaming\Skype
2013-01-11 15:08:35 ----A---- C:\Windows\SYSWOW64\drivers\ssmdrv.sys
2013-01-11 15:08:35 ----A---- C:\Windows\SYSWOW64\drivers\avipbb.sys
2013-01-11 15:08:35 ----A---- C:\Windows\SYSWOW64\avsda.dll
2013-01-11 15:08:35 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2013-01-11 15:08:35 ----A---- C:\Windows\system32\avsda64.dll
2013-01-11 15:08:34 ----D---- C:\ProgramData\Avira
2013-01-11 14:52:23 ----D---- C:\Program Files (x86)\Ask.com
2013-01-11 14:52:00 ----D---- C:\Program Files (x86)\Microsoft.NET
2013-01-11 14:51:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2013-01-11 14:51:15 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2013-01-11 14:50:57 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2013-01-11 14:50:36 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2013-01-11 14:50:16 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2013-01-11 14:49:58 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2013-01-11 14:32:45 ----D---- C:\Users\Bagi\AppData\Roaming\Adobe
2013-01-11 14:32:07 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-01-11 14:32:04 ----D---- C:\Windows\system32\Macromed
2013-01-11 14:29:09 ----D---- C:\Users\Bagi\AppData\Roaming\OpenOffice.org
2013-01-11 14:25:45 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2013-01-11 14:08:00 ----D---- C:\Program Files (x86)\Ares
2013-01-11 14:06:59 ----D---- C:\Users\Bagi\AppData\Roaming\GHISLER
2013-01-11 14:06:59 ----D---- C:\Program Files (x86)\totalcmd
2013-01-11 14:06:59 ----A---- C:\Windows\UC.PIF
2013-01-11 14:06:59 ----A---- C:\Windows\RAR.PIF
2013-01-11 14:06:59 ----A---- C:\Windows\PKZIP.PIF
2013-01-11 14:06:59 ----A---- C:\Windows\PKUNZIP.PIF
2013-01-11 14:06:59 ----A---- C:\Windows\NOCLOSE.PIF
2013-01-11 14:06:59 ----A---- C:\Windows\LHA.PIF
2013-01-11 14:06:59 ----A---- C:\Windows\ARJ.PIF
2013-01-11 13:12:23 ----D---- C:\Users\Bagi\AppData\Roaming\Opera
2013-01-11 13:12:00 ----D---- C:\Program Files (x86)\Opera
2013-01-11 13:09:57 ----D---- C:\Users\Bagi\AppData\Roaming\Mozilla
2013-01-11 13:08:13 ----D---- C:\ProgramData\Mozilla
2013-01-11 13:08:13 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-01-11 12:50:12 ----D---- C:\Users\Bagi\AppData\Roaming\Toshiba
2013-01-11 12:49:33 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2013-01-11 12:49:33 ----A---- C:\Windows\system32\rdpcore.dll
2013-01-11 12:49:32 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2013-01-11 12:47:38 ----D---- C:\Users\Bagi\AppData\Roaming\Nero
2013-01-11 12:47:36 ----D---- C:\Users\Bagi\AppData\Roaming\ATI
2013-01-11 12:46:53 ----D---- C:\Users\Bagi\AppData\Roaming\Identities
2013-01-11 12:45:18 ----A---- C:\Windows\system32\wups2.dll
2013-01-11 12:45:18 ----A---- C:\Windows\system32\wucltux.dll
2013-01-11 12:45:18 ----A---- C:\Windows\system32\wuaueng.dll
2013-01-11 12:45:18 ----A---- C:\Windows\system32\wuauclt.exe
2013-01-11 12:45:01 ----A---- C:\Windows\system32\wups.dll
2013-01-11 12:45:01 ----A---- C:\Windows\system32\wudriver.dll
2013-01-11 12:45:01 ----A---- C:\Windows\system32\wuapi.dll
2013-01-11 12:44:40 ----D---- C:\ProgramData\ToshibaEurope
2013-01-11 12:44:18 ----A---- C:\Windows\system32\wuwebv.dll
2013-01-11 12:44:18 ----A---- C:\Windows\system32\wuapp.exe
2013-01-11 12:43:40 ----D---- C:\Users\Bagi\AppData\Roaming\Media Center Programs
2013-01-11 12:43:40 ----D---- C:\Users\Bagi\AppData\Roaming\Macromedia
2013-01-11 12:43:39 ----SD---- C:\Users\Bagi\AppData\Roaming\Microsoft
2013-01-11 11:35:55 ----A---- C:\Windows\NDSTray.INI
2013-01-11 11:35:23 ----D---- C:\Windows\OemDrv
2013-01-11 11:30:04 ----A---- C:\Windows\system32\drivers\rtl8192se.sys
2013-01-11 11:29:56 ----D---- C:\Program Files (x86)\Realtek WLAN Driver
2013-01-11 11:28:06 ----D---- C:\Windows\SYSWOW64\Atheros_L1e
2013-01-11 11:24:45 ----A---- C:\Windows\SYSWOW64\TSCI.dll
2013-01-11 11:24:45 ----A---- C:\Windows\SYSWOW64\THCI.dll
2013-01-11 11:21:40 ----D---- C:\Program Files\CONEXANT
2013-01-11 11:20:44 ----D---- C:\ProgramData\ATI
2013-01-11 11:17:43 ----D---- C:\Program Files\ATI
2013-01-11 11:17:39 ----D---- C:\Program Files (x86)\ATI Technologies
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\Oemdspif.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atipdlxx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\ati2edxx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\drivers\atipmdag.sys
2013-01-11 11:17:01 ----A---- C:\Windows\system32\drivers\AtiPcie.sys
2013-01-11 11:17:01 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-01-11 11:17:01 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-01-11 11:17:01 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\coinst.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atiuxp64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atiu9p64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atitmm64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atipdl64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\ATIODE.exe
2013-01-11 11:17:01 ----A---- C:\Windows\system32\ATIODCLI.exe
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atio6axx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atimuixx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atimpc64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atiglpxx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atig6txx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atig6pxx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atiesrxx.exe
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atiedu64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atieclxx.exe
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atidxx64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\ATIDEMGX.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\aticfx64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\aticalrt64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\aticaldd64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\aticalcl64.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atibtmon.exe
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atiapfxx.exe
2013-01-11 11:17:01 ----A---- C:\Windows\system32\atiadlxx.dll
2013-01-11 11:17:01 ----A---- C:\Windows\system32\amdpcom64.dll
2013-01-11 11:15:46 ----D---- C:\Windows\SoftwareDistribution
2013-01-11 11:15:18 ----SHD---- C:\$RECYCLE.BIN
2013-01-11 11:12:23 ----SHD---- C:\System Volume Information
2013-01-11 11:12:23 ----ASH---- C:\pagefile.sys
2013-01-11 11:12:23 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 months======

2013-01-29 15:53:43 ----D---- C:\Windows\Temp
2013-01-29 15:53:14 ----RD---- C:\Program Files
2013-01-29 15:53:14 ----D---- C:\Windows\Prefetch
2013-01-29 15:53:13 ----HD---- C:\ProgramData
2013-01-29 15:53:13 ----D---- C:\Windows\Tasks
2013-01-29 15:53:13 ----D---- C:\Windows\system32\Tasks
2013-01-29 15:51:41 ----RD---- C:\Program Files (x86)
2013-01-29 15:51:40 ----D---- C:\Windows\system32\drivers
2013-01-29 15:27:20 ----D---- C:\Windows\system32\config
2013-01-29 15:21:19 ----SHD---- C:\Windows\Installer
2013-01-28 18:03:17 ----A---- C:\Windows\win.ini
2013-01-28 15:22:55 ----D---- C:\Windows\SYSWOW64\drivers
2013-01-28 11:38:17 ----D---- C:\Windows\system32\DriverStore
2013-01-28 11:38:17 ----D---- C:\Windows\system32\catroot
2013-01-28 11:38:16 ----D---- C:\Windows\inf
2013-01-27 11:34:57 ----D---- C:\Windows\system
2013-01-27 11:29:06 ----D---- C:\Windows\System32
2013-01-27 11:29:03 ----D---- C:\Windows\SysWOW64
2013-01-27 10:21:01 ----D---- C:\Windows
2013-01-27 10:06:44 ----D---- C:\Windows\system32\wfp
2013-01-27 10:06:42 ----D---- C:\Windows\system32\wbem
2013-01-27 10:05:51 ----D---- C:\Windows\system32\CodeIntegrity
2013-01-27 10:05:51 ----D---- C:\Windows\system32\catroot2
2013-01-27 10:05:50 ----D---- C:\Windows\AppCompat
2013-01-27 10:05:40 ----D---- C:\Program Files (x86)\Windows Live
2013-01-27 10:05:28 ----D---- C:\Windows\registration
2013-01-27 10:05:19 ----D---- C:\Windows\Microsoft.NET
2013-01-27 10:05:15 ----RSD---- C:\Windows\assembly
2013-01-27 10:04:02 ----SD---- C:\ProgramData\Microsoft
2013-01-26 20:44:06 ----D---- C:\Windows\Panther
2013-01-26 20:44:06 ----D---- C:\Windows\Logs
2013-01-26 20:44:06 ----D---- C:\Windows\debug
2013-01-24 14:26:13 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-01-21 15:29:15 ----D---- C:\Program Files\Common Files
2013-01-21 15:22:02 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-01-21 15:21:47 ----D---- C:\Program Files (x86)\Common Files
2013-01-21 15:21:21 ----D---- C:\Windows\twain_32
2013-01-21 15:01:01 ----D---- C:\Windows\system32\FxsTmp
2013-01-20 10:52:34 ----D---- C:\Windows\system32\drivers\UMDF
2013-01-19 15:22:54 ----D---- C:\Windows\rescache
2013-01-16 11:17:45 ----D---- C:\Windows\winsxs
2013-01-16 11:15:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-01-16 11:15:18 ----D---- C:\Windows\system32\en-US
2013-01-15 11:55:55 ----D---- C:\Windows\SYSWOW64\oobe
2013-01-15 10:12:27 ----D---- C:\Windows\SYSWOW64\migration
2013-01-15 10:12:27 ----D---- C:\Windows\system32\migration
2013-01-15 10:12:24 ----D---- C:\Program Files\Internet Explorer
2013-01-15 10:12:24 ----D---- C:\Program Files (x86)\Internet Explorer
2013-01-15 10:12:23 ----D---- C:\Windows\AppPatch
2013-01-14 11:42:42 ----D---- C:\Program Files\Common Files\System
2013-01-14 11:42:41 ----RSD---- C:\Windows\Fonts
2013-01-14 11:42:41 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-01-14 11:42:41 ----D---- C:\Windows\system32\sk-SK
2013-01-14 11:42:41 ----D---- C:\Windows\system32\drivers\en-US
2013-01-14 11:42:41 ----D---- C:\Windows\ehome
2013-01-14 11:42:33 ----D---- C:\Windows\system32\Boot
2013-01-14 11:42:31 ----D---- C:\Program Files\Windows Journal
2013-01-14 10:25:10 ----D---- C:\Program Files\Windows Sidebar
2013-01-14 10:25:10 ----D---- C:\Program Files\Windows Mail
2013-01-14 10:25:10 ----D---- C:\Program Files\DVD Maker
2013-01-14 10:25:10 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-01-14 10:25:10 ----D---- C:\Program Files (x86)\Windows Portable Devices
2013-01-14 10:25:10 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-01-14 10:25:10 ----D---- C:\Program Files (x86)\Windows Media Player
2013-01-14 10:25:10 ----D---- C:\Program Files (x86)\Windows Mail
2013-01-14 10:25:07 ----D---- C:\Program Files\Windows Portable Devices
2013-01-14 10:25:07 ----D---- C:\Program Files\Windows Photo Viewer
2013-01-14 10:25:07 ----D---- C:\Program Files\Windows Media Player
2013-01-14 10:25:06 ----D---- C:\Windows\servicing
2013-01-14 10:25:06 ----D---- C:\Program Files\Windows Defender
2013-01-14 10:25:04 ----D---- C:\Windows\SYSWOW64\da-DK
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\wbem
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\sppui
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\Setup
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\migwiz
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\manifeststore
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\es-ES
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\en
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\Dism
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-01-14 10:25:02 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2013-01-14 10:24:52 ----D---- C:\Windows\system32\da-DK
2013-01-14 10:24:52 ----D---- C:\Windows\PolicyDefinitions
2013-01-14 10:24:51 ----D---- C:\Windows\system32\sppui
2013-01-14 10:24:51 ----D---- C:\Windows\system32\Setup
2013-01-14 10:24:51 ----D---- C:\Windows\system32\oobe
2013-01-14 10:24:51 ----D---- C:\Windows\system32\manifeststore
2013-01-14 10:24:51 ----D---- C:\Windows\system32\es-ES
2013-01-14 10:24:51 ----D---- C:\Windows\system32\cs-CZ
2013-01-14 10:24:51 ----D---- C:\Windows\system32\AdvancedInstallers
2013-01-14 10:24:50 ----D---- C:\Windows\system32\migwiz
2013-01-14 10:24:50 ----D---- C:\Windows\system32\Dism
2013-01-14 10:11:56 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2013-01-14 10:11:56 ----A---- C:\Windows\system32\msclmd.dll
2013-01-14 00:04:29 ----D---- C:\Windows\system32\LogFiles
2013-01-12 09:39:26 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-01-12 00:32:27 ----D---- C:\Windows\system32\wdi
2013-01-11 18:11:54 ----D---- C:\ProgramData\Adobe
2013-01-11 18:11:53 ----D---- C:\Program Files (x86)\Adobe
2013-01-11 17:51:42 ----D---- C:\ProgramData\McAfee
2013-01-11 15:07:43 ----D---- C:\ProgramData\Nero
2013-01-11 15:07:42 ----D---- C:\Program Files (x86)\Nero
2013-01-11 14:23:44 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-01-11 14:21:24 ----RD---- C:\Program Files (x86)\Skype
2013-01-11 14:06:53 ----D---- C:\ProgramData\Microsoft Help
2013-01-11 14:06:40 ----D---- C:\Program Files (x86)\Microsoft Office
2013-01-11 14:06:38 ----D---- C:\Program Files (x86)\Microsoft Works
2013-01-11 14:06:01 ----D---- C:\Windows\ShellNew
2013-01-11 12:57:26 ----D---- C:\Program Files (x86)\Bing Bar Installer
2013-01-11 12:46:45 ----D---- C:\Toshiba
2013-01-11 12:43:53 ----D---- C:\Windows\system32\restore
2013-01-11 12:43:34 ----RD---- C:\Users
2013-01-11 11:35:53 ----D---- C:\Windows\system32\sysprep
2013-01-11 11:35:29 ----D---- C:\Windows\SYSWOW64\sysprep
2013-01-11 11:34:59 ----D---- C:\Program Files\TOSHIBA
2013-01-11 11:34:29 ----D---- C:\Program Files (x86)\TOSHIBA
2013-01-11 11:32:39 ----D---- C:\Windows\Downloaded Installations
2013-01-11 11:31:50 ----D---- C:\ProgramData\TOSHIBA

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

Re: Problem z facebooku

Napsal: 29 led 2013 17:41
od brpo25
Tak na koniec som to musel dat az na 3 strany


R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2012-11-28 57904]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-14 26840]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2012-10-08 211344]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2012-10-08 149592]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2012-10-08 59440]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2012-10-08 189208]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\Windows\system32\DRIVERS\TVALZFL.sys [2009-06-19 14472]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-03-15 6403072]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-03-15 188928]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2010-01-18 717368]
R3 CnxtHdmiAudService;Conexant UAA HDMI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDMI64.sys [2010-03-05 720952]
R3 FwLnk;FwLnk Driver; C:\Windows\system32\DRIVERS\FwLnk.sys [2009-07-07 9216]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-02-22 75304]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\system32\DRIVERS\LEqdUsb.Sys [2012-09-18 78648]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; C:\Windows\system32\DRIVERS\LHidEqd.Sys [2012-09-18 15160]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2012-09-18 75064]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2012-09-18 61240]
R3 PGEffect;Pangu effect driver; C:\Windows\system32\DRIVERS\pgeffect.sys [2009-06-22 35008]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\Windows\system32\DRIVERS\rtl8192se.sys [2009-10-02 946688]
R3 SynTP;Synaptics Pointing Device Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-03-10 316464]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2009-07-30 27784]
S2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2008-05-20 60200]
S3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-03-15 6403072]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-02-01 232992]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-03-15 202752]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 cfWiMAXService;ConfigFree WiMAX Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200]
R2 ConfigFree Service;ConfigFree Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2012-11-26 1329304]
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [2006-12-19 94208]
R2 EpsonScanSvc;Epson Scanner Service; C:\Windows\system32\EscSvc64.exe [2011-12-12 135824]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2010-01-15 935208]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [2010-03-09 87344]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-14 3467768]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2009-11-05 489312]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\TECO\TecoService.exe [2010-03-17 258928]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-02-05 137560]
R3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2010-02-23 835952]
S2 AntiVirMailService;Avira AntiVir Premium MailGuard; C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\avmailc.exe []
S2 AntiVirService;Avira AntiVir Premium Guard; C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\avguard.exe []
S2 AntiVirScheduler;Avira AntiVir Premium Scheduler; C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\sched.exe []
S2 antivirwebservice;Avira AntiVir Premium WebGuard; C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\AVWEBGRD.EXE []
S2 AVEService;Avira AntiVir Premium MailGuard helper service; C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\avesvc.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-11 251400]
S3 AresChatServer;Ares Chatroom server; C:\Program Files (x86)\Ares\chatServer.exe [2007-03-20 263168]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-01-11 654848]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2012-10-01 359224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-01-18 115608]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-01-28 541608]
S3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO); C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2010-02-11 124368]
S3 TMachInfo;TMachInfo; C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2009-10-06 51512]

Re: Problem z facebooku

Napsal: 29 led 2013 19:55
od vyosek
Zdravim :)

:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Search
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen na systemovem disku jako AdwCleaner[R?].txt, ten sem vlozte

Re: Problem z facebooku

Napsal: 29 led 2013 20:28
od brpo25
Tu to je ;)

# AdwCleaner v2.109 - Logfile created 01/29/2013 at 20:27:22
# Updated 26/01/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Bagi - BAGINKOPC
# Boot Mode : Normal
# Running from : C:\Users\Bagi\Desktop\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

Folder Found : C:\Program Files (x86)\Ask.com
Folder Found : C:\Users\Bagi\AppData\Local\AskToolbar
Folder Found : C:\Users\Bagi\AppData\LocalLow\AskToolbar
Folder Found : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Found : HKCU\Software\APN
Key Found : HKCU\Software\AppDataLow\AskToolbarInfo
Key Found : HKCU\Software\AppDataLow\Software\AskToolbar
Key Found : HKCU\Software\Ask.com
Key Found : HKCU\Software\AskToolbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKLM\Software\APN
Key Found : HKLM\Software\AskToolbar
Key Found : HKLM\Software\AVG Secure Search
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Found : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Software
Key Found : HKU\S-1-5-21-977690576-51341005-2200270938-1001\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (sk)

File : C:\Users\Bagi\AppData\Roaming\Mozilla\Firefox\Profiles\gqgkga5l.default\prefs.js

[OK] File is clean.

-\\ Opera v12.12.1707.0

File : C:\Users\Bagi\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [4231 octets] - [29/01/2013 20:27:22]

########## EOF - C:\AdwCleaner[R1].txt - [4291 octets] ##########

Re: Problem z facebooku

Napsal: 29 led 2013 20:30
od vyosek
:arrow: Spustte znovu AdwCleaner
  • Pokud pouzivate Win Vista ci W7, kliknete na AdwCleaner pravym a dejte Run As Administrator ci Spustit jako spravce
  • Kliknete na Delete
  • PC provede opravu, restartuje se a da Vam log (C:\AdwCleaner [S1].txt) , jeho obsah vlozte sem

Re: Problem z facebooku

Napsal: 29 led 2013 20:38
od brpo25
# AdwCleaner v2.109 - Logfile created 01/29/2013 at 20:33:21
# Updated 26/01/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Bagi - BAGINKOPC
# Boot Mode : Normal
# Running from : C:\Users\Bagi\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Users\Bagi\AppData\Local\AskToolbar
Folder Deleted : C:\Users\Bagi\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\AskToolbarInfo
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\AskToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Software
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (sk)

File : C:\Users\Bagi\AppData\Roaming\Mozilla\Firefox\Profiles\gqgkga5l.default\prefs.js

[OK] File is clean.

-\\ Opera v12.12.1707.0

File : C:\Users\Bagi\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [4348 octets] - [29/01/2013 20:27:22]
AdwCleaner[S1].txt - [4223 octets] - [29/01/2013 20:33:21]

########## EOF - C:\AdwCleaner[S1].txt - [4283 octets] ##########

Re: Problem z facebooku

Napsal: 29 led 2013 20:39
od vyosek
:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
  • Zaskrtnete okenko Pro vsechny uzivatele
  • Zaskrtnete okenko Kontrola na havet "LOP"
  • Zaskrtnete okenko Kontrola na havet "Purity"
  • Stari souboru zmente z 30 dnu na 7 dnu
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s
  • Kliknete na tlacitko Prohledat
  • Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
  • Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

Re: Problem z facebooku

Napsal: 29 led 2013 21:12
od brpo25
OTL logfile created on: 29. 1. 2013 20:43:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Bagi\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

4,00 Gb Total Physical Memory | 2,53 Gb Available Physical Memory | 63,27% Memory free
7,99 Gb Paging File | 6,33 Gb Available in Paging File | 79,19% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,65 Gb Total Space | 176,56 Gb Free Space | 75,89% Space Free | Partition Type: NTFS
Drive D: | 232,72 Gb Total Space | 110,24 Gb Free Space | 47,37% Space Free | Partition Type: NTFS

Computer Name: BAGINKOPC | User Name: Bagi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2013/01/29 20:41:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Bagi\Desktop\OTL.exe
PRC - [2013/01/18 23:31:42 | 000,917,400 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013/01/11 14:32:07 | 001,808,392 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
PRC - [2012/12/14 10:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2012/12/14 10:17:03 | 009,876,472 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
PRC - [2012/12/14 10:08:24 | 000,190,968 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
PRC - [2012/11/26 13:34:12 | 001,329,304 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
PRC - [2010/03/25 14:39:22 | 000,490,280 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2010/03/09 02:25:28 | 000,087,344 | ---- | M] (Prolific Technology Inc.) -- C:\Windows\SysWOW64\IoctlSvc.exe
PRC - [2010/02/22 13:23:50 | 000,304,496 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
PRC - [2010/01/15 13:08:38 | 000,935,208 | ---- | M] (Nero AG) -- c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009/07/28 20:26:42 | 000,062,848 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
PRC - [2009/03/10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2006/12/19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe


========== Modules (No Company Name) ==========

MOD - [2013/01/18 23:31:40 | 003,022,232 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013/01/11 14:32:07 | 014,586,888 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/11/26 13:34:12 | 001,329,304 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2012/10/01 08:22:52 | 000,359,224 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2011/12/12 00:00:00 | 000,135,824 | ---- | M] (Seiko Epson Corporation) [Auto | Running] -- C:\Windows\SysNative\escsvc64.exe -- (EpsonScanSvc)
SRV:64bit: - [2010/03/17 16:00:44 | 000,258,928 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TECO\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV:64bit: - [2010/03/15 09:56:20 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010/02/23 17:57:42 | 000,835,952 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe -- (TPCHSrv)
SRV:64bit: - [2010/02/05 16:44:48 | 000,137,560 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe -- (TOSHIBA HDD SSD Alert Service)
SRV:64bit: - [2009/11/05 22:05:28 | 000,489,312 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV:64bit: - [2009/07/28 13:48:06 | 000,140,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)
SRV:64bit: - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/01/29 16:13:12 | 000,541,608 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/01/18 23:31:40 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/01/11 17:11:56 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2013/01/11 14:32:08 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/14 10:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2012/01/18 13:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2010/03/25 14:39:22 | 000,490,280 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/09 02:25:28 | 000,087,344 | ---- | M] (Prolific Technology Inc.) [Auto | Running] -- C:\Windows\SysWOW64\IoctlSvc.exe -- (PLFlash DeviceIoControl Service)
SRV - [2010/02/11 01:40:12 | 000,124,368 | ---- | M] (Toshiba Europe GmbH) [On_Demand | Stopped] -- C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe -- (TemproMonitoringService)
SRV - [2010/01/28 16:44:40 | 000,249,200 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe -- (cfWiMAXService)
SRV - [2010/01/15 13:08:38 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/10/06 09:21:50 | 000,051,512 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/03/10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)
SRV - [2007/03/20 02:19:14 | 000,263,168 | ---- | M] (Ares Development Group) [On_Demand | Stopped] -- C:\Program Files (x86)\Ares\chatServer.exe -- (AresChatServer)
SRV - [2006/12/19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe -- (EpsonBidirectionalService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/28 09:07:58 | 000,057,904 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64bit: - [2012/10/08 08:21:08 | 000,189,208 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64bit: - [2012/10/08 08:21:08 | 000,149,592 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2012/10/08 08:21:08 | 000,059,440 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF)
DRV:64bit: - [2012/10/08 08:21:06 | 000,211,344 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2012/09/18 10:32:32 | 000,078,648 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV:64bit: - [2012/09/18 10:32:32 | 000,075,064 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2012/09/18 10:32:32 | 000,061,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2012/09/18 10:32:32 | 000,015,160 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidEqd.sys -- (LHidEqd)
DRV:64bit: - [2012/03/01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/03/15 10:06:28 | 006,403,072 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2010/03/15 10:06:28 | 006,403,072 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/03/15 09:00:58 | 000,188,928 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/03/10 17:51:32 | 000,316,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/03/05 11:11:30 | 000,720,952 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDMI64.sys -- (CnxtHdmiAudService)
DRV:64bit: - [2010/02/22 18:03:42 | 000,075,304 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2010/02/01 09:29:48 | 000,232,992 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/01/18 17:45:50 | 000,717,368 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2009/10/02 13:33:48 | 000,946,688 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtl8192se.sys -- (rtl8192se)
DRV:64bit: - [2009/07/30 18:22:04 | 000,027,784 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV:64bit: - [2009/07/14 16:31:18 | 000,026,840 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)
DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/07 07:51:42 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FwLnk.sys -- (FwLnk)
DRV:64bit: - [2009/06/22 16:06:38 | 000,035,008 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\PGEffect.sys -- (PGEffect)
DRV:64bit: - [2009/06/20 03:09:57 | 001,394,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/06/19 19:15:22 | 000,014,472 | ---- | M] (TOSHIBA Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TVALZFL.sys -- (TVALZFL)
DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/05 09:00:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie)
DRV:64bit: - [2008/05/20 16:29:41 | 000,060,200 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{40DC0C61-2FE9-45B9-9FB8-5CD1D7AB61D0}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{80A76B38-C806-44C4-83B1-55A081C71588}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://toshiba.msn.com
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\..\SearchScopes\{6EF5356A-25CC-419E-B9B0-32581FD9F1CB}: "URL" = http://www.amazon.co.uk/gp/search?ie=UT ... nkCode=ur2
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\..\SearchScopes\{73892D99-BB51-4527-B492-B2837B155B59}: "URL" = http://rover.ebay.com/rover/1/710-71511 ... earchTerms}
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7BF003DA68-8256-4b37-A6C4-350FA04494DF%7D:6.5
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.13
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2013/01/28 11:36:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F003DA68-8256-4b37-A6C4-350FA04494DF}: C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013/01/11 17:29:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/18 23:31:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013/01/28 11:36:55 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/18 23:31:42 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2013/01/11 13:10:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bagi\AppData\Roaming\mozilla\Extensions
[2013/01/13 10:15:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bagi\AppData\Roaming\mozilla\Firefox\Profiles\gqgkga5l.default\extensions
[2013/01/13 10:15:00 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Bagi\AppData\Roaming\mozilla\Firefox\Profiles\gqgkga5l.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2013/01/18 23:31:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/01/11 17:29:26 | 000,000,000 | ---D | M] (Logitech SetPoint) -- C:\PROGRAM FILES\LOGITECH\SETPOINTP\LOGISMOOTHFIREFOXEXT
[2013/01/18 23:31:42 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013/01/05 18:19:10 | 000,001,583 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\atlas-sk.xml
[2013/01/05 18:19:10 | 000,001,380 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\azet-sk.xml
[2013/01/05 18:19:10 | 000,001,479 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\dunaj-sk.xml
[2013/01/05 18:19:10 | 000,001,473 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slovnik-sk.xml
[2013/01/05 18:19:10 | 000,001,104 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-sk.xml
[2013/01/05 18:19:10 | 000,000,830 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\zoznam-sk.xml

O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
O2 - BHO: (TOSHIBA Media Controller Plug-in) - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Logitech Download Assistant] C:\Windows\SysNative\LogiLDA.dll (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe ()
O4:64bit: - HKLM..\Run: [SmartFaceVWatcher] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatcher.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Toshiba Registration] C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe (Toshiba Europe GmbH)
O4:64bit: - HKLM..\Run: [Toshiba TEMPRO] C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe (Toshiba Europe GmbH)
O4:64bit: - HKLM..\Run: [TosNC] C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosReelTimeMonitor] C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir PersonalEdition Premium\avgnt.exe" /min File not found
O4 - HKLM..\Run: [NBAgent] C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TWebCamera] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe (TOSHIBA CORPORATION.)
O4 - HKU\.DEFAULT..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe (TOSHIBA)
O4 - HKU\S-1-5-18..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe (TOSHIBA)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-977690576-51341005-2200270938-1001..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-302 303 305 306 Series" File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - aavsda64.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - aavsda64.dll File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000013 - aavsda64.dll File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - %SystemRoot%\System32\winrnr.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - %SystemRoot%\System32\winrnr.dll File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FB5F08EC-70C3-4E17-AB61-FC63845FFA0B}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{f75c7e98-64bb-11e2-82ba-00266c613f7e}\Shell - "" = AutoRun
O33 - MountPoints2\{f75c7e98-64bb-11e2-82ba-00266c613f7e}\Shell\AutoRun\command - "" = F:\Setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point


Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2013/01/29 20:41:18 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Bagi\Desktop\OTL.exe
[2013/01/29 15:20:57 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Local\Avg2013
[2013/01/29 15:20:00 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/01/29 15:09:51 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013/01/29 15:09:51 | 000,000,000 | ---D | C] -- C:\rsit
[2013/01/28 15:22:47 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Roaming\Malwarebytes
[2013/01/28 15:22:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/01/28 15:22:24 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Local\Programs
[2013/01/28 11:49:54 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Roaming\SUPERAntiSpyware.com
[2013/01/28 11:45:46 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Roaming\ESET
[2013/01/28 11:45:46 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Local\ESET
[2013/01/28 11:36:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2013/01/28 11:36:41 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2013/01/28 11:36:40 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2013/01/28 10:27:57 | 023,544,264 | ---- | C] (SUPERAntiSpyware.com) -- C:\Users\Bagi\Desktop\SUPERAntiSpyware.exe
[2013/01/27 23:13:15 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG January 2013 Campaign
[2013/01/27 11:31:17 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Roaming\TuneUp Software
[2013/01/27 11:28:30 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2013/01/27 11:28:30 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Local\MFAData
[2013/01/27 11:28:30 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2013/01/26 17:03:30 | 000,000,000 | ---D | C] -- C:\Users\Bagi\Tracing
[2013/01/26 17:03:30 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2013/01/26 17:02:51 | 000,000,000 | ---D | C] -- C:\Users\Bagi\Local Settings
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2013/01/29 20:45:26 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/01/29 20:42:01 | 000,016,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/29 20:42:01 | 000,016,080 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/29 20:41:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Bagi\Desktop\OTL.exe
[2013/01/29 20:34:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/29 20:34:15 | 3217,211,392 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/29 20:07:03 | 000,580,235 | ---- | M] () -- C:\Users\Bagi\Desktop\adwcleaner.exe
[2013/01/29 19:53:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/29 15:09:27 | 000,832,273 | ---- | M] () -- C:\Users\Bagi\Desktop\RSITx64.exe
[2013/01/28 14:57:22 | 000,001,104 | ---- | M] () -- C:\Users\Bagi\AppData\Local\SRDownloader.nast
[2013/01/28 12:30:02 | 000,000,569 | ---- | M] () -- C:\Users\Bagi\AppData\Local\SRDownloader.err
[2013/01/28 10:33:24 | 023,544,264 | ---- | M] (SUPERAntiSpyware.com) -- C:\Users\Bagi\Desktop\SUPERAntiSpyware.exe
[2013/01/28 10:14:20 | 000,000,298 | ---- | M] () -- C:\Windows\tasks\ROC_REG_JAN_DELETE.job
[2013/01/24 14:26:13 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/01/24 14:26:13 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/01/24 14:26:13 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/01/29 20:45:26 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013/01/29 20:07:02 | 000,580,235 | ---- | C] () -- C:\Users\Bagi\Desktop\adwcleaner.exe
[2013/01/29 15:09:19 | 000,832,273 | ---- | C] () -- C:\Users\Bagi\Desktop\RSITx64.exe
[2013/01/28 12:16:16 | 000,001,104 | ---- | C] () -- C:\Users\Bagi\AppData\Local\SRDownloader.nast
[2013/01/28 12:15:23 | 000,000,569 | ---- | C] () -- C:\Users\Bagi\AppData\Local\SRDownloader.err
[2013/01/27 23:13:17 | 000,000,298 | ---- | C] () -- C:\Windows\tasks\ROC_REG_JAN_DELETE.job
[2013/01/11 21:59:03 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2013/01/11 11:35:55 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI
[2013/01/11 11:17:01 | 000,001,105 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/09/28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat

========== ZeroAccess Check ==========

[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/01/12 19:15:19 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO
[2013/01/26 23:26:38 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\DA859E
[2013/01/28 11:45:46 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\ESET
[2013/01/11 14:06:59 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\GHISLER
[2013/01/11 17:29:52 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Leadertech
[2013/01/14 11:51:02 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\mp3DirectCut
[2013/01/11 14:29:09 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\OpenOffice.org
[2013/01/11 13:12:23 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Opera
[2013/01/11 16:34:52 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Publish Providers
[2013/01/11 16:34:39 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Sony
[2013/01/11 12:59:19 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Toshiba
[2013/01/27 11:31:17 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\TuneUp Software
[2013/01/12 15:56:31 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\WinBatch

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009/07/14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 06:08:49 | 000,013,786 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013/01/11 14:32:08 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/01/27 23:13:17 | 000,000,298 | ---- | C] () -- C:\Windows\Tasks\ROC_REG_JAN_DELETE.job

< >

< MD5 for: ATAPI.SYS >
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010/11/20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010/11/20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2009/07/14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009/07/14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
[2010/11/20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010/11/20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009/07/14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010/11/20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010/11/20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010/11/20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011/02/26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011/02/26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011/02/26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011/02/25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/02/25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009/08/03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009/10/31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009/08/03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010/11/20 14:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009/10/31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009/08/03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011/02/26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009/08/03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009/07/14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
[2010/11/20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010/11/20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: SCECLI.DLL >
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010/11/20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010/11/20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SERVICES.EXE >
[2009/07/14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2012/10/03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\SysNative\drivers\tcpip.sys
[2012/10/03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2010/11/20 14:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2012/03/30 11:19:17 | 001,877,872 | ---- | M] (Microsoft Corporation) MD5=5EFD096DEF47F8B88EF591DA92143440 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_0faa5514992a39a7\tcpip.sys
[2012/03/30 12:09:53 | 001,895,280 | ---- | M] (Microsoft Corporation) MD5=624C5B3AA4C99B3184BB922D9ECE3FF0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_0f140fa780164fde\tcpip.sys
[2012/08/22 19:06:13 | 001,901,936 | ---- | M] (Microsoft Corporation) MD5=7880A26B7D3B96FDA8EFD9F985036B1D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_117a13de9661c145\tcpip.sys
[2012/03/30 11:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2009/07/14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2012/03/30 12:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2012/10/03 18:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2012/08/22 19:12:50 | 001,913,200 | ---- | M] (Microsoft Corporation) MD5=F782CAD3CEDBB3F9FFE3BF2775D92DDC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_113380f37d117668\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010/11/20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009/07/14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009/10/28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[5 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[2 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013/01/12 22:59:48 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Adobe
[2013/01/11 12:47:36 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\ATI
[2013/01/12 19:15:19 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO
[2013/01/26 23:26:38 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\DA859E
[2013/01/28 11:45:46 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\ESET
[2013/01/11 14:06:59 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\GHISLER
[2013/01/11 12:46:53 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Identities
[2013/01/21 15:21:47 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\InstallShield
[2013/01/11 17:29:52 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Leadertech
[2013/01/11 17:29:10 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Logishrd
[2013/01/11 17:30:03 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Logitech
[2010/04/15 07:20:04 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Macromedia
[2013/01/28 15:22:47 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Malwarebytes
[2009/07/14 08:54:32 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Media Center Programs
[2013/01/27 10:05:11 | 000,000,000 | --SD | M] -- C:\Users\Bagi\AppData\Roaming\Microsoft
[2013/01/11 13:10:23 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Mozilla
[2013/01/14 11:51:02 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\mp3DirectCut
[2013/01/11 15:10:42 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Nero
[2013/01/11 14:29:09 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\OpenOffice.org
[2013/01/11 13:12:23 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Opera
[2013/01/11 16:34:52 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Publish Providers
[2013/01/29 20:27:09 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Skype
[2013/01/29 20:06:47 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\skypePM
[2013/01/11 16:34:39 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Sony
[2013/01/28 11:49:54 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\SUPERAntiSpyware.com
[2013/01/11 12:59:19 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\Toshiba
[2013/01/27 11:31:17 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\TuneUp Software
[2013/01/12 15:56:31 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\WinBatch
[2013/01/11 16:09:56 | 000,000,000 | ---D | M] -- C:\Users\Bagi\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2009/08/11 21:21:26 | 000,087,552 | ---- | M] () -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO\AC3 Filter\ac3config.exe
[2009/08/11 21:21:30 | 000,090,112 | ---- | M] () -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO\AC3 Filter\spdif_test.exe
[2010/03/22 14:52:04 | 000,697,690 | ---- | M] () -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO\AC3 Filter\unins000.exe
[2012/10/11 09:01:20 | 001,175,371 | ---- | M] () -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO\FFDShow\unins000.exe
[2010/08/14 10:42:54 | 000,113,152 | ---- | M] () -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO\Haali media splitter\dsmux.exe
[2010/08/14 10:45:10 | 000,358,400 | ---- | M] () -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO\Haali media splitter\gdsmux.exe
[2010/08/14 10:42:06 | 000,137,728 | ---- | M] () -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO\Haali media splitter\mkv2vfr.exe
[2010/09/30 15:30:22 | 000,042,305 | ---- | M] () -- C:\Users\Bagi\AppData\Roaming\BSplayer PRO\Haali media splitter\uninstall.exe
[2010/02/01 01:45:40 | 000,038,784 | ---- | M] () -- C:\Users\Bagi\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2013/01/11 17:29:51 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Bagi\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2013/01/29 20:53:00 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/01/28 10:14:20 | 000,000,298 | ---- | M] () -- C:\Windows\Tasks\ROC_REG_JAN_DELETE.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"EPLTarget\P0000000000000000" = C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-302 303 305 306 Series"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2013/01/18 23:31:42 | 000,917,400 | ---- | M] (Mozilla Corporation) MD5=D7826A7440444F40E0406CF37FD2FA88 -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2010/11/20 13:22:51 | 000,673,040 | ---- | M] (Microsoft Corporation) MD5=C613E69C3B191BB02C7A191741A1D024 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2013/01/11 13:12:00 | 000,879,080 | ---- | M] (Opera Software) MD5=3A783497492D685E5F8D61FE06F4FE5A -- C:\Program Files (x86)\Opera\opera.exe

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013/01/29 20:45:26 | 000,000,512 | ---- | M] () MD5=0446FD239D09D78B543C148748BB4086 -- C:\PhysicalMBR.bin
[1 C:\*.tmp files -> C:\*.tmp -> ]

< >

< *crack* /s >
[2013/01/28 12:02:19 | 000,000,687 | ---- | M] () -- \Users\Bagi\AppData\Roaming\Microsoft\Windows\Recent\Kaspersky cz 2011+crack v1.53.lnk

< *keygen* /s >

< *loader* /s >
[2007/03/14 19:21:36 | 004,937,904 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\Photodownloader.exe
[2007/03/14 17:07:28 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\de_de\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\en_us\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\es_es\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\it_it\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\no_no\Photodownloader.ini
[2007/03/14 17:07:28 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2007/03/14 17:07:30 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2007/03/14 17:07:30 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2007/03/14 17:07:30 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS3\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2007/03/14 17:10:18 | 000,088,333 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ar_AE\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:20 | 000,025,188 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\cs_CZ\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:26 | 000,032,022 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\da_DK\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:28 | 000,032,216 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\de_DE\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:30 | 000,027,655 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\el_GR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:36 | 000,030,891 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\en_US\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:38 | 000,032,399 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\es_ES\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:42 | 000,032,333 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\fi_FI\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:42 | 000,032,393 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\fr_FR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:46 | 000,022,871 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\he_IL\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:48 | 000,025,272 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\hu_HU\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:50 | 000,032,109 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\it_IT\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:50 | 000,032,441 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ja_JP\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:52 | 000,032,499 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ko_KR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:54 | 000,032,074 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\nb_NO\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:56 | 000,032,110 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\nl_NL\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:10:58 | 000,024,996 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\pl_PL\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:00 | 000,031,772 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\pt_BR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:02 | 000,024,463 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ro_RO\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:04 | 000,025,054 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ru_RU\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:06 | 000,032,171 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\sv_SE\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:06 | 000,024,411 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\tr_TR\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:08 | 000,025,525 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\uk_UA\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:10 | 000,032,741 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\zh_CN\Bridge\2.0\images\br_photo_downloader.png
[2007/03/14 17:11:10 | 000,032,833 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\zh_TW\Bridge\2.0\images\br_photo_downloader.png
[2007/03/08 16:35:32 | 000,004,239 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Startup Scripts CS3\Adobe Version Cue\VersionCueSDKLoader.jsx
[2012/08/13 10:52:58 | 000,006,081 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.py
[2012/08/10 16:50:58 | 000,020,992 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2012/08/13 11:04:18 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2012/08/10 16:50:54 | 000,029,696 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2012/08/13 10:12:36 | 000,003,868 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\java\unoloader.jar
[2013/01/14 14:25:58 | 000,001,702 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\licenses\loaderbinarylegal.txt
[2006/12/23 17:37:56 | 000,044,032 | ---- | M] () -- \Program Files (x86)\WinRAR\RarExtLoader.exe
[2010/03/15 12:33:54 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2010/01/15 13:09:08 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2010/03/15 12:33:54 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2010/01/15 13:09:08 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013/01/28 12:30:02 | 000,000,569 | ---- | M] () -- \Users\Bagi\AppData\Local\SRDownloader.err
[2013/01/28 14:57:22 | 000,001,104 | ---- | M] () -- \Users\Bagi\AppData\Local\SRDownloader.nast
[2013/01/21 22:51:49 | 000,000,966 | ---- | M] () -- \Users\Bagi\AppData\Roaming\Microsoft\Windows\Recent\Nebezpecna.korist.2011.DVDRip.cz.by.Delfin.of.PowerUploaders.lnk
[2013/01/29 20:41:35 | 000,024,712 | ---- | M] () -- \Windows\Prefetch\RAREXTLOADER.EXE-8405D981.pf
[2012/11/30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2012/11/30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009/07/14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009/07/14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:28:57 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_66dcd6a595588d81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:41:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_66b5981d957562a1\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:26:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_67667556ae762a72\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:36:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_67316604ae9dcf7e\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:38:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:38:44 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 08:44:39 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009/07/14 08:44:39 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.efi.mui_35ee487d
[2009/07/14 08:44:39 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.exe.mui_3bc5b827
[2009/07/14 08:44:39 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.efi.mui_f412814e
[2009/07/14 08:44:39 | 000,029,760 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.exe.mui_ff8b5358
[2013/01/14 10:46:05 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2013/01/14 10:46:05 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2013/01/14 10:46:05 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2013/01/14 10:46:05 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2013/01/14 10:46:05 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009/07/14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009/07/14 08:43:41 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009/07/14 03:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011/02/05 14:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011/02/05 14:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2010/11/20 06:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011/02/05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011/02/05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009/07/14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 17:45:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:56:23 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 17:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 17:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:888AFB86

< End of report >

Re: Problem z facebooku

Napsal: 29 led 2013 21:13
od brpo25
Extras

OTL Extras logfile created on: 29. 1. 2013 20:43:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Bagi\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

4,00 Gb Total Physical Memory | 2,53 Gb Available Physical Memory | 63,27% Memory free
7,99 Gb Paging File | 6,33 Gb Available in Paging File | 79,19% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,65 Gb Total Space | 176,56 Gb Free Space | 75,89% Space Free | Partition Type: NTFS
Drive D: | 232,72 Gb Total Space | 110,24 Gb Free Space | 47,37% Space Free | Partition Type: NTFS

Computer Name: BAGINKOPC | User Name: Bagi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0BF1AFDA-C171-4FB9-91FF-2ABB3E0E2A0B}" = rport=137 | protocol=17 | dir=out | app=system |
"{1AC3A81C-E5B5-452E-97EA-9C90A3604EEE}" = rport=138 | protocol=17 | dir=out | app=system |
"{1D1927F3-2E4B-4B5A-9579-42EF572769E1}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4F9078DD-49AC-4265-9D84-1A960E18BB4E}" = lport=10243 | protocol=6 | dir=in | app=system |
"{5A34F018-1654-4EA5-8FCA-9D3268FE6384}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{711DAA0C-9E65-4C88-80B3-BCE14825B583}" = lport=2869 | protocol=6 | dir=in | app=system |
"{778AC14B-BF41-4CFA-B9EF-E2E6EEAD8F9F}" = lport=138 | protocol=17 | dir=in | app=system |
"{83CCC683-EE02-4F60-86C2-7D16E47EEEA4}" = lport=2869 | protocol=6 | dir=in | app=system |
"{8A36F7FD-518A-46D0-B748-BD3074380EFA}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9996FF19-1823-4DC2-8ABA-7156883298D7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{AA1847A1-BB53-488F-8C4F-BEE2627BAC93}" = lport=139 | protocol=6 | dir=in | app=system |
"{B560CEFB-89C8-4D40-832A-71A0F317A4CE}" = lport=137 | protocol=17 | dir=in | app=system |
"{BF22D421-4EDD-4DD2-89BA-68B776A0E676}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C2B06FEC-E33D-4A0C-8086-F59C8C683BA2}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C36F8625-E357-4BF9-B489-6ED90841B1D7}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CAC12D13-4F84-4E77-BA94-7D2BF8FC3B52}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CB151E15-3F2D-4D38-8A6B-A647724A9CF6}" = lport=445 | protocol=6 | dir=in | app=system |
"{DB461A4A-9DEA-4084-86FE-EA01F15EC8F5}" = rport=445 | protocol=6 | dir=out | app=system |
"{E5790805-0BD7-4E3E-B43D-8424E64AEA7B}" = rport=10243 | protocol=6 | dir=out | app=system |
"{EC64D7BD-A0E9-4DCD-B9F3-47A0DD7BD43E}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F5067F8E-0DF9-4174-BC52-CC15A1B10CAD}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F7BC6D1D-7C2E-4960-8F23-2518A1AAAAF3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{FCB9A579-352E-4F46-BF51-0C3200A4E635}" = rport=139 | protocol=6 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{034AE7B4-4CA1-40B8-8271-C04BC339FEE8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{05C7C7D1-FC33-49AC-816B-2B6D4BE0769A}" = protocol=6 | dir=out | app=system |
"{09A69590-00CC-44ED-9760-EAB5240693C2}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\allyster\counter-strike\hl.exe |
"{155E5153-1F28-4070-B310-C1D4F207C20A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{185FD9FE-20C5-4721-AB59-2919A893F5B7}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{21F27D84-B68C-45D8-9B3A-394C1D536443}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{24216084-E678-49B1-B00C-B82145667B9B}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{2B4DC2FF-E5D7-470F-8583-9C7B0D7440CB}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{2C1C36AE-BF82-431C-9443-E1066F476695}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{2C940A6D-A286-4659-9C6D-2112BFF1A17B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{2F4108AB-5C77-4013-B12F-747F2B7C6AC2}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{32F2EE5E-D1C8-4DD4-814C-11514FA6E025}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{367D7A75-D729-42ED-A90E-A919BD1A26D5}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{37E70783-B876-46CB-9034-39BA49176CD1}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3A6C4B68-6AB8-4E1D-8745-679CAE857892}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{3B058F3E-8542-4A42-97CA-9345F88E5203}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{3B9DC67C-2050-420A-A76C-3BA82F903203}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{3D16F726-15AC-429D-ADA0-051393EB35AF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\district 187\marblestation\glbmslauncher.exe |
"{46276132-EF2E-4311-991A-FD2DC8583D66}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{47CA0FA9-F24E-42C5-B7A2-34B54EB82C7D}" = protocol=17 | dir=in | app=c:\users\bagi\appdata\local\temp\epson xp-302 303 305 306 series_home\network\epsonnetsetup\data\eneasyapp.exe |
"{55B81CED-BE50-4229-81F0-7A3484CEC83C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\age of empires online\aoeonline.exe |
"{5855B484-790F-4D2A-BF4E-7211AC730793}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{589E62C8-DCD6-4F9A-91DD-F485799AFFC9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\age of empires online\aoeonline.exe |
"{6E0128B8-68FC-4E99-A5CD-70193DC33270}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7B6AE7A1-3438-4BD0-ACE4-5405A9D37EAC}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{7F0337EF-F50C-4979-894B-76D3D2E2CED2}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{82D4343E-3B74-47B4-B916-7D999F2B3D18}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{8D5EA589-5231-4717-92AA-BBE1467CE842}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{8E1C27EA-8B06-4352-B380-268B0A41AABD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8E2F8597-FEF7-4E76-AB9D-11C586AECC99}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\allyster\counter-strike\hl.exe |
"{907B1F89-FE54-4D6A-A80E-8880C8F3224A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A1AAE0BB-E2DC-44FB-8334-C98AF7AA17B6}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{A1AE39DA-4ABA-44EC-9954-6AE4926E8277}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B2E2F7A9-42A6-4887-9FD5-1F6E14E55F76}" = protocol=6 | dir=in | app=c:\users\bagi\appdata\local\temp\epson xp-302 303 305 306 series_home\network\epsonnetsetup\data\eneasyapp.exe |
"{B4C5C0EB-5770-4A07-9B97-CF46EA43BD7E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BFFBBC30-090D-4392-AE4D-E9033195AC18}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{C6EF8DFF-A27C-4B49-B647-351941AE76F1}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{CC38FC3E-24EE-4A0D-8962-BEEF18FE8A14}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{D3F3FBCF-8A6D-4363-9B56-6DAB8AAFBCE4}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{D6EB0C9B-024A-413F-B9A3-BA868F118C6A}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{DC68A288-E119-4882-A666-74EF95D07696}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\district 187\marblestation\glbmslauncher.exe |
"{E332A3DF-C87F-481D-8A16-35AB072F442E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{E6614895-223F-484F-B705-06BD89DDA64F}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{E88048DD-6099-48D4-A9B7-E521B6BFC0DD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{EC9BB2F6-C137-4A33-A697-A2EC18CAA4FF}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{F0069DA4-0855-491F-8AE5-BC694849DA34}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{3F8FB4B4-AF83-4839-B28A-F5F56B786E7D}C:\program files (x86)\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ares\ares.exe |
"TCP Query User{80CDFC18-F425-4F14-8916-F0AA749FDAB5}C:\program files (x86)\steam\steamapps\common\age of empires online\spartan.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\age of empires online\spartan.exe |
"UDP Query User{9AB2F1AC-4CF4-4740-A35B-438BBAFACC3C}C:\program files (x86)\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ares\ares.exe |
"UDP Query User{B1E1B2A7-DF65-4B98-840F-6B7FCBEFA5C4}C:\program files (x86)\steam\steamapps\common\age of empires online\spartan.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\age of empires online\spartan.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{21E2A283-1416-AF26-6DA1-92FDE02224EB}" = ccc-utility64
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{562648B4-B1F7-4DDE-A953-DDB4844002E6}" = ESET Smart Security
"{5792CD64-61B4-C448-0D22-3C51DD73AB2A}" = ATI Catalyst Install Manager
"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}" = TOSHIBA PC Health Monitor
"{A0E99122-25C1-4CA4-9063-499A2A814EB6}" = TOSHIBA ReelTime
"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Media Creator
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{C14518AF-1A0F-4D39-8011-69BAA01CD380}" = TOSHIBA Bulletin Board
"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert
"{E65C7D8E-186D-484B-BEA8-DEF0331CE600}" = TRORMCLauncher
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition
"CNXT_AUDIO_HDA" = Conexant HD Audio
"CNXT_AUDIO_HDA_HDMI" = Conexant Audio Driver For AMD HDMI Codec
"EPSON XP-302 303 305 306 Series" = Odinštalovať tlačiareň EPSON XP-302 303 305 306 Series
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"sp6" = Logitech SetPoint 6.51
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{02950E10-1AA3-DF62-FED5-42CBD4ADC5C1}" = CCC Help Dutch
"{0420F95C-11FF-4E02-B967-6CC22B188F9F}" = Nero BackItUp
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"{073B89C3-BA88-41B5-965F-B35A88EAE838}" = TOSHIBA Supervisor Password
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{118F5964-DA03-7B46-BDEA-7C3FA203D293}" = CCC Help Spanish
"{1246FF64-3035-4A92-8FE6-A968275495EB}" = Sony Vegas Pro 8.0
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1B87C40B-A60B-4EF3-9A68-706CF4B69978}" = Toshiba Assist
"{1CF51B76-7485-410C-D06D-23D1060974D3}" = Catalyst Control Center Core Implementation
"{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}" = OpenOffice.org 3.4.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}" = Nero MediaHub 10
"{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}" = Nero InfoTool Help
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Odovzdávací nástroj lokality Windows Live
"{21759FAC-AE5F-F171-EB4C-D2FBF66EDD04}" = CCC Help Czech
"{219B4856-468A-F0BB-8249-E630AD4E86C2}" = ccc-core-static
"{2290A680-4083-410A-ADCC-7092C67FC052}" = TOSHIBA Online Product Information
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2348B586-C9AE-46CE-936C-A68E9426E214}" = Nero StartSmart Help
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback 10
"{23EA31D7-28CD-F7B3-024C-6EB784F1BC79}" = CCC Help Russian
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10
"{27F5A864-A816-471D-91A4-5CD39305AA23}" = Windows Live Fotogaléria
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2B000B80-A3FA-4B92-A5FF-D9AD402B6701}" = Toshiba TEMPRO
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10
"{3669F19D-D7C2-3240-C4EC-A57DECC124FC}" = CCC Help Japanese
"{38A0161D-7CD3-51AD-0ACB-F46DD34D2FF6}" = CCC Help Greek
"{39670BCD-6300-21D8-78A4-ECD68D0C4D95}" = CCC Help Chinese Standard
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{46A46830-50AA-3326-7A57-72BB03E6B3EC}" = CCC Help Hungarian
"{47984ADB-54E9-BE8F-E39F-8B1FAAD4B192}" = CCC Help Polish
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{5570C266-C606-85BC-6E23-C858566E02DB}" = CCC Help Swedish
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5E620377-939F-3E6B-F328-4A69D9CA0D1B}" = CCC Help French
"{5E6F6CF3-BACC-4144-868C-E14622C658F3}" = TOSHIBA Web Camera Application
"{607BE7BF-7C28-4ADB-A4A0-385962B901C3}" = TOSHIBA ConfigFree
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{65F5F454-0029-045D-82ED-126F650B5C8F}" = Catalyst Control Center Graphics Previews Vista
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{67114EC2-5C83-4FE9-A1EF-358459AB3640}" = Windows Live Mail
"{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6b83845a-d88e-4e1d-b53d-4217b8509cca}" = Nero 9 Essentials
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{773970F1-5EBA-4474-ADEE-1EA3B0A59492}" = TOSHIBA Recovery Media Creator Reminder
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{77E927C4-C603-4E77-8E4E-5EEAD58EBF41}" = Windows Live Messenger
"{7829DB6F-A066-4E40-8912-CB07887C20BB}" = Nero BurnRights
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{83202942-84B3-4C50-8622-B8C0AA2D2885}" = Nero Express Help
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{836775DC-DC27-BC0C-7770-68E2591F6CC6}" = CCC Help Norwegian
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86236CB1-023D-82B2-A706-74ECFFA91A8E}" = Catalyst Control Center Graphics Previews Common
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B4BD0EF-A058-3F42-0AD8-763267A735D0}" = Catalyst Control Center Graphics Full New
"{8BD785CF-30C7-4182-B250-0D5FCE78D4DD}" = Catalyst Control Center - Branding
"{8BE504E9-0677-87AC-07D2-1A1428E17A92}" = Catalyst Control Center InstallProxy
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8E9CEA3B-EBD1-439C-A01D-830CB39613C6}" = TOSHIBA Hardware Setup
"{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}" = Toshiba Manuals
"{91D25D3C-A6D8-78D4-CDE7-F70B93389A03}" = CCC Help Italian
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{983CD6FE-8320-4B80-A8F6-0D0366E0AA22}" = TOSHIBA Media Controller
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9CD5AC28-04E5-07A5-100D-953D2B3A8747}" = Catalyst Control Center Graphics Full Existing
"{9DA0961E-FCFE-EEF2-04AA-32631F7CEC9E}" = Photo Service - powered by myphotobook
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A74F16FA-1D5B-405B-8D8D-1BC6F9DAED8B}" = Amazon.co.uk
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC6569FA-6919-442A-8552-073BE69E247A}" = TOSHIBA Service Station
"{AC76BA86-7AD7-1051-7B44-A95000000001}" = Adobe Reader 9.5.3 - Slovak
"{AD8D84C3-D43A-776D-E4A8-2A4433BCBD32}" = CCC Help Korean
"{B0402CE4-783A-773C-239B-FF45BDFB400E}" = Catalyst Control Center Localization All
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B32B60B9-C31B-3193-257A-2381305A0851}" = CCC Help German
"{B3B66630-DA7C-BD66-DFA4-F37AC82873EE}" = CCC Help Danish
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility
"{B536CA63-8BB3-4027-A495-84DD9FED17EC}" = Windows Live Sync
"{B8615768-6D66-5E53-C4E1-6F7EC8D9BFFE}" = CCC Help English
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BEC7BDC8-7A83-4312-9340-1ECDF06C1434}" = Microsoft Works
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C289841E-5B5F-0198-F3FF-CB361D007DA3}" = CCC Help Thai
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C7BC4EBB-D88F-019D-8ED0-F42F89096B18}" = CCC Help Turkish
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{CC019E3F-59D2-4486-8D4B-878105B62A71}" = Nero DiscSpeed Help
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240BA}" = WinZip 14.0
"{CFEAF8DD-4BDF-4141-BF2B-02BCA2DEB7FB}" = Windows Live Writer
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D10D079D-EFDA-9601-98F8-F935A2A411A0}" = CCC Help Chinese Traditional
"{D18EA546-0279-4EF5-816D-C2333E61A7F0}" = Windows Live Movie Maker
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DFD723B7-1762-73EC-32BC-A7D9E838808D}" = Catalyst Control Center Graphics Light
"{E08CC458-41FB-4BB5-9B08-2C83DB55A5B9}" = Nero BackItUp and Burn
"{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10
"{E5C7D048-F9B4-4219-B323-8BDB01A2563D}" = Nero DriveSpeed Help
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E819AA87-4215-D35A-6872-BF97C32A9DB3}" = CCC Help Finnish
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10
"{EE092FB2-4B8D-4C02-AEDA-D8DE697F7794}" = Windows Live Essentials
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.115
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}" = TOSHIBA Media Controller Plug-in
"{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}" = Nero ControlCenter
"{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10
"{F6BDD7C5-89ED-4569-9318-469AA9732572}" = Nero BurnRights Help
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10
"{FD1F254C-48B2-A188-0127-03855BA15D16}" = CCC Help Portuguese
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3
"Ares" = Ares 2.0.9
"BSPlayerp" = BS.Player PRO
"EPSON Scanner" = EPSON Scan
"eu.myphotobook.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1" = Photo Service - powered by myphotobook
"InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}" = TOSHIBA Recovery Media Creator Reminder
"InstallShield_{A0E99122-25C1-4CA4-9063-499A2A814EB6}" = TOSHIBA ReelTime
"InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility
"InstallShield_{C14518AF-1A0F-4D39-8011-69BAA01CD380}" = TOSHIBA Bulletin Board
"InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert
"InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}" = TRORMCLauncher
"InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition
"Mozilla Firefox 18.0.1 (x86 sk)" = Mozilla Firefox 18.0.1 (x86 sk)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 12.12.1707" = Opera 12.12
"Picasa 3" = Picasa 3
"Steam App 10" = Counter-Strike
"Steam App 105430" = Age of Empires Online
"Steam App 221080" = District 187
"TeamViewer 8" = TeamViewer 8
"Totalcmd" = Total Commander (Remove or Repair)
"Update Engine" = Sony Ericsson Update Engine
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 14. 1. 2013 6:43:17 | Computer Name = BaginkoPC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: avesvc.exe, verzia: 8.0.2.0, časová značka:
0x482425cb Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód
výnimky: 0xc0000005 Odstup chyby: 0x74b06cdc Identifikácia chybného procesu: 0x574
Čas
spustenia chybnej aplikácie: 0x01cdf2398c0cc656 Cesta chybnej aplikácie: C:\Program
Files (x86)\Avira\AntiVir PersonalEdition Premium\avesvc.exe Cesta chybného modulu:
unknown Identifikácia hlásenia: 33fd6740-5e37-11e2-8885-00266c613f7e

Error - 14. 1. 2013 6:43:17 | Computer Name = BaginkoPC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: mDNSResponder.exe, verzia: 1.0.3.1, časová
značka: 0x4404b5bc Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka:
0x00000000 Kód výnimky: 0xc0000005 Odstup chyby: 0x74b06cdc Identifikácia chybného
procesu: 0x58c Čas spustenia chybnej aplikácie: 0x01cdf2398c13ea77 Cesta chybnej
aplikácie: C:\Program Files (x86)\Bonjour\mDNSResponder.exe Cesta chybného modulu:
unknown Identifikácia hlásenia: 3431c586-5e37-11e2-8885-00266c613f7e

Error - 14. 1. 2013 6:43:18 | Computer Name = BaginkoPC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: NBService.exe, verzia: 4.2.3.100, časová
značka: 0x4a8c0725 Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka:
0x00000000 Kód výnimky: 0xc0000005 Odstup chyby: 0x74b06cdc Identifikácia chybného
procesu: 0x5c8 Čas spustenia chybnej aplikácie: 0x01cdf2398c7ca703 Cesta chybnej
aplikácie: c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
Cesta
chybného modulu: unknown Identifikácia hlásenia: 34720aae-5e37-11e2-8885-00266c613f7e

Error - 14. 1. 2013 6:43:19 | Computer Name = BaginkoPC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: IoctlSvc.exe, verzia: 1.6.0.0, časová značka:
0x4566bcf9 Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód
výnimky: 0xc0000005 Odstup chyby: 0x74b06cdc Identifikácia chybného procesu: 0x638
Čas
spustenia chybnej aplikácie: 0x01cdf2398d6ab09e Cesta chybnej aplikácie: C:\Windows\SysWOW64\IoctlSvc.exe
Cesta
chybného modulu: unknown Identifikácia hlásenia: 3513e840-5e37-11e2-8885-00266c613f7e

Error - 14. 1. 2013 6:43:21 | Computer Name = BaginkoPC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: TeamViewer_Service.exe, verzia: 8.0.16642.0,
časová značka: 0x50caed42 Názov chybového modulu: unknown, verzia: 0.0.0.0, časová
značka: 0x00000000 Kód výnimky: 0xc0000005 Odstup chyby: 0x74b06cdc Identifikácia
chybného procesu: 0x658 Čas spustenia chybnej aplikácie: 0x01cdf2398da3d1a5 Cesta
chybnej aplikácie: C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
Cesta
chybného modulu: unknown Identifikácia hlásenia: 36a3cf6e-5e37-11e2-8885-00266c613f7e

Error - 14. 1. 2013 6:43:22 | Computer Name = BaginkoPC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: CFSvcs.exe, verzia: 7.0.1.8, časová značka:
0x49b0df90 Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód
výnimky: 0xc0000005 Odstup chyby: 0x74b06cdc Identifikácia chybného procesu: 0xb24
Čas
spustenia chybnej aplikácie: 0x01cdf239eb7a90de Cesta chybnej aplikácie: C:\Program
Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe Cesta chybného modulu: unknown Identifikácia
hlásenia: 37434ba0-5e37-11e2-8885-00266c613f7e

Error - 14. 1. 2013 6:43:24 | Computer Name = BaginkoPC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: NASvc.exe, verzia: 1.0.17.0, časová značka:
0x4bab674f Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód
výnimky: 0xc0000005 Odstup chyby: 0x74b06cdc Identifikácia chybného procesu: 0x7a8
Čas
spustenia chybnej aplikácie: 0x01cdf239f4fb4f34 Cesta chybnej aplikácie: C:\Program
Files (x86)\Nero\Update\NASvc.exe Cesta chybného modulu: unknown Identifikácia hlásenia:
387fe2a4-5e37-11e2-8885-00266c613f7e

Error - 14. 1. 2013 6:43:26 | Computer Name = BaginkoPC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: NBService.exe, verzia: 4.2.3.100, časová
značka: 0x4a8c0725 Názov chybového modulu: unknown, verzia: 0.0.0.0, časová značka:
0x00000000 Kód výnimky: 0xc0000005 Odstup chyby: 0x74b06cdc Identifikácia chybného
procesu: 0x1264 Čas spustenia chybnej aplikácie: 0x01cdf243f7b5eac9 Cesta chybnej
aplikácie: c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
Cesta
chybného modulu: unknown Identifikácia hlásenia: 3998c504-5e37-11e2-8885-00266c613f7e

Error - 14. 1. 2013 6:43:26 | Computer Name = BaginkoPC | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: TeamViewer_Service.exe, verzia: 8.0.16642.0,
časová značka: 0x50caed42 Názov chybového modulu: kernel32.dll_unloaded, verzia:
0.0.0.0, časová značka: 0x50b83c89 Kód výnimky: 0xc0000005 Odstup chyby: 0x74a87717
Identifikácia
chybného procesu: 0xce8 Čas spustenia chybnej aplikácie: 0x01cdf243fac9d243 Cesta
chybnej aplikácie: C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
Cesta
chybného modulu: kernel32.dll Identifikácia hlásenia: 39ba1848-5e37-11e2-8885-00266c613f7e

Error - 14. 1. 2013 6:45:49 | Computer Name = BaginkoPC | Source = Avira AntiVir | ID = 4117
Description =

[ System Events ]
Error - 27. 1. 2013 5:21:32 | Computer Name = BaginkoPC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Network Location Awareness, od ktorej závisí služba
Network List Service, zlyhalo kvôli nasledujúcej chybe: %%1068

Error - 27. 1. 2013 5:21:32 | Computer Name = BaginkoPC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Network Location Awareness, od ktorej závisí služba
Network List Service, zlyhalo kvôli nasledujúcej chybe: %%1068

Error - 27. 1. 2013 5:21:32 | Computer Name = BaginkoPC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Network Location Awareness, od ktorej závisí služba
Network List Service, zlyhalo kvôli nasledujúcej chybe: %%1068

Error - 27. 1. 2013 5:23:38 | Computer Name = BaginkoPC | Source = Application Popup | ID = 875
Description = Driver avgntflt.sys has been blocked from loading.

Error - 27. 1. 2013 5:23:38 | Computer Name = BaginkoPC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby avgntflt zlyhalo kvôli nasledujúcej chybe: %%1275

Error - 27. 1. 2013 5:23:44 | Computer Name = BaginkoPC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby Avira AntiVir Premium Scheduler zlyhalo kvôli nasledujúcej
chybe: %%2

Error - 27. 1. 2013 5:23:46 | Computer Name = BaginkoPC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby Avira AntiVir Premium Guard zlyhalo kvôli nasledujúcej
chybe: %%2

Error - 27. 1. 2013 5:23:46 | Computer Name = BaginkoPC | Source = Service Control Manager | ID = 7000
Description = Spustenie služby Avira AntiVir Premium MailGuard helper service zlyhalo
kvôli nasledujúcej chybe: %%2

Error - 27. 1. 2013 5:23:54 | Computer Name = BaginkoPC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Avira AntiVir Premium MailGuard helper service, od
ktorej závisí služba Avira AntiVir Premium MailGuard, zlyhalo kvôli nasledujúcej
chybe: %%2

Error - 27. 1. 2013 5:23:54 | Computer Name = BaginkoPC | Source = Service Control Manager | ID = 7001
Description = Spustenie služby Avira AntiVir Premium MailGuard helper service, od
ktorej závisí služba Avira AntiVir Premium WebGuard, zlyhalo kvôli nasledujúcej
chybe: %%2


< End of report >

Re: Problem z facebooku

Napsal: 29 led 2013 21:23
od vyosek
:arrow: Spustte znovu OTL
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    :otl
IE:64bit: - HKLM\..\SearchScopes\{40DC0C61-2FE9-45B9-9FB8-5CD1D7AB61D0}: "URL" = http://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
IE - HKLM\..\SearchScopes\{80A76B38-C806-44C4-83B1-55A081C71588}: "URL" = http://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://toshiba.msn.com
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\..\SearchScopes\{6EF5356A-25CC-419E-B9B0-32581FD9F1CB}: "URL" = http://www.amazon.co.uk/gp/search?ie=UTF8&keywords={searchTerms}&tag=tochibauk-win7-ie-search-21&index=blended&linkCode=ur2
IE - HKU\S-1-5-21-977690576-51341005-2200270938-1001\..\SearchScopes\{73892D99-BB51-4527-B492-B2837B155B59}: "URL" = http://rover.ebay.com/rover/1/710-71511 ... 4?satitle={searchTerms}
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKU\S-1-5-21-977690576-51341005-2200270938-1001..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-302 303 305 306 Series" File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O33 - MountPoints2\{f75c7e98-64bb-11e2-82ba-00266c613f7e}\Shell - "" = AutoRun
[2013/01/29 15:20:57 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Local\Avg2013
[2013/01/27 23:13:15 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG January 2013 Campaign
[2013/01/27 11:28:30 | 000,000,000 | ---D | C] -- C:\Users\Bagi\AppData\Local\MFAData
[2013/01/27 11:28:30 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[5 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[2 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[2013/01/29 20:53:00 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/01/28 10:14:20 | 000,000,298 | ---- | M] () -- C:\Windows\Tasks\ROC_REG_JAN_DELETE.job
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:888AFB86

:files
c:\Users\Bagi\AppData\Roaming\Microsoft\Windows\Recent\Kaspersky cz 2011+crack v1.53.lnk /d
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[EMPTYJAVA]
  • Nasledne kliknete na Opravit
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: Problem z facebooku

Napsal: 29 led 2013 21:31
od brpo25
Ale teraz som ten program nenastavoval, myslim to LOP, Purity a ani tie roky.

All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{40DC0C61-2FE9-45B9-9FB8-5CD1D7AB61D0}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{40DC0C61-2FE9-45B9-9FB8-5CD1D7AB61D0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80A76B38-C806-44C4-83B1-55A081C71588}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{80A76B38-C806-44C4-83B1-55A081C71588}\ not found.
HKU\S-1-5-21-977690576-51341005-2200270938-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-21-977690576-51341005-2200270938-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_USERS\S-1-5-21-977690576-51341005-2200270938-1001\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-977690576-51341005-2200270938-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6EF5356A-25CC-419E-B9B0-32581FD9F1CB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6EF5356A-25CC-419E-B9B0-32581FD9F1CB}\ not found.
Registry key HKEY_USERS\S-1-5-21-977690576-51341005-2200270938-1001\Software\Microsoft\Internet Explorer\SearchScopes\{73892D99-BB51-4527-B492-B2837B155B59}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73892D99-BB51-4527-B492-B2837B155B59}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-977690576-51341005-2200270938-1001\Software\Microsoft\Windows\CurrentVersion\Run\\EPLTarget\P0000000000000000 deleted successfully.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f75c7e98-64bb-11e2-82ba-00266c613f7e}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f75c7e98-64bb-11e2-82ba-00266c613f7e}\ not found.
C:\Users\Bagi\AppData\Local\Avg2013\log folder moved successfully.
C:\Users\Bagi\AppData\Local\Avg2013 folder moved successfully.
C:\ProgramData\AVG January 2013 Campaign folder moved successfully.
C:\Users\Bagi\AppData\Local\MFAData\logs folder moved successfully.
C:\Users\Bagi\AppData\Local\MFAData folder moved successfully.
C:\ProgramData\MFAData\avibackup folder moved successfully.
C:\ProgramData\MFAData folder moved successfully.
C:\Windows\msdownld.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP205D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPCA44.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP515A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPB36.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPC84D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.
C:\Windows\Installer\MSIF425.tmp deleted successfully.
C:\Windows\Temp\FAP4D0F.tmp deleted successfully.
C:\Windows\Temp\FAPB4F1.tmp deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\Tasks\ROC_REG_JAN_DELETE.job moved successfully.
ADS C:\ProgramData\TEMP:888AFB86 deleted successfully.
========== FILES ==========
c:\Users\Bagi\AppData\Roaming\Microsoft\Windows\Recent\Kaspersky cz 2011+crack v1.53.lnk deleted successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Bagi
->Temp folder emptied: 552437094 bytes
->Temporary Internet Files folder emptied: 34126820 bytes
->FireFox cache emptied: 43957512 bytes
->Opera cache emptied: 240 bytes
->Flash cache emptied: 45133 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 41620 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 44342 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 46453756 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 646,00 mb


[EMPTYFLASH]

User: All Users

User: Bagi
->Flash cache emptied: 0 bytes

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


[EMPTYJAVA]

User: All Users

User: Bagi

User: Default

User: Default User

User: Public

Total Java Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 01292013_212611

Files\Folders moved on Reboot...
C:\Users\Bagi\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Re: Problem z facebooku

Napsal: 29 led 2013 21:35
od vyosek
To neni treba :)

Jak se chova PC :???:

Re: Problem z facebooku

Napsal: 29 led 2013 21:47
od brpo25
Myslim ze vsetko OK. Tymto by mala byt hrozba zazehnana?

Re: Problem z facebooku

Napsal: 29 led 2013 21:51
od vyosek
Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz