Pomalý internet

Zpráva

patarasa · #1 Příspěvek od **patarasa** » 06 srp 2013 17:48

Dobrý den,
Mám problém s rychlostí internetu. Měl by mít rychlost 30mb/s, ale na dsl.cz naměřím jen cca 7mb/s. Nejdříve jsem myslel, že je chyba na straně poskytovatele připojení, ale pak jsem zjistil, že v nouzovém režimu s prací v síti naměřím oněch 30 mb/s. Takže chyba je určitě někde u mně..

Zkusil jsem systém skenovat svojim antivirem (Avira), dále jsem zkusil tdsskiller a roguekiller, ale nikdo nic nenašel.. :/ Posílám tedy log z rsit a prosím někoho ochotného, aby mi poradil, jestli jde o nějaký virus, nebo nějaký jiný problém. Děkuji.

log:

Logfile of random's system information tool 1.09 (written by random/random)
Run by ROTA at 2013-08-06 18:37:36
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 73 GB (71%) free of 102 GB
Total RAM: 4094 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:37:39, on 6.8.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16635)
Boot mode: Normal

Running processes:
C:\Programy\My Lockbox\mylbx.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Programy\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Program Files\trend micro\ROTA.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Avira SearchFree Toolbar plus Web Protection BHO - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" (file missing)
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programy\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Programy\DAEMON Tools Lite\DTLite.exe" -autorun
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7985 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000600
"C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:\Programy\My Lockbox\mylbx.exe" /a
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Programy\iTunes\iTunesHelper.exe"
"C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-87a58618-f500-443f-a3b8-e927d68b5e8f -SystemEventPortName:HostProcess-301e56be-e6b7-4e18-a431-e0cd79b080d6 -IoCancelEventPortName:HostProcess-9e3b5adc-170f-49ab-842e-1d0bb936ce44 -NonStateChangingEventPortName:HostProcess-3637f226-32c8-4deb-bff8-d38f75f975ec -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:124e6696-8261-4079-9c2a-80d10523a837 -DeviceGroupId:WpdFsGroup
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=5052.11414400.1227990692 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 5052 "\\.\pipe\gecko-crash-server-pipe.5052" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe" --proxy-stub-channel=Flash4520.6BABD910.1745 --host-broker-channel=Flash4520.6BABD910.25638 --host-pid=4520 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe" --channel=4900.002DF888.643531247 --proxy-stub-channel=Flash4520.6BABD910.1745 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll" --host-npapi-version=27 --type=renderer
"C:\Users\ROTA\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

=========Mozilla firefox=========

ProfilePath - C:\Users\ROTA\AppData\Roaming\Mozilla\Firefox\Profiles\zwjwhts3.default-1375548858905

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Programy\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@idsoftware.com/QuakeLive]
"Description"=
"Path"=C:\ProgramData\id Software\QuakeLive\npquakezero.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.13.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

C:\Users\ROTA\AppData\Roaming\Mozilla\Firefox\Profiles\zwjwhts3.default-1375548858905\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7}]
Avira SearchFree Toolbar plus Web Protection - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll [2013-07-26 12240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-08-03 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-08-03 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{41564952-412D-5637-00A7-7A786E7484D7} - Avira SearchFree Toolbar plus Web Protection - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll [2013-07-26 12240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2013-04-25 7477016]
"mylbx"=C:\Programy\My Lockbox\mylbx.exe [2012-12-03 2487656]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Programy\DAEMON Tools Lite\DTLite.exe [2013-07-03 3673184]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-03-28 642656]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-08-02 345144]
"ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2013-07-26 1558480]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-01-28 59720]
"iTunesHelper"=C:\Programy\iTunes\iTunesHelper.exe [2013-02-20 152392]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-08-06 18:37:36 ----D---- C:\rsit
2013-08-06 18:37:36 ----D---- C:\Program Files\trend micro
2013-08-06 18:29:57 ----SHD---- C:\$RECYCLE.BIN
2013-08-06 18:06:59 ----D---- C:\Windows\temp
2013-08-06 18:06:58 ----A---- C:\ComboFix.txt
2013-08-06 18:00:27 ----A---- C:\Windows\zip.exe
2013-08-06 18:00:27 ----A---- C:\Windows\SWSC.exe
2013-08-06 18:00:27 ----A---- C:\Windows\SWREG.exe
2013-08-06 18:00:27 ----A---- C:\Windows\sed.exe
2013-08-06 18:00:27 ----A---- C:\Windows\PEV.exe
2013-08-06 18:00:27 ----A---- C:\Windows\NIRCMD.exe
2013-08-06 18:00:27 ----A---- C:\Windows\MBR.exe
2013-08-06 18:00:27 ----A---- C:\Windows\grep.exe
2013-08-06 18:00:22 ----AD---- C:\Qoobox
2013-08-06 18:00:11 ----D---- C:\Windows\erdnt
2013-08-06 17:31:57 ----A---- C:\TDSSKiller.2.8.18.0_06.08.2013_17.31.57_log.txt
2013-08-05 22:41:05 ----A---- C:\Windows\ntbtlog.txt
2013-08-04 21:32:37 ----D---- C:\ProgramData\id Software
2013-08-03 21:31:40 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2013-08-03 21:23:31 ----D---- C:\Program Files\Common Files\Adobe
2013-08-03 21:22:54 ----D---- C:\Program Files (x86)\Adobe Media Player
2013-08-03 21:21:23 ----D---- C:\Program Files (x86)\Adobe
2013-08-03 21:20:46 ----D---- C:\ProgramData\Adobe
2013-08-03 20:31:35 ----D---- C:\Users\ROTA\AppData\Roaming\Camersoft
2013-08-03 20:31:33 ----D---- C:\CamersoftOutput
2013-08-03 20:31:27 ----A---- C:\Windows\SYSWOW64\MPG4c32.dll
2013-08-03 19:34:45 ----D---- C:\Users\ROTA\AppData\Roaming\WinRAR
2013-08-03 19:06:16 ----D---- C:\Users\ROTA\AppData\Roaming\uTorrent
2013-08-03 19:05:26 ----D---- C:\Users\ROTA\AppData\Roaming\Mp3tag
2013-08-03 18:53:07 ----D---- C:\Users\ROTA\AppData\Roaming\Apple Computer
2013-08-03 18:53:01 ----DC---- C:\Windows\system32\DRVSTORE
2013-08-03 18:53:01 ----A---- C:\Windows\system32\drivers\GEARAspiWDM.sys
2013-08-03 18:52:52 ----D---- C:\ProgramData\Apple Computer
2013-08-03 18:52:52 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-08-03 18:52:52 ----D---- C:\Program Files\iTunes
2013-08-03 18:52:52 ----D---- C:\Program Files\iPod
2013-08-03 18:51:40 ----D---- C:\Program Files (x86)\Apple Software Update
2013-08-03 18:51:26 ----D---- C:\Program Files\Common Files\Apple
2013-08-03 18:51:17 ----D---- C:\Program Files\Bonjour
2013-08-03 18:51:17 ----D---- C:\Program Files (x86)\Bonjour
2013-08-03 18:51:05 ----D---- C:\ProgramData\Apple
2013-08-03 18:34:19 ----D---- C:\Users\ROTA\AppData\Roaming\Babylon
2013-08-03 18:34:19 ----D---- C:\ProgramData\Babylon
2013-08-03 18:33:02 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-08-03 18:33:00 ----D---- C:\Users\ROTA\AppData\Roaming\DAEMON Tools Lite
2013-08-03 18:31:56 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-08-03 18:21:55 ----A---- C:\Windows\system32\drivers\FSPFltd.sys
2013-08-03 18:03:22 ----D---- C:\ProgramData\LogiShrd
2013-08-03 18:03:15 ----D---- C:\Users\ROTA\AppData\Roaming\Leadertech
2013-08-03 18:02:46 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2013-08-03 18:02:29 ----D---- C:\Program Files\Logitech Gaming Software
2013-08-03 18:01:33 ----D---- C:\Users\ROTA\AppData\Roaming\Logitech
2013-08-03 18:01:33 ----D---- C:\Users\ROTA\AppData\Roaming\Logishrd
2013-08-03 17:37:20 ----D---- C:\Programy
2013-08-03 17:36:39 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-08-03 17:36:39 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-08-03 17:36:39 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-08-03 17:36:39 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-08-03 17:36:39 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-08-03 17:36:39 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-08-03 17:36:39 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-08-03 17:36:34 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2013-08-03 17:36:34 ----A---- C:\Windows\SYSWOW64\esent.dll
2013-08-03 17:36:34 ----A---- C:\Windows\system32\fsutil.exe
2013-08-03 17:36:34 ----A---- C:\Windows\system32\esent.dll
2013-08-03 17:36:34 ----A---- C:\Windows\system32\drivers\storport.sys
2013-08-03 17:36:34 ----A---- C:\Windows\system32\drivers\nvstor.sys
2013-08-03 17:36:34 ----A---- C:\Windows\system32\drivers\nvraid.sys
2013-08-03 17:36:34 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2013-08-03 17:36:34 ----A---- C:\Windows\system32\drivers\amdxata.sys
2013-08-03 17:36:34 ----A---- C:\Windows\system32\drivers\amdsata.sys
2013-08-03 17:36:33 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2013-08-03 17:36:27 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2013-08-03 17:36:27 ----A---- C:\Windows\system32\poqexec.exe
2013-08-03 17:36:26 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-08-03 17:36:26 ----A---- C:\Windows\explorer.exe
2013-08-03 17:36:25 ----A---- C:\Windows\SYSWOW64\quartz.dll
2013-08-03 17:36:25 ----A---- C:\Windows\system32\quartz.dll
2013-08-03 17:36:24 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-08-03 17:36:24 ----A---- C:\Windows\system32\qdvd.dll
2013-08-03 17:36:22 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2013-08-03 17:36:22 ----A---- C:\Windows\system32\ntshrui.dll
2013-08-03 17:36:20 ----A---- C:\Windows\SYSWOW64\tquery.dll
2013-08-03 17:36:20 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2013-08-03 17:36:20 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2013-08-03 17:36:20 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2013-08-03 17:36:20 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2013-08-03 17:36:20 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2013-08-03 17:36:20 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2013-08-03 17:36:20 ----A---- C:\Windows\SYSWOW64\mssph.dll
2013-08-03 17:36:20 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2013-08-03 17:36:20 ----A---- C:\Windows\system32\tquery.dll
2013-08-03 17:36:20 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-08-03 17:36:20 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-08-03 17:36:20 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-08-03 17:36:20 ----A---- C:\Windows\system32\mssvp.dll
2013-08-03 17:36:20 ----A---- C:\Windows\system32\mssrch.dll
2013-08-03 17:36:20 ----A---- C:\Windows\system32\mssphtb.dll
2013-08-03 17:36:20 ----A---- C:\Windows\system32\mssph.dll
2013-08-03 17:36:20 ----A---- C:\Windows\system32\msscntrs.dll
2013-08-03 17:36:19 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-08-03 17:36:19 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2013-08-03 17:36:19 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-08-03 17:36:15 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2013-08-03 17:36:15 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2013-08-03 17:36:15 ----A---- C:\Windows\system32\mfc42u.dll
2013-08-03 17:36:15 ----A---- C:\Windows\system32\mfc42.dll
2013-08-03 17:36:14 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-08-03 17:36:14 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-08-03 17:36:11 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-08-03 17:36:10 ----A---- C:\Windows\system32\rdrmemptylst.exe
2013-08-03 17:36:10 ----A---- C:\Windows\system32\rdpwsx.dll
2013-08-03 17:36:10 ----A---- C:\Windows\system32\rdpcorekmts.dll
2013-08-03 17:36:09 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-08-03 17:36:09 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-08-03 17:36:09 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-08-03 17:36:09 ----A---- C:\Windows\system32\schannel.dll
2013-08-03 17:36:09 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-08-03 17:36:09 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-08-03 17:36:09 ----A---- C:\Windows\system32\drivers\cng.sys
2013-08-03 17:36:08 ----A---- C:\Windows\system32\msxml6.dll
2013-08-03 17:36:07 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-08-03 17:36:07 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2013-08-03 17:36:07 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-08-03 17:36:07 ----A---- C:\Windows\system32\msxml3r.dll
2013-08-03 17:36:07 ----A---- C:\Windows\system32\msxml3.dll
2013-08-03 17:36:05 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-08-03 17:36:05 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-08-03 17:36:05 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-08-03 17:36:05 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-08-03 17:36:05 ----A---- C:\Windows\system32\nlasvc.dll
2013-08-03 17:36:05 ----A---- C:\Windows\system32\nlaapi.dll
2013-08-03 17:36:05 ----A---- C:\Windows\system32\netevent.dll
2013-08-03 17:36:05 ----A---- C:\Windows\system32\netcorehc.dll
2013-08-03 17:36:05 ----A---- C:\Windows\system32\ncsi.dll
2013-08-03 17:36:05 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-08-03 17:36:05 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-08-03 17:36:02 ----A---- C:\Windows\system32\profsvc.dll
2013-08-03 17:36:02 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-08-03 17:36:01 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2013-08-03 17:36:01 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2013-08-03 17:36:01 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-08-03 17:36:01 ----A---- C:\Windows\system32\dnscacheugc.exe
2013-08-03 17:36:01 ----A---- C:\Windows\system32\dnsapi.dll
2013-08-03 17:35:51 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2013-08-03 17:35:51 ----A---- C:\Windows\system32\dpnet.dll
2013-08-03 17:35:50 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-08-03 17:35:50 ----A---- C:\Windows\system32\qedit.dll
2013-08-03 17:35:49 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-08-03 17:35:49 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-08-03 17:35:49 ----A---- C:\Windows\system32\wintrust.dll
2013-08-03 17:35:49 ----A---- C:\Windows\system32\ncrypt.dll
2013-08-03 17:35:48 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-08-03 17:35:48 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-08-03 17:35:47 ----A---- C:\Windows\system32\winsrv.dll
2013-08-03 17:35:46 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-08-03 17:35:46 ----A---- C:\Windows\SYSWOW64\user.exe
2013-08-03 17:35:46 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-08-03 17:35:46 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-08-03 17:35:46 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-08-03 17:35:45 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-08-03 17:35:36 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-08-03 17:35:36 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-08-03 17:35:36 ----A---- C:\Windows\system32\drivers\srv.sys
2013-08-03 17:35:35 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-08-03 17:35:35 ----A---- C:\Windows\system32\usp10.dll
2013-08-03 17:35:33 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-08-03 17:35:33 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-08-03 17:35:33 ----A---- C:\Windows\system32\Wpc.dll
2013-08-03 17:35:33 ----A---- C:\Windows\system32\gameux.dll
2013-08-03 17:35:25 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2013-08-03 17:35:25 ----A---- C:\Windows\system32\psisdecd.dll
2013-08-03 17:35:24 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2013-08-03 17:35:15 ----A---- C:\Windows\system32\drivers\afd.sys
2013-08-03 17:35:10 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-08-03 17:35:09 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2013-08-03 17:35:09 ----A---- C:\Windows\system32\kerberos.dll
2013-08-03 17:35:08 ----A---- C:\Windows\SYSWOW64\msi.dll
2013-08-03 17:35:08 ----A---- C:\Windows\system32\msi.dll
2013-08-03 17:35:05 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-08-03 17:35:05 ----A---- C:\Windows\system32\KernelBase.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-08-03 17:35:04 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-08-03 17:35:04 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-08-03 17:35:04 ----A---- C:\Windows\system32\wow64win.dll
2013-08-03 17:35:04 ----A---- C:\Windows\system32\wow64cpu.dll
2013-08-03 17:35:04 ----A---- C:\Windows\system32\wow64.dll
2013-08-03 17:35:04 ----A---- C:\Windows\system32\ntvdm64.dll
2013-08-03 17:35:04 ----A---- C:\Windows\system32\kernel32.dll
2013-08-03 17:35:04 ----A---- C:\Windows\system32\conhost.exe
2013-08-03 17:34:49 ----A---- C:\Windows\SYSWOW64\synceng.dll
2013-08-03 17:34:49 ----A---- C:\Windows\system32\synceng.dll
2013-08-03 17:34:48 ----A---- C:\Windows\system32\winresume.exe
2013-08-03 17:34:48 ----A---- C:\Windows\system32\winload.exe
2013-08-03 17:34:48 ----A---- C:\Windows\system32\kdusb.dll
2013-08-03 17:34:48 ----A---- C:\Windows\system32\kd1394.dll
2013-08-03 17:34:47 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-08-03 17:34:47 ----A---- C:\Windows\system32\win32spl.dll
2013-08-03 17:34:47 ----A---- C:\Windows\system32\kdcom.dll
2013-08-03 17:34:33 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-08-03 17:34:33 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-08-03 17:34:21 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-08-03 17:34:21 ----A---- C:\Windows\system32\cryptdlg.dll
2013-08-03 17:30:38 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2013-08-03 17:30:24 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-08-03 17:30:24 ----A---- C:\Windows\system32\DWrite.dll
2013-08-03 17:23:26 ----D---- C:\Windows\SYSWOW64\Wat
2013-08-03 17:23:26 ----D---- C:\Windows\system32\Wat
2013-08-03 00:47:55 ----A---- C:\Windows\system32\MRT.exe
2013-08-03 00:42:56 ----A---- C:\Windows\system32\Wdfres.dll
2013-08-03 00:42:56 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-08-03 00:42:56 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\url.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-08-03 00:36:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\wininet.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\wextract.exe
2013-08-03 00:36:20 ----A---- C:\Windows\system32\webcheck.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\vbscript.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\urlmon.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\url.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-03 00:36:20 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-08-03 00:36:20 ----A---- C:\Windows\system32\msrating.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\msls31.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\mshtmled.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\mshtml.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\msfeeds.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\licmgr10.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\jsproxy.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\inseng.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\iexpress.exe
2013-08-03 00:36:20 ----A---- C:\Windows\system32\iesetup.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\iertutil.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\iernonce.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\iedkcs32.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\ieapfltr.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\ieapfltr.dat
2013-08-03 00:36:20 ----A---- C:\Windows\system32\ie4uinit.exe
2013-08-03 00:36:20 ----A---- C:\Windows\system32\icardie.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\elshyph.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\dxtrans.dll
2013-08-03 00:36:20 ----A---- C:\Windows\system32\dxtmsft.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-08-03 00:36:19 ----A---- C:\Windows\system32\pngfilt.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\occache.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\mshtmler.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\mshta.exe
2013-08-03 00:36:19 ----A---- C:\Windows\system32\msfeedssync.exe
2013-08-03 00:36:19 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\jscript9.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\jscript.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\imgutil.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\ieUnatt.exe
2013-08-03 00:36:19 ----A---- C:\Windows\system32\ieui.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\iesysprep.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\iepeers.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\ieframe.dll
2013-08-03 00:36:19 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-03 00:33:23 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-08-03 00:33:23 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\XpsPrint.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\WMPhoto.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\UIAnimation.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\FntCache.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\dxgi.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\d3d10warp.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\d3d10level9.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\d3d10core.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\d3d10_1.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\d3d10.dll
2013-08-03 00:33:23 ----A---- C:\Windows\system32\d2d1.dll
2013-08-03 00:31:39 ----A---- C:\Windows\system32\browserchoice.exe
2013-08-03 00:29:23 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-08-03 00:29:22 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-08-03 00:29:22 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-08-03 00:29:22 ----A---- C:\Windows\system32\fontsub.dll
2013-08-03 00:29:22 ----A---- C:\Windows\system32\atmlib.dll
2013-08-03 00:29:22 ----A---- C:\Windows\system32\atmfd.dll
2013-08-03 00:29:11 ----A---- C:\Windows\system32\WUDFx.dll
2013-08-03 00:29:11 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-08-03 00:29:11 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-08-03 00:29:11 ----A---- C:\Windows\system32\WUDFHost.exe
2013-08-03 00:29:11 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-08-03 00:29:11 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-08-03 00:29:11 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-08-03 00:28:34 ----A---- C:\Windows\SYSWOW64\wmi.dll
2013-08-03 00:28:34 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-08-03 00:28:34 ----A---- C:\Windows\system32\wmi.dll
2013-08-03 00:28:34 ----A---- C:\Windows\system32\imagehlp.dll
2013-08-03 00:28:34 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2013-08-03 00:23:19 ----D---- C:\ProgramData\Sun
2013-08-03 00:23:12 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-08-03 00:23:12 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-08-03 00:23:12 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-08-03 00:23:08 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-08-03 00:23:08 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-08-03 00:23:08 ----A---- C:\Windows\SYSWOW64\java.exe
2013-08-03 00:23:03 ----D---- C:\Program Files (x86)\Java
2013-08-02 22:52:34 ----D---- C:\Users\ROTA\AppData\Roaming\ATI
2013-08-02 22:52:34 ----D---- C:\ProgramData\ATI
2013-08-02 22:49:34 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-08-02 22:49:34 ----D---- C:\Program Files\Realtek
2013-08-02 22:49:16 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\WavesGUILib.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\tosade.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\tepeqapo64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\tadefxapo264.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\tadefxapo.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\SRSWOW64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\SRSTSX64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\SRSTSH64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\SRSHP64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\SFSS_APO.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\SFNHK64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\SFCOM64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\SFAPO64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RtkCfg64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RtkApi64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RTEEP64A.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RTEEL64A.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RTEEG64A.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RTEED64A.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RTCOM64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RP3DHT64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RP3DAA64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RCoRes64.dat
2013-08-02 22:49:16 ----A---- C:\Windows\system32\RCoInstII64.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\R4EEP64A.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\R4EEL64A.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\R4EEG64A.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\R4EED64A.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\R4EEA64A.dll
2013-08-02 22:49:16 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-08-02 22:49:16 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2013-08-02 22:49:15 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-08-02 22:49:15 ----D---- C:\Program Files (x86)\Realtek
2013-08-02 22:49:15 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\KAAPORT64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\FMAPO64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\AERTAR64.dll
2013-08-02 22:49:15 ----A---- C:\Windows\system32\AERTAC64.dll
2013-08-02 22:49:13 ----HD---- C:\Program Files (x86)\Temp
2013-08-02 22:49:13 ----A---- C:\Windows\RtlExUpd.dll
2013-08-02 22:44:05 ----D---- C:\Users\ROTA\AppData\Roaming\GRETECH
2013-08-02 22:44:01 ----D---- C:\Program Files (x86)\GRETECH
2013-08-02 22:40:15 ----D---- C:\Users\ROTA\AppData\Roaming\Avira
2013-08-02 22:35:28 ----D---- C:\ProgramData\AskPartnerNetwork
2013-08-02 22:35:28 ----D---- C:\Program Files (x86)\AskPartnerNetwork
2013-08-02 22:35:21 ----D---- C:\ProgramData\APN
2013-08-02 22:34:49 ----D---- C:\ProgramData\Avira
2013-08-02 22:34:49 ----D---- C:\Program Files (x86)\Avira
2013-08-02 22:34:49 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2013-08-02 22:34:49 ----A---- C:\Windows\system32\drivers\avipbb.sys
2013-08-02 22:34:49 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2013-08-02 22:31:15 ----D---- C:\Users\ROTA\AppData\Roaming\Macromedia
2013-08-02 22:31:15 ----D---- C:\Users\ROTA\AppData\Roaming\Adobe
2013-08-02 22:31:09 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-08-02 22:31:08 ----D---- C:\Windows\SYSWOW64\Macromed
2013-08-02 22:31:07 ----D---- C:\Windows\system32\Macromed
2013-08-02 22:25:31 ----D---- C:\Users\ROTA\AppData\Roaming\Mozilla
2013-08-02 22:25:26 ----D---- C:\ProgramData\Mozilla
2013-08-02 22:25:26 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-02 22:25:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-08-02 22:22:54 ----D---- C:\Users\ROTA\AppData\Roaming\Skype
2013-08-02 22:22:50 ----RD---- C:\Program Files (x86)\Skype
2013-08-02 22:22:48 ----D---- C:\ProgramData\Skype
2013-08-02 22:15:59 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-08-02 22:15:03 ----D---- C:\Program Files (x86)\Microsoft.NET
2013-08-02 22:08:46 ----D---- C:\Program Files (x86)\AMD AVT
2013-08-02 22:08:11 ----D---- C:\ProgramData\AMD
2013-08-02 22:07:44 ----D---- C:\Program Files\Common Files\ATI Technologies
2013-08-02 22:07:40 ----D---- C:\Program Files (x86)\ATI Technologies
2013-08-02 22:07:37 ----SHD---- C:\Windows\Installer
2013-08-02 22:07:37 ----D---- C:\Program Files\ATI
2013-08-02 22:07:14 ----D---- C:\Program Files\ATI Technologies
2013-08-02 22:06:32 ----D---- C:\AMD
2013-08-02 21:59:25 ----A---- C:\Windows\system32\win32k.sys
2013-08-02 21:58:59 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2013-08-02 21:58:59 ----A---- C:\Windows\system32\xmllite.dll
2013-08-02 21:58:49 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-08-02 21:58:49 ----A---- C:\Windows\system32\shell32.dll
2013-08-02 21:58:48 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-08-02 21:58:48 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-08-02 21:58:48 ----A---- C:\Windows\system32\shdocvw.dll
2013-08-02 21:58:48 ----A---- C:\Windows\system32\consent.exe
2013-08-02 21:58:48 ----A---- C:\Windows\system32\authui.dll
2013-08-02 21:58:48 ----A---- C:\Windows\system32\appinfo.dll
2013-08-02 21:58:46 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-08-02 21:58:46 ----A---- C:\Windows\system32\tzres.dll
2013-08-02 21:58:44 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-08-02 21:58:44 ----A---- C:\Windows\system32\drivers\netio.sys
2013-08-02 21:58:44 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-08-02 21:58:43 ----A---- C:\Windows\SYSWOW64\sbe.dll
2013-08-02 21:58:43 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2013-08-02 21:58:43 ----A---- C:\Windows\system32\sbe.dll
2013-08-02 21:58:43 ----A---- C:\Windows\system32\CPFilters.dll
2013-08-02 21:58:42 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-08-02 21:58:42 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-08-02 21:58:42 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-08-02 21:58:42 ----A---- C:\Windows\system32\tsgqec.dll
2013-08-02 21:58:42 ----A---- C:\Windows\system32\mstscax.dll
2013-08-02 21:58:42 ----A---- C:\Windows\system32\aaclient.dll
2013-08-02 21:58:39 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-08-02 21:58:38 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-08-02 21:58:38 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-08-02 21:58:38 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-08-02 21:58:38 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-08-02 21:58:38 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-08-02 21:58:38 ----A---- C:\Windows\system32\cdd.dll
2013-08-02 21:58:36 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2013-08-02 21:58:36 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2013-08-02 21:58:36 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2013-08-02 21:58:36 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2013-08-02 21:58:36 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2013-08-02 21:58:36 ----A---- C:\Windows\system32\odbctrac.dll
2013-08-02 21:58:36 ----A---- C:\Windows\system32\odbccu32.dll
2013-08-02 21:58:36 ----A---- C:\Windows\system32\odbccr32.dll
2013-08-02 21:58:36 ----A---- C:\Windows\system32\odbccp32.dll
2013-08-02 21:58:36 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-08-02 21:58:35 ----A---- C:\Windows\SYSWOW64\webio.dll
2013-08-02 21:58:35 ----A---- C:\Windows\system32\webio.dll
2013-08-02 21:58:35 ----A---- C:\Windows\system32\sspisrv.dll
2013-08-02 21:58:35 ----A---- C:\Windows\system32\sspicli.dll
2013-08-02 21:58:35 ----A---- C:\Windows\system32\secur32.dll
2013-08-02 21:58:35 ----A---- C:\Windows\system32\lsass.exe
2013-08-02 21:58:35 ----A---- C:\Windows\system32\lsasrv.dll
2013-08-02 21:58:33 ----A---- C:\Windows\system32\wwansvc.dll
2013-08-02 21:58:33 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-08-02 21:52:36 ----A---- C:\Windows\system32\taskhost.exe
2013-08-02 21:52:34 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2013-08-02 21:52:34 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2013-08-02 21:52:34 ----A---- C:\Windows\SYSWOW64\devobj.dll
2013-08-02 21:52:34 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2013-08-02 21:52:34 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-08-02 21:52:34 ----A---- C:\Windows\system32\browser.dll
2013-08-02 21:52:34 ----A---- C:\Windows\system32\browcli.dll
2013-08-02 21:52:33 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2013-08-02 21:52:33 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2013-08-02 21:52:33 ----A---- C:\Windows\SYSWOW64\browcli.dll
2013-08-02 21:52:33 ----A---- C:\Windows\system32\prevhost.exe
2013-08-02 21:52:33 ----A---- C:\Windows\system32\netapi32.dll
2013-08-02 21:52:32 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-08-02 21:52:31 ----A---- C:\Windows\system32\FXSCOVER.exe
2013-08-02 21:52:30 ----A---- C:\Windows\SYSWOW64\srclient.dll
2013-08-02 21:52:30 ----A---- C:\Windows\system32\srcore.dll
2013-08-02 21:52:29 ----A---- C:\Windows\system32\certutil.exe
2013-08-02 21:52:28 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-08-02 21:52:28 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-08-02 21:52:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-08-02 21:52:28 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-08-02 21:52:28 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-08-02 21:52:28 ----A---- C:\Windows\system32\cryptsvc.dll
2013-08-02 21:52:28 ----A---- C:\Windows\system32\cryptnet.dll
2013-08-02 21:52:28 ----A---- C:\Windows\system32\crypt32.dll
2013-08-02 21:52:28 ----A---- C:\Windows\system32\certenc.dll
2013-08-02 21:50:46 ----A---- C:\Windows\system32\localspl.dll
2013-08-02 21:50:46 ----A---- C:\Windows\system32\drivers\bowser.sys
2013-08-02 21:50:45 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2013-08-02 21:50:45 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2013-08-02 21:50:45 ----A---- C:\Windows\system32\oleaut32.dll
2013-08-02 21:50:45 ----A---- C:\Windows\system32\oleacc.dll
2013-08-02 21:50:44 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2013-08-02 21:50:44 ----A---- C:\Windows\system32\EncDec.dll
2013-08-02 21:50:43 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-08-02 21:50:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-08-02 21:50:43 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-08-02 21:50:42 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-08-02 21:50:42 ----A---- C:\Windows\system32\smss.exe
2013-08-02 21:50:42 ----A---- C:\Windows\system32\csrsrv.dll
2013-08-02 21:50:39 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-08-02 21:50:39 ----A---- C:\Windows\system32\d3d11.dll
2013-08-02 21:50:31 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-08-02 21:50:31 ----A---- C:\Windows\system32\ntdll.dll
2013-08-02 19:29:05 ----D---- C:\Windows\Panther
2013-08-02 18:58:30 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2013-08-02 18:58:29 ----A---- C:\Windows\system32\cdosys.dll
2013-08-02 18:58:22 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2013-08-02 18:58:22 ----A---- C:\Windows\system32\inetcomm.dll
2013-08-02 18:58:21 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2013-08-02 18:58:21 ----A---- C:\Windows\system32\msvcrt.dll
2013-08-02 18:58:11 ----A---- C:\Windows\system32\spoolsv.exe
2013-08-02 18:58:11 ----A---- C:\Windows\splwow64.exe
2013-08-02 18:58:09 ----A---- C:\Windows\SYSWOW64\packager.dll
2013-08-02 18:58:09 ----A---- C:\Windows\system32\packager.dll
2013-08-02 18:52:17 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2013-08-02 18:52:17 ----A---- C:\Windows\system32\rdpcore.dll
2013-08-02 18:52:17 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2013-08-02 18:49:21 ----A---- C:\Windows\system32\wups2.dll
2013-08-02 18:49:21 ----A---- C:\Windows\system32\wucltux.dll
2013-08-02 18:49:21 ----A---- C:\Windows\system32\wuaueng.dll
2013-08-02 18:49:21 ----A---- C:\Windows\system32\wuauclt.exe
2013-08-02 18:49:17 ----A---- C:\Windows\system32\wups.dll
2013-08-02 18:49:17 ----A---- C:\Windows\system32\wudriver.dll
2013-08-02 18:49:17 ----A---- C:\Windows\system32\wuapi.dll
2013-08-02 18:49:13 ----A---- C:\Windows\system32\wuwebv.dll
2013-08-02 18:49:13 ----A---- C:\Windows\system32\wuapp.exe
2013-08-02 18:45:36 ----D---- C:\Users\ROTA\AppData\Roaming\Identities
2013-08-02 18:45:28 ----SD---- C:\Users\ROTA\AppData\Roaming\Microsoft
2013-08-02 18:45:28 ----D---- C:\Users\ROTA\AppData\Roaming\Media Center Programs
2013-08-02 18:45:24 ----SHD---- C:\ProgramData\Šablony
2013-08-02 18:45:24 ----SHD---- C:\ProgramData\Plocha
2013-08-02 18:45:24 ----SHD---- C:\ProgramData\Oblíbené položky
2013-08-02 18:45:24 ----SHD---- C:\ProgramData\Nabídka Start
2013-08-02 18:45:24 ----SHD---- C:\ProgramData\Dokumenty
2013-08-02 18:45:24 ----SHD---- C:\ProgramData\Data aplikací
2013-08-02 18:45:24 ----D---- C:\Recovery
2013-08-02 18:32:49 ----D---- C:\Windows\SoftwareDistribution
2013-08-02 18:30:43 ----D---- C:\Windows\Prefetch
2013-08-02 18:29:57 ----ASH---- C:\pagefile.sys
2013-08-02 18:29:56 ----SHD---- C:\System Volume Information
2013-08-02 18:29:56 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2013-08-06 18:37:36 ----RD---- C:\Program Files
2013-08-06 18:32:38 ----D---- C:\Windows\system32\drivers
2013-08-06 18:06:59 ----D---- C:\Windows
2013-08-06 18:05:38 ----A---- C:\Windows\system.ini
2013-08-06 18:03:28 ----D---- C:\Windows\SYSWOW64\drivers
2013-08-06 18:03:28 ----D---- C:\Windows\SysWOW64
2013-08-06 18:03:28 ----D---- C:\Windows\AppPatch
2013-08-06 18:03:27 ----D---- C:\Program Files (x86)\Common Files
2013-08-06 17:59:12 ----D---- C:\Windows\Tasks
2013-08-06 17:59:12 ----D---- C:\Windows\system32\Tasks
2013-08-06 17:59:12 ----D---- C:\ProgramData
2013-08-06 17:37:57 ----D---- C:\Windows\system32\config
2013-08-06 17:33:29 ----D---- C:\Windows\System32
2013-08-06 17:33:29 ----D---- C:\Windows\inf
2013-08-06 17:33:29 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-08-06 17:30:43 ----SD---- C:\ProgramData\Microsoft
2013-08-06 17:30:42 ----D---- C:\Windows\system32\drivers\UMDF
2013-08-05 22:35:17 ----D---- C:\Windows\system32\NDF
2013-08-04 21:32:47 ----D---- C:\Windows\winsxs
2013-08-04 20:06:36 ----D---- C:\Windows\system32\wdi
2013-08-04 19:08:45 ----D---- C:\Windows\rescache
2013-08-04 19:08:15 ----D---- C:\Windows\Logs
2013-08-04 16:56:42 ----D---- C:\Windows\Microsoft.NET
2013-08-04 16:50:15 ----RSD---- C:\Windows\assembly
2013-08-04 07:17:18 ----D---- C:\Windows\ehome
2013-08-04 07:17:17 ----RSD---- C:\Windows\Fonts
2013-08-04 07:17:12 ----D---- C:\Windows\SYSWOW64\migration
2013-08-04 07:17:12 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-08-04 07:17:12 ----D---- C:\Windows\system32\migration
2013-08-04 07:17:12 ----D---- C:\Windows\system32\cs-CZ
2013-08-04 07:17:12 ----D---- C:\Windows\PolicyDefinitions
2013-08-04 07:17:04 ----D---- C:\Windows\system32\Boot
2013-08-04 07:17:01 ----D---- C:\Windows\system32\DriverStore
2013-08-04 00:04:33 ----D---- C:\Windows\system32\catroot
2013-08-03 21:23:31 ----D---- C:\Program Files\Common Files
2013-08-03 21:22:54 ----RD---- C:\Program Files (x86)
2013-08-03 19:12:40 ----D---- C:\Program Files\FirefoxPortable
2013-08-03 17:34:51 ----D---- C:\Windows\system32\catroot2
2013-08-03 17:23:36 ----D---- C:\Program Files\Common Files\System
2013-08-03 17:23:34 ----D---- C:\Windows\SYSWOW64\en-US
2013-08-03 17:23:34 ----D---- C:\Windows\system32\wbem
2013-08-03 17:23:34 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-08-03 17:23:34 ----D---- C:\Program Files\Windows Defender
2013-08-03 17:23:34 ----D---- C:\Program Files\Internet Explorer
2013-08-03 17:23:34 ----D---- C:\Program Files (x86)\Windows Defender
2013-08-03 17:23:34 ----D---- C:\Program Files (x86)\Internet Explorer
2013-08-03 17:23:32 ----D---- C:\Windows\system32\en-US
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\it-IT
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\es-ES
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\el-GR
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\de-DE
2013-08-03 17:23:30 ----D---- C:\Windows\SYSWOW64\da-DK
2013-08-03 17:23:29 ----D---- C:\Windows\system32\zh-TW
2013-08-03 17:23:29 ----D---- C:\Windows\system32\zh-HK
2013-08-03 17:23:29 ----D---- C:\Windows\system32\zh-CN
2013-08-03 17:23:29 ----D---- C:\Windows\system32\tr-TR
2013-08-03 17:23:29 ----D---- C:\Windows\system32\sv-SE
2013-08-03 17:23:29 ----D---- C:\Windows\system32\ru-RU
2013-08-03 17:23:29 ----D---- C:\Windows\system32\pt-PT
2013-08-03 17:23:29 ----D---- C:\Windows\system32\pt-BR
2013-08-03 17:23:29 ----D---- C:\Windows\system32\pl-PL
2013-08-03 17:23:29 ----D---- C:\Windows\system32\nl-NL
2013-08-03 17:23:29 ----D---- C:\Windows\system32\nb-NO
2013-08-03 17:23:29 ----D---- C:\Windows\system32\ko-KR
2013-08-03 17:23:29 ----D---- C:\Windows\system32\ja-JP
2013-08-03 17:23:29 ----D---- C:\Windows\system32\it-IT
2013-08-03 17:23:29 ----D---- C:\Windows\system32\hu-HU
2013-08-03 17:23:29 ----D---- C:\Windows\system32\fr-FR
2013-08-03 17:23:29 ----D---- C:\Windows\system32\fi-FI
2013-08-03 17:23:29 ----D---- C:\Windows\system32\es-ES
2013-08-03 17:23:29 ----D---- C:\Windows\system32\el-GR
2013-08-03 17:23:29 ----D---- C:\Windows\system32\de-DE
2013-08-03 17:23:29 ----D---- C:\Windows\system32\da-DK
2013-08-03 17:23:25 ----D---- C:\Program Files\Windows Journal
2013-08-03 00:47:56 ----D---- C:\Windows\debug
2013-08-02 22:07:39 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-08-02 18:49:03 ----D---- C:\Windows\system32\restore
2013-08-02 18:45:33 ----D---- C:\Windows\system32\CodeIntegrity
2013-08-02 18:45:28 ----RD---- C:\Users
2013-08-02 18:45:24 ----D---- C:\Windows\system32\Recovery
2013-08-02 18:45:24 ----D---- C:\Program Files\Windows NT
2013-08-02 18:34:25 ----D---- C:\Windows\system32\sysprep
2013-08-02 18:30:38 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 FSProFilter;FSPro File Filter; C:\Windows\System32\Drivers\FSPFltd.sys [2010-07-22 54848]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-08-02 130016]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-08-02 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-08-03 283064]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-08-02 100712]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-03-29 11658752]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-03-29 581120]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-02-14 96768]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-19 4065296]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2013-01-17 66800]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-24 16008]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-03-29 241152]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-03-28 361984]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-08-02 108088]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-08-02 84024]
R2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-08-02 589368]
R2 APNMCP;Ask Update Service; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2013-07-26 168400]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-02-20 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-07-25 162672]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-02 257416]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-06-18 117144]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-08-03 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 06 srp 2013 18:01

Zdravim

Co se tyce ComboFixu, ktery jste pouzil, tak na zaklade licence a pravidel fora ptam, umite s nim pracovat (spusteni, rozlusteni logu, napsani skriptu)?

licencni podminky hovori jasne "Nikdy by nemel byt pouzit v prostredi bez dozoru zkusene osoby"
Obrázek

Nebezpeci CFka

Je urcen primarne pro radce - jeho svevolnym pouzitim ztracite narok na podporu
Maze stopy po haveti, takze v logu z RSIT neni nic videt
Jeho log je treba dolustit, jelikoz neumi smazat vse - to ovsem tezko zvladnete pokud k tomu nejste vyskolen
CF muze mit bug = sunda Vam system, pokud nevite kam co uklada, jak co obnovit, mate system v kytkam a ceka Vas reinstal
CF taky bohuzel prozatim nekontroluje nektere dulezite knihovny (napr. hal.dll) - ty treba mazou nektere typy haveti (napr. angela) - smaze Vam po restartu hal.dll = nenajede Vam system a jste o radek vyse = reinstal

patarasa · #3 Příspěvek od **patarasa** » 06 srp 2013 18:20

Mmm.. Úmysl byl dobrý. Chtěl jsem to zkusit sám, než někoho začnu otravovat. Ale teď přiznávám, že to byla chyba. Vím o tom kulové a teď budu pikat ;(

Příště budu chytřejší.

patarasa · #4 Příspěvek od **patarasa** » 06 srp 2013 19:33

Ještě tady připíšu, že kdyby se našel někdo, kdo by mně politoval, a chtěl mi pomoct.. Tak děkuji, ale nemusí. Problém je úplně někde jinde

.. Zjistil jsem, že rychlost internetu mám dobrou.. To jen test na dsl.cz je nějaký divný.. Na ostatních stránkách mi testy vycházejí dobře, jen ten na dsl.cz mi ukazuje 4x menší hodnoty.. Nechápu proč.., a nechápu proč v nouzovém režimu ukazuje něco jiného.. Ale to je jedno. Hlavně že to fičí.. "Rádcům" se ještě jednou omlouvám za ten špatný nápad s combofixem..

#5 Příspěvek od **vyosek** » 06 srp 2013 19:52

Ten PC potrebuje ale vycistit

Priste se CF vyhnete

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Prohledat
Probehne skenovani a pak se objevi log, pripadne bude ulozen na systemovem disku jako AdwCleaner[R?].txt, ten sem vlozte

patarasa · #6 Příspěvek od **patarasa** » 07 srp 2013 15:28

Ok, děkuji za rady.
Tady je log z jrt:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.3.4 (08.06.2013:1)
OS: Windows 7 Professional x64
Ran by ROTA on st 07.08.2013 at 16:06:26,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\babylon"
Successfully deleted: [Folder] "C:\Users\ROTA\AppData\Roaming\babylon"

~~~ FireFox

Emptied folder: C:\Users\ROTA\AppData\Roaming\mozilla\firefox\profiles\zwjwhts3.default-1375548858905\minidumps [2 files]

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 07.08.2013 at 16:10:36,24
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

patarasa · #7 Příspěvek od **patarasa** » 07 srp 2013 15:29

A tady je log z adwcleaner:

# AdwCleaner v2.306 - Log vytvooen 07/08/2013 v 16:23:07
# Aktualizováno 19/07/2013 Xplode
# Operaení systém : Windows 7 Professional Service Pack 1 (64 bits)
# Uživatel : ROTA - ROTA-PC
# Spuštin systém : Normální
# Spuštino z : C:\Users\ROTA\Desktop\adwcleaner.exe
# Volba [Prohledat]

***** [Služby] *****

Nalezeno : APNMCP

***** [Soubory / Složky] *****

Složka Nalezeno : C:\Program Files (x86)\AskPartnerNetwork
Složka Nalezeno : C:\ProgramData\AskPartnerNetwork
Složka Nalezeno : C:\Users\ROTA\AppData\Local\Temp\APN

***** [Registry] *****

Klíe Nalezeno : HKCU\Software\AskPartnerNetwork
Klíe Nalezeno : HKLM\Software\AskPartnerNetwork

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v10.0.9200.16635

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v22.0 (cs)

Soubor : C:\Users\ROTA\AppData\Roaming\Mozilla\Firefox\Profiles\zwjwhts3.default-1375548858905\prefs.js

[OK] Soubor je eistý.

*************************

AdwCleaner[R1].txt - [979 octets] - [07/08/2013 16:23:07]

########## EOF - C:\AdwCleaner[R1].txt - [1038 octets] ##########

#8 Příspěvek od **vyosek** » 07 srp 2013 19:40

Spustte znovu AdwCleaner

Pokud pouzivate Win Vista ci W7, kliknete na AdwCleaner pravym a dejte Run As Administrator ci Spustit jako spravce
Kliknete na Smazat
PC provede opravu, restartuje se a da Vam log (C:\AdwCleaner [S1].txt) , jeho obsah vlozte sem

VIRY.CZ

Pomalý internet

Pomalý internet

Re: Pomalý internet

Re: Pomalý internet

Re: Pomalý internet

Re: Pomalý internet

Re: Pomalý internet

Re: Pomalý internet

Re: Pomalý internet