PROSÍM O KONTROLU LOGU
Napsal: 07 dub 2013 19:09
Počítač se zapíná poměrně dlouho, než se načtou ikony vidím asi minutu černou obrazovku...Jenom tak se zablokoval příkazový řádek ("Příkazový řádek byl zakázán správcem systému"), přitom tohle to nikdy neudělalo...Taky když jsem zkoušel otevřít flešku, napsalo mi to "Aplikace nebyla nalezena"
Logfile of random's system information tool 1.09 (written by random/random)
Run by Roman at 2013-04-07 20:07:11
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 136 GB (43%) free of 318 GB
Total RAM: 4078 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:07:27, on 7.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16521)
Boot mode: Normal
Running processes:
C:\Programy\Advanced SystemCare 6\Monitor.exe
C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Programy\Advanced SystemCare 6\ASCTray.exe
C:\Programy\Jet Screenshot\jetScreenshot.exe
C:\Program Files (x86)\Iminent\Iminent.exe
C:\Program Files (x86)\Iminent\Iminent.Messengers.exe
C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Programy\AutoClickerbyShocker\AutoClicker.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Daum\PotPlayer\PotPlayerMini.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Program Files\trend micro\Roman.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.iminent.com/?appid=99ac9d ... 81c27eb6a9
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
R3 - URLSearchHook: (no name) - {69dfef64-c99e-4db0-bc63-ceb3bd218569} - (no file)
O2 - BHO: CrossriderApp0003491 - {11111111-1111-1111-1111-110011341191} - C:\Program Files (x86)\Vid-Saver\Vid-Saver.dll
O2 - BHO: CrossriderApp0011825 - {11111111-1111-1111-1111-110111181125} - C:\Program Files (x86)\BcoolApp\BcoolApp.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Roman\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: IMinent WebBooster - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: SSeauraccho-NewwTab - {D870E93E-F8F8-2214-D9E6-F09A4DA9A010} - C:\ProgramData\SSeauraccho-NewwTab\5148a2cae6cf4.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: Browsee2Save - {FDD80893-4C63-9CFC-E2EB-67A1B7C888DC} - C:\ProgramData\Browsee2Save\5148a2877a47a.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [Iminent] C:\Program Files (x86)\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"
O4 - HKLM\..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe /startup
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O4 - HKLM\..\Run: [APC] C:\Programy\Advanced Parental Control\BackProcessAPC.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKLM\..\Run: [UTY Start] C:\ProgramData\MFYLKX\UTY.exe
O4 - HKCU\..\Run: [APC] C:\Programy\Advanced Parental Control\BackProcessAPC.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Programy\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICDE.EXE /FU "C:\Windows\TEMP\E_SFA27.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series (kopie 1)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICDE.EXE /FU "C:\Windows\TEMP\E_S6613.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Jet Screenshot] "C:\Programy\Jet Screenshot\jetScreenshot.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Users\Roman\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Roman\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\progra~3\browserprotect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\browserprotect.dll c:\progra~2\sprote~1\sprote~1.dll c:\progra~2\wxdownload\sprotector.dll c:\progra~2\browsetosave\sprotector.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Programy\Spy\SASCORE64.EXE
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Programy\PhotoShop\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Programy\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: BrowserProtect - Unknown owner - C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
O23 - Service: DefaultTabUpdate - Unknown owner - C:\Users\Roman\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Programy\Hamachi\hamachi-2.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - SANDBOXIE L.T.D - C:\Programy\Sandboxie\SbieSvc.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 16556 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Programy\Advanced SystemCare 6\ASCService.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
"C:\Programy\Sandboxie\SbieSvc.exe"
C:\Windows\system32\svchost.exe -k NetworkService
taskeng.exe {015FE6E1-B47F-4FB0-A90C-0286DBE2E6ED}
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
taskeng.exe {0985FAFA-D5A3-4AC4-B0EE-26EB7ACBDB34}
C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe /schedule /profile "c:\programdata\bettersoft\optimizerpro\3036567561.ini"
C:\ProgramData\GBox\GBox1.exe /schedule /profilepath "C:\ProgramData\GBox\profile.ini"
"C:\Programy\Advanced SystemCare 6\Monitor.exe"
"C:\Programy\Spy\SASCORE64.EXE"
C:\Programy\PhotoShop\PhotoshopElementsFileAgent.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
"C:\Users\Roman\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
C:\Programy\Hamachi\hamachi-2.exe -s
"C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe" /PROTECT
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Programy\Advanced SystemCare 6\ASCTray.exe" /AutoStart
HydraDM64.exe -h:65814 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Programy\Jet Screenshot\jetScreenshot.exe"
"C:\Program Files (x86)\Iminent\Iminent.exe" /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"
"C:\Program Files (x86)\Iminent\Iminent.Messengers.exe" /startup
"C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe"
"C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Cyberlink\Shared files\RichVideo64.exe"
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3992
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000888
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Programy\AutoClickerbyShocker\AutoClicker.exe"
C:\Windows\system32\AUDIODG.EXE 0x648
"C:\Program Files (x86)\Steam\Steam.exe"
"C:\Program Files (x86)\Daum\PotPlayer\PotPlayerMini.exe" "D:\stažený\seriály\Mentalista\The Mentalist S05E08.avi"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=10904.111bb400.1232681386 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 10904 "\\.\pipe\gecko-crash-server-pipe.10904" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe" --proxy-stub-channel=Flash12860.5A4163D8.2570 --host-broker-channel=Flash12860.5A4163D8.13528 --host-pid=12860 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe" --channel=10616.0024F5FC.757551318 --proxy-stub-channel=Flash12860.5A4163D8.2570 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll" --host-npapi-version=27 --type=renderer
"C:\Programy\Spy\SUPERAntiSpyware.exe"
"C:\Users\Roman\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\mmc.exe" "C:\Windows\system32\compmgmt.msc" /s
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GBoxUpdaterTask{9001907E-F3F0-49E5-AED6-EB14E1D64B6D}.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2919514174-1416075207-1654230562-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2919514174-1416075207-1654230562-1000UA.job
C:\Windows\tasks\schedule!3036567561.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yl0fkq1p.default-1356962632340
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - ""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@comrade.gamespy.com/comrade]
"Description"=
"Path"=C:\Program Files (x86)\GameSpy\Comrade\npcomrade.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.116.0]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.122.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll
C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yl0fkq1p.default-1356962632340\extensions\
pn3w@eyai-auoi.org
vzimhklv@hcfiiyaa.co.uk
{872b5b88-9db5-4310-bdd0-ac189557e5f5}
C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yl0fkq1p.default-1356962632340\searchplugins\
bingp.xml
SearchTheWeb.xml
WebSearch.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-03-19 6305912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-03-23 75656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011341191}]
Vid-Saver - C:\Program Files (x86)\Vid-Saver\Vid-Saver.dll [2012-09-06 611200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110111181125}]
BcoolApp - C:\Program Files (x86)\BcoolApp\BcoolApp.dll [2012-07-03 484864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-02-28 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}]
DefaultTab Browser Helper - C:\Users\Roman\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll [2013-01-03 430712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}]
IMinent WebBooster (BHO) - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll [2012-07-12 245368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-03-19 4529272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D870E93E-F8F8-2214-D9E6-F09A4DA9A010}]
SSeauraccho-NewwTab - C:\ProgramData\SSeauraccho-NewwTab\5148a2cae6cf4.dll [2013-03-19 118272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-02-28 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetPacks Browser Helper - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-01-15 1330480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDD80893-4C63-9CFC-E2EB-67A1B7C888DC}]
Browsee2Save - C:\ProgramData\Browsee2Save\5148a2877a47a.dll [2013-03-19 118272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetPacks Toolbar for Internet Explorer - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-01-15 1330480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-03-26 6468712]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21 472992]
"EPSON Stylus DX3800 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_FATIACE.EXE [2005-02-08 98304]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"APC"=C:\Programy\Advanced Parental Control\BackProcessAPC.exe [2007-04-20 135168]
"AdobeBridge"= []
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28 18643048]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2011-04-19 393216]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2013-03-29 1631144]
"Advanced SystemCare 6"=C:\Programy\Advanced SystemCare 6\ASCTray.exe [2013-01-15 491840]
"EPSON Stylus DX7400 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICDE.EXE [2007-04-12 213504]
"EPSON Stylus DX7400 Series (kopie 1)"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICDE.EXE [2007-04-12 213504]
"Jet Screenshot"=C:\Programy\Jet Screenshot\jetScreenshot.exe [2013-01-11 1954056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-phishing Domain Advisor]
C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe [2012-05-03 217256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APC]
C:\Programy\Advanced Parental Control\BackProcessAPC.exe [2007-04-20 135168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Comrade.exe]
C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe [2011-03-17 1204640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Roman\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-12 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
D:\Program Files\ICQ7.7\ICQ.exe [2012-01-23 127040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Jet Screenshot]
C:\Programy\Jet Screenshot\jetScreenshot.exe [2013-01-11 1954056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Programy\Hamachi\hamachi-2-ui.exe [2012-12-10 2254768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RobotBoom_60bar Uninstall]
rundll32 C:\PROGRA~2\60Uninstall Robot Boom.dll,O -3 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_NT]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Programy\Sandboxie\SbieCtrl.exe [2012-12-16 765200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28 18643048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-03-29 1631144]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Programy\Spy\SUPERAntiSpyware.exe [2013-01-27 5629312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter Search Scope Monitor]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter_4z Browser Plugin Loader]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter_4zbar Uninstall]
rundll32 C:\PROGRA~2\4zUninstall VideoDownloadConverter.dll,O -3 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XWidget]
[]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Iminent"=C:\Program Files (x86)\Iminent\Iminent.exe [2012-07-12 1073784]
"IminentMessenger"=C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [2012-07-12 884856]
"SSDMonitor"=C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2011-12-12 103896]
"APC"=C:\Programy\Advanced Parental Control\BackProcessAPC.exe [2007-04-20 135168]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-03-30 345312]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-06-25 1073352]
"IObit Malware Fighter"=C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [2012-12-25 4474832]
"UTY Start"=C:\ProgramData\MFYLKX\UTY.exe [2013-03-26 2305536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoInstrumentation"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2013-04-07 19:48:46 ----D---- C:\Program Files\trend micro
2013-04-07 19:48:45 ----D---- C:\rsit
2013-04-07 18:11:52 ----D---- C:\ProgramData\Google
2013-04-07 18:11:51 ----D---- C:\Users\Roman\AppData\Roaming\Google
2013-04-06 08:58:08 ----N---- C:\bootsqm.dat
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-04-05 12:40:50 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-04-05 12:40:50 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\wow64win.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\wow64cpu.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\wow64.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\ntvdm64.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\KernelBase.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\kernel32.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\conhost.exe
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-04-05 12:39:51 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-04-05 12:39:51 ----A---- C:\Windows\system32\usp10.dll
2013-04-05 12:39:28 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-04-05 12:39:28 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-04-05 12:39:28 ----A---- C:\Windows\system32\Wpc.dll
2013-04-05 12:39:28 ----A---- C:\Windows\system32\gameux.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFx.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFHost.exe
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-04-05 12:38:20 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-04-05 12:37:57 ----A---- C:\Windows\system32\Wdfres.dll
2013-04-05 12:37:57 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-04-05 12:37:57 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-04-05 12:37:21 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-04-05 12:37:21 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-04-05 12:37:21 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-04-05 12:37:21 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-04-05 12:36:59 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-04-05 12:36:59 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-04-05 12:36:59 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-04-05 12:36:59 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\nlasvc.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\nlaapi.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\netevent.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\netcorehc.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\ncsi.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\wksprtPS.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\wksprt.exe
2013-04-05 12:36:33 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-04-05 12:36:33 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-04-05 12:36:33 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\tsgqec.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\rdpudd.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\rdpcorets.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\mstscax.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\mstsc.exe
2013-04-05 12:36:33 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-04-05 12:36:33 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-04-05 12:36:33 ----A---- C:\Windows\system32\aaclient.dll
2013-04-05 12:36:00 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-04-05 12:36:00 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-04-05 12:36:00 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-04-05 12:36:00 ----A---- C:\Windows\system32\schannel.dll
2013-04-05 12:36:00 ----A---- C:\Windows\system32\lsasrv.dll
2013-04-05 12:36:00 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-04-05 12:36:00 ----A---- C:\Windows\system32\drivers\cng.sys
2013-04-05 12:35:42 ----A---- C:\Windows\SYSWOW64\srclient.dll
2013-04-05 12:35:42 ----A---- C:\Windows\system32\srcore.dll
2013-04-05 12:35:29 ----A---- C:\Windows\system32\spoolsv.exe
2013-04-05 12:35:29 ----A---- C:\Windows\splwow64.exe
2013-04-05 12:35:04 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-04-05 12:34:53 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-04-05 12:34:40 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-04-05 12:34:40 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-04-05 12:34:29 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-04-05 12:34:29 ----A---- C:\Windows\system32\qdvd.dll
2013-04-05 12:34:20 ----A---- C:\Windows\system32\profsvc.dll
2013-04-05 12:34:10 ----A---- C:\Windows\SYSWOW64\msi.dll
2013-04-05 12:34:10 ----A---- C:\Windows\system32\msi.dll
2013-04-05 12:33:58 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2013-04-05 12:33:58 ----A---- C:\Windows\system32\ntshrui.dll
2013-04-05 12:33:16 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2013-04-05 12:33:16 ----A---- C:\Windows\system32\xmllite.dll
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\tquery.dll
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\mssph.dll
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2013-04-05 12:32:55 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2013-04-05 12:32:55 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2013-04-05 12:32:55 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\tquery.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-04-05 12:32:55 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-04-05 12:32:55 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-04-05 12:32:55 ----A---- C:\Windows\system32\mssvp.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\mssrch.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\mssphtb.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\mssph.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\msscntrs.dll
2013-04-05 12:32:29 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-04-05 12:32:21 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2013-04-05 12:32:21 ----A---- C:\Windows\system32\prevhost.exe
2013-04-05 12:32:07 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-04-05 12:32:07 ----A---- C:\Windows\explorer.exe
2013-04-04 15:22:49 ----SHD---- C:\Config.Msi
2013-03-30 10:53:59 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2013-03-30 10:53:59 ----A---- C:\Windows\system32\drivers\avipbb.sys
2013-03-30 10:53:59 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2013-03-30 10:48:38 ----A---- C:\Windows\system32\RtNicProp64.dll
2013-03-30 10:48:38 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2013-03-28 19:18:56 ----D---- C:\ProgramData\WarThunder
2013-03-26 18:17:33 ----D---- C:\ProgramData\LJW
2013-03-26 18:17:31 ----SHD---- C:\ProgramData\MFYLKX
2013-03-26 13:56:34 ----A---- C:\Windows\system32\drivers\asmtxhci.sys
2013-03-26 13:56:16 ----A---- C:\Windows\system32\drivers\asmthub3.sys
2013-03-26 13:55:55 ----A---- C:\Windows\system32\drivers\amdkmpfd.sys
2013-03-26 12:11:01 ----D---- C:\ProgramData\BrowserProtect
2013-03-26 12:09:52 ----A---- C:\Windows\system32\drivers\amdide64.sys
2013-03-26 12:07:31 ----A---- C:\Windows\system32\WavesGUILib.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\tosade.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\tepeqapo64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\tadefxapo264.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\tadefxapo.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\SFSS_APO.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\SFNHK64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\SFCOM64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\SFAPO64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtkApi64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RTCOM64.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\RCoRes64.dat
2013-03-26 12:07:30 ----A---- C:\Windows\system32\RCoInstII64.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EEP64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EEL64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EEG64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EED64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EEA64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-03-26 12:07:30 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2013-03-26 12:07:29 ----A---- C:\Windows\system32\KAAPORT64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\FMAPO64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\AERTAR64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\AERTAC64.dll
2013-03-26 12:06:28 ----A---- C:\Windows\system32\drivers\wdfcoinstaller01009.dll
2013-03-26 12:06:28 ----A---- C:\Windows\system32\drivers\wacomrouterfilter.sys
2013-03-26 12:06:15 ----A---- C:\Windows\system32\DelayAPO.dll
2013-03-26 11:59:02 ----D---- C:\Users\Roman\AppData\Roaming\ExpressFiles
2013-03-26 11:31:34 ----D---- C:\ProgramData\Uniblue
2013-03-26 11:03:28 ----D---- C:\Users\Roman\AppData\Roaming\Fighters
2013-03-26 11:00:25 ----D---- C:\ProgramData\Fighters
2013-03-25 10:36:42 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-03-25 10:36:41 ----A---- C:\Windows\system32\elshyph.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\url.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\wininet.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\wextract.exe
2013-03-25 10:36:40 ----A---- C:\Windows\system32\webcheck.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\vbscript.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\urlmon.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\url.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-03-25 10:36:40 ----A---- C:\Windows\system32\msrating.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\msls31.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\mshtmled.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\mshtml.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\msfeeds.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\licmgr10.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\jsproxy.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\inseng.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iexpress.exe
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iesetup.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iertutil.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iernonce.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iedkcs32.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\ieapfltr.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\ieapfltr.dat
2013-03-25 10:36:40 ----A---- C:\Windows\system32\ie4uinit.exe
2013-03-25 10:36:40 ----A---- C:\Windows\system32\icardie.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\dxtrans.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\dxtmsft.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-03-25 10:36:39 ----A---- C:\Windows\system32\pngfilt.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\occache.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\mshtmler.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\mshta.exe
2013-03-25 10:36:39 ----A---- C:\Windows\system32\msfeedssync.exe
2013-03-25 10:36:39 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\jscript9.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\jscript.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\imgutil.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\ieUnatt.exe
2013-03-25 10:36:39 ----A---- C:\Windows\system32\ieui.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\iesysprep.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\iepeers.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\ieframe.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\XpsPrint.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\WMPhoto.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\UIAnimation.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\FntCache.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\dxgi.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\DWrite.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d11.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10warp.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10level9.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10core.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10_1.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d2d1.dll
2013-03-24 20:41:25 ----A---- C:\Windows\system32\E_ILMCDE.DLL
2013-03-24 20:41:25 ----A---- C:\Windows\system32\E_GCINST.DLL
2013-03-24 20:41:24 ----A---- C:\Windows\system32\E_IBCBCDE.DLL
2013-03-24 09:58:10 ----A---- C:\Windows\system32\drivers\SmartDefragDriver.sys
2013-03-24 09:52:38 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-03-24 09:52:13 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-03-24 09:52:13 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-03-24 09:52:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-03-24 09:50:40 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-03-24 09:50:40 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-03-24 09:50:27 ----A---- C:\Windows\system32\win32k.sys
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\user.exe
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-03-24 09:50:13 ----A---- C:\Windows\system32\winsrv.dll
2013-03-24 09:47:14 ----A---- C:\Windows\system32\taskhost.exe
2013-03-24 09:46:28 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-03-24 09:46:28 ----A---- C:\Windows\system32\win32spl.dll
2013-03-24 09:46:05 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-03-24 09:46:05 ----A---- C:\Windows\system32\ncrypt.dll
2013-03-24 09:45:06 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-03-24 09:45:06 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-03-24 09:45:06 ----A---- C:\Windows\system32\msxml6.dll
2013-03-24 09:45:06 ----A---- C:\Windows\system32\msxml3.dll
2013-03-24 09:26:20 ----D---- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-03-22 11:42:17 ----D---- C:\ProgramData\SUPERSetup
2013-03-19 19:41:03 ----D---- C:\Users\Roman\AppData\Roaming\NCdownloader
2013-03-19 19:40:37 ----D---- C:\ProgramData\SSeauraccho-NewwTab
2013-03-19 19:40:37 ----D---- C:\ProgramData\SoftSafe
2013-03-19 19:40:35 ----D---- C:\Program Files (x86)\WebSearch
2013-03-19 19:40:19 ----D---- C:\ProgramData\BetterSoft
2013-03-19 19:40:14 ----D---- C:\Program Files (x86)\Optimizer Pro
2013-03-19 19:39:50 ----D---- C:\Program Files (x86)\BrowseToSave
2013-03-19 19:39:39 ----D---- C:\ProgramData\Browsee2Save
2013-03-19 19:39:27 ----D---- C:\Program Files (x86)\Solibo Ltd
2013-03-08 12:45:15 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-03-07 14:54:49 ----D---- C:\Program Files (x86)\TeamViewer
2013-03-05 23:38:19 ----D---- C:\Users\Roman\AppData\Roaming\The Creative Assembly
2013-02-27 13:14:24 ----D---- C:\ProgramData\ATI
2013-02-27 13:14:22 ----D---- C:\Program Files (x86)\AMD AVT
2013-02-27 13:14:15 ----D---- C:\Program Files (x86)\AMD APP
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\ati2edxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-02-27 13:10:53 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-02-27 13:10:53 ----A---- C:\Windows\system32\drivers\AtihdW76.sys
2013-02-27 13:10:53 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\coinst_9.012.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\ativvaxy_cik_nd.dat
2013-02-27 13:10:53 ----A---- C:\Windows\system32\ativvaxy_cik.dat
2013-02-27 13:10:53 ----A---- C:\Windows\system32\ativce02.dat
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiumd6a.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiumd64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atitmm64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atio6axx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atimuixx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atimpc64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiicdxx.dat
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiglpxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atig6txx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atig6pxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiesrxx.exe
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiedu64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atieclxx.exe
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atidemgy.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\aticalrt64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\aticaldd64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\aticalcl64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiapfxx.exe
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiadlxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\amdpcom64.dll
2013-02-19 20:05:44 ----A---- C:\Windows\system32\E_ILMACE.DLL
2013-02-19 20:05:44 ----A---- C:\Windows\system32\E_IBCBACE.DLL
2013-02-19 20:05:32 ----D---- C:\ProgramData\EPSON
2013-02-19 19:41:43 ----D---- C:\Program Files (x86)\EPSON
2013-02-19 19:41:38 ----A---- C:\Windows\EPSMTL32.TXT
2013-02-19 19:41:27 ----D---- C:\EPSON
2013-02-19 10:37:47 ----A---- C:\Windows\SYSWOW64\winver.exe
2013-02-19 10:37:47 ----A---- C:\Windows\SYSWOW64\user32.dll
2013-02-19 10:37:47 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2013-02-19 10:37:47 ----A---- C:\Windows\SYSWOW64\slmgr.vbs
2013-02-15 09:11:49 ----D---- C:\Program Files (x86)\Clarus
2013-02-15 08:47:11 ----D---- C:\Program Files (x86)\ESWin
2013-02-15 07:53:10 ----A---- C:\TDSSKiller.2.7.11.0_15.02.2013_06.53.10_log.txt
2013-02-14 20:32:51 ----D---- C:\Program Files (x86)\LSoft Technologies
2013-02-13 17:01:22 ----D---- C:\Users\Roman\AppData\Roaming\WinDbg
2013-02-13 16:57:16 ----D---- C:\Users\Roman\AppData\Roaming\SaMp
2013-02-11 18:38:32 ----D---- C:\Users\Roman\AppData\Roaming\Software Informer
2013-02-11 18:37:07 ----D---- C:\Program Files\Software Informer
2013-02-09 15:53:42 ----D---- C:\Users\Roman\AppData\Roaming\VitySoft
2013-02-09 00:17:08 ----D---- C:\Users\Roman\AppData\Roaming\SFBot
2013-02-04 17:47:18 ----A---- C:\Windows\SYSWOW64\SPORDER.DLL
2013-02-02 04:16:08 ----D---- C:\Users\Roman\AppData\Roaming\Omerta
2013-01-28 20:43:34 ----A---- C:\Windows\system32\HMIPCore64.dll
2013-01-28 18:33:23 ----A---- C:\Windows\SYSWOW64\HMIPCore.dll
2013-01-27 10:04:23 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-01-25 23:36:55 ----D---- C:\Users\Roman\AppData\Roaming\Pamela
2013-01-13 19:45:17 ----D---- C:\ProgramData\TERA
2013-01-10 21:44:02 ----A---- C:\Windows\system32\drivers\taphss6.sys
2013-01-10 21:33:50 ----A---- C:\Windows\system32\drivers\hssdrv6.sys
2013-01-09 20:53:49 ----D---- C:\ProgramData\FLEXnet
2013-01-09 19:17:21 ----D---- C:\Windows\fonts\Fonts
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\vxblock.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxwave.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxsfs.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxmas.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxinsi64.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxinsa64.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxhpinst.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxdrv.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxcpyi64.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxcpya64.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxafs.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\px.dll
2013-01-09 19:17:04 ----N---- C:\Windows\system32\drivers\PxHlpa64.sys
2013-01-09 19:17:04 ----N---- C:\Windows\system32\drivers\cdralw2k.sys
2013-01-09 19:17:04 ----N---- C:\Windows\system32\drivers\cdr4_xp.sys
2013-01-08 19:25:11 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2013-01-08 19:14:05 ----D---- C:\Program Files\Adobe
2013-01-08 19:09:37 ----D---- C:\Program Files\Common Files\Adobe
2013-01-08 17:21:41 ----D---- C:\Users\Roman\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
Logfile of random's system information tool 1.09 (written by random/random)
Run by Roman at 2013-04-07 20:07:11
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 136 GB (43%) free of 318 GB
Total RAM: 4078 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:07:27, on 7.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16521)
Boot mode: Normal
Running processes:
C:\Programy\Advanced SystemCare 6\Monitor.exe
C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Programy\Advanced SystemCare 6\ASCTray.exe
C:\Programy\Jet Screenshot\jetScreenshot.exe
C:\Program Files (x86)\Iminent\Iminent.exe
C:\Program Files (x86)\Iminent\Iminent.Messengers.exe
C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Programy\AutoClickerbyShocker\AutoClicker.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Daum\PotPlayer\PotPlayerMini.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Program Files\trend micro\Roman.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.iminent.com/?appid=99ac9d ... 81c27eb6a9
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
R3 - URLSearchHook: (no name) - {69dfef64-c99e-4db0-bc63-ceb3bd218569} - (no file)
O2 - BHO: CrossriderApp0003491 - {11111111-1111-1111-1111-110011341191} - C:\Program Files (x86)\Vid-Saver\Vid-Saver.dll
O2 - BHO: CrossriderApp0011825 - {11111111-1111-1111-1111-110111181125} - C:\Program Files (x86)\BcoolApp\BcoolApp.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Roman\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: IMinent WebBooster - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: SSeauraccho-NewwTab - {D870E93E-F8F8-2214-D9E6-F09A4DA9A010} - C:\ProgramData\SSeauraccho-NewwTab\5148a2cae6cf4.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: Browsee2Save - {FDD80893-4C63-9CFC-E2EB-67A1B7C888DC} - C:\ProgramData\Browsee2Save\5148a2877a47a.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [Iminent] C:\Program Files (x86)\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"
O4 - HKLM\..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe /startup
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O4 - HKLM\..\Run: [APC] C:\Programy\Advanced Parental Control\BackProcessAPC.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKLM\..\Run: [UTY Start] C:\ProgramData\MFYLKX\UTY.exe
O4 - HKCU\..\Run: [APC] C:\Programy\Advanced Parental Control\BackProcessAPC.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Programy\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICDE.EXE /FU "C:\Windows\TEMP\E_SFA27.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series (kopie 1)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICDE.EXE /FU "C:\Windows\TEMP\E_S6613.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Jet Screenshot] "C:\Programy\Jet Screenshot\jetScreenshot.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Users\Roman\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Roman\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\progra~3\browserprotect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\browserprotect.dll c:\progra~2\sprote~1\sprote~1.dll c:\progra~2\wxdownload\sprotector.dll c:\progra~2\browsetosave\sprotector.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Programy\Spy\SASCORE64.EXE
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Programy\PhotoShop\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Programy\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: BrowserProtect - Unknown owner - C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
O23 - Service: DefaultTabUpdate - Unknown owner - C:\Users\Roman\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Programy\Hamachi\hamachi-2.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - SANDBOXIE L.T.D - C:\Programy\Sandboxie\SbieSvc.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 16556 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Programy\Advanced SystemCare 6\ASCService.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
"C:\Programy\Sandboxie\SbieSvc.exe"
C:\Windows\system32\svchost.exe -k NetworkService
taskeng.exe {015FE6E1-B47F-4FB0-A90C-0286DBE2E6ED}
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
taskeng.exe {0985FAFA-D5A3-4AC4-B0EE-26EB7ACBDB34}
C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe /schedule /profile "c:\programdata\bettersoft\optimizerpro\3036567561.ini"
C:\ProgramData\GBox\GBox1.exe /schedule /profilepath "C:\ProgramData\GBox\profile.ini"
"C:\Programy\Advanced SystemCare 6\Monitor.exe"
"C:\Programy\Spy\SASCORE64.EXE"
C:\Programy\PhotoShop\PhotoshopElementsFileAgent.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe
"C:\Users\Roman\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
C:\Programy\Hamachi\hamachi-2.exe -s
"C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe" /PROTECT
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Programy\Advanced SystemCare 6\ASCTray.exe" /AutoStart
HydraDM64.exe -h:65814 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Programy\Jet Screenshot\jetScreenshot.exe"
"C:\Program Files (x86)\Iminent\Iminent.exe" /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"
"C:\Program Files (x86)\Iminent\Iminent.Messengers.exe" /startup
"C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe"
"C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Cyberlink\Shared files\RichVideo64.exe"
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3992
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000888
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Programy\AutoClickerbyShocker\AutoClicker.exe"
C:\Windows\system32\AUDIODG.EXE 0x648
"C:\Program Files (x86)\Steam\Steam.exe"
"C:\Program Files (x86)\Daum\PotPlayer\PotPlayerMini.exe" "D:\stažený\seriály\Mentalista\The Mentalist S05E08.avi"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=10904.111bb400.1232681386 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 10904 "\\.\pipe\gecko-crash-server-pipe.10904" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe" --proxy-stub-channel=Flash12860.5A4163D8.2570 --host-broker-channel=Flash12860.5A4163D8.13528 --host-pid=12860 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe" --channel=10616.0024F5FC.757551318 --proxy-stub-channel=Flash12860.5A4163D8.2570 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll" --host-npapi-version=27 --type=renderer
"C:\Programy\Spy\SUPERAntiSpyware.exe"
"C:\Users\Roman\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\mmc.exe" "C:\Windows\system32\compmgmt.msc" /s
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GBoxUpdaterTask{9001907E-F3F0-49E5-AED6-EB14E1D64B6D}.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2919514174-1416075207-1654230562-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2919514174-1416075207-1654230562-1000UA.job
C:\Windows\tasks\schedule!3036567561.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yl0fkq1p.default-1356962632340
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - ""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@comrade.gamespy.com/comrade]
"Description"=
"Path"=C:\Program Files (x86)\GameSpy\Comrade\npcomrade.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.116.0]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.122.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll
C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yl0fkq1p.default-1356962632340\extensions\
pn3w@eyai-auoi.org
vzimhklv@hcfiiyaa.co.uk
{872b5b88-9db5-4310-bdd0-ac189557e5f5}
C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\yl0fkq1p.default-1356962632340\searchplugins\
bingp.xml
SearchTheWeb.xml
WebSearch.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-03-19 6305912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-03-23 75656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011341191}]
Vid-Saver - C:\Program Files (x86)\Vid-Saver\Vid-Saver.dll [2012-09-06 611200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110111181125}]
BcoolApp - C:\Program Files (x86)\BcoolApp\BcoolApp.dll [2012-07-03 484864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-02-28 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}]
DefaultTab Browser Helper - C:\Users\Roman\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll [2013-01-03 430712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}]
IMinent WebBooster (BHO) - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll [2012-07-12 245368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-03-19 4529272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D870E93E-F8F8-2214-D9E6-F09A4DA9A010}]
SSeauraccho-NewwTab - C:\ProgramData\SSeauraccho-NewwTab\5148a2cae6cf4.dll [2013-03-19 118272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-02-28 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetPacks Browser Helper - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-01-15 1330480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDD80893-4C63-9CFC-E2EB-67A1B7C888DC}]
Browsee2Save - C:\ProgramData\Browsee2Save\5148a2877a47a.dll [2013-03-19 118272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetPacks Toolbar for Internet Explorer - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-01-15 1330480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-03-26 6468712]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21 472992]
"EPSON Stylus DX3800 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_FATIACE.EXE [2005-02-08 98304]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"APC"=C:\Programy\Advanced Parental Control\BackProcessAPC.exe [2007-04-20 135168]
"AdobeBridge"= []
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28 18643048]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2011-04-19 393216]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2013-03-29 1631144]
"Advanced SystemCare 6"=C:\Programy\Advanced SystemCare 6\ASCTray.exe [2013-01-15 491840]
"EPSON Stylus DX7400 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICDE.EXE [2007-04-12 213504]
"EPSON Stylus DX7400 Series (kopie 1)"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICDE.EXE [2007-04-12 213504]
"Jet Screenshot"=C:\Programy\Jet Screenshot\jetScreenshot.exe [2013-01-11 1954056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-phishing Domain Advisor]
C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe [2012-05-03 217256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APC]
C:\Programy\Advanced Parental Control\BackProcessAPC.exe [2007-04-20 135168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Comrade.exe]
C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe [2011-03-17 1204640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Roman\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-12 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
D:\Program Files\ICQ7.7\ICQ.exe [2012-01-23 127040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Jet Screenshot]
C:\Programy\Jet Screenshot\jetScreenshot.exe [2013-01-11 1954056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Programy\Hamachi\hamachi-2-ui.exe [2012-12-10 2254768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RobotBoom_60bar Uninstall]
rundll32 C:\PROGRA~2\60Uninstall Robot Boom.dll,O -3 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_NT]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Programy\Sandboxie\SbieCtrl.exe [2012-12-16 765200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28 18643048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-03-29 1631144]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Programy\Spy\SUPERAntiSpyware.exe [2013-01-27 5629312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter Search Scope Monitor]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter_4z Browser Plugin Loader]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter_4zbar Uninstall]
rundll32 C:\PROGRA~2\4zUninstall VideoDownloadConverter.dll,O -3 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XWidget]
[]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Iminent"=C:\Program Files (x86)\Iminent\Iminent.exe [2012-07-12 1073784]
"IminentMessenger"=C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [2012-07-12 884856]
"SSDMonitor"=C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2011-12-12 103896]
"APC"=C:\Programy\Advanced Parental Control\BackProcessAPC.exe [2007-04-20 135168]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-03-30 345312]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-06-25 1073352]
"IObit Malware Fighter"=C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [2012-12-25 4474832]
"UTY Start"=C:\ProgramData\MFYLKX\UTY.exe [2013-03-26 2305536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoInstrumentation"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2013-04-07 19:48:46 ----D---- C:\Program Files\trend micro
2013-04-07 19:48:45 ----D---- C:\rsit
2013-04-07 18:11:52 ----D---- C:\ProgramData\Google
2013-04-07 18:11:51 ----D---- C:\Users\Roman\AppData\Roaming\Google
2013-04-06 08:58:08 ----N---- C:\bootsqm.dat
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-04-05 12:40:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-04-05 12:40:50 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-04-05 12:40:50 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\wow64win.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\wow64cpu.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\wow64.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\ntvdm64.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\KernelBase.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\kernel32.dll
2013-04-05 12:40:50 ----A---- C:\Windows\system32\conhost.exe
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-04-05 12:40:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-04-05 12:40:48 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-04-05 12:39:51 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-04-05 12:39:51 ----A---- C:\Windows\system32\usp10.dll
2013-04-05 12:39:28 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-04-05 12:39:28 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-04-05 12:39:28 ----A---- C:\Windows\system32\Wpc.dll
2013-04-05 12:39:28 ----A---- C:\Windows\system32\gameux.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFx.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFHost.exe
2013-04-05 12:38:20 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-04-05 12:38:20 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-04-05 12:38:20 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-04-05 12:37:57 ----A---- C:\Windows\system32\Wdfres.dll
2013-04-05 12:37:57 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-04-05 12:37:57 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-04-05 12:37:21 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-04-05 12:37:21 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-04-05 12:37:21 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-04-05 12:37:21 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-04-05 12:36:59 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-04-05 12:36:59 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-04-05 12:36:59 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-04-05 12:36:59 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\nlasvc.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\nlaapi.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\netevent.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\netcorehc.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\ncsi.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-04-05 12:36:59 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-04-05 12:36:33 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\wksprtPS.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\wksprt.exe
2013-04-05 12:36:33 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-04-05 12:36:33 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-04-05 12:36:33 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\tsgqec.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\rdpudd.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\rdpcorets.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\mstscax.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\mstsc.exe
2013-04-05 12:36:33 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-04-05 12:36:33 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-04-05 12:36:33 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-04-05 12:36:33 ----A---- C:\Windows\system32\aaclient.dll
2013-04-05 12:36:00 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-04-05 12:36:00 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-04-05 12:36:00 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-04-05 12:36:00 ----A---- C:\Windows\system32\schannel.dll
2013-04-05 12:36:00 ----A---- C:\Windows\system32\lsasrv.dll
2013-04-05 12:36:00 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-04-05 12:36:00 ----A---- C:\Windows\system32\drivers\cng.sys
2013-04-05 12:35:42 ----A---- C:\Windows\SYSWOW64\srclient.dll
2013-04-05 12:35:42 ----A---- C:\Windows\system32\srcore.dll
2013-04-05 12:35:29 ----A---- C:\Windows\system32\spoolsv.exe
2013-04-05 12:35:29 ----A---- C:\Windows\splwow64.exe
2013-04-05 12:35:04 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-04-05 12:34:53 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-04-05 12:34:40 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-04-05 12:34:40 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-04-05 12:34:29 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-04-05 12:34:29 ----A---- C:\Windows\system32\qdvd.dll
2013-04-05 12:34:20 ----A---- C:\Windows\system32\profsvc.dll
2013-04-05 12:34:10 ----A---- C:\Windows\SYSWOW64\msi.dll
2013-04-05 12:34:10 ----A---- C:\Windows\system32\msi.dll
2013-04-05 12:33:58 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2013-04-05 12:33:58 ----A---- C:\Windows\system32\ntshrui.dll
2013-04-05 12:33:16 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2013-04-05 12:33:16 ----A---- C:\Windows\system32\xmllite.dll
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-04-05 12:33:07 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\tquery.dll
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\mssph.dll
2013-04-05 12:32:56 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2013-04-05 12:32:55 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2013-04-05 12:32:55 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2013-04-05 12:32:55 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\tquery.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-04-05 12:32:55 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-04-05 12:32:55 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-04-05 12:32:55 ----A---- C:\Windows\system32\mssvp.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\mssrch.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\mssphtb.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\mssph.dll
2013-04-05 12:32:55 ----A---- C:\Windows\system32\msscntrs.dll
2013-04-05 12:32:29 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-04-05 12:32:21 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2013-04-05 12:32:21 ----A---- C:\Windows\system32\prevhost.exe
2013-04-05 12:32:07 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-04-05 12:32:07 ----A---- C:\Windows\explorer.exe
2013-04-04 15:22:49 ----SHD---- C:\Config.Msi
2013-03-30 10:53:59 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2013-03-30 10:53:59 ----A---- C:\Windows\system32\drivers\avipbb.sys
2013-03-30 10:53:59 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2013-03-30 10:48:38 ----A---- C:\Windows\system32\RtNicProp64.dll
2013-03-30 10:48:38 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2013-03-28 19:18:56 ----D---- C:\ProgramData\WarThunder
2013-03-26 18:17:33 ----D---- C:\ProgramData\LJW
2013-03-26 18:17:31 ----SHD---- C:\ProgramData\MFYLKX
2013-03-26 13:56:34 ----A---- C:\Windows\system32\drivers\asmtxhci.sys
2013-03-26 13:56:16 ----A---- C:\Windows\system32\drivers\asmthub3.sys
2013-03-26 13:55:55 ----A---- C:\Windows\system32\drivers\amdkmpfd.sys
2013-03-26 12:11:01 ----D---- C:\ProgramData\BrowserProtect
2013-03-26 12:09:52 ----A---- C:\Windows\system32\drivers\amdide64.sys
2013-03-26 12:07:31 ----A---- C:\Windows\system32\WavesGUILib.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\tosade.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\tepeqapo64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\tadefxapo264.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\tadefxapo.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\SFSS_APO.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\SFNHK64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\SFCOM64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\SFAPO64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RtkApi64.dll
2013-03-26 12:07:31 ----A---- C:\Windows\system32\RTCOM64.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\RCoRes64.dat
2013-03-26 12:07:30 ----A---- C:\Windows\system32\RCoInstII64.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EEP64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EEL64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EEG64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EED64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\R4EEA64A.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-03-26 12:07:30 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-03-26 12:07:30 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2013-03-26 12:07:29 ----A---- C:\Windows\system32\KAAPORT64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\FMAPO64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\AERTAR64.dll
2013-03-26 12:07:29 ----A---- C:\Windows\system32\AERTAC64.dll
2013-03-26 12:06:28 ----A---- C:\Windows\system32\drivers\wdfcoinstaller01009.dll
2013-03-26 12:06:28 ----A---- C:\Windows\system32\drivers\wacomrouterfilter.sys
2013-03-26 12:06:15 ----A---- C:\Windows\system32\DelayAPO.dll
2013-03-26 11:59:02 ----D---- C:\Users\Roman\AppData\Roaming\ExpressFiles
2013-03-26 11:31:34 ----D---- C:\ProgramData\Uniblue
2013-03-26 11:03:28 ----D---- C:\Users\Roman\AppData\Roaming\Fighters
2013-03-26 11:00:25 ----D---- C:\ProgramData\Fighters
2013-03-25 10:36:42 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-03-25 10:36:41 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-03-25 10:36:41 ----A---- C:\Windows\system32\elshyph.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\url.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-03-25 10:36:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\wininet.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\wextract.exe
2013-03-25 10:36:40 ----A---- C:\Windows\system32\webcheck.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\vbscript.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\urlmon.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\url.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-03-25 10:36:40 ----A---- C:\Windows\system32\msrating.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\msls31.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\mshtmled.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\mshtml.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\msfeeds.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\licmgr10.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\jsproxy.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\inseng.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iexpress.exe
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iesetup.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iertutil.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iernonce.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\iedkcs32.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\ieapfltr.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\ieapfltr.dat
2013-03-25 10:36:40 ----A---- C:\Windows\system32\ie4uinit.exe
2013-03-25 10:36:40 ----A---- C:\Windows\system32\icardie.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\dxtrans.dll
2013-03-25 10:36:40 ----A---- C:\Windows\system32\dxtmsft.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-03-25 10:36:39 ----A---- C:\Windows\system32\pngfilt.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\occache.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\mshtmler.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\mshta.exe
2013-03-25 10:36:39 ----A---- C:\Windows\system32\msfeedssync.exe
2013-03-25 10:36:39 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\jscript9.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\jscript.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\imgutil.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\ieUnatt.exe
2013-03-25 10:36:39 ----A---- C:\Windows\system32\ieui.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\iesysprep.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\iepeers.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\ieframe.dll
2013-03-25 10:36:39 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-25 10:35:34 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-03-25 10:35:34 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\XpsPrint.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\WMPhoto.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\UIAnimation.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\FntCache.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\dxgi.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\DWrite.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d11.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10warp.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10level9.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10core.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10_1.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d3d10.dll
2013-03-25 10:35:34 ----A---- C:\Windows\system32\d2d1.dll
2013-03-24 20:41:25 ----A---- C:\Windows\system32\E_ILMCDE.DLL
2013-03-24 20:41:25 ----A---- C:\Windows\system32\E_GCINST.DLL
2013-03-24 20:41:24 ----A---- C:\Windows\system32\E_IBCBCDE.DLL
2013-03-24 09:58:10 ----A---- C:\Windows\system32\drivers\SmartDefragDriver.sys
2013-03-24 09:52:38 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-03-24 09:52:13 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-03-24 09:52:13 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-03-24 09:52:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-03-24 09:50:40 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-03-24 09:50:40 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-03-24 09:50:27 ----A---- C:\Windows\system32\win32k.sys
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\user.exe
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-03-24 09:50:13 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-03-24 09:50:13 ----A---- C:\Windows\system32\winsrv.dll
2013-03-24 09:47:14 ----A---- C:\Windows\system32\taskhost.exe
2013-03-24 09:46:28 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-03-24 09:46:28 ----A---- C:\Windows\system32\win32spl.dll
2013-03-24 09:46:05 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-03-24 09:46:05 ----A---- C:\Windows\system32\ncrypt.dll
2013-03-24 09:45:06 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-03-24 09:45:06 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-03-24 09:45:06 ----A---- C:\Windows\system32\msxml6.dll
2013-03-24 09:45:06 ----A---- C:\Windows\system32\msxml3.dll
2013-03-24 09:26:20 ----D---- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-03-22 11:42:17 ----D---- C:\ProgramData\SUPERSetup
2013-03-19 19:41:03 ----D---- C:\Users\Roman\AppData\Roaming\NCdownloader
2013-03-19 19:40:37 ----D---- C:\ProgramData\SSeauraccho-NewwTab
2013-03-19 19:40:37 ----D---- C:\ProgramData\SoftSafe
2013-03-19 19:40:35 ----D---- C:\Program Files (x86)\WebSearch
2013-03-19 19:40:19 ----D---- C:\ProgramData\BetterSoft
2013-03-19 19:40:14 ----D---- C:\Program Files (x86)\Optimizer Pro
2013-03-19 19:39:50 ----D---- C:\Program Files (x86)\BrowseToSave
2013-03-19 19:39:39 ----D---- C:\ProgramData\Browsee2Save
2013-03-19 19:39:27 ----D---- C:\Program Files (x86)\Solibo Ltd
2013-03-08 12:45:15 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-03-07 14:54:49 ----D---- C:\Program Files (x86)\TeamViewer
2013-03-05 23:38:19 ----D---- C:\Users\Roman\AppData\Roaming\The Creative Assembly
2013-02-27 13:14:24 ----D---- C:\ProgramData\ATI
2013-02-27 13:14:22 ----D---- C:\Program Files (x86)\AMD AVT
2013-02-27 13:14:15 ----D---- C:\Program Files (x86)\AMD APP
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\ati2edxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-02-27 13:10:53 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-02-27 13:10:53 ----A---- C:\Windows\system32\drivers\AtihdW76.sys
2013-02-27 13:10:53 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\coinst_9.012.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\ativvaxy_cik_nd.dat
2013-02-27 13:10:53 ----A---- C:\Windows\system32\ativvaxy_cik.dat
2013-02-27 13:10:53 ----A---- C:\Windows\system32\ativce02.dat
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiumd6a.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiumd64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atitmm64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atio6axx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atimuixx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atimpc64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiicdxx.dat
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiglpxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atig6txx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atig6pxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiesrxx.exe
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiedu64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atieclxx.exe
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atidemgy.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\aticalrt64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\aticaldd64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\aticalcl64.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiapfxx.exe
2013-02-27 13:10:53 ----A---- C:\Windows\system32\atiadlxx.dll
2013-02-27 13:10:53 ----A---- C:\Windows\system32\amdpcom64.dll
2013-02-19 20:05:44 ----A---- C:\Windows\system32\E_ILMACE.DLL
2013-02-19 20:05:44 ----A---- C:\Windows\system32\E_IBCBACE.DLL
2013-02-19 20:05:32 ----D---- C:\ProgramData\EPSON
2013-02-19 19:41:43 ----D---- C:\Program Files (x86)\EPSON
2013-02-19 19:41:38 ----A---- C:\Windows\EPSMTL32.TXT
2013-02-19 19:41:27 ----D---- C:\EPSON
2013-02-19 10:37:47 ----A---- C:\Windows\SYSWOW64\winver.exe
2013-02-19 10:37:47 ----A---- C:\Windows\SYSWOW64\user32.dll
2013-02-19 10:37:47 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2013-02-19 10:37:47 ----A---- C:\Windows\SYSWOW64\slmgr.vbs
2013-02-15 09:11:49 ----D---- C:\Program Files (x86)\Clarus
2013-02-15 08:47:11 ----D---- C:\Program Files (x86)\ESWin
2013-02-15 07:53:10 ----A---- C:\TDSSKiller.2.7.11.0_15.02.2013_06.53.10_log.txt
2013-02-14 20:32:51 ----D---- C:\Program Files (x86)\LSoft Technologies
2013-02-13 17:01:22 ----D---- C:\Users\Roman\AppData\Roaming\WinDbg
2013-02-13 16:57:16 ----D---- C:\Users\Roman\AppData\Roaming\SaMp
2013-02-11 18:38:32 ----D---- C:\Users\Roman\AppData\Roaming\Software Informer
2013-02-11 18:37:07 ----D---- C:\Program Files\Software Informer
2013-02-09 15:53:42 ----D---- C:\Users\Roman\AppData\Roaming\VitySoft
2013-02-09 00:17:08 ----D---- C:\Users\Roman\AppData\Roaming\SFBot
2013-02-04 17:47:18 ----A---- C:\Windows\SYSWOW64\SPORDER.DLL
2013-02-02 04:16:08 ----D---- C:\Users\Roman\AppData\Roaming\Omerta
2013-01-28 20:43:34 ----A---- C:\Windows\system32\HMIPCore64.dll
2013-01-28 18:33:23 ----A---- C:\Windows\SYSWOW64\HMIPCore.dll
2013-01-27 10:04:23 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-01-25 23:36:55 ----D---- C:\Users\Roman\AppData\Roaming\Pamela
2013-01-13 19:45:17 ----D---- C:\ProgramData\TERA
2013-01-10 21:44:02 ----A---- C:\Windows\system32\drivers\taphss6.sys
2013-01-10 21:33:50 ----A---- C:\Windows\system32\drivers\hssdrv6.sys
2013-01-09 20:53:49 ----D---- C:\ProgramData\FLEXnet
2013-01-09 19:17:21 ----D---- C:\Windows\fonts\Fonts
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\vxblock.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxwave.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxsfs.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxmas.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxinsi64.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxinsa64.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxhpinst.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxdrv.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxcpyi64.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxcpya64.exe
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\pxafs.dll
2013-01-09 19:17:04 ----N---- C:\Windows\SYSWOW64\px.dll
2013-01-09 19:17:04 ----N---- C:\Windows\system32\drivers\PxHlpa64.sys
2013-01-09 19:17:04 ----N---- C:\Windows\system32\drivers\cdralw2k.sys
2013-01-09 19:17:04 ----N---- C:\Windows\system32\drivers\cdr4_xp.sys
2013-01-08 19:25:11 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2013-01-08 19:14:05 ----D---- C:\Program Files\Adobe
2013-01-08 19:09:37 ----D---- C:\Program Files\Common Files\Adobe
2013-01-08 17:21:41 ----D---- C:\Users\Roman\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
