VIRY.CZ

Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2013-04-14 11:42:53
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 83 GB (27%) free of 305 GB
Total RAM: 3326 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:06:24, on 14. 4. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
C:\Users\Milan\Downloads\RSIT.exe
C:\Program Files\trend micro\Milan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre8\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre8\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" -f "C:\ProgramData\NVIDIA\Updatus\NvTmru\nvtmru.dat"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-220173659-3915245972-3140946241-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-220173659-3915245972-3140946241-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{E89A1804-1EAF-4782-A957-99F4B7E17D7A}: NameServer = 8.8.8.8,217.119.113.244,217.119.113.245
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 7348 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\RegAce Scheduled Scan - Milan.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.sk/"
prefs.js - "keyword.URL" - "http://www.google.com/search?ie=UTF-8&oe=utf-8&q="

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.0.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.0.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\searchplugins\
conduit.xml
funmoods.xml
hulkshare.xml
s-amazon-byskipity-int.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre8\bin\ssv.dll [2013-04-11 462736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-29 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre8\bin\jp2ssv.dll [2013-04-11 171920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-29 266240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-03-07 4767304]
"Nvtmru"=C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-03-24 976672]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON SX218 Series]
C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGDE.EXE [2009-09-14 200704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HKCU]
C:\Users\Milan\AppData\Roaming\system32\svchost.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Program Files\Internet Download Manager\IDMan.exe /onboot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nvtmru]
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-03-24 976672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\Program Files\OO Software\Defrag\oodtray.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 11734240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\Steam.exe -silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-04-04 259448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
C:\Windows\INSTAL~1\{45F26~1\DEFRAG~1.EXE []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"VIDC.FPS1"=frapsvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-04-14 11:42:53 ----D---- C:\rsit
2013-04-14 11:42:53 ----D---- C:\Program Files\trend micro
2013-04-14 11:12:28 ----A---- C:\Windows\system32\jscript.dll
2013-04-14 11:12:27 ----A---- C:\Windows\system32\jsproxy.dll
2013-04-14 11:12:27 ----A---- C:\Windows\system32\jscript9.dll
2013-04-14 11:12:26 ----A---- C:\Windows\system32\ieui.dll
2013-04-14 11:12:26 ----A---- C:\Windows\system32\iesetup.dll
2013-04-14 11:12:25 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-04-14 11:12:25 ----A---- C:\Windows\system32\msfeeds.dll
2013-04-14 11:12:25 ----A---- C:\Windows\system32\iesysprep.dll
2013-04-14 11:12:25 ----A---- C:\Windows\system32\iernonce.dll
2013-04-14 11:12:25 ----A---- C:\Windows\system32\ie4uinit.exe
2013-04-14 11:12:24 ----A---- C:\Windows\system32\urlmon.dll
2013-04-14 11:12:24 ----A---- C:\Windows\system32\iertutil.dll
2013-04-14 11:12:21 ----A---- C:\Windows\system32\wininet.dll
2013-04-14 11:12:19 ----A---- C:\Windows\system32\ieframe.dll
2013-04-14 11:12:17 ----A---- C:\Windows\system32\mshtml.dll
2013-04-14 11:09:15 ----A---- C:\Windows\system32\win32k.sys
2013-04-14 11:09:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-04-14 11:09:10 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-04-14 11:09:09 ----A---- C:\Windows\system32\smss.exe
2013-04-14 11:09:09 ----A---- C:\Windows\system32\csrsrv.dll
2013-04-13 18:45:21 ----D---- C:\Program Files\UltraDefrag
2013-04-12 08:16:37 ----D---- C:\Program Files\Mozilla Firefox
2013-04-12 06:49:12 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-04-11 22:11:45 ----D---- C:\Program Files\Common Files\Java
2013-04-11 22:11:05 ----A---- C:\Windows\system32\javaws.exe
2013-04-11 22:10:59 ----A---- C:\Windows\system32\javaw.exe
2013-04-11 22:10:59 ----A---- C:\Windows\system32\java.exe
2013-04-11 18:02:43 ----D---- C:\Users\Milan\AppData\Roaming\log
2013-04-11 15:43:12 ----D---- C:\Users\Milan\AppData\Roaming\.minecraft
2013-04-07 11:58:35 ----D---- C:\ProgramData\vsosdk
2013-04-06 18:29:14 ----D---- C:\ProgramData\VSO
2013-04-05 20:43:00 ----D---- C:\Program Files\LogMeIn Hamachi
2013-04-05 05:39:59 ----D---- C:\Program Files\AVI to MP3
2013-04-01 19:40:43 ----A---- C:\Counter-Strike Source.lnk
2013-04-01 11:40:26 ----A---- C:\Windows\system32\udefrag.exe
2013-04-01 11:40:22 ----A---- C:\Windows\system32\hibernate4win.exe
2013-04-01 11:40:20 ----A---- C:\Windows\system32\bootexctrl.exe
2013-04-01 11:40:18 ----A---- C:\Windows\system32\wgx.dll
2013-04-01 11:40:08 ----A---- C:\Windows\system32\lua5.1a.dll
2013-04-01 11:39:52 ----A---- C:\Windows\system32\defrag_native.exe
2013-04-01 11:39:28 ----A---- C:\Windows\system32\udefrag.dll
2013-04-01 11:39:18 ----A---- C:\Windows\system32\zenwinx.dll
2013-03-31 21:06:21 ----D---- C:\ProgramData\Codemasters
2013-03-31 20:45:02 ----D---- C:\Program Files\F1 2012
2013-03-29 08:21:27 ----A---- C:\Windows\unvise32.exe
2013-03-28 22:06:09 ----D---- C:\ProgramData\FLEXnet
2013-03-28 21:58:45 ----D---- C:\Program Files\Adobe Media Player
2013-03-28 21:55:09 ----D---- C:\Program Files\Common Files\Macrovision Shared
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvopencl.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvoglv32.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvdispgenco3231422.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvdispco3231422.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvcuvid.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvcuda.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-03-26 15:29:24 ----A---- C:\Windows\system32\nvcompiler.dll
2013-03-25 15:13:02 ----D---- C:\Windows\system32\oodag
2013-03-25 15:10:15 ----D---- C:\ProgramData\OO Software
2013-03-24 09:09:17 ----A---- C:\Windows\gpedit.msc
2013-03-23 22:44:33 ----D---- C:\ProgramData\APN
2013-03-23 19:29:09 ----D---- C:\Windows\SysWOW64
2013-03-23 19:29:07 ----A---- C:\Windows\unins000.exe
2013-03-23 19:29:07 ----A---- C:\Windows\unins000.dat
2013-03-23 17:20:51 ----D---- C:\Users\Milan\AppData\Roaming\update_tc
2013-03-23 08:32:45 ----D---- C:\Program Files\Cracked Steam
2013-03-23 08:22:45 ----D---- C:\Program Files\Common Files\Steam
2013-03-23 08:22:43 ----D---- C:\Program Files (x86)
2013-03-22 23:25:16 ----D---- C:\Program Files\CCleaner
2013-03-22 17:06:55 ----A---- C:\Windows\UnDeployV.exe
2013-03-21 17:42:08 ----A---- C:\Windows\IsUninst.exe
2013-03-21 15:13:44 ----D---- C:\Users\Milan\AppData\Roaming\Thinstall
2013-03-21 15:10:57 ----D---- C:\Program Files\CBS Software
2013-03-21 08:16:27 ----D---- C:\Users\Milan\AppData\Roaming\Vso
2013-03-21 08:16:27 ----A---- C:\Windows\system32\drivers\pcouffin.sys
2013-03-21 08:16:27 ----A---- C:\Users\Milan\AppData\Roaming\pcouffin.sys
2013-03-21 08:16:27 ----A---- C:\Users\Milan\AppData\Roaming\inst.exe
2013-03-21 08:16:23 ----A---- C:\Windows\system32\sipr3260.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\Pncrt.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\drv43260.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\drv33260.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\drv23260.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\cook3260.dll
2013-03-21 08:16:20 ----D---- C:\Program Files\VSO
2013-03-19 19:34:33 ----D---- C:\Users\Milan\AppData\Roaming\Auslogics
2013-03-19 19:32:03 ----D---- C:\Program Files\Auslogics
2013-03-17 09:24:58 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-03-17 09:24:58 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-03-17 09:24:56 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-03-17 09:24:56 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-03-17 09:24:53 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-03-17 09:24:47 ----A---- C:\Windows\system32\wksprtPS.dll
2013-03-17 09:24:47 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-03-17 09:24:47 ----A---- C:\Windows\system32\tsgqec.dll
2013-03-17 09:24:47 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-03-17 09:24:46 ----A---- C:\Windows\system32\wksprt.exe
2013-03-17 09:24:46 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-03-17 09:24:46 ----A---- C:\Windows\system32\rdpudd.dll
2013-03-17 09:24:46 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-03-17 09:24:46 ----A---- C:\Windows\system32\mstsc.exe
2013-03-17 09:24:46 ----A---- C:\Windows\system32\aaclient.dll
2013-03-17 09:24:45 ----A---- C:\Windows\system32\rdpcorets.dll
2013-03-17 09:24:45 ----A---- C:\Windows\system32\mstscax.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\wextract.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\webcheck.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\vbscript.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\url.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\pngfilt.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\occache.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\msrating.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\msls31.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\mshtmler.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\mshtmled.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\mshta.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\msfeedssync.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\licmgr10.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\inseng.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\imgutil.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\iexpress.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\ieUnatt.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\iepeers.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\iedkcs32.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\ieapfltr.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\ieapfltr.dat
2013-03-17 09:16:16 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\icardie.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\elshyph.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\dxtrans.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\dxtmsft.dll
2013-03-17 09:15:43 ----A---- C:\Windows\system32\taskhost.exe
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\XpsPrint.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\WMPhoto.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\UIAnimation.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\FntCache.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\dxgi.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\DWrite.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d11.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10warp.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10level9.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10core.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10_1.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d2d1.dll
2013-03-17 09:11:36 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-03-17 09:11:32 ----A---- C:\Windows\system32\nlasvc.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\nlaapi.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\netevent.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\netcorehc.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\ncsi.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-03-17 09:11:02 ----A---- C:\Windows\system32\schannel.dll
2013-03-17 09:11:02 ----A---- C:\Windows\system32\lsasrv.dll
2013-03-17 09:11:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-03-17 09:11:02 ----A---- C:\Windows\system32\drivers\cng.sys
2013-03-17 09:10:58 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-03-17 09:10:58 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-03-17 09:10:51 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-03-17 09:10:50 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-03-17 09:10:50 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-03-17 09:10:49 ----A---- C:\Windows\system32\qdvd.dll
2013-03-16 12:18:27 ----A---- C:\Windows\system32\svc_host.dat
2013-03-16 12:16:25 ----D---- C:\Program Files\Prime Benchmark
2013-03-16 12:01:55 ----D---- C:\Windows\system32\SPReview
2013-03-16 11:41:40 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-03-16 11:41:40 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mprddm.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\MdSched.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\Mcx2Svc.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mcbuilder.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mblctr.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mapistub.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mapi32.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\lsmproxy.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\lpremove.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\lpksetup.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\LogonUI.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KMSVC.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDUS.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDPO.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDINTEL.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDINBEN.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDBULG.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\drivers\ks.sys
2013-03-16 11:41:38 ----A---- C:\Windows\system32\netiougc.exe
2013-03-16 11:41:38 ----A---- C:\Windows\system32\netiohlp.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\netcfgx.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\ncryptui.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\Mystify.scr
2013-03-16 11:41:38 ----A---- C:\Windows\system32\msvfw32.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\mcmde.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\mciavi32.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2013-03-16 11:41:37 ----A---- C:\Windows\system32\olepro32.dll
2013-03-16 11:41:37 ----A---- C:\Windows\system32\odbc32.dll
2013-03-16 11:41:37 ----A---- C:\Windows\system32\ntlanman.dll
2013-03-16 11:41:37 ----A---- C:\Windows\system32\msvidc32.dll
2013-03-16 11:41:36 ----A---- C:\Windows\system32\nlsbres.dll
2013-03-16 11:41:36 ----A---- C:\Windows\system32\mscories.dll
2013-03-16 11:41:36 ----A---- C:\Windows\system32\mscoree.dll
2013-03-16 11:41:36 ----A---- C:\Windows\system32\msconfig.exe
2013-03-16 11:41:36 ----A---- C:\Windows\system32\drivers\msahci.sys
2013-03-16 11:41:35 ----A---- C:\Windows\system32\mstask.dll
2013-03-16 11:41:35 ----A---- C:\Windows\system32\msrle32.dll
2013-03-16 11:41:35 ----A---- C:\Windows\system32\msdri.dll
2013-03-16 11:41:35 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2013-03-16 11:41:34 ----A---- C:\Windows\system32\cryptui.dll
2013-03-16 11:41:34 ----A---- C:\Windows\system32\consent.exe
2013-03-16 11:41:34 ----A---- C:\Windows\system32\certcli.dll
2013-03-16 11:41:34 ----A---- C:\Windows\system32\C_ISCII.DLL
2013-03-16 11:41:34 ----A---- C:\Windows\system32\bootres.dll
2013-03-16 11:41:34 ----A---- C:\Windows\system32\biocpl.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\Display.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\dfshim.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\davclnt.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\d3d9.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-03-16 11:41:32 ----A---- C:\Windows\system32\drivers\acpi.sys
2013-03-16 11:41:32 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2013-03-16 11:41:32 ----A---- C:\Windows\system32\basecsp.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\AxInstSv.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\asycfilt.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\adsldp.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\activeds.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\acppage.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\iasrecst.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\httpapi.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\halacpi.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\hal.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\avifil32.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\authui.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\appinfo.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\advapi32.dll
2013-03-16 11:41:30 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2013-03-16 11:41:30 ----A---- C:\Windows\system32\imapi2.dll
2013-03-16 11:41:30 ----A---- C:\Windows\system32\halmacpi.dll
2013-03-16 11:41:30 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2013-03-16 11:41:29 ----A---- C:\Windows\system32\FXSSVC.exe
2013-03-16 11:41:29 ----A---- C:\Windows\system32\fveapi.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\ExplorerFrame.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\evr.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\eudcedit.exe
2013-03-16 11:41:29 ----A---- C:\Windows\system32\dskquoui.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\dsauth.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\dps.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\onex.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\FXSMON.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\framedynos.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\framedyn.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\fms.dll
2013-03-16 11:41:27 ----A---- C:\Windows\twain_32.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\twext.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\themecpl.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\tcpipcfg.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\tapisrv.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\spp.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\StructuredQuery.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\spwizeng.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\sppobjs.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\sppnp.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\spbcd.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\shlwapi.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\shacct.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\wmicmiplugin.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\wlangpui.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\winhttp.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\wiadefui.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\sscore.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\srvsvc.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\srrstr.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\sqlsrv32.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\spwizres.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\XpsRasterService.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wvc.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wtsapi32.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wsqmcons.exe
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wscapi.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wpd_ci.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wmpps.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wimserv.exe
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wimgapi.dll
2013-03-16 11:41:23 ----A---- C:\Windows\system32\WPDSp.dll
2013-03-16 11:41:23 ----A---- C:\Windows\system32\VAN.dll
2013-03-16 11:41:23 ----A---- C:\Windows\system32\uxlib.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\wdc.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\WavDest.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\utildll.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\untfs.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\unlodctr.exe
2013-03-16 11:41:22 ----A---- C:\Windows\system32\unattend.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\umpo.dll
2013-03-16 11:41:21 ----A---- C:\Windows\system32\Vault.dll
2013-03-16 11:41:21 ----A---- C:\Windows\system32\RDPENCDD.dll
2013-03-16 11:41:21 ----A---- C:\Windows\system32\drivers\wanarp.sys
2013-03-16 11:41:20 ----A---- C:\Windows\system32\samcli.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\rpcss.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\Robocopy.exe
2013-03-16 11:41:20 ----A---- C:\Windows\system32\RMActivate.exe
2013-03-16 11:41:20 ----A---- C:\Windows\system32\remotepg.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\recovery.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\ReAgent.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\raschap.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\RacEngn.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2013-03-16 11:41:20 ----A---- C:\Windows\system32\QSHVHOST.DLL
2013-03-16 11:41:20 ----A---- C:\Windows\system32\QCLIPROV.DLL
2013-03-16 11:41:20 ----A---- C:\Windows\system32\QAGENTRT.DLL
2013-03-16 11:41:20 ----A---- C:\Windows\system32\pifmgr.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2013-03-16 11:41:19 ----A---- C:\Windows\system32\QAGENT.DLL
2013-03-16 11:41:19 ----A---- C:\Windows\system32\proquota.exe
2013-03-16 11:41:19 ----A---- C:\Windows\system32\propsys.dll
2013-03-16 11:41:19 ----A---- C:\Windows\system32\perfts.dll
2013-03-16 11:41:19 ----A---- C:\Windows\system32\perfmon.exe
2013-03-16 11:41:19 ----A---- C:\Windows\system32\pdhui.dll
2013-03-16 11:41:19 ----A---- C:\Windows\system32\onexui.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\setupcl.exe
2013-03-16 11:41:18 ----A---- C:\Windows\system32\secproc.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\scecli.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\scansetting.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\prnfldr.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2013-03-16 11:41:18 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2013-03-16 11:41:17 ----A---- C:\Windows\system32\schtasks.exe
2013-03-16 11:41:17 ----A---- C:\Windows\system32\mfreadwrite.dll
2013-03-16 11:41:17 ----A---- C:\Windows\system32\MFPlay.dll
2013-03-16 11:41:17 ----A---- C:\Windows\system32\mfc40.dll
2013-03-16 11:41:16 ----A---- C:\Windows\system32\msasn1.dll
2013-03-16 11:41:16 ----A---- C:\Windows\system32\mobsync.exe
2013-03-16 11:41:15 ----A---- C:\Windows\system32\MMDevAPI.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\mmcndmgr.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\mciqtz32.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\logman.exe
2013-03-16 11:41:15 ----A---- C:\Windows\system32\logagent.exe
2013-03-16 11:41:15 ----A---- C:\Windows\system32\localsec.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\ListSvc.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDTUQ.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDTUF.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDNEPR.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDBLR.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDBASH.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\itircl.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\iprtrmgr.dll
2013-03-16 11:41:14 ----A---- C:\Windows\system32\ntprint.dll
2013-03-16 11:41:14 ----A---- C:\Windows\system32\lsm.exe
2013-03-16 11:41:13 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2013-03-16 11:41:13 ----A---- C:\Windows\system32\msscp.dll
2013-03-16 11:41:12 ----A---- C:\Windows\system32\MuiUnattend.exe
2013-03-16 11:41:12 ----A---- C:\Windows\system32\muifontsetup.dll
2013-03-16 11:41:12 ----A---- C:\Windows\system32\mtxclu.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\nslookup.exe
2013-03-16 11:41:11 ----A---- C:\Windows\system32\nshipsec.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\netutils.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\netplwiz.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\netid.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\Narrator.exe
2013-03-16 11:41:11 ----A---- C:\Windows\system32\NAPHLPR.DLL
2013-03-16 11:41:11 ----A---- C:\Windows\system32\mydocs.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\msnetobj.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\msihnd.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\msdtctm.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2013-03-16 11:41:10 ----A---- C:\Windows\system32\credui.dll
2013-03-16 11:41:10 ----A---- C:\Windows\system32\comdlg32.dll
2013-03-16 11:41:10 ----A---- C:\Windows\system32\cmstp.exe
2013-03-16 11:41:09 ----A---- C:\Windows\system32\diskpart.exe
2013-03-16 11:41:09 ----A---- C:\Windows\system32\dhcpcore.dll
2013-03-16 11:41:08 ----A---- C:\Windows\system32\bitsadmin.exe
2013-03-16 11:41:08 ----A---- C:\Windows\system32\bcdsrv.dll
2013-03-16 11:41:08 ----A---- C:\Windows\system32\bcdedit.exe
2013-03-16 11:41:08 ----A---- C:\Windows\system32\bcdboot.exe
2013-03-16 11:41:08 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\certprop.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\CertEnroll.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\apphelp.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\amstream.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\accessibilitycpl.dll
2013-03-16 11:41:06 ----A---- C:\Windows\system32\Bubbles.scr
2013-03-16 11:41:06 ----A---- C:\Windows\system32\blackbox.dll
2013-03-16 11:41:05 ----A---- C:\Windows\system32\fphc.dll
2013-03-16 11:41:05 ----A---- C:\Windows\system32\fontext.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\input.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\imm32.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\imapi2fs.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\iasrad.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\iasacct.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\efscore.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\dxdiagn.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\dwmredir.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\drmmgrtn.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\dot3ui.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\dosx.exe
2013-03-16 11:41:01 ----A---- C:\Windows\system32\themeui.dll
2013-03-16 11:41:01 ----A---- C:\Windows\system32\taskschd.dll
2013-03-16 11:41:01 ----A---- C:\Windows\system32\TabSvc.dll
2013-03-16 11:41:01 ----A---- C:\Windows\system32\systemcpl.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\umb.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\tzutil.exe
2013-03-16 11:41:00 ----A---- C:\Windows\system32\tsmf.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\TRAPI.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\SyncCenter.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\sxs.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\sud.dll
2013-03-16 11:40:59 ----A---- C:\Windows\system32\sysmain.dll
2013-03-16 11:40:59 ----A---- C:\Windows\system32\ssText3d.scr
2013-03-16 11:40:59 ----A---- C:\Windows\system32\srvcli.dll
2013-03-16 11:40:57 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-03-16 11:40:57 ----A---- C:\Windows\system32\wmpsrcwp.dll
2013-03-16 11:40:57 ----A---- C:\Windows\system32\WMADMOD.DLL
2013-03-16 11:40:57 ----A---- C:\Windows\system32\wisptis.exe
2013-03-16 11:40:57 ----A---- C:\Windows\system32\WinSAT.exe
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wshbth.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\WSDApi.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\ws2_32.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wpdbusenum.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wmdrmsdk.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\Wldap32.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wkssvc.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\vssapi.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\vpnike.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\usercpl.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\upnp.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2013-03-16 11:40:55 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2013-03-16 11:40:55 ----A---- C:\Windows\system32\drivers\USBCAMD.sys
2013-03-16 11:40:54 ----A---- C:\Windows\system32\werconcpl.dll
2013-03-16 11:40:54 ----A---- C:\Windows\system32\vdsutil.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\vds.exe
2013-03-16 11:40:53 ----A---- C:\Windows\system32\riched32.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\riched20.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\relog.exe
2013-03-16 11:40:53 ----A---- C:\Windows\system32\recdisc.exe
2013-03-16 11:40:53 ----A---- C:\Windows\system32\rdpcfgex.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\rastls.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\printui.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-03-16 11:40:53 ----A---- C:\Windows\system32\drivers\RDPCDD.sys
2013-03-16 11:40:52 ----A---- C:\Windows\system32\provsvc.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\prncache.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PresentationHost.exe
2013-03-16 11:40:52 ----A---- C:\Windows\system32\powercpl.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PkgMgr.exe
2013-03-16 11:40:51 ----A---- C:\Windows\system32\spreview.exe
2013-03-16 11:40:51 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\shunimpl.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\shsvcs.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\qdv.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\qcap.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\puiobj.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\srchadmin.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\sqlcese30.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\spwizui.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\sppwinob.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\sppinst.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\sppc.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\spinstall.exe
2013-03-16 11:40:50 ----A---- C:\Windows\system32\schedcli.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\SearchFolder.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\samsrv.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\drivers\scfilter.sys
2013-03-16 11:40:49 ----A---- C:\Windows\system32\schedsvc.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\shsetup.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\shimgvw.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\setupugc.exe
2013-03-16 11:40:49 ----A---- C:\Windows\system32\setupcln.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\setupapi.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\logoncli.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\MPSSVC.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\mprapi.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\mimefilt.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\mfc40u.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\drivers\mpio.sys
2013-03-16 11:40:47 ----A---- C:\Windows\system32\ocsetup.exe
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDMON.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDMAORI.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDINORI.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDGR1.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\IPSECSVC.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\ifsutil.dll
2013-03-16 11:40:47 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2013-03-16 11:40:46 ----A---- C:\Windows\system32\OobeFldr.dll
2013-03-16 11:40:46 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2013-03-16 11:40:46 ----A---- C:\Windows\system32\ocsetapi.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\rastapi.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\rasppp.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\qmgr.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\qasf.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\pla.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\pdh.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\networkmap.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\networkexplorer.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\netjoin.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\drivers\rdbss.sys
2013-03-16 11:40:44 ----A---- C:\Windows\system32\netcfg.exe
2013-03-16 11:40:44 ----A---- C:\Windows\system32\nci.dll
2013-03-16 11:40:44 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2013-03-16 11:40:44 ----A---- C:\Windows\system32\mspbda.dll
2013-03-16 11:40:44 ----A---- C:\Windows\system32\msiexec.exe
2013-03-16 11:40:44 ----A---- C:\Windows\system32\msdrm.dll
2013-03-16 11:40:44 ----A---- C:\Windows\system32\mscorier.dll
2013-03-16 11:40:44 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2013-03-16 11:40:44 ----A---- C:\Windows\system32\drivers\msdsm.sys
2013-03-16 11:40:43 ----A---- C:\Windows\system32\netfxperf.dll
2013-03-16 11:40:43 ----A---- C:\Windows\system32\MultiDigiMon.exe
2013-03-16 11:40:43 ----A---- C:\Windows\system32\msv1_0.dll
2013-03-16 11:40:43 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2013-03-16 11:40:43 ----A---- C:\Windows\system32\certmgr.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\drivers\dfsc.sys
2013-03-16 11:40:42 ----A---- C:\Windows\system32\DiagCpl.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\dfrgui.exe
2013-03-16 11:40:42 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\cscapi.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\comctl32.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\clusapi.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\ci.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\cabview.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\BlbEvents.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\drivers\appid.sys
2013-03-16 11:40:41 ----A---- C:\Windows\system32\DeviceCenter.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\dbghelp.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\dbgeng.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\cscdll.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\audiodev.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\aitagent.exe
2013-03-16 11:40:40 ----A---- C:\Windows\system32\batmeter.dll
2013-03-16 11:40:40 ----A---- C:\Windows\system32\basesrv.dll
2013-03-16 11:40:40 ----A---- C:\Windows\system32\AzSqlExt.dll
2013-03-16 11:40:40 ----A---- C:\Windows\system32\ActionQueue.dll
2013-03-16 11:40:39 ----A---- C:\Windows\system32\bitsperf.dll
2013-03-16 11:40:39 ----A---- C:\Windows\system32\autochk.exe
2013-03-16 11:40:39 ----A---- C:\Windows\bfsvc.exe
2013-03-16 11:40:38 ----A---- C:\Windows\system32\fde.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\Faultrep.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\azroles.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\autoplay.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\autofmt.exe
2013-03-16 11:40:37 ----A---- C:\Windows\system32\icaapi.dll
2013-03-16 11:40:37 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2013-03-16 11:40:37 ----A---- C:\Windows\system32\drivers\http.sys
2013-03-16 11:40:36 ----A---- C:\Windows\system32\iccvid.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\hgprint.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\gdi32.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\FXSTIFF.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\drvstore.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2013-03-16 11:40:36 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-03-16 11:40:36 ----A---- C:\Windows\system32\dot3cfg.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\diskraid.exe
2013-03-16 11:40:35 ----A---- C:\Windows\system32\UIRibbonRes.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\UIRibbon.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\TSWorkspace.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\rdpd3d.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\elsTrans.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\DxpTaskSync.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\dxmasf.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\dsuiext.dll
2013-03-16 11:40:34 ----A---- C:\Windows\system32\vaultsvc.dll
2013-03-16 11:40:34 ----A---- C:\Windows\system32\userinit.exe
2013-03-16 11:40:34 ----A---- C:\Windows\system32\user32.dll
2013-03-16 11:40:34 ----A---- C:\Windows\system32\drivers\umbus.sys
2013-03-16 11:40:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-03-16 11:40:32 ----A---- C:\Windows\system32\tlscsp.dll
2013-03-16 11:40:32 ----A---- C:\Windows\system32\taskeng.exe

Pokračovanie:

2013-03-16 11:40:32 ----A---- C:\Windows\system32\tabcal.exe
2013-03-16 11:40:32 ----A---- C:\Windows\system32\t2embed.dll
2013-03-16 11:40:32 ----A---- C:\Windows\system32\drivers\tdx.sys
2013-03-16 11:40:32 ----A---- C:\Windows\system32\drivers\tdi.sys
2013-03-16 11:40:31 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2013-03-16 11:40:31 ----A---- C:\Windows\system32\wmploc.DLL
2013-03-16 11:40:31 ----A---- C:\Windows\system32\wmp.dll
2013-03-16 11:40:31 ----A---- C:\Windows\system32\wlanui.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\zipfldr.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\xpsservices.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\wlanpref.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\WinSATAPI.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\winmm.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\drivers\winusb.sys
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wwanconn.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wsnmp32.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wpdwcn.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wpdshext.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\WMVSDECD.DLL
2013-03-16 11:40:29 ----A---- C:\Windows\system32\WMVCORE.DLL
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wdscore.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wbengine.exe
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wbemcomn.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\VSSVC.exe
2013-03-16 11:40:28 ----A---- C:\Windows\system32\winlogon.exe
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wiavideo.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wiaservc.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wiarpc.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wevtsvc.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\WerFaultSecure.exe
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wer.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\vpnikeapi.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\repair-bde.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\secproc_ssp.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\runonce.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rtutils.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rpchttp.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rpcrt4.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\Ribbons.scr
2013-03-16 11:40:27 ----A---- C:\Windows\system32\resutils.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\RelPost.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\regapi.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\RDPREFDD.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rdpencom.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\drivers\scsiport.sys
2013-03-16 11:40:26 ----A---- C:\Windows\system32\syssetup.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\syncui.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\spopk.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\slwga.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\sisbkup.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\shwebsvc.dll
2013-03-16 11:40:24 ----A---- C:\Windows\system32\spwmp.dll
2013-03-16 11:40:24 ----A---- C:\Windows\system32\shdocvw.dll
2013-03-16 11:40:24 ----A---- C:\Windows\system32\SessEnv.dll
2013-03-16 11:40:24 ----A---- C:\Windows\system32\secproc_isv.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\sdrsvc.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\sdengin2.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\sdcpl.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\sdclt.exe
2013-03-16 11:40:23 ----A---- C:\Windows\system32\scesrv.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\scavengeui.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\ReAgentc.exe
2013-03-16 11:40:23 ----A---- C:\Windows\system32\rdpdd.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\rasmans.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\QUTIL.DLL
2013-03-16 11:40:23 ----A---- C:\Windows\system32\Query.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\qedit.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\RpcRtRemote.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\RMActivate_isv.exe
2013-03-16 11:40:22 ----A---- C:\Windows\system32\msinfo32.exe
2013-03-16 11:40:22 ----A---- C:\Windows\system32\msieftp.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\msftedit.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\msdmo.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\drivers\rmcast.sys
2013-03-16 11:40:21 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\napdsnap.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\msyuv.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\mswsock.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\MSVidCtl.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\msutb.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\msorcl32.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2013-03-16 11:40:21 ----A---- C:\Windows\system32\mscms.dll
2013-03-16 11:40:20 ----A---- C:\Windows\system32\migisol.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\prntvpt.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\PnPUnattend.exe
2013-03-16 11:40:19 ----A---- C:\Windows\system32\pnidui.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\photowiz.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2013-03-16 11:40:19 ----A---- C:\Windows\system32\OpcServices.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\olethk32.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\ole32.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\drivers\pci.sys
2013-03-16 11:40:18 ----A---- C:\Windows\system32\odbcconf.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netshell.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netlogon.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netdiagfx.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netcenter.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netbtugc.exe
2013-03-16 11:40:18 ----A---- C:\Windows\system32\net1.exe
2013-03-16 11:40:18 ----A---- C:\Windows\system32\drivers\netbt.sys
2013-03-16 11:40:17 ----A---- C:\Windows\system32\wcncsvc.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\wavemsp.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\w32tm.exe
2013-03-16 11:40:17 ----A---- C:\Windows\system32\vfwwdm32.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\vdsbas.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\TSpkg.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\tsbyuv.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\nshwfp.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\nrpsrv.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\nltest.exe
2013-03-16 11:40:17 ----A---- C:\Windows\system32\drivers\volmgr.sys
2013-03-16 11:40:17 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wshirda.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wsdchngr.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wpccpl.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wmpshell.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wmpmde.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\userenv.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\unimdmat.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\drivers\udfs.sys
2013-03-16 11:40:16 ----A---- C:\Windows\system32\drivers\tunnel.sys
2013-03-16 11:40:15 ----A---- C:\Windows\system32\wusa.exe
2013-03-16 11:40:15 ----A---- C:\Windows\system32\WsmSvc.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\WMPEncEn.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\wmpeffects.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\wmpdxm.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\WMNetMgr.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\winload.exe
2013-03-16 11:40:15 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2013-03-16 11:40:14 ----A---- C:\Windows\system32\wmdrmnet.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\wmdrmdev.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\wlanmsm.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\wkscli.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\winsta.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\WinSCard.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\winresume.exe
2013-03-16 11:40:14 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2013-03-16 11:40:14 ----A---- C:\Windows\system32\webservices.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\WebClnt.dll
2013-03-16 11:40:13 ----A---- C:\Windows\system32\SndVolSSO.dll
2013-03-16 11:40:13 ----A---- C:\Windows\system32\SndVol.exe
2013-03-16 11:40:13 ----A---- C:\Windows\system32\SmiEngine.dll
2013-03-16 11:40:13 ----A---- C:\Windows\system32\slui.exe
2013-03-16 11:40:13 ----A---- C:\Windows\system32\shgina.dll
2013-03-16 11:40:13 ----A---- C:\Windows\system32\sharemediacpl.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\stobject.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sqmapi.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sppuinotify.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sppsvc.exe
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sppcomapi.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sethc.exe
2013-03-16 11:40:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\SensorsCpl.dll
2013-03-16 11:40:11 ----A---- C:\Windows\system32\thumbcache.dll
2013-03-16 11:40:11 ----A---- C:\Windows\system32\termsrv.dll
2013-03-16 11:40:11 ----A---- C:\Windows\system32\termmgr.dll
2013-03-16 11:40:11 ----A---- C:\Windows\system32\takeown.exe
2013-03-16 11:40:10 ----A---- C:\Windows\system32\taskmgr.exe
2013-03-16 11:40:10 ----A---- C:\Windows\system32\taskcomp.dll
2013-03-16 11:40:10 ----A---- C:\Windows\system32\taskbarcpl.dll
2013-03-16 11:40:10 ----A---- C:\Windows\system32\drivers\termdd.sys
2013-03-16 11:40:09 ----A---- C:\Windows\system32\sysclass.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\hgcpl.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\hbaapi.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\gpsvc.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\drivers\hidusb.sys
2013-03-16 11:40:06 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-03-16 11:40:06 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2013-03-16 11:40:05 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-03-16 11:40:05 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2013-03-16 11:40:05 ----A---- C:\Windows\system32\findstr.exe
2013-03-16 11:40:05 ----A---- C:\Windows\system32\fdeploy.dll
2013-03-16 11:40:05 ----A---- C:\Windows\system32\EhStorAPI.dll
2013-03-16 11:40:04 ----A---- C:\Windows\system32\luainstall.dll
2013-03-16 11:40:04 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-03-16 11:40:04 ----A---- C:\Windows\system32\ftp.exe
2013-03-16 11:40:03 ----A---- C:\Windows\system32\mfds.dll
2013-03-16 11:40:03 ----A---- C:\Windows\system32\mf.dll
2013-03-16 11:40:03 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2013-03-16 11:40:03 ----A---- C:\Windows\system32\manage-bde.exe
2013-03-16 11:40:03 ----A---- C:\Windows\system32\KBDTURME.DLL
2013-03-16 11:40:03 ----A---- C:\Windows\system32\KBDSG.DLL
2013-03-16 11:40:03 ----A---- C:\Windows\system32\KBDSF.DLL
2013-03-16 11:40:03 ----A---- C:\Windows\system32\KBDLT1.DLL
2013-03-16 11:40:03 ----A---- C:\Windows\system32\kbdlk41a.dll
2013-03-16 11:40:03 ----A---- C:\Windows\system32\inetmib1.dll
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDINTAM.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDINMAR.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDINKAN.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDINHIN.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDGKL.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDGEO.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDCZ1.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\isoburn.exe
2013-03-16 11:40:02 ----A---- C:\Windows\system32\iscsicli.exe
2013-03-16 11:40:02 ----A---- C:\Windows\system32\ipsmsnap.dll
2013-03-16 11:40:02 ----A---- C:\Windows\system32\inetpp.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\iyuv_32.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\iTVData.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\iscsium.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\cabinet.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\browseui.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\BFE.DLL
2013-03-16 11:40:01 ----A---- C:\Windows\system32\azroleui.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\autoconv.exe
2013-03-16 11:40:00 ----A---- C:\Windows\system32\CertPolEng.dll
2013-03-16 11:40:00 ----A---- C:\Windows\system32\audiosrv.dll
2013-03-16 11:40:00 ----A---- C:\Windows\system32\AudioSes.dll
2013-03-16 11:40:00 ----A---- C:\Windows\system32\audiodg.exe
2013-03-16 11:39:59 ----A---- C:\Windows\system32\drivers\cdrom.sys
2013-03-16 11:39:59 ----A---- C:\Windows\system32\cmd.exe
2013-03-16 11:39:59 ----A---- C:\Windows\system32\cca.dll
2013-03-16 11:39:59 ----A---- C:\Windows\system32\calc.exe
2013-03-16 11:39:59 ----A---- C:\Windows\system32\actxprxy.dll
2013-03-16 11:39:59 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2013-03-16 11:39:59 ----A---- C:\Windows\system32\ActionCenter.dll
2013-03-16 11:39:58 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2013-03-16 11:39:58 ----A---- C:\Windows\system32\aeinv.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\dpx.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\dot3svc.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\dot3msm.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\dot3api.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\aepdu.dll
2013-03-16 11:39:40 ----A---- C:\Windows\system32\djoin.exe
2013-03-16 11:39:33 ----A---- C:\Windows\system32\eapphost.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\eappgnui.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\eapp3hst.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\DXP.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\dwmcore.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\dnscmmc.dll
2013-03-16 11:39:32 ----A---- C:\Windows\system32\credssp.dll
2013-03-16 11:39:31 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2013-03-16 11:39:31 ----A---- C:\Windows\system32\diagperf.dll
2013-03-16 08:27:01 ----A---- C:\Windows\system32\nvdispgenco3231421.dll
2013-03-16 08:27:01 ----A---- C:\Windows\system32\nvdispco3231421.dll

======List of files/folders modified in the last 1 month======

2013-04-14 11:50:27 ----D---- C:\Windows\Temp
2013-04-14 11:43:07 ----D---- C:\Windows\Prefetch
2013-04-14 11:42:53 ----RD---- C:\Program Files
2013-04-14 11:28:11 ----D---- C:\Windows\system32\config
2013-04-14 11:28:10 ----D---- C:\Users\Milan\AppData\Roaming\Skype
2013-04-14 11:16:24 ----D---- C:\Windows\system32\Tasks
2013-04-14 11:15:31 ----D---- C:\Windows\winsxs
2013-04-14 11:15:20 ----D---- C:\Windows\Panther
2013-04-14 11:14:50 ----D---- C:\ProgramData\NVIDIA
2013-04-14 11:13:24 ----D---- C:\Windows\System32
2013-04-14 11:13:24 ----D---- C:\Program Files\Internet Explorer
2013-04-14 11:12:40 ----D---- C:\Windows\system32\catroot
2013-04-14 11:12:37 ----D---- C:\Windows\system32\catroot2
2013-04-14 11:10:02 ----D---- C:\Windows\debug
2013-04-14 11:09:58 ----A---- C:\Windows\system32\MRT.exe
2013-04-14 11:09:44 ----SHD---- C:\System Volume Information
2013-04-13 18:57:25 ----D---- C:\Windows\Logs
2013-04-12 21:34:54 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-04-12 17:55:12 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-04-12 17:43:10 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-04-12 15:50:34 ----SHD---- C:\Windows\Installer
2013-04-12 15:50:30 ----D---- C:\Program Files\Common Files\Adobe AIR
2013-04-12 06:49:27 ----D---- C:\Windows
2013-04-11 22:12:31 ----D---- C:\Program Files\Java
2013-04-11 22:11:45 ----D---- C:\Program Files\Common Files
2013-04-11 22:10:47 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2013-04-11 22:10:37 ----A---- C:\Windows\system32\npDeployJava1.dll
2013-04-11 22:10:37 ----A---- C:\Windows\system32\deployJava1.dll
2013-04-11 22:05:17 ----D---- C:\Windows\inf
2013-04-11 14:58:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-04-10 15:20:56 ----D---- C:\Users\Milan\AppData\Roaming\Epson
2013-04-08 21:02:34 ----D---- C:\Program Files\Microsoft Silverlight
2013-04-08 21:01:27 ----D---- C:\Windows\system32\NDF
2013-04-08 20:56:11 ----D---- C:\Downloads
2013-04-08 16:53:59 ----D---- C:\ProgramData\NVIDIA Corporation
2013-04-08 16:53:56 ----RSD---- C:\Windows\assembly
2013-04-07 11:58:35 ----HD---- C:\ProgramData
2013-04-06 19:16:32 ----D---- C:\ProgramData\Skype
2013-04-06 18:29:41 ----D---- C:\Users\Milan\AppData\Roaming\NVIDIA
2013-04-05 20:43:07 ----D---- C:\Windows\system32\drivers
2013-04-05 19:06:36 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-04-05 05:59:41 ----D---- C:\Users\Milan\AppData\Roaming\Audacity
2013-04-05 05:45:59 ----D---- C:\Users\Milan\AppData\Roaming\DAEMON Tools Lite
2013-04-01 20:44:40 ----D---- C:\Windows\system32\wdi
2013-03-29 12:27:04 ----D---- C:\found.000
2013-03-29 09:53:24 ----D---- C:\Program Files\Core Temp
2013-03-29 08:23:57 ----D---- C:\Users\Milan\AppData\Roaming\Adobe
2013-03-28 22:04:17 ----D---- C:\ProgramData\Adobe
2013-03-28 22:03:10 ----D---- C:\Program Files\Adobe
2013-03-28 22:00:51 ----D---- C:\Program Files\Common Files\Adobe
2013-03-28 21:58:05 ----RSD---- C:\Windows\Fonts
2013-03-27 21:09:16 ----D---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-03-26 15:32:22 ----D---- C:\Windows\system32\DriverStore
2013-03-26 15:31:38 ----D---- C:\Program Files\NVIDIA Corporation
2013-03-25 15:13:11 ----D---- C:\Windows\pss
2013-03-25 07:49:44 ----D---- C:\Windows\SoftwareDistribution
2013-03-23 22:50:41 ----D---- C:\Windows\Tasks
2013-03-23 19:30:14 ----HD---- C:\Windows\system32\GroupPolicy
2013-03-22 20:26:17 ----D---- C:\Program Files\WinRAR
2013-03-21 20:39:11 ----D---- C:\Users\Milan\AppData\Roaming\Mozilla
2013-03-21 20:27:11 ----D---- C:\Users\Milan\AppData\Roaming\Logishrd
2013-03-21 20:27:11 ----D---- C:\Users\Milan\AppData\Roaming\dvdcss
2013-03-21 17:49:07 ----HD---- C:\Program Files\InstallShield Installation Information
2013-03-21 17:49:03 ----D---- C:\Program Files\Gigabyte
2013-03-21 17:44:56 ----D---- C:\Program Files\Common Files\LogiShrd
2013-03-21 17:44:46 ----D---- C:\ProgramData\Logishrd
2013-03-21 17:44:38 ----D---- C:\ProgramData\Logitech
2013-03-19 19:38:51 ----SHD---- C:\Boot
2013-03-19 19:17:06 ----D---- C:\Windows\Minidump
2013-03-17 10:33:05 ----D---- C:\Windows\rescache
2013-03-17 09:52:23 ----D---- C:\Windows\Microsoft.NET
2013-03-17 09:32:33 ----D---- C:\Windows\system32\wbem
2013-03-17 09:32:33 ----D---- C:\Windows\system32\en-US
2013-03-17 09:32:33 ----D---- C:\Windows\system32\drivers\en-US
2013-03-17 09:32:33 ----D---- C:\Windows\system32\cs-CZ
2013-03-17 09:32:33 ----D---- C:\Windows\PolicyDefinitions
2013-03-17 09:32:32 ----D---- C:\Windows\system32\migration
2013-03-17 09:32:31 ----D---- C:\Windows\AppPatch
2013-03-17 09:32:29 ----D---- C:\Windows\system32\zh-TW
2013-03-17 09:32:29 ----D---- C:\Windows\system32\zh-HK
2013-03-17 09:32:29 ----D---- C:\Windows\system32\zh-CN
2013-03-17 09:32:29 ----D---- C:\Windows\system32\tr-TR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\sv-SE
2013-03-17 09:32:29 ----D---- C:\Windows\system32\ru-RU
2013-03-17 09:32:29 ----D---- C:\Windows\system32\pt-PT
2013-03-17 09:32:29 ----D---- C:\Windows\system32\pt-BR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\pl-PL
2013-03-17 09:32:29 ----D---- C:\Windows\system32\nl-NL
2013-03-17 09:32:29 ----D---- C:\Windows\system32\nb-NO
2013-03-17 09:32:29 ----D---- C:\Windows\system32\ko-KR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\ja-JP
2013-03-17 09:32:29 ----D---- C:\Windows\system32\it-IT
2013-03-17 09:32:29 ----D---- C:\Windows\system32\hu-HU
2013-03-17 09:32:29 ----D---- C:\Windows\system32\fr-FR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\fi-FI
2013-03-17 09:32:29 ----D---- C:\Windows\system32\es-ES
2013-03-17 09:32:29 ----D---- C:\Windows\system32\el-GR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\de-DE
2013-03-17 09:32:29 ----D---- C:\Windows\system32\da-DK
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Sidebar
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Portable Devices
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Photo Viewer
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Media Player
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Mail
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Journal
2013-03-16 12:03:38 ----D---- C:\Program Files\DVD Maker
2013-03-16 12:03:38 ----D---- C:\Program Files\Common Files\System
2013-03-16 12:03:37 ----D---- C:\Windows\servicing
2013-03-16 12:03:37 ----D---- C:\Windows\ehome
2013-03-16 12:03:37 ----D---- C:\Program Files\Windows Defender
2013-03-16 12:03:31 ----D---- C:\Windows\system32\sysprep
2013-03-16 12:03:31 ----D---- C:\Windows\system32\Setup
2013-03-16 12:03:31 ----D---- C:\Windows\system32\oobe
2013-03-16 12:03:31 ----D---- C:\Windows\system32\cs
2013-03-16 12:03:31 ----D---- C:\Windows\system32\AdvancedInstallers
2013-03-16 12:03:30 ----D---- C:\Windows\system32\sppui
2013-03-16 12:03:30 ----D---- C:\Windows\system32\manifeststore
2013-03-16 12:03:30 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-03-16 12:03:29 ----D---- C:\Windows\system32\migwiz
2013-03-16 12:03:29 ----D---- C:\Windows\system32\Dism
2013-03-16 12:03:12 ----D---- C:\Windows\system32\Boot
2013-03-16 11:58:10 ----A---- C:\Windows\system32\msclmd.dll
2013-03-15 07:46:27 ----A---- C:\Windows\system32\nvwgf2um.dll
2013-03-15 07:46:27 ----A---- C:\Windows\system32\nvd3dum.dll
2013-03-15 07:46:27 ----A---- C:\Windows\system32\nvapi.dll
2013-03-15 04:59:30 ----A---- C:\Windows\system32\nvsvc.dll
2013-03-15 04:59:30 ----A---- C:\Windows\system32\nvcpl.dll
2013-03-15 04:59:27 ----A---- C:\Windows\system32\nvvsvc.exe
2013-03-15 04:59:27 ----A---- C:\Windows\system32\nvsvcr.dll
2013-03-15 04:59:26 ----A---- C:\Windows\system32\nvshext.dll
2013-03-15 04:59:26 ----A---- C:\Windows\system32\nvmctray.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-03-07 21576]
R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2013-02-18 12112]
R0 aswNdis2;avast! Firewall Core Firewall Service; C:\Windows\system32\drivers\aswNdis2.sys [2013-03-07 199384]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-03-07 49248]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswFW;avast! TDI Firewall driver; C:\Windows\system32\drivers\aswFW.sys [2013-03-07 101656]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-03-07 60656]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-03-07 765736]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-03-07 368176]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-03-07 62376]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-20 242240]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-03-07 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-03-07 66336]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2013-04-14 16608]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2000-01-01 2565088]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2000-01-01 521832]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 androidusb;ADB Interface Driver; C:\Windows\System32\Drivers\androidusb.sys [2010-04-29 26112]
S3 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-03-07 164736]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 ECSIoDriver_1_1_0_0;ECSIoDriver_1_1_0_0; \??\C:\Users\Milan\AppData\Local\Temp\is-9ASB2.tmp\ECSIoDriver.sys []
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2013-02-02 17488]
S3 HTCAND32;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2010-04-29 26112]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-23 23040]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2013-01-03 44680]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2013-01-03 40200]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2013-03-21 47360]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2013-03-23 13464]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUSB;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-03-07 45248]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-03-07 136912]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2009-09-14 153600]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2009-09-14 121856]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [2008-07-17 80392]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-12-14 1436160]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 634144]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-24 1927968]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 1713904]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-13 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-12 256904]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-03-28 655624]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-13 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-12 115608]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-12 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Zdravím!
Poprosím o log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

log z combofix:

ComboFix 13-04-14.01 - Milan . 04. 2013 12:43:25.1.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1029.18.3326.2399 [GMT 2:00]
Running from: c:\users\Milan\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Milan\aapt.exe
c:\users\Milan\adb.exe
c:\users\Milan\aidl.exe
c:\users\Milan\AppData\Roaming\inst.exe
c:\users\Milan\AppData\Roaming\logs.dat
c:\users\Milan\AppData\Roaming\vso_ts_preview.xml
c:\users\Milan\dexdump.exe
c:\users\Milan\fastboot.exe
c:\users\Milan\llvm-rs-cc.exe
c:\users\Milan\SDK Manager.exe
c:\windows\system32\drivers\etc\hosts.ics
.
.
((((((((((((((((((((((((( Files Created from 2013-03-14 to 2013-04-14 )))))))))))))))))))))))))))))))
.
.
2013-04-14 10:54 . 2013-04-14 10:57 -------- d-----w- c:\users\Milan\AppData\Local\temp
2013-04-14 09:42 . 2013-04-14 10:06 -------- d-----w- C:\rsit
2013-04-14 09:42 . 2013-04-14 10:06 -------- d-----w- c:\program files\trend micro
2013-04-14 09:40 . 2013-04-14 09:40 60872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7C098136-10CE-4D4C-BFD8-4173F8F584CC}\offreg.dll
2013-04-14 09:09 . 2013-03-01 03:09 2347008 ----a-w- c:\windows\system32\win32k.sys
2013-04-14 09:09 . 2013-03-19 05:04 3913560 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-04-14 09:09 . 2013-03-19 05:04 3968856 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-04-14 09:09 . 2013-03-19 04:48 38912 ----a-w- c:\windows\system32\csrsrv.dll
2013-04-14 09:09 . 2013-03-19 02:49 69632 ----a-w- c:\windows\system32\smss.exe
2013-04-13 16:45 . 2013-04-13 16:49 -------- d-----w- c:\program files\UltraDefrag
2013-04-11 20:11 . 2013-04-11 20:11 -------- d-----w- c:\program files\Common Files\Java
2013-04-11 16:02 . 2013-04-11 16:34 -------- d-----w- c:\users\Milan\AppData\Roaming\log
2013-04-11 13:43 . 2013-04-14 10:40 -------- d-----w- c:\users\Milan\AppData\Roaming\.minecraft
2013-04-08 20:01 . 2013-04-08 20:01 -------- d-----w- c:\users\Milan\dwhelper
2013-04-07 09:58 . 2013-04-09 17:12 -------- d-----w- c:\programdata\vsosdk
2013-04-06 16:29 . 2013-04-12 20:15 -------- d-----w- c:\programdata\VSO
2013-04-05 18:43 . 2013-04-14 10:56 -------- d-----w- c:\users\Milan\AppData\Local\LogMeIn Hamachi
2013-04-05 18:43 . 2013-04-05 18:43 -------- d-----w- c:\program files\LogMeIn Hamachi
2013-04-05 03:39 . 2013-04-05 03:49 -------- d-----w- c:\program files\AVI to MP3
2013-04-01 09:40 . 2013-04-01 09:40 94208 ----a-w- c:\windows\system32\udefrag.exe
2013-04-01 09:40 . 2013-04-01 09:40 14336 ----a-w- c:\windows\system32\hibernate4win.exe
2013-04-01 09:40 . 2013-04-01 09:40 13824 ----a-w- c:\windows\system32\bootexctrl.exe
2013-04-01 09:40 . 2013-04-01 09:40 33792 ----a-w- c:\windows\system32\wgx.dll
2013-04-01 09:40 . 2013-04-01 09:40 125440 ----a-w- c:\windows\system32\lua5.1a.dll
2013-04-01 09:39 . 2013-04-01 09:39 416256 ----a-w- c:\windows\system32\defrag_native.exe
2013-04-01 09:39 . 2013-04-01 09:39 69120 ----a-w- c:\windows\system32\udefrag.dll
2013-04-01 09:39 . 2013-04-01 09:39 343552 ----a-w- c:\windows\system32\zenwinx.dll
2013-03-31 19:06 . 2013-03-31 19:06 -------- d-----w- c:\users\Milan\AppData\Local\FLT
2013-03-31 19:06 . 2013-03-31 19:06 -------- d-----w- c:\programdata\Codemasters
2013-03-31 18:45 . 2013-03-31 18:50 -------- d-----w- c:\program files\F1 2012
2013-03-29 06:21 . 2004-03-29 16:23 90112 ----a-w- c:\windows\unvise32.exe
2013-03-28 20:06 . 2013-03-28 20:31 -------- d-----w- c:\programdata\FLEXnet
2013-03-28 19:58 . 2013-03-28 19:58 -------- d-----w- c:\program files\Adobe Media Player
2013-03-28 19:55 . 2013-03-28 19:55 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2013-03-27 19:08 . 2013-03-27 19:08 -------- d-----w- c:\users\Milan\AppData\Local\Adobe_Systems_Incorporate
2013-03-26 13:29 . 2013-03-15 05:46 8952608 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-03-26 13:29 . 2013-03-15 05:46 892704 ----a-w- c:\windows\system32\nvdispgenco3231422.dll
2013-03-26 13:29 . 2013-03-15 05:46 7959000 ----a-w- c:\windows\system32\nvcuda.dll
2013-03-26 13:29 . 2013-03-15 05:46 6271872 ----a-w- c:\windows\system32\nvopencl.dll
2013-03-26 13:29 . 2013-03-15 05:46 2728736 ----a-w- c:\windows\system32\nvcuvid.dll
2013-03-26 13:29 . 2013-03-15 05:46 20542752 ----a-w- c:\windows\system32\nvoglv32.dll
2013-03-26 13:29 . 2013-03-15 05:46 1995552 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-03-26 13:29 . 2013-03-15 05:46 1012512 ----a-w- c:\windows\system32\nvdispco3231422.dll
2013-03-26 13:29 . 2013-03-15 05:46 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-03-25 13:13 . 2013-03-25 13:13 -------- d-----w- c:\windows\system32\oodag
2013-03-25 13:11 . 2013-03-25 13:11 -------- d-----w- c:\users\Milan\AppData\Local\O&O
2013-03-25 13:10 . 2013-03-25 13:10 -------- d-----w- c:\programdata\OO Software
2013-03-23 20:44 . 2013-03-23 20:44 -------- d-----w- c:\programdata\APN
2013-03-23 17:29 . 2013-03-23 17:29 -------- d-----w- c:\windows\SysWOW64
2013-03-23 17:29 . 2013-03-23 17:53 707354 ----a-w- c:\windows\unins000.exe
2013-03-23 15:20 . 2013-04-12 14:05 -------- d-----w- c:\users\Milan\AppData\Roaming\update_tc
2013-03-23 06:32 . 2013-03-23 15:39 -------- d-----w- c:\program files\Cracked Steam
2013-03-23 06:22 . 2013-03-23 15:35 -------- d-----w- c:\program files\Common Files\Steam
2013-03-23 06:22 . 2013-03-23 15:40 -------- d-----w- C:\Program Files (x86)
2013-03-22 21:25 . 2013-03-28 13:49 -------- d-----w- c:\program files\CCleaner
2013-03-22 15:06 . 2010-07-01 02:32 67312 ----a-w- c:\windows\UnDeployV.exe
2013-03-21 18:22 . 2013-03-21 18:25 -------- d-----w- c:\users\Milan\.LocalCooling
2013-03-21 15:42 . 1998-10-02 18:00 327168 ----a-w- c:\windows\IsUninst.exe
2013-03-21 13:13 . 2013-03-21 13:13 -------- d-----w- c:\users\Milan\AppData\Roaming\Thinstall
2013-03-21 13:10 . 2013-03-21 13:10 -------- d-----w- c:\program files\CBS Software
2013-03-21 06:16 . 2013-04-12 21:12 -------- d-----w- c:\users\Milan\AppData\Roaming\Vso
2013-03-21 06:16 . 2013-04-11 16:35 47360 ----a-w- c:\users\Milan\AppData\Roaming\pcouffin.sys
2013-03-21 06:16 . 2013-03-21 06:16 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2013-03-21 06:16 . 2009-09-02 11:44 102439 ----a-w- c:\windows\system32\sipr3260.dll
2013-03-21 06:16 . 2009-09-02 11:44 65602 ----a-w- c:\windows\system32\cook3260.dll
2013-03-21 06:16 . 2009-09-02 11:44 217127 ----a-w- c:\windows\system32\drv43260.dll
2013-03-21 06:16 . 2009-09-02 11:44 208935 ----a-w- c:\windows\system32\drv33260.dll
2013-03-21 06:16 . 2009-09-02 11:44 176165 ----a-w- c:\windows\system32\drv23260.dll
2013-03-21 06:16 . 2013-04-11 16:35 -------- d-----w- c:\program files\VSO
2013-03-19 17:34 . 2013-03-21 13:56 -------- d-----w- c:\users\Milan\AppData\Roaming\Auslogics
2013-03-19 17:32 . 2013-03-22 14:45 -------- d-----w- c:\program files\Auslogics
2013-03-17 07:15 . 2013-03-17 07:15 49152 ----a-w- c:\windows\system32\taskhost.exe
2013-03-17 07:11 . 2012-08-21 20:12 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2013-03-17 07:11 . 2012-10-03 16:42 52224 ----a-w- c:\windows\system32\nlaapi.dll
2013-03-17 07:11 . 2012-10-03 16:42 242176 ----a-w- c:\windows\system32\nlasvc.dll
2013-03-17 07:11 . 2012-10-03 16:42 18944 ----a-w- c:\windows\system32\netevent.dll
2013-03-17 07:11 . 2012-10-03 16:42 175104 ----a-w- c:\windows\system32\netcorehc.dll
2013-03-17 07:11 . 2012-10-03 16:42 156672 ----a-w- c:\windows\system32\ncsi.dll
2013-03-17 07:11 . 2012-10-03 16:40 499712 ----a-w- c:\windows\system32\iphlpsvc.dll
2013-03-17 07:11 . 2012-10-03 15:21 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2013-03-17 07:11 . 2012-08-24 17:05 136560 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2013-03-17 07:11 . 2012-08-24 17:02 369856 ----a-w- c:\windows\system32\drivers\cng.sys
2013-03-17 07:11 . 2012-08-24 16:57 247808 ----a-w- c:\windows\system32\schannel.dll
2013-03-17 07:11 . 2012-08-24 16:56 1039360 ----a-w- c:\windows\system32\lsasrv.dll
2013-03-17 07:10 . 2012-10-09 17:40 44032 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2013-03-17 07:10 . 2012-10-09 17:40 193536 ----a-w- c:\windows\system32\dhcpcore6.dll
2013-03-17 07:10 . 2013-02-12 03:32 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-17 07:10 . 2012-08-22 17:16 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2013-03-17 07:10 . 2012-07-04 19:45 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2013-03-17 07:10 . 2012-05-04 09:59 514560 ----a-w- c:\windows\system32\qdvd.dll
2013-03-16 10:16 . 2013-03-16 10:16 -------- d-----w- c:\program files\Prime Benchmark
2013-03-16 10:01 . 2013-03-16 10:01 -------- d-----w- c:\windows\system32\SPReview
2013-03-16 09:40 . 2010-11-20 03:21 90112 ----a-w- c:\windows\system32\srvcli.dll
2013-03-16 09:39 . 2010-11-20 03:18 66560 ----a-w- c:\windows\system32\cca.dll
2013-03-16 06:27 . 2013-03-14 11:36 892704 ----a-w- c:\windows\system32\nvdispgenco3231421.dll
2013-03-16 06:27 . 2013-03-14 11:36 1012512 ----a-w- c:\windows\system32\nvdispco3231421.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-04-14 10:55 . 2013-01-28 16:19 16608 ----a-w- c:\windows\gdrv.sys
2013-04-12 15:55 . 2013-03-12 17:06 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-04-12 15:55 . 2013-03-12 17:06 691592 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-04-11 20:10 . 2013-03-07 05:57 94096 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-04-11 20:10 . 2013-01-12 13:10 866704 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-04-11 20:10 . 2013-01-12 13:10 789904 ----a-w- c:\windows\system32\deployJava1.dll
2013-03-23 20:48 . 2013-03-09 14:13 13464 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2013-03-17 07:16 . 2013-03-17 07:16 204800 ----a-w- c:\windows\system32\webcheck.dll
2013-03-16 09:58 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2013-03-15 05:46 . 2013-01-29 18:39 15042928 ----a-w- c:\windows\system32\nvd3dum.dll
2013-03-15 05:46 . 2012-10-10 20:14 2539128 ----a-w- c:\windows\system32\nvapi.dll
2013-03-15 05:46 . 2009-07-13 22:09 13088000 ----a-w- c:\windows\system32\nvwgf2um.dll
2013-03-15 02:59 . 2013-01-12 13:09 3014432 ----a-w- c:\windows\system32\nvsvc.dll
2013-03-15 02:59 . 2013-01-12 13:09 4119328 ----a-w- c:\windows\system32\nvcpl.dll
2013-03-15 02:59 . 2013-01-12 13:09 634144 ----a-w- c:\windows\system32\nvvsvc.exe
2013-03-15 02:59 . 2013-01-12 13:09 2555168 ----a-w- c:\windows\system32\nvsvcr.dll
2013-03-15 02:59 . 2013-01-12 13:09 62752 ----a-w- c:\windows\system32\nvshext.dll
2013-03-15 02:59 . 2013-01-12 13:09 223008 ----a-w- c:\windows\system32\nvmctray.dll
2013-03-14 21:07 . 2013-03-14 21:07 559904 ----a-w- c:\windows\system32\nvStreaming.exe
2013-03-11 23:10 . 2013-01-12 12:35 237088 ------w- c:\windows\system32\MpSigStub.exe
2013-03-11 16:12 . 2013-03-11 16:12 851176 ----a-w- c:\windows\system32\WinUSBCoInstaller2.dll
2013-03-10 17:02 . 2013-03-10 17:02 53248 ----a-r- c:\users\Milan\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2013-03-10 17:02 . 2013-03-10 17:02 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2013-03-06 23:33 . 2013-03-02 16:57 164736 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-06 23:33 . 2013-03-02 16:57 49248 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-06 23:33 . 2013-01-12 12:18 368176 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2013-01-12 12:18 62376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2013-01-12 12:18 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2013-03-03 06:55 199384 ----a-w- c:\windows\system32\drivers\aswNdis2.sys
2013-03-06 23:33 . 2013-01-12 12:18 60656 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2013-01-12 12:18 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:33 . 2013-03-03 06:55 101656 ----a-w- c:\windows\system32\drivers\aswFW.sys
2013-03-06 23:33 . 2013-03-02 17:29 21576 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-03-06 23:33 . 2013-01-12 12:18 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:32 . 2013-01-12 12:17 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2013-01-12 12:17 228600 ----a-w- c:\windows\system32\aswBoot.exe
2013-02-28 11:19 . 2013-03-05 15:23 892704 ----a-w- c:\windows\system32\nvdispgenco3231414.dll
2013-02-28 11:19 . 2013-03-05 15:23 1012512 ----a-w- c:\windows\system32\nvdispco3231414.dll
2013-02-18 08:41 . 2013-03-03 06:55 12112 ----a-w- c:\windows\system32\drivers\aswNdis.sys
2013-02-12 04:48 . 2013-03-17 07:11 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-17 07:11 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-10 03:20 . 2013-02-19 17:18 892704 ----a-w- c:\windows\system32\nvdispgenco3220162.dll
2013-02-10 03:20 . 2013-02-19 17:18 1012512 ----a-w- c:\windows\system32\nvdispco3220294.dll
2013-02-04 13:35 . 2013-02-04 13:35 687648 ----a-w- c:\windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2013-02-02 07:08 . 2013-02-02 06:58 17488 ----a-w- c:\windows\etdrv.sys
2013-02-02 07:08 . 2013-02-02 06:58 24944 ----a-w- c:\windows\system32\drivers\GVTDrv.sys
2013-01-20 07:04 . 2013-01-20 07:04 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-04-12 06:16 . 2013-04-12 06:16 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-01-08 3674320]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-03-24 976672]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk
backup=c:\windows\pss\O&O Defrag Tray.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-12-03 07:35 946352 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-01-08 08:41 3674320 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON SX218 Series]
2009-09-14 06:00 200704 ----a-w- c:\windows\System32\spool\drivers\w32x86\3\E_FATIGDE.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nvtmru]
2013-03-24 08:46 976672 ----a-w- c:\program files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2000-01-01 00:00 11734240 ------w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-04-04 09:00 259448 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\androidusb.sys [x]
R3 aswVmm;aswVmm; [x]
R3 ECSIoDriver_1_1_0_0;ECSIoDriver_1_1_0_0;c:\users\Milan\AppData\Local\Temp\is-9ASB2.tmp\ECSIoDriver.sys [x]
R3 etdrv;etdrv;c:\windows\etdrv.sys [x]
R3 HTCAND32;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 aswKbd;aswKbd; [x]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys [x]
S0 aswNdis2;avast! Firewall Core Firewall Service; [x]
S0 aswRvrt;aswRvrt; [x]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [x]
S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [x]
S2 ES lite Service;ES lite Service for program management.;c:\program files\Gigabyte\EasySaver\ESSVR.EXE [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [x]
S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [x]
S2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
GPSvcGroup REG_MULTI_SZ GPSvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-04-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-12 15:55]
.
2013-04-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-03-13 08:03]
.
2013-04-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-03-13 08:03]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
TCP: Interfaces\{E89A1804-1EAF-4782-A957-99F4B7E17D7A}: NameServer = 8.8.8.8,217.119.113.244,217.119.113.245
FF - ProfilePath - c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2787282&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxps://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-03-15 21:32; vlcplaylist@helgatauscher.de; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\extensions\vlcplaylist@helgatauscher.de.xpi
FF - ExtSQL: 2013-04-08 21:58; {DDC359D1-844A-42a7-9AA1-88A850A938A8}; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF - ExtSQL: 2013-04-13 08:55; {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: extensions.funmoods_i.hmpg - true
FF - user.js: extensions.funmoods_i.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=ddrnw
FF - user.js: extensions.funmoods_i.dfltSrch - true
FF - user.js: extensions.funmoods_i.srchPrvdr - Search
FF - user.js: extensions.funmoods_i.dnsErr - true
FF - user.js: extensions.funmoods_i.newTab - true
FF - user.js: extensions.funmoods_i.newTabUrl - hxxp://start.funmoods.com/?f=2&a=ddrnw
FF - user.js: extensions.funmoods_i.tlbrSrchUrl - hxxp://start.funmoods.com/results.php?f=3&a=ddrnw&q=
FF - user.js: extensions.funmoods_i.id - 44b039e0000000000000001fd06aaef9
FF - user.js: extensions.funmoods_i.instlDay - 15642
FF - user.js: extensions.funmoods_i.vrsn - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsni - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.11.1620:07
FF - user.js: extensions.funmoods_i.prtnrId - funmoods
FF - user.js: extensions.funmoods_i.prdct - funmoods
FF - user.js: extensions.funmoods_i.aflt - ddrnw
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods_i.tlbrId - base
FF - user.js: extensions.funmoods_i.instlRef -
FF - user.js: extensions.funmoods_i.dfltLng -
FF - user.js: extensions.funmoods_i.excTlbr - false
.
- - - - ORPHANS REMOVED - - - -
.
MSConfigStartUp-HKCU - c:\users\Milan\AppData\Roaming\system32\svchost.exe
MSConfigStartUp-IDMan - c:\program files\Internet Download Manager\IDMan.exe
MSConfigStartUp-OODefragTray - c:\program files\OO Software\Defrag\oodtray.exe
MSConfigStartUp-Steam - c:\program files (x86)\Steam\Steam.exe
AddRemove-{A9547F93-3477-4057-8BA3-AB85BA5FA4FE} - c:\users\Milan\AppData\Local\{7C24407D-548F-4211-9AD3-2549A100B03D}\Local Cooling Setup.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\windows\system32\conhost.exe
c:\windows\System32\WUDFHost.exe
c:\windows\System32\rundll32.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\DllHost.exe
.
**************************************************************************
.
Completion time: 2013-04-14 13:04:49 - machine was rebooted
ComboFix-quarantined-files.txt 2013-04-14 11:04
.
Pre-Run: Volných bajtů: 87 398 170 624
Post-Run: Volných bajtů: 87 293 075 456
.
- - End Of File - - 163D0A193FC21890156F46E3E8A49036

Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujten do něj:

KillAll::

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Firefox::
FF - ProfilePath - c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - ExtSQL: 2013-03-15 21:32; vlcplaylist@helgatauscher.de; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\extensions\vlcplaylist@helgatauscher.de.xpi
FF - ExtSQL: 2013-04-08 21:58; {DDC359D1-844A-42a7-9AA1-88A850A938A8}; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF - ExtSQL: 2013-04-13 08:55; {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: extensions.funmoods_i.hmpg - true
FF - user.js: extensions.funmoods_i.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=ddrnw
FF - user.js: extensions.funmoods_i.dfltSrch - true
FF - user.js: extensions.funmoods_i.srchPrvdr - Search
FF - user.js: extensions.funmoods_i.dnsErr - true
FF - user.js: extensions.funmoods_i.newTab - true
FF - user.js: extensions.funmoods_i.newTabUrl - hxxp://start.funmoods.com/?f=2&a=ddrnw
FF - user.js: extensions.funmoods_i.tlbrSrchUrl - hxxp://start.funmoods.com/results.php?f=3&a=ddrnw&q=
FF - user.js: extensions.funmoods_i.id - 44b039e0000000000000001fd06aaef9
FF - user.js: extensions.funmoods_i.instlDay - 15642
FF - user.js: extensions.funmoods_i.vrsn - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsni - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.11.1620:07
FF - user.js: extensions.funmoods_i.prtnrId - funmoods
FF - user.js: extensions.funmoods_i.prdct - funmoods
FF - user.js: extensions.funmoods_i.aflt - ddrnw
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods_i.tlbrId - base
FF - user.js: extensions.funmoods_i.instlRef -
FF - user.js: extensions.funmoods_i.dfltLng -
FF - user.js: extensions.funmoods_i.excTlbr - false

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

mám pridať aj nejaký log alebo nie ?

Potřeboval bych vidět log po posledním skenu.

log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2013-04-15 20:59:05
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 80 GB (26%) free of 305 GB
Total RAM: 3326 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:59:28, on 15. 4. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Windows\Explorer.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Milan\Downloads\RSIT.exe
C:\Program Files\trend micro\Milan.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre8\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre8\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" -f "C:\ProgramData\NVIDIA\Updatus\NvTmru\nvtmru.dat"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-21-220173659-3915245972-3140946241-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-220173659-3915245972-3140946241-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{E89A1804-1EAF-4782-A957-99F4B7E17D7A}: NameServer = 8.8.8.8,217.119.113.244,217.119.113.245
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 6456 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.sk/"
prefs.js - "keyword.URL" - "http://www.google.com/search?ie=UTF-8&oe=utf-8&q="

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.0.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.0.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\searchplugins\
conduit.xml
funmoods.xml
hulkshare.xml
s-amazon-byskipity-int.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre8\bin\ssv.dll [2013-04-11 462736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-29 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre8\bin\jp2ssv.dll [2013-04-11 171920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-29 266240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-03-07 4767304]
"Nvtmru"=C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-03-24 976672]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON SX218 Series]
C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGDE.EXE [2009-09-14 200704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nvtmru]
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-03-24 976672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 11734240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-04-04 259448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
C:\Windows\INSTAL~1\{45F26~1\DEFRAG~1.EXE []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"VIDC.FPS1"=frapsvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-04-15 20:57:16 ----A---- C:\ComboFix.txt
2013-04-15 20:53:24 ----SHD---- C:\$RECYCLE.BIN
2013-04-15 20:51:28 ----D---- C:\Windows\temp
2013-04-15 07:31:50 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-04-14 12:41:31 ----A---- C:\Windows\zip.exe
2013-04-14 12:41:31 ----A---- C:\Windows\SWSC.exe
2013-04-14 12:41:31 ----A---- C:\Windows\SWREG.exe
2013-04-14 12:41:31 ----A---- C:\Windows\sed.exe
2013-04-14 12:41:31 ----A---- C:\Windows\PEV.exe
2013-04-14 12:41:31 ----A---- C:\Windows\NIRCMD.exe
2013-04-14 12:41:31 ----A---- C:\Windows\MBR.exe
2013-04-14 12:41:31 ----A---- C:\Windows\grep.exe
2013-04-14 12:40:55 ----D---- C:\Qoobox
2013-04-14 12:40:35 ----D---- C:\Windows\erdnt
2013-04-14 11:42:53 ----D---- C:\rsit
2013-04-14 11:42:53 ----D---- C:\Program Files\trend micro
2013-04-14 11:12:28 ----A---- C:\Windows\system32\jscript.dll
2013-04-14 11:12:27 ----A---- C:\Windows\system32\jsproxy.dll
2013-04-14 11:12:27 ----A---- C:\Windows\system32\jscript9.dll
2013-04-14 11:12:26 ----A---- C:\Windows\system32\ieui.dll
2013-04-14 11:12:26 ----A---- C:\Windows\system32\iesetup.dll
2013-04-14 11:12:25 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-04-14 11:12:25 ----A---- C:\Windows\system32\msfeeds.dll
2013-04-14 11:12:25 ----A---- C:\Windows\system32\iesysprep.dll
2013-04-14 11:12:25 ----A---- C:\Windows\system32\iernonce.dll
2013-04-14 11:12:25 ----A---- C:\Windows\system32\ie4uinit.exe
2013-04-14 11:12:24 ----A---- C:\Windows\system32\urlmon.dll
2013-04-14 11:12:24 ----A---- C:\Windows\system32\iertutil.dll
2013-04-14 11:12:21 ----A---- C:\Windows\system32\wininet.dll
2013-04-14 11:12:19 ----A---- C:\Windows\system32\ieframe.dll
2013-04-14 11:12:17 ----A---- C:\Windows\system32\mshtml.dll
2013-04-14 11:09:15 ----A---- C:\Windows\system32\win32k.sys
2013-04-14 11:09:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-04-14 11:09:10 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-04-14 11:09:09 ----A---- C:\Windows\system32\smss.exe
2013-04-14 11:09:09 ----A---- C:\Windows\system32\csrsrv.dll
2013-04-13 18:45:21 ----D---- C:\Program Files\UltraDefrag
2013-04-12 08:16:37 ----D---- C:\Program Files\Mozilla Firefox
2013-04-11 22:11:45 ----D---- C:\Program Files\Common Files\Java
2013-04-11 22:11:05 ----A---- C:\Windows\system32\javaws.exe
2013-04-11 22:10:59 ----A---- C:\Windows\system32\javaw.exe
2013-04-11 22:10:59 ----A---- C:\Windows\system32\java.exe
2013-04-11 18:02:43 ----D---- C:\Users\Milan\AppData\Roaming\log
2013-04-11 15:43:12 ----D---- C:\Users\Milan\AppData\Roaming\.minecraft
2013-04-07 11:58:35 ----D---- C:\ProgramData\vsosdk
2013-04-06 18:29:14 ----D---- C:\ProgramData\VSO
2013-04-05 20:43:00 ----D---- C:\Program Files\LogMeIn Hamachi
2013-04-05 05:39:59 ----D---- C:\Program Files\AVI to MP3
2013-04-01 19:40:43 ----A---- C:\Counter-Strike Source.lnk
2013-04-01 11:40:26 ----A---- C:\Windows\system32\udefrag.exe
2013-04-01 11:40:22 ----A---- C:\Windows\system32\hibernate4win.exe
2013-04-01 11:40:20 ----A---- C:\Windows\system32\bootexctrl.exe
2013-04-01 11:40:18 ----A---- C:\Windows\system32\wgx.dll
2013-04-01 11:40:08 ----A---- C:\Windows\system32\lua5.1a.dll
2013-04-01 11:39:52 ----A---- C:\Windows\system32\defrag_native.exe
2013-04-01 11:39:28 ----A---- C:\Windows\system32\udefrag.dll
2013-04-01 11:39:18 ----A---- C:\Windows\system32\zenwinx.dll
2013-03-31 21:06:21 ----D---- C:\ProgramData\Codemasters
2013-03-31 20:45:02 ----D---- C:\Program Files\F1 2012
2013-03-29 08:21:27 ----A---- C:\Windows\unvise32.exe
2013-03-28 22:06:09 ----D---- C:\ProgramData\FLEXnet
2013-03-28 21:58:45 ----D---- C:\Program Files\Adobe Media Player
2013-03-28 21:55:09 ----D---- C:\Program Files\Common Files\Macrovision Shared
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvopencl.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvoglv32.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvdispgenco3231422.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvdispco3231422.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvcuvid.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\nvcuda.dll
2013-03-26 15:29:25 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-03-26 15:29:24 ----A---- C:\Windows\system32\nvcompiler.dll
2013-03-25 15:13:02 ----D---- C:\Windows\system32\oodag
2013-03-25 15:10:15 ----D---- C:\ProgramData\OO Software
2013-03-24 09:09:17 ----A---- C:\Windows\gpedit.msc
2013-03-23 22:44:33 ----D---- C:\ProgramData\APN
2013-03-23 19:29:09 ----D---- C:\Windows\SysWOW64
2013-03-23 19:29:07 ----A---- C:\Windows\unins000.exe
2013-03-23 19:29:07 ----A---- C:\Windows\unins000.dat
2013-03-23 17:20:51 ----D---- C:\Users\Milan\AppData\Roaming\update_tc
2013-03-23 08:32:45 ----D---- C:\Program Files\Cracked Steam
2013-03-23 08:22:45 ----D---- C:\Program Files\Common Files\Steam
2013-03-23 08:22:43 ----D---- C:\Program Files (x86)
2013-03-22 23:25:16 ----D---- C:\Program Files\CCleaner
2013-03-22 17:06:55 ----A---- C:\Windows\UnDeployV.exe
2013-03-21 17:42:08 ----A---- C:\Windows\IsUninst.exe
2013-03-21 15:13:44 ----D---- C:\Users\Milan\AppData\Roaming\Thinstall
2013-03-21 15:10:57 ----D---- C:\Program Files\CBS Software
2013-03-21 08:16:27 ----D---- C:\Users\Milan\AppData\Roaming\Vso
2013-03-21 08:16:27 ----A---- C:\Windows\system32\drivers\pcouffin.sys
2013-03-21 08:16:27 ----A---- C:\Users\Milan\AppData\Roaming\pcouffin.sys
2013-03-21 08:16:23 ----A---- C:\Windows\system32\sipr3260.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\Pncrt.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\drv43260.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\drv33260.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\drv23260.dll
2013-03-21 08:16:22 ----A---- C:\Windows\system32\cook3260.dll
2013-03-21 08:16:20 ----D---- C:\Program Files\VSO
2013-03-19 19:34:33 ----D---- C:\Users\Milan\AppData\Roaming\Auslogics
2013-03-19 19:32:03 ----D---- C:\Program Files\Auslogics
2013-03-17 09:24:58 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-03-17 09:24:58 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-03-17 09:24:56 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-03-17 09:24:56 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-03-17 09:24:53 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-03-17 09:24:47 ----A---- C:\Windows\system32\wksprtPS.dll
2013-03-17 09:24:47 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-03-17 09:24:47 ----A---- C:\Windows\system32\tsgqec.dll
2013-03-17 09:24:47 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-03-17 09:24:46 ----A---- C:\Windows\system32\wksprt.exe
2013-03-17 09:24:46 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-03-17 09:24:46 ----A---- C:\Windows\system32\rdpudd.dll
2013-03-17 09:24:46 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-03-17 09:24:46 ----A---- C:\Windows\system32\mstsc.exe
2013-03-17 09:24:46 ----A---- C:\Windows\system32\aaclient.dll
2013-03-17 09:24:45 ----A---- C:\Windows\system32\rdpcorets.dll
2013-03-17 09:24:45 ----A---- C:\Windows\system32\mstscax.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\wextract.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\webcheck.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\vbscript.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\url.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\pngfilt.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\occache.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\msrating.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\msls31.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\mshtmler.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\mshtmled.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\mshta.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\msfeedssync.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\licmgr10.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\inseng.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\imgutil.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\iexpress.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\ieUnatt.exe
2013-03-17 09:16:16 ----A---- C:\Windows\system32\iepeers.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\iedkcs32.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\ieapfltr.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\ieapfltr.dat
2013-03-17 09:16:16 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\icardie.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\elshyph.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\dxtrans.dll
2013-03-17 09:16:16 ----A---- C:\Windows\system32\dxtmsft.dll
2013-03-17 09:15:43 ----A---- C:\Windows\system32\taskhost.exe
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-17 09:15:20 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\XpsPrint.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\WMPhoto.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\UIAnimation.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\FntCache.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\dxgi.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\DWrite.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d11.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10warp.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10level9.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10core.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10_1.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d3d10.dll
2013-03-17 09:15:20 ----A---- C:\Windows\system32\d2d1.dll
2013-03-17 09:11:36 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-03-17 09:11:32 ----A---- C:\Windows\system32\nlasvc.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\nlaapi.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\netevent.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\netcorehc.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\ncsi.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-03-17 09:11:32 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-03-17 09:11:02 ----A---- C:\Windows\system32\schannel.dll
2013-03-17 09:11:02 ----A---- C:\Windows\system32\lsasrv.dll
2013-03-17 09:11:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-03-17 09:11:02 ----A---- C:\Windows\system32\drivers\cng.sys
2013-03-17 09:10:58 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-03-17 09:10:58 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-03-17 09:10:51 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-03-17 09:10:50 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-03-17 09:10:50 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-03-17 09:10:49 ----A---- C:\Windows\system32\qdvd.dll
2013-03-16 12:18:27 ----A---- C:\Windows\system32\svc_host.dat
2013-03-16 12:16:25 ----D---- C:\Program Files\Prime Benchmark
2013-03-16 12:01:55 ----D---- C:\Windows\system32\SPReview
2013-03-16 11:41:40 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-03-16 11:41:40 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mprddm.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\MdSched.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\Mcx2Svc.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mcbuilder.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mblctr.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mapistub.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\mapi32.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\lsmproxy.dll
2013-03-16 11:41:39 ----A---- C:\Windows\system32\lpremove.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\lpksetup.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\LogonUI.exe
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KMSVC.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDUS.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDPO.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDINTEL.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDINBEN.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\KBDBULG.DLL
2013-03-16 11:41:39 ----A---- C:\Windows\system32\drivers\ks.sys
2013-03-16 11:41:38 ----A---- C:\Windows\system32\netiougc.exe
2013-03-16 11:41:38 ----A---- C:\Windows\system32\netiohlp.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\netcfgx.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\ncryptui.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\Mystify.scr
2013-03-16 11:41:38 ----A---- C:\Windows\system32\msvfw32.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\mcmde.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\mciavi32.dll
2013-03-16 11:41:38 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2013-03-16 11:41:37 ----A---- C:\Windows\system32\olepro32.dll
2013-03-16 11:41:37 ----A---- C:\Windows\system32\odbc32.dll
2013-03-16 11:41:37 ----A---- C:\Windows\system32\ntlanman.dll
2013-03-16 11:41:37 ----A---- C:\Windows\system32\msvidc32.dll
2013-03-16 11:41:36 ----A---- C:\Windows\system32\nlsbres.dll
2013-03-16 11:41:36 ----A---- C:\Windows\system32\mscories.dll
2013-03-16 11:41:36 ----A---- C:\Windows\system32\mscoree.dll
2013-03-16 11:41:36 ----A---- C:\Windows\system32\msconfig.exe
2013-03-16 11:41:36 ----A---- C:\Windows\system32\drivers\msahci.sys
2013-03-16 11:41:35 ----A---- C:\Windows\system32\mstask.dll
2013-03-16 11:41:35 ----A---- C:\Windows\system32\msrle32.dll
2013-03-16 11:41:35 ----A---- C:\Windows\system32\msdri.dll
2013-03-16 11:41:35 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2013-03-16 11:41:34 ----A---- C:\Windows\system32\cryptui.dll
2013-03-16 11:41:34 ----A---- C:\Windows\system32\consent.exe
2013-03-16 11:41:34 ----A---- C:\Windows\system32\certcli.dll
2013-03-16 11:41:34 ----A---- C:\Windows\system32\C_ISCII.DLL
2013-03-16 11:41:34 ----A---- C:\Windows\system32\bootres.dll
2013-03-16 11:41:34 ----A---- C:\Windows\system32\biocpl.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\Display.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\dfshim.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\davclnt.dll
2013-03-16 11:41:33 ----A---- C:\Windows\system32\d3d9.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-03-16 11:41:32 ----A---- C:\Windows\system32\drivers\acpi.sys
2013-03-16 11:41:32 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2013-03-16 11:41:32 ----A---- C:\Windows\system32\basecsp.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\AxInstSv.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\asycfilt.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\adsldp.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\activeds.dll
2013-03-16 11:41:32 ----A---- C:\Windows\system32\acppage.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\iasrecst.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\httpapi.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\halacpi.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\hal.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\avifil32.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\authui.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\appinfo.dll
2013-03-16 11:41:31 ----A---- C:\Windows\system32\advapi32.dll
2013-03-16 11:41:30 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2013-03-16 11:41:30 ----A---- C:\Windows\system32\imapi2.dll
2013-03-16 11:41:30 ----A---- C:\Windows\system32\halmacpi.dll
2013-03-16 11:41:30 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2013-03-16 11:41:29 ----A---- C:\Windows\system32\FXSSVC.exe
2013-03-16 11:41:29 ----A---- C:\Windows\system32\fveapi.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\ExplorerFrame.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\evr.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\eudcedit.exe
2013-03-16 11:41:29 ----A---- C:\Windows\system32\dskquoui.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\dsauth.dll
2013-03-16 11:41:29 ----A---- C:\Windows\system32\dps.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\onex.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\FXSMON.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\framedynos.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\framedyn.dll
2013-03-16 11:41:28 ----A---- C:\Windows\system32\fms.dll
2013-03-16 11:41:27 ----A---- C:\Windows\twain_32.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\twext.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\themecpl.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\tcpipcfg.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\tapisrv.dll
2013-03-16 11:41:27 ----A---- C:\Windows\system32\spp.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\StructuredQuery.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\spwizeng.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\sppobjs.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\sppnp.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\spbcd.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\shlwapi.dll
2013-03-16 11:41:26 ----A---- C:\Windows\system32\shacct.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\wmicmiplugin.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\wlangpui.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\winhttp.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\wiadefui.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\sscore.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\srvsvc.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\srrstr.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\sqlsrv32.dll
2013-03-16 11:41:25 ----A---- C:\Windows\system32\spwizres.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\XpsRasterService.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wvc.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wtsapi32.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wsqmcons.exe
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wscapi.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wpd_ci.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wmpps.dll
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wimserv.exe
2013-03-16 11:41:24 ----A---- C:\Windows\system32\wimgapi.dll
2013-03-16 11:41:23 ----A---- C:\Windows\system32\WPDSp.dll
2013-03-16 11:41:23 ----A---- C:\Windows\system32\VAN.dll
2013-03-16 11:41:23 ----A---- C:\Windows\system32\uxlib.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\wdc.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\WavDest.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\utildll.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\untfs.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\unlodctr.exe
2013-03-16 11:41:22 ----A---- C:\Windows\system32\unattend.dll
2013-03-16 11:41:22 ----A---- C:\Windows\system32\umpo.dll
2013-03-16 11:41:21 ----A---- C:\Windows\system32\Vault.dll
2013-03-16 11:41:21 ----A---- C:\Windows\system32\RDPENCDD.dll
2013-03-16 11:41:21 ----A---- C:\Windows\system32\drivers\wanarp.sys
2013-03-16 11:41:20 ----A---- C:\Windows\system32\samcli.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\rpcss.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\Robocopy.exe
2013-03-16 11:41:20 ----A---- C:\Windows\system32\RMActivate.exe
2013-03-16 11:41:20 ----A---- C:\Windows\system32\remotepg.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\recovery.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\ReAgent.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\raschap.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\RacEngn.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2013-03-16 11:41:20 ----A---- C:\Windows\system32\QSHVHOST.DLL
2013-03-16 11:41:20 ----A---- C:\Windows\system32\QCLIPROV.DLL
2013-03-16 11:41:20 ----A---- C:\Windows\system32\QAGENTRT.DLL
2013-03-16 11:41:20 ----A---- C:\Windows\system32\pifmgr.dll
2013-03-16 11:41:20 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2013-03-16 11:41:19 ----A---- C:\Windows\system32\QAGENT.DLL
2013-03-16 11:41:19 ----A---- C:\Windows\system32\proquota.exe
2013-03-16 11:41:19 ----A---- C:\Windows\system32\propsys.dll
2013-03-16 11:41:19 ----A---- C:\Windows\system32\perfts.dll
2013-03-16 11:41:19 ----A---- C:\Windows\system32\perfmon.exe
2013-03-16 11:41:19 ----A---- C:\Windows\system32\pdhui.dll
2013-03-16 11:41:19 ----A---- C:\Windows\system32\onexui.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\setupcl.exe
2013-03-16 11:41:18 ----A---- C:\Windows\system32\secproc.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\scecli.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\scansetting.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\prnfldr.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2013-03-16 11:41:18 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2013-03-16 11:41:18 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2013-03-16 11:41:17 ----A---- C:\Windows\system32\schtasks.exe
2013-03-16 11:41:17 ----A---- C:\Windows\system32\mfreadwrite.dll
2013-03-16 11:41:17 ----A---- C:\Windows\system32\MFPlay.dll
2013-03-16 11:41:17 ----A---- C:\Windows\system32\mfc40.dll
2013-03-16 11:41:16 ----A---- C:\Windows\system32\msasn1.dll
2013-03-16 11:41:16 ----A---- C:\Windows\system32\mobsync.exe
2013-03-16 11:41:15 ----A---- C:\Windows\system32\MMDevAPI.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\mmcndmgr.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\mciqtz32.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\logman.exe
2013-03-16 11:41:15 ----A---- C:\Windows\system32\logagent.exe
2013-03-16 11:41:15 ----A---- C:\Windows\system32\localsec.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\ListSvc.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDTUQ.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDTUF.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDNEPR.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDBLR.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\KBDBASH.DLL
2013-03-16 11:41:15 ----A---- C:\Windows\system32\itircl.dll
2013-03-16 11:41:15 ----A---- C:\Windows\system32\iprtrmgr.dll
2013-03-16 11:41:14 ----A---- C:\Windows\system32\ntprint.dll
2013-03-16 11:41:14 ----A---- C:\Windows\system32\lsm.exe
2013-03-16 11:41:13 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2013-03-16 11:41:13 ----A---- C:\Windows\system32\msscp.dll
2013-03-16 11:41:12 ----A---- C:\Windows\system32\MuiUnattend.exe
2013-03-16 11:41:12 ----A---- C:\Windows\system32\muifontsetup.dll
2013-03-16 11:41:12 ----A---- C:\Windows\system32\mtxclu.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\nslookup.exe
2013-03-16 11:41:11 ----A---- C:\Windows\system32\nshipsec.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\netutils.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\netplwiz.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\netid.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\Narrator.exe
2013-03-16 11:41:11 ----A---- C:\Windows\system32\NAPHLPR.DLL
2013-03-16 11:41:11 ----A---- C:\Windows\system32\mydocs.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\msnetobj.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\msihnd.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\msdtctm.dll
2013-03-16 11:41:11 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2013-03-16 11:41:10 ----A---- C:\Windows\system32\credui.dll
2013-03-16 11:41:10 ----A---- C:\Windows\system32\comdlg32.dll
2013-03-16 11:41:10 ----A---- C:\Windows\system32\cmstp.exe
2013-03-16 11:41:09 ----A---- C:\Windows\system32\diskpart.exe
2013-03-16 11:41:09 ----A---- C:\Windows\system32\dhcpcore.dll
2013-03-16 11:41:08 ----A---- C:\Windows\system32\bitsadmin.exe
2013-03-16 11:41:08 ----A---- C:\Windows\system32\bcdsrv.dll
2013-03-16 11:41:08 ----A---- C:\Windows\system32\bcdedit.exe
2013-03-16 11:41:08 ----A---- C:\Windows\system32\bcdboot.exe
2013-03-16 11:41:08 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\certprop.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\CertEnroll.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\apphelp.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\amstream.dll
2013-03-16 11:41:07 ----A---- C:\Windows\system32\accessibilitycpl.dll
2013-03-16 11:41:06 ----A---- C:\Windows\system32\Bubbles.scr
2013-03-16 11:41:06 ----A---- C:\Windows\system32\blackbox.dll
2013-03-16 11:41:05 ----A---- C:\Windows\system32\fphc.dll
2013-03-16 11:41:05 ----A---- C:\Windows\system32\fontext.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\input.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\imm32.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\imapi2fs.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\iasrad.dll
2013-03-16 11:41:04 ----A---- C:\Windows\system32\iasacct.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\efscore.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\dxdiagn.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\dwmredir.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\drmmgrtn.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\dot3ui.dll
2013-03-16 11:41:03 ----A---- C:\Windows\system32\dosx.exe
2013-03-16 11:41:01 ----A---- C:\Windows\system32\themeui.dll
2013-03-16 11:41:01 ----A---- C:\Windows\system32\taskschd.dll
2013-03-16 11:41:01 ----A---- C:\Windows\system32\TabSvc.dll
2013-03-16 11:41:01 ----A---- C:\Windows\system32\systemcpl.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\umb.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\tzutil.exe
2013-03-16 11:41:00 ----A---- C:\Windows\system32\tsmf.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\TRAPI.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\SyncCenter.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\sxs.dll
2013-03-16 11:41:00 ----A---- C:\Windows\system32\sud.dll
2013-03-16 11:40:59 ----A---- C:\Windows\system32\sysmain.dll
2013-03-16 11:40:59 ----A---- C:\Windows\system32\ssText3d.scr
2013-03-16 11:40:59 ----A---- C:\Windows\system32\srvcli.dll
2013-03-16 11:40:57 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-03-16 11:40:57 ----A---- C:\Windows\system32\wmpsrcwp.dll
2013-03-16 11:40:57 ----A---- C:\Windows\system32\WMADMOD.DLL
2013-03-16 11:40:57 ----A---- C:\Windows\system32\wisptis.exe
2013-03-16 11:40:57 ----A---- C:\Windows\system32\WinSAT.exe
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wshbth.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\WSDApi.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\ws2_32.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wpdbusenum.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wmdrmsdk.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\Wldap32.dll
2013-03-16 11:40:56 ----A---- C:\Windows\system32\wkssvc.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\vssapi.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\vpnike.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\usercpl.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\upnp.dll
2013-03-16 11:40:55 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2013-03-16 11:40:55 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2013-03-16 11:40:55 ----A---- C:\Windows\system32\drivers\USBCAMD.sys
2013-03-16 11:40:54 ----A---- C:\Windows\system32\werconcpl.dll
2013-03-16 11:40:54 ----A---- C:\Windows\system32\vdsutil.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\vds.exe
2013-03-16 11:40:53 ----A---- C:\Windows\system32\riched32.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\riched20.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\relog.exe
2013-03-16 11:40:53 ----A---- C:\Windows\system32\recdisc.exe
2013-03-16 11:40:53 ----A---- C:\Windows\system32\rdpcfgex.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\rastls.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\printui.dll
2013-03-16 11:40:53 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-03-16 11:40:53 ----A---- C:\Windows\system32\drivers\RDPCDD.sys
2013-03-16 11:40:52 ----A---- C:\Windows\system32\provsvc.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\prncache.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PresentationHost.exe
2013-03-16 11:40:52 ----A---- C:\Windows\system32\powercpl.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2013-03-16 11:40:52 ----A---- C:\Windows\system32\PkgMgr.exe
2013-03-16 11:40:51 ----A---- C:\Windows\system32\spreview.exe
2013-03-16 11:40:51 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\shunimpl.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\shsvcs.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\qdv.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\qcap.dll
2013-03-16 11:40:51 ----A---- C:\Windows\system32\puiobj.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\srchadmin.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\sqlcese30.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\spwizui.dll

pokračovanie:
2013-03-16 11:40:50 ----A---- C:\Windows\system32\sppwinob.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\sppinst.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\sppc.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\spinstall.exe
2013-03-16 11:40:50 ----A---- C:\Windows\system32\schedcli.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\SearchFolder.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\samsrv.dll
2013-03-16 11:40:50 ----A---- C:\Windows\system32\drivers\scfilter.sys
2013-03-16 11:40:49 ----A---- C:\Windows\system32\schedsvc.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\shsetup.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\shimgvw.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\setupugc.exe
2013-03-16 11:40:49 ----A---- C:\Windows\system32\setupcln.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\setupapi.dll
2013-03-16 11:40:49 ----A---- C:\Windows\system32\logoncli.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\MPSSVC.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\mprapi.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\mimefilt.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\mfc40u.dll
2013-03-16 11:40:48 ----A---- C:\Windows\system32\drivers\mpio.sys
2013-03-16 11:40:47 ----A---- C:\Windows\system32\ocsetup.exe
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDMON.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDMAORI.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDINORI.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\KBDGR1.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\IPSECSVC.DLL
2013-03-16 11:40:47 ----A---- C:\Windows\system32\ifsutil.dll
2013-03-16 11:40:47 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2013-03-16 11:40:46 ----A---- C:\Windows\system32\OobeFldr.dll
2013-03-16 11:40:46 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2013-03-16 11:40:46 ----A---- C:\Windows\system32\ocsetapi.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\rastapi.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\rasppp.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\qmgr.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\qasf.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\pla.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\pdh.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\networkmap.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\networkexplorer.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\netjoin.dll
2013-03-16 11:40:45 ----A---- C:\Windows\system32\drivers\rdbss.sys
2013-03-16 11:40:44 ----A---- C:\Windows\system32\netcfg.exe
2013-03-16 11:40:44 ----A---- C:\Windows\system32\nci.dll
2013-03-16 11:40:44 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2013-03-16 11:40:44 ----A---- C:\Windows\system32\mspbda.dll
2013-03-16 11:40:44 ----A---- C:\Windows\system32\msiexec.exe
2013-03-16 11:40:44 ----A---- C:\Windows\system32\msdrm.dll
2013-03-16 11:40:44 ----A---- C:\Windows\system32\mscorier.dll
2013-03-16 11:40:44 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2013-03-16 11:40:44 ----A---- C:\Windows\system32\drivers\msdsm.sys
2013-03-16 11:40:43 ----A---- C:\Windows\system32\netfxperf.dll
2013-03-16 11:40:43 ----A---- C:\Windows\system32\MultiDigiMon.exe
2013-03-16 11:40:43 ----A---- C:\Windows\system32\msv1_0.dll
2013-03-16 11:40:43 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2013-03-16 11:40:43 ----A---- C:\Windows\system32\certmgr.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\drivers\dfsc.sys
2013-03-16 11:40:42 ----A---- C:\Windows\system32\DiagCpl.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\dfrgui.exe
2013-03-16 11:40:42 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\cscapi.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\comctl32.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\clusapi.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\ci.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\cabview.dll
2013-03-16 11:40:42 ----A---- C:\Windows\system32\BlbEvents.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\drivers\appid.sys
2013-03-16 11:40:41 ----A---- C:\Windows\system32\DeviceCenter.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\dbghelp.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\dbgeng.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\cscdll.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\audiodev.dll
2013-03-16 11:40:41 ----A---- C:\Windows\system32\aitagent.exe
2013-03-16 11:40:40 ----A---- C:\Windows\system32\batmeter.dll
2013-03-16 11:40:40 ----A---- C:\Windows\system32\basesrv.dll
2013-03-16 11:40:40 ----A---- C:\Windows\system32\AzSqlExt.dll
2013-03-16 11:40:40 ----A---- C:\Windows\system32\ActionQueue.dll
2013-03-16 11:40:39 ----A---- C:\Windows\system32\bitsperf.dll
2013-03-16 11:40:39 ----A---- C:\Windows\system32\autochk.exe
2013-03-16 11:40:39 ----A---- C:\Windows\bfsvc.exe
2013-03-16 11:40:38 ----A---- C:\Windows\system32\fde.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\Faultrep.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\azroles.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\autoplay.dll
2013-03-16 11:40:38 ----A---- C:\Windows\system32\autofmt.exe
2013-03-16 11:40:37 ----A---- C:\Windows\system32\icaapi.dll
2013-03-16 11:40:37 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2013-03-16 11:40:37 ----A---- C:\Windows\system32\drivers\http.sys
2013-03-16 11:40:36 ----A---- C:\Windows\system32\iccvid.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\hgprint.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\gdi32.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\FXSTIFF.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\drvstore.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2013-03-16 11:40:36 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-03-16 11:40:36 ----A---- C:\Windows\system32\dot3cfg.dll
2013-03-16 11:40:36 ----A---- C:\Windows\system32\diskraid.exe
2013-03-16 11:40:35 ----A---- C:\Windows\system32\UIRibbonRes.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\UIRibbon.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\TSWorkspace.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\rdpd3d.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\elsTrans.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\DxpTaskSync.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\dxmasf.dll
2013-03-16 11:40:35 ----A---- C:\Windows\system32\dsuiext.dll
2013-03-16 11:40:34 ----A---- C:\Windows\system32\vaultsvc.dll
2013-03-16 11:40:34 ----A---- C:\Windows\system32\userinit.exe
2013-03-16 11:40:34 ----A---- C:\Windows\system32\user32.dll
2013-03-16 11:40:34 ----A---- C:\Windows\system32\drivers\umbus.sys
2013-03-16 11:40:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-03-16 11:40:32 ----A---- C:\Windows\system32\tlscsp.dll
2013-03-16 11:40:32 ----A---- C:\Windows\system32\taskeng.exe
2013-03-16 11:40:32 ----A---- C:\Windows\system32\tabcal.exe
2013-03-16 11:40:32 ----A---- C:\Windows\system32\t2embed.dll
2013-03-16 11:40:32 ----A---- C:\Windows\system32\drivers\tdx.sys
2013-03-16 11:40:32 ----A---- C:\Windows\system32\drivers\tdi.sys
2013-03-16 11:40:31 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2013-03-16 11:40:31 ----A---- C:\Windows\system32\wmploc.DLL
2013-03-16 11:40:31 ----A---- C:\Windows\system32\wmp.dll
2013-03-16 11:40:31 ----A---- C:\Windows\system32\wlanui.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\zipfldr.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\xpsservices.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\wlanpref.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\WinSATAPI.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\winmm.dll
2013-03-16 11:40:30 ----A---- C:\Windows\system32\drivers\winusb.sys
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wwanconn.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wsnmp32.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wpdwcn.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wpdshext.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\WMVSDECD.DLL
2013-03-16 11:40:29 ----A---- C:\Windows\system32\WMVCORE.DLL
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wdscore.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wbengine.exe
2013-03-16 11:40:29 ----A---- C:\Windows\system32\wbemcomn.dll
2013-03-16 11:40:29 ----A---- C:\Windows\system32\VSSVC.exe
2013-03-16 11:40:28 ----A---- C:\Windows\system32\winlogon.exe
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wiavideo.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wiaservc.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wiarpc.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wevtsvc.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\WerFaultSecure.exe
2013-03-16 11:40:28 ----A---- C:\Windows\system32\wer.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\vpnikeapi.dll
2013-03-16 11:40:28 ----A---- C:\Windows\system32\repair-bde.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\secproc_ssp.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\runonce.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rtutils.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rpchttp.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rpcrt4.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\Ribbons.scr
2013-03-16 11:40:27 ----A---- C:\Windows\system32\resutils.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\RelPost.exe
2013-03-16 11:40:27 ----A---- C:\Windows\system32\regapi.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\RDPREFDD.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\rdpencom.dll
2013-03-16 11:40:27 ----A---- C:\Windows\system32\drivers\scsiport.sys
2013-03-16 11:40:26 ----A---- C:\Windows\system32\syssetup.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\syncui.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\spopk.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\slwga.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\sisbkup.dll
2013-03-16 11:40:26 ----A---- C:\Windows\system32\shwebsvc.dll
2013-03-16 11:40:24 ----A---- C:\Windows\system32\spwmp.dll
2013-03-16 11:40:24 ----A---- C:\Windows\system32\shdocvw.dll
2013-03-16 11:40:24 ----A---- C:\Windows\system32\SessEnv.dll
2013-03-16 11:40:24 ----A---- C:\Windows\system32\secproc_isv.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\sdrsvc.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\sdengin2.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\sdcpl.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\sdclt.exe
2013-03-16 11:40:23 ----A---- C:\Windows\system32\scesrv.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\scavengeui.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\ReAgentc.exe
2013-03-16 11:40:23 ----A---- C:\Windows\system32\rdpdd.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\rasmans.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\QUTIL.DLL
2013-03-16 11:40:23 ----A---- C:\Windows\system32\Query.dll
2013-03-16 11:40:23 ----A---- C:\Windows\system32\qedit.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\RpcRtRemote.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\RMActivate_isv.exe
2013-03-16 11:40:22 ----A---- C:\Windows\system32\msinfo32.exe
2013-03-16 11:40:22 ----A---- C:\Windows\system32\msieftp.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\msftedit.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\msdmo.dll
2013-03-16 11:40:22 ----A---- C:\Windows\system32\drivers\rmcast.sys
2013-03-16 11:40:21 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\napdsnap.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\msyuv.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\mswsock.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\MSVidCtl.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\msutb.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\msorcl32.dll
2013-03-16 11:40:21 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2013-03-16 11:40:21 ----A---- C:\Windows\system32\mscms.dll
2013-03-16 11:40:20 ----A---- C:\Windows\system32\migisol.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\prntvpt.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\PnPUnattend.exe
2013-03-16 11:40:19 ----A---- C:\Windows\system32\pnidui.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\photowiz.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2013-03-16 11:40:19 ----A---- C:\Windows\system32\OpcServices.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\olethk32.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\ole32.dll
2013-03-16 11:40:19 ----A---- C:\Windows\system32\drivers\pci.sys
2013-03-16 11:40:18 ----A---- C:\Windows\system32\odbcconf.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netshell.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netlogon.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netdiagfx.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netcenter.dll
2013-03-16 11:40:18 ----A---- C:\Windows\system32\netbtugc.exe
2013-03-16 11:40:18 ----A---- C:\Windows\system32\net1.exe
2013-03-16 11:40:18 ----A---- C:\Windows\system32\drivers\netbt.sys
2013-03-16 11:40:17 ----A---- C:\Windows\system32\wcncsvc.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\wavemsp.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\w32tm.exe
2013-03-16 11:40:17 ----A---- C:\Windows\system32\vfwwdm32.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\vdsbas.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\TSpkg.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\tsbyuv.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\nshwfp.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\nrpsrv.dll
2013-03-16 11:40:17 ----A---- C:\Windows\system32\nltest.exe
2013-03-16 11:40:17 ----A---- C:\Windows\system32\drivers\volmgr.sys
2013-03-16 11:40:17 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wshirda.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wsdchngr.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wpccpl.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wmpshell.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\wmpmde.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\userenv.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\unimdmat.dll
2013-03-16 11:40:16 ----A---- C:\Windows\system32\drivers\udfs.sys
2013-03-16 11:40:16 ----A---- C:\Windows\system32\drivers\tunnel.sys
2013-03-16 11:40:15 ----A---- C:\Windows\system32\wusa.exe
2013-03-16 11:40:15 ----A---- C:\Windows\system32\WsmSvc.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\WMPEncEn.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\wmpeffects.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\wmpdxm.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\WMNetMgr.dll
2013-03-16 11:40:15 ----A---- C:\Windows\system32\winload.exe
2013-03-16 11:40:15 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2013-03-16 11:40:14 ----A---- C:\Windows\system32\wmdrmnet.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\wmdrmdev.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\wlanmsm.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\wkscli.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\winsta.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\WinSCard.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\winresume.exe
2013-03-16 11:40:14 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2013-03-16 11:40:14 ----A---- C:\Windows\system32\webservices.dll
2013-03-16 11:40:14 ----A---- C:\Windows\system32\WebClnt.dll
2013-03-16 11:40:13 ----A---- C:\Windows\system32\SndVolSSO.dll
2013-03-16 11:40:13 ----A---- C:\Windows\system32\SndVol.exe
2013-03-16 11:40:13 ----A---- C:\Windows\system32\SmiEngine.dll
2013-03-16 11:40:13 ----A---- C:\Windows\system32\slui.exe
2013-03-16 11:40:13 ----A---- C:\Windows\system32\shgina.dll
2013-03-16 11:40:13 ----A---- C:\Windows\system32\sharemediacpl.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\stobject.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sqmapi.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sppuinotify.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sppsvc.exe
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sppcomapi.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\sethc.exe
2013-03-16 11:40:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2013-03-16 11:40:12 ----A---- C:\Windows\system32\SensorsCpl.dll
2013-03-16 11:40:11 ----A---- C:\Windows\system32\thumbcache.dll
2013-03-16 11:40:11 ----A---- C:\Windows\system32\termsrv.dll
2013-03-16 11:40:11 ----A---- C:\Windows\system32\termmgr.dll
2013-03-16 11:40:11 ----A---- C:\Windows\system32\takeown.exe
2013-03-16 11:40:10 ----A---- C:\Windows\system32\taskmgr.exe
2013-03-16 11:40:10 ----A---- C:\Windows\system32\taskcomp.dll
2013-03-16 11:40:10 ----A---- C:\Windows\system32\taskbarcpl.dll
2013-03-16 11:40:10 ----A---- C:\Windows\system32\drivers\termdd.sys
2013-03-16 11:40:09 ----A---- C:\Windows\system32\sysclass.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\hgcpl.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\hbaapi.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\gpsvc.dll
2013-03-16 11:40:06 ----A---- C:\Windows\system32\drivers\hidusb.sys
2013-03-16 11:40:06 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-03-16 11:40:06 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2013-03-16 11:40:05 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-03-16 11:40:05 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2013-03-16 11:40:05 ----A---- C:\Windows\system32\findstr.exe
2013-03-16 11:40:05 ----A---- C:\Windows\system32\fdeploy.dll
2013-03-16 11:40:05 ----A---- C:\Windows\system32\EhStorAPI.dll
2013-03-16 11:40:04 ----A---- C:\Windows\system32\luainstall.dll
2013-03-16 11:40:04 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-03-16 11:40:04 ----A---- C:\Windows\system32\ftp.exe
2013-03-16 11:40:03 ----A---- C:\Windows\system32\mfds.dll
2013-03-16 11:40:03 ----A---- C:\Windows\system32\mf.dll
2013-03-16 11:40:03 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2013-03-16 11:40:03 ----A---- C:\Windows\system32\manage-bde.exe
2013-03-16 11:40:03 ----A---- C:\Windows\system32\KBDTURME.DLL
2013-03-16 11:40:03 ----A---- C:\Windows\system32\KBDSG.DLL
2013-03-16 11:40:03 ----A---- C:\Windows\system32\KBDSF.DLL
2013-03-16 11:40:03 ----A---- C:\Windows\system32\KBDLT1.DLL
2013-03-16 11:40:03 ----A---- C:\Windows\system32\kbdlk41a.dll
2013-03-16 11:40:03 ----A---- C:\Windows\system32\inetmib1.dll
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDINTAM.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDINMAR.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDINKAN.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDINHIN.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDGKL.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDGEO.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\KBDCZ1.DLL
2013-03-16 11:40:02 ----A---- C:\Windows\system32\isoburn.exe
2013-03-16 11:40:02 ----A---- C:\Windows\system32\iscsicli.exe
2013-03-16 11:40:02 ----A---- C:\Windows\system32\ipsmsnap.dll
2013-03-16 11:40:02 ----A---- C:\Windows\system32\inetpp.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\iyuv_32.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\iTVData.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\iscsium.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\cabinet.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\browseui.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\BFE.DLL
2013-03-16 11:40:01 ----A---- C:\Windows\system32\azroleui.dll
2013-03-16 11:40:01 ----A---- C:\Windows\system32\autoconv.exe
2013-03-16 11:40:00 ----A---- C:\Windows\system32\CertPolEng.dll
2013-03-16 11:40:00 ----A---- C:\Windows\system32\audiosrv.dll
2013-03-16 11:40:00 ----A---- C:\Windows\system32\AudioSes.dll
2013-03-16 11:40:00 ----A---- C:\Windows\system32\audiodg.exe
2013-03-16 11:39:59 ----A---- C:\Windows\system32\drivers\cdrom.sys
2013-03-16 11:39:59 ----A---- C:\Windows\system32\cmd.exe
2013-03-16 11:39:59 ----A---- C:\Windows\system32\cca.dll
2013-03-16 11:39:59 ----A---- C:\Windows\system32\calc.exe
2013-03-16 11:39:59 ----A---- C:\Windows\system32\actxprxy.dll
2013-03-16 11:39:59 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2013-03-16 11:39:59 ----A---- C:\Windows\system32\ActionCenter.dll
2013-03-16 11:39:58 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2013-03-16 11:39:58 ----A---- C:\Windows\system32\aeinv.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\dpx.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\dot3svc.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\dot3msm.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\dot3api.dll
2013-03-16 11:39:57 ----A---- C:\Windows\system32\aepdu.dll
2013-03-16 11:39:40 ----A---- C:\Windows\system32\djoin.exe
2013-03-16 11:39:33 ----A---- C:\Windows\system32\eapphost.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\eappgnui.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\eapp3hst.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\DXP.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\dwmcore.dll
2013-03-16 11:39:33 ----A---- C:\Windows\system32\dnscmmc.dll
2013-03-16 11:39:32 ----A---- C:\Windows\system32\credssp.dll
2013-03-16 11:39:31 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2013-03-16 11:39:31 ----A---- C:\Windows\system32\diagperf.dll
2013-03-16 08:27:01 ----A---- C:\Windows\system32\nvdispgenco3231421.dll
2013-03-16 08:27:01 ----A---- C:\Windows\system32\nvdispco3231421.dll

======List of files/folders modified in the last 1 month======

2013-04-15 20:59:25 ----D---- C:\Windows\Prefetch
2013-04-15 20:57:18 ----D---- C:\Windows\system32\drivers
2013-04-15 20:53:13 ----D---- C:\Windows
2013-04-15 20:53:13 ----A---- C:\Windows\system.ini
2013-04-15 20:53:06 ----D---- C:\Windows\system32\drivers\etc
2013-04-15 20:52:53 ----D---- C:\Windows\system32\catroot2
2013-04-15 20:52:36 ----D---- C:\ProgramData\NVIDIA
2013-04-15 20:47:02 ----D---- C:\Windows\System32
2013-04-15 20:47:02 ----D---- C:\Windows\AppPatch
2013-04-15 20:47:01 ----D---- C:\Program Files\Common Files
2013-04-15 14:21:16 ----D---- C:\Windows\system32\NDF
2013-04-15 14:21:01 ----D---- C:\Windows\inf
2013-04-14 15:30:35 ----D---- C:\Users\Milan\AppData\Roaming\Skype
2013-04-14 14:03:40 ----D---- C:\Windows\Panther
2013-04-14 14:03:40 ----D---- C:\Windows\debug
2013-04-14 14:03:40 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-04-14 13:04:08 ----D---- C:\Windows\Tasks
2013-04-14 13:04:08 ----D---- C:\Windows\system32\Tasks
2013-04-14 11:42:53 ----RD---- C:\Program Files
2013-04-14 11:28:11 ----D---- C:\Windows\system32\config
2013-04-14 11:15:31 ----D---- C:\Windows\winsxs
2013-04-14 11:13:24 ----D---- C:\Program Files\Internet Explorer
2013-04-14 11:12:40 ----D---- C:\Windows\system32\catroot
2013-04-14 11:09:58 ----A---- C:\Windows\system32\MRT.exe
2013-04-14 11:09:44 ----SHD---- C:\System Volume Information
2013-04-13 18:57:25 ----D---- C:\Windows\Logs
2013-04-12 17:55:12 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-04-12 17:43:10 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-04-12 15:50:34 ----SHD---- C:\Windows\Installer
2013-04-12 15:50:30 ----D---- C:\Program Files\Common Files\Adobe AIR
2013-04-11 22:12:31 ----D---- C:\Program Files\Java
2013-04-11 22:10:47 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2013-04-11 22:10:37 ----A---- C:\Windows\system32\npDeployJava1.dll
2013-04-11 22:10:37 ----A---- C:\Windows\system32\deployJava1.dll
2013-04-11 14:58:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-04-10 15:20:56 ----D---- C:\Users\Milan\AppData\Roaming\Epson
2013-04-08 21:02:34 ----D---- C:\Program Files\Microsoft Silverlight
2013-04-08 20:56:11 ----D---- C:\Downloads
2013-04-08 16:53:59 ----D---- C:\ProgramData\NVIDIA Corporation
2013-04-08 16:53:56 ----RSD---- C:\Windows\assembly
2013-04-07 11:58:35 ----D---- C:\ProgramData
2013-04-06 19:16:32 ----D---- C:\ProgramData\Skype
2013-04-06 18:29:41 ----D---- C:\Users\Milan\AppData\Roaming\NVIDIA
2013-04-05 19:06:36 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-04-05 05:59:41 ----D---- C:\Users\Milan\AppData\Roaming\Audacity
2013-04-05 05:45:59 ----D---- C:\Users\Milan\AppData\Roaming\DAEMON Tools Lite
2013-04-01 20:44:40 ----D---- C:\Windows\system32\wdi
2013-03-29 12:27:04 ----D---- C:\found.000
2013-03-29 09:53:24 ----D---- C:\Program Files\Core Temp
2013-03-29 08:23:57 ----D---- C:\Users\Milan\AppData\Roaming\Adobe
2013-03-28 22:04:17 ----D---- C:\ProgramData\Adobe
2013-03-28 22:03:10 ----D---- C:\Program Files\Adobe
2013-03-28 22:00:51 ----D---- C:\Program Files\Common Files\Adobe
2013-03-28 21:58:05 ----RSD---- C:\Windows\Fonts
2013-03-27 21:09:16 ----D---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-03-26 15:32:22 ----D---- C:\Windows\system32\DriverStore
2013-03-26 15:31:38 ----D---- C:\Program Files\NVIDIA Corporation
2013-03-25 15:13:11 ----D---- C:\Windows\pss
2013-03-25 07:49:44 ----D---- C:\Windows\SoftwareDistribution
2013-03-23 19:30:14 ----HD---- C:\Windows\system32\GroupPolicy
2013-03-22 20:26:17 ----D---- C:\Program Files\WinRAR
2013-03-21 20:39:11 ----D---- C:\Users\Milan\AppData\Roaming\Mozilla
2013-03-21 20:27:11 ----D---- C:\Users\Milan\AppData\Roaming\Logishrd
2013-03-21 20:27:11 ----D---- C:\Users\Milan\AppData\Roaming\dvdcss
2013-03-21 17:49:07 ----HD---- C:\Program Files\InstallShield Installation Information
2013-03-21 17:49:03 ----D---- C:\Program Files\Gigabyte
2013-03-21 17:44:56 ----D---- C:\Program Files\Common Files\LogiShrd
2013-03-21 17:44:46 ----D---- C:\ProgramData\Logishrd
2013-03-21 17:44:38 ----D---- C:\ProgramData\Logitech
2013-03-19 19:38:51 ----D---- C:\Boot
2013-03-19 19:17:06 ----D---- C:\Windows\Minidump
2013-03-17 10:33:05 ----D---- C:\Windows\rescache
2013-03-17 09:52:23 ----D---- C:\Windows\Microsoft.NET
2013-03-17 09:32:33 ----D---- C:\Windows\system32\wbem
2013-03-17 09:32:33 ----D---- C:\Windows\system32\en-US
2013-03-17 09:32:33 ----D---- C:\Windows\system32\drivers\en-US
2013-03-17 09:32:33 ----D---- C:\Windows\system32\cs-CZ
2013-03-17 09:32:33 ----D---- C:\Windows\PolicyDefinitions
2013-03-17 09:32:32 ----D---- C:\Windows\system32\migration
2013-03-17 09:32:29 ----D---- C:\Windows\system32\zh-TW
2013-03-17 09:32:29 ----D---- C:\Windows\system32\zh-HK
2013-03-17 09:32:29 ----D---- C:\Windows\system32\zh-CN
2013-03-17 09:32:29 ----D---- C:\Windows\system32\tr-TR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\sv-SE
2013-03-17 09:32:29 ----D---- C:\Windows\system32\ru-RU
2013-03-17 09:32:29 ----D---- C:\Windows\system32\pt-PT
2013-03-17 09:32:29 ----D---- C:\Windows\system32\pt-BR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\pl-PL
2013-03-17 09:32:29 ----D---- C:\Windows\system32\nl-NL
2013-03-17 09:32:29 ----D---- C:\Windows\system32\nb-NO
2013-03-17 09:32:29 ----D---- C:\Windows\system32\ko-KR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\ja-JP
2013-03-17 09:32:29 ----D---- C:\Windows\system32\it-IT
2013-03-17 09:32:29 ----D---- C:\Windows\system32\hu-HU
2013-03-17 09:32:29 ----D---- C:\Windows\system32\fr-FR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\fi-FI
2013-03-17 09:32:29 ----D---- C:\Windows\system32\es-ES
2013-03-17 09:32:29 ----D---- C:\Windows\system32\el-GR
2013-03-17 09:32:29 ----D---- C:\Windows\system32\de-DE
2013-03-17 09:32:29 ----D---- C:\Windows\system32\da-DK
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Sidebar
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Portable Devices
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Photo Viewer
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Media Player
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Mail
2013-03-16 12:03:38 ----D---- C:\Program Files\Windows Journal
2013-03-16 12:03:38 ----D---- C:\Program Files\DVD Maker
2013-03-16 12:03:38 ----D---- C:\Program Files\Common Files\System
2013-03-16 12:03:37 ----D---- C:\Windows\servicing
2013-03-16 12:03:37 ----D---- C:\Windows\ehome
2013-03-16 12:03:37 ----D---- C:\Program Files\Windows Defender
2013-03-16 12:03:31 ----D---- C:\Windows\system32\sysprep
2013-03-16 12:03:31 ----D---- C:\Windows\system32\Setup
2013-03-16 12:03:31 ----D---- C:\Windows\system32\oobe
2013-03-16 12:03:31 ----D---- C:\Windows\system32\cs
2013-03-16 12:03:31 ----D---- C:\Windows\system32\AdvancedInstallers
2013-03-16 12:03:30 ----D---- C:\Windows\system32\sppui
2013-03-16 12:03:30 ----D---- C:\Windows\system32\manifeststore
2013-03-16 12:03:30 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-03-16 12:03:29 ----D---- C:\Windows\system32\migwiz
2013-03-16 12:03:29 ----D---- C:\Windows\system32\Dism
2013-03-16 12:03:12 ----D---- C:\Windows\system32\Boot
2013-03-16 11:58:10 ----A---- C:\Windows\system32\msclmd.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-03-07 21576]
R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2013-02-18 12112]
R0 aswNdis2;avast! Firewall Core Firewall Service; C:\Windows\system32\drivers\aswNdis2.sys [2013-03-07 199384]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-03-07 49248]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswFW;avast! TDI Firewall driver; C:\Windows\system32\drivers\aswFW.sys [2013-03-07 101656]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-03-07 60656]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-03-07 765736]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-03-07 368176]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-03-07 62376]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-20 242240]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-03-07 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-03-07 66336]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2013-04-15 16608]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2000-01-01 2565088]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2000-01-01 521832]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 androidusb;ADB Interface Driver; C:\Windows\System32\Drivers\androidusb.sys [2010-04-29 26112]
S3 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-03-07 164736]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 ECSIoDriver_1_1_0_0;ECSIoDriver_1_1_0_0; \??\C:\Users\Milan\AppData\Local\Temp\is-9ASB2.tmp\ECSIoDriver.sys []
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2013-02-02 17488]
S3 HTCAND32;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2010-04-29 26112]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-23 23040]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2013-01-03 44680]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2013-01-03 40200]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2013-03-21 47360]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2013-03-23 13464]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUSB;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-03-07 45248]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-03-07 136912]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2009-09-14 153600]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2009-09-14 121856]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [2008-07-17 80392]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-12-14 1436160]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 634144]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-24 1927968]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 1713904]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-13 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-12 256904]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-03-28 655624]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-03-13 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-12 115608]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-12 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Myslel jsem log ComboFix. Najdete ho v c:\combofix.txt .

ComboFix 13-04-14.01 - Milan . 04. 2013 20:41:06.2.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1029.18.3326.2429 [GMT 2:00]
Running from: c:\users\Milan\Desktop\ComboFix.exe
Command switches used :: c:\users\Milan\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((( Files Created from 2013-03-15 to 2013-04-15 )))))))))))))))))))))))))))))))
.
.
2013-04-15 18:51 . 2013-04-15 18:52 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-04-15 18:51 . 2013-04-15 18:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-04-14 10:54 . 2013-04-15 18:51 -------- d-----w- c:\users\Milan\AppData\Local\temp
2013-04-14 09:42 . 2013-04-14 10:06 -------- d-----w- C:\rsit
2013-04-14 09:42 . 2013-04-14 10:06 -------- d-----w- c:\program files\trend micro
2013-04-14 09:09 . 2013-03-01 03:09 2347008 ----a-w- c:\windows\system32\win32k.sys
2013-04-14 09:09 . 2013-03-19 05:04 3913560 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-04-14 09:09 . 2013-03-19 05:04 3968856 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-04-14 09:09 . 2013-03-19 04:48 38912 ----a-w- c:\windows\system32\csrsrv.dll
2013-04-14 09:09 . 2013-03-19 02:49 69632 ----a-w- c:\windows\system32\smss.exe
2013-04-13 16:45 . 2013-04-13 16:49 -------- d-----w- c:\program files\UltraDefrag
2013-04-11 20:11 . 2013-04-11 20:11 -------- d-----w- c:\program files\Common Files\Java
2013-04-11 16:02 . 2013-04-11 16:34 -------- d-----w- c:\users\Milan\AppData\Roaming\log
2013-04-11 13:43 . 2013-04-14 12:35 -------- d-----w- c:\users\Milan\AppData\Roaming\.minecraft
2013-04-08 20:01 . 2013-04-08 20:01 -------- d-----w- c:\users\Milan\dwhelper
2013-04-07 09:58 . 2013-04-09 17:12 -------- d-----w- c:\programdata\vsosdk
2013-04-06 16:29 . 2013-04-15 12:13 -------- d-----w- c:\programdata\VSO
2013-04-05 18:43 . 2013-04-15 18:53 -------- d-----w- c:\users\Milan\AppData\Local\LogMeIn Hamachi
2013-04-05 18:43 . 2013-04-05 18:43 -------- d-----w- c:\program files\LogMeIn Hamachi
2013-04-05 03:39 . 2013-04-05 03:49 -------- d-----w- c:\program files\AVI to MP3
2013-04-01 09:40 . 2013-04-01 09:40 94208 ----a-w- c:\windows\system32\udefrag.exe
2013-04-01 09:40 . 2013-04-01 09:40 14336 ----a-w- c:\windows\system32\hibernate4win.exe
2013-04-01 09:40 . 2013-04-01 09:40 13824 ----a-w- c:\windows\system32\bootexctrl.exe
2013-04-01 09:40 . 2013-04-01 09:40 33792 ----a-w- c:\windows\system32\wgx.dll
2013-04-01 09:40 . 2013-04-01 09:40 125440 ----a-w- c:\windows\system32\lua5.1a.dll
2013-04-01 09:39 . 2013-04-01 09:39 416256 ----a-w- c:\windows\system32\defrag_native.exe
2013-04-01 09:39 . 2013-04-01 09:39 69120 ----a-w- c:\windows\system32\udefrag.dll
2013-04-01 09:39 . 2013-04-01 09:39 343552 ----a-w- c:\windows\system32\zenwinx.dll
2013-03-31 19:06 . 2013-03-31 19:06 -------- d-----w- c:\users\Milan\AppData\Local\FLT
2013-03-31 19:06 . 2013-03-31 19:06 -------- d-----w- c:\programdata\Codemasters
2013-03-31 18:45 . 2013-03-31 18:50 -------- d-----w- c:\program files\F1 2012
2013-03-29 06:21 . 2004-03-29 16:23 90112 ----a-w- c:\windows\unvise32.exe
2013-03-28 20:06 . 2013-03-28 20:31 -------- d-----w- c:\programdata\FLEXnet
2013-03-28 19:58 . 2013-03-28 19:58 -------- d-----w- c:\program files\Adobe Media Player
2013-03-28 19:55 . 2013-03-28 19:55 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2013-03-27 19:08 . 2013-03-27 19:08 -------- d-----w- c:\users\Milan\AppData\Local\Adobe_Systems_Incorporate
2013-03-26 13:29 . 2013-03-15 05:46 8952608 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-03-26 13:29 . 2013-03-15 05:46 892704 ----a-w- c:\windows\system32\nvdispgenco3231422.dll
2013-03-26 13:29 . 2013-03-15 05:46 7959000 ----a-w- c:\windows\system32\nvcuda.dll
2013-03-26 13:29 . 2013-03-15 05:46 6271872 ----a-w- c:\windows\system32\nvopencl.dll
2013-03-26 13:29 . 2013-03-15 05:46 2728736 ----a-w- c:\windows\system32\nvcuvid.dll
2013-03-26 13:29 . 2013-03-15 05:46 20542752 ----a-w- c:\windows\system32\nvoglv32.dll
2013-03-26 13:29 . 2013-03-15 05:46 1995552 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-03-26 13:29 . 2013-03-15 05:46 1012512 ----a-w- c:\windows\system32\nvdispco3231422.dll
2013-03-26 13:29 . 2013-03-15 05:46 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-03-25 13:13 . 2013-03-25 13:13 -------- d-----w- c:\windows\system32\oodag
2013-03-25 13:11 . 2013-03-25 13:11 -------- d-----w- c:\users\Milan\AppData\Local\O&O
2013-03-25 13:10 . 2013-03-25 13:10 -------- d-----w- c:\programdata\OO Software
2013-03-23 20:44 . 2013-03-23 20:44 -------- d-----w- c:\programdata\APN
2013-03-23 17:29 . 2013-03-23 17:29 -------- d-----w- c:\windows\SysWOW64
2013-03-23 17:29 . 2013-03-23 17:53 707354 ----a-w- c:\windows\unins000.exe
2013-03-23 15:20 . 2013-04-12 14:05 -------- d-----w- c:\users\Milan\AppData\Roaming\update_tc
2013-03-23 06:32 . 2013-03-23 15:39 -------- d-----w- c:\program files\Cracked Steam
2013-03-23 06:22 . 2013-03-23 15:35 -------- d-----w- c:\program files\Common Files\Steam
2013-03-23 06:22 . 2013-03-23 15:40 -------- d-----w- C:\Program Files (x86)
2013-03-22 21:25 . 2013-03-28 13:49 -------- d-----w- c:\program files\CCleaner
2013-03-22 15:06 . 2010-07-01 02:32 67312 ----a-w- c:\windows\UnDeployV.exe
2013-03-21 18:22 . 2013-03-21 18:25 -------- d-----w- c:\users\Milan\.LocalCooling
2013-03-21 15:42 . 1998-10-02 18:00 327168 ----a-w- c:\windows\IsUninst.exe
2013-03-21 13:13 . 2013-03-21 13:13 -------- d-----w- c:\users\Milan\AppData\Roaming\Thinstall
2013-03-21 13:10 . 2013-03-21 13:10 -------- d-----w- c:\program files\CBS Software
2013-03-21 06:16 . 2013-04-15 12:32 -------- d-----w- c:\users\Milan\AppData\Roaming\Vso
2013-03-21 06:16 . 2013-04-11 16:35 47360 ----a-w- c:\users\Milan\AppData\Roaming\pcouffin.sys
2013-03-21 06:16 . 2013-03-21 06:16 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2013-03-21 06:16 . 2009-09-02 11:44 102439 ----a-w- c:\windows\system32\sipr3260.dll
2013-03-21 06:16 . 2009-09-02 11:44 65602 ----a-w- c:\windows\system32\cook3260.dll
2013-03-21 06:16 . 2009-09-02 11:44 217127 ----a-w- c:\windows\system32\drv43260.dll
2013-03-21 06:16 . 2009-09-02 11:44 208935 ----a-w- c:\windows\system32\drv33260.dll
2013-03-21 06:16 . 2009-09-02 11:44 176165 ----a-w- c:\windows\system32\drv23260.dll
2013-03-21 06:16 . 2013-04-11 16:35 -------- d-----w- c:\program files\VSO
2013-03-19 17:34 . 2013-03-21 13:56 -------- d-----w- c:\users\Milan\AppData\Roaming\Auslogics
2013-03-19 17:32 . 2013-03-22 14:45 -------- d-----w- c:\program files\Auslogics
2013-03-17 07:15 . 2013-03-17 07:15 49152 ----a-w- c:\windows\system32\taskhost.exe
2013-03-17 07:11 . 2012-08-21 20:12 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2013-03-17 07:11 . 2012-10-03 16:42 52224 ----a-w- c:\windows\system32\nlaapi.dll
2013-03-17 07:11 . 2012-10-03 16:42 242176 ----a-w- c:\windows\system32\nlasvc.dll
2013-03-17 07:11 . 2012-10-03 16:42 18944 ----a-w- c:\windows\system32\netevent.dll
2013-03-17 07:11 . 2012-10-03 16:42 175104 ----a-w- c:\windows\system32\netcorehc.dll
2013-03-17 07:11 . 2012-10-03 16:42 156672 ----a-w- c:\windows\system32\ncsi.dll
2013-03-17 07:11 . 2012-10-03 16:40 499712 ----a-w- c:\windows\system32\iphlpsvc.dll
2013-03-17 07:11 . 2012-10-03 15:21 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2013-03-17 07:11 . 2012-08-24 17:05 136560 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2013-03-17 07:11 . 2012-08-24 17:02 369856 ----a-w- c:\windows\system32\drivers\cng.sys
2013-03-17 07:11 . 2012-08-24 16:57 247808 ----a-w- c:\windows\system32\schannel.dll
2013-03-17 07:11 . 2012-08-24 16:56 1039360 ----a-w- c:\windows\system32\lsasrv.dll
2013-03-17 07:10 . 2012-10-09 17:40 44032 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2013-03-17 07:10 . 2012-10-09 17:40 193536 ----a-w- c:\windows\system32\dhcpcore6.dll
2013-03-17 07:10 . 2013-02-12 03:32 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-17 07:10 . 2012-08-22 17:16 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2013-03-17 07:10 . 2012-07-04 19:45 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2013-03-17 07:10 . 2012-05-04 09:59 514560 ----a-w- c:\windows\system32\qdvd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-04-15 18:52 . 2013-01-28 16:19 16608 ----a-w- c:\windows\gdrv.sys
2013-04-12 15:55 . 2013-03-12 17:06 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-04-12 15:55 . 2013-03-12 17:06 691592 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-04-11 20:10 . 2013-03-07 05:57 94096 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-04-11 20:10 . 2013-01-12 13:10 866704 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-04-11 20:10 . 2013-01-12 13:10 789904 ----a-w- c:\windows\system32\deployJava1.dll
2013-03-23 20:48 . 2013-03-09 14:13 13464 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2013-03-16 09:58 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2013-03-15 05:46 . 2013-01-29 18:39 15042928 ----a-w- c:\windows\system32\nvd3dum.dll
2013-03-15 05:46 . 2012-10-10 20:14 2539128 ----a-w- c:\windows\system32\nvapi.dll
2013-03-15 05:46 . 2009-07-13 22:09 13088000 ----a-w- c:\windows\system32\nvwgf2um.dll
2013-03-15 02:59 . 2013-01-12 13:09 3014432 ----a-w- c:\windows\system32\nvsvc.dll
2013-03-15 02:59 . 2013-01-12 13:09 4119328 ----a-w- c:\windows\system32\nvcpl.dll
2013-03-15 02:59 . 2013-01-12 13:09 634144 ----a-w- c:\windows\system32\nvvsvc.exe
2013-03-15 02:59 . 2013-01-12 13:09 2555168 ----a-w- c:\windows\system32\nvsvcr.dll
2013-03-15 02:59 . 2013-01-12 13:09 62752 ----a-w- c:\windows\system32\nvshext.dll
2013-03-15 02:59 . 2013-01-12 13:09 223008 ----a-w- c:\windows\system32\nvmctray.dll
2013-03-14 21:07 . 2013-03-14 21:07 559904 ----a-w- c:\windows\system32\nvStreaming.exe
2013-03-14 11:36 . 2013-03-16 06:27 892704 ----a-w- c:\windows\system32\nvdispgenco3231421.dll
2013-03-14 11:36 . 2013-03-16 06:27 1012512 ----a-w- c:\windows\system32\nvdispco3231421.dll
2013-03-11 23:10 . 2013-01-12 12:35 237088 ------w- c:\windows\system32\MpSigStub.exe
2013-03-11 16:12 . 2013-03-11 16:12 851176 ----a-w- c:\windows\system32\WinUSBCoInstaller2.dll
2013-03-10 17:02 . 2013-03-10 17:02 53248 ----a-r- c:\users\Milan\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2013-03-10 17:02 . 2013-03-10 17:02 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2013-03-06 23:33 . 2013-03-02 16:57 164736 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-06 23:33 . 2013-03-02 16:57 49248 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-06 23:33 . 2013-01-12 12:18 368176 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2013-01-12 12:18 62376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2013-01-12 12:18 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2013-03-03 06:55 199384 ----a-w- c:\windows\system32\drivers\aswNdis2.sys
2013-03-06 23:33 . 2013-01-12 12:18 60656 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2013-01-12 12:18 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:33 . 2013-03-03 06:55 101656 ----a-w- c:\windows\system32\drivers\aswFW.sys
2013-03-06 23:33 . 2013-03-02 17:29 21576 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-03-06 23:33 . 2013-01-12 12:18 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:32 . 2013-01-12 12:17 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2013-01-12 12:17 228600 ----a-w- c:\windows\system32\aswBoot.exe
2013-02-28 11:19 . 2013-03-05 15:23 892704 ----a-w- c:\windows\system32\nvdispgenco3231414.dll
2013-02-28 11:19 . 2013-03-05 15:23 1012512 ----a-w- c:\windows\system32\nvdispco3231414.dll
2013-02-18 08:41 . 2013-03-03 06:55 12112 ----a-w- c:\windows\system32\drivers\aswNdis.sys
2013-02-12 04:48 . 2013-03-17 07:11 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-17 07:11 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-10 03:20 . 2013-02-19 17:18 892704 ----a-w- c:\windows\system32\nvdispgenco3220162.dll
2013-02-10 03:20 . 2013-02-19 17:18 1012512 ----a-w- c:\windows\system32\nvdispco3220294.dll
2013-02-04 13:35 . 2013-02-04 13:35 687648 ----a-w- c:\windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2013-02-02 07:08 . 2013-02-02 06:58 17488 ----a-w- c:\windows\etdrv.sys
2013-02-02 07:08 . 2013-02-02 06:58 24944 ----a-w- c:\windows\system32\drivers\GVTDrv.sys
2013-01-20 07:04 . 2013-01-20 07:04 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-04-12 06:16 . 2013-04-12 06:16 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-01-08 3674320]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-03-24 976672]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk
backup=c:\windows\pss\O&O Defrag Tray.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-12-03 07:35 946352 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-01-08 08:41 3674320 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON SX218 Series]
2009-09-14 06:00 200704 ----a-w- c:\windows\System32\spool\drivers\w32x86\3\E_FATIGDE.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nvtmru]
2013-03-24 08:46 976672 ----a-w- c:\program files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2000-01-01 00:00 11734240 ------w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-04-04 09:00 259448 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\androidusb.sys [x]
R3 aswVmm;aswVmm; [x]
R3 ECSIoDriver_1_1_0_0;ECSIoDriver_1_1_0_0;c:\users\Milan\AppData\Local\Temp\is-9ASB2.tmp\ECSIoDriver.sys [x]
R3 etdrv;etdrv;c:\windows\etdrv.sys [x]
R3 HTCAND32;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 aswKbd;aswKbd; [x]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys [x]
S0 aswNdis2;avast! Firewall Core Firewall Service; [x]
S0 aswRvrt;aswRvrt; [x]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [x]
S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [x]
S2 ES lite Service;ES lite Service for program management.;c:\program files\Gigabyte\EasySaver\ESSVR.EXE [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [x]
S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [x]
S2 PassThru Service;Internet Pass-Through Service;c:\program files\HTC\Internet Pass-Through\PassThruSvr.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
GPSvcGroup REG_MULTI_SZ GPSvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-04-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-12 15:55]
.
2013-04-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-03-13 08:03]
.
2013-04-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-03-13 08:03]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.sk/
TCP: DhcpNameServer = 192.168.2.1
TCP: Interfaces\{E89A1804-1EAF-4782-A957-99F4B7E17D7A}: NameServer = 8.8.8.8,217.119.113.244,217.119.113.245
FF - ProfilePath - c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxps://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-03-15 21:32; vlcplaylist@helgatauscher.de; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\extensions\vlcplaylist@helgatauscher.de.xpi
FF - ExtSQL: 2013-04-08 21:58; {DDC359D1-844A-42a7-9AA1-88A850A938A8}; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF - ExtSQL: 2013-04-13 08:55; {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}; c:\users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\siouy60l.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: extensions.funmoods_i.hmpg - true
FF - user.js: extensions.funmoods_i.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=ddrnw
FF - user.js: extensions.funmoods_i.dfltSrch - true
FF - user.js: extensions.funmoods_i.srchPrvdr - Search
FF - user.js: extensions.funmoods_i.dnsErr - true
FF - user.js: extensions.funmoods_i.newTab - true
FF - user.js: extensions.funmoods_i.newTabUrl - hxxp://start.funmoods.com/?f=2&a=ddrnw
FF - user.js: extensions.funmoods_i.tlbrSrchUrl - hxxp://start.funmoods.com/results.php?f=3&a=ddrnw&q=
FF - user.js: extensions.funmoods_i.id - 44b039e0000000000000001fd06aaef9
FF - user.js: extensions.funmoods_i.instlDay - 15642
FF - user.js: extensions.funmoods_i.vrsn - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsni - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.11.1620:07
FF - user.js: extensions.funmoods_i.prtnrId - funmoods
FF - user.js: extensions.funmoods_i.prdct - funmoods
FF - user.js: extensions.funmoods_i.aflt - ddrnw
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods_i.tlbrId - base
FF - user.js: extensions.funmoods_i.instlRef -
FF - user.js: extensions.funmoods_i.dfltLng -
FF - user.js: extensions.funmoods_i.excTlbr - false
.
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\windows\system32\taskhost.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
c:\windows\System32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\DllHost.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Completion time: 2013-04-15 20:57:15 - machine was rebooted
ComboFix-quarantined-files.txt 2013-04-15 18:57
ComboFix2.txt 2013-04-14 11:04
.
Pre-Run: Volných bajtů: 84 231 811 072
Post-Run: Volných bajtů: 84 183 801 856
.
- - End Of File - - 856226B7B68BD80F735BA84E1A1704D7

Log je již OK.

Ďakujem a dá sa zistiť z logu či mám legálny win ?

mil1200 píše:Ďakujem a dá sa zistiť z logu či mám legálny win ?

Pravděpodobně máte, neboť verze Home Premium se obvykle necrackuje. Rozhodně nevidím v logu nic, co by nasvědčovalo tom , že by byl systém nelegální.
Nemáte zač!

Ďakujem môžete teda lock.