Problemy s NTB, prosim o pomoc :-)
Napsal: 11 led 2014 14:51
Zdravím, už dlhšiu dobu je ntb nejaky spomalený, prestáva reagovať, v FF stale problémy že script prestal pracovat, a dnes mi zacali vyskakovať errory, samorozbalovaci subor ze nadokáže spustiť cpu.exe, v procesoch nejake core.exe, cpu1.exe, po spusteni správcu uloh to zmizne, ešte aj OpenOffice vypisuje nejaké bludy,
tu je log z RSIT, ale aj počas kontroly vyskočil error a nedokončil scan... poprosím o kontrolu a následnú pomoc. diky
Logfile of random's system information tool 1.06 (written by random/random)
Run by Volod at 2014-01-11 14:36:53
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 17 GB (27%) free of 62 GB
Total RAM: 2046 MB (44% free)
HijackThis download failed
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3110425667-343454514-1168498933-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3110425667-343454514-1168498933-1001UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-06-23 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-06-23 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{381FFDE8-2394-4F90-B10D-FC6124A40F8C} - Bitdefender Toolbar - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll [2012-03-09 161368]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{687578b9-7132-4a7a-80e4-30ee31099e03}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe [2012-03-09 92352]
"BDAgent"=C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe [2012-03-09 1451928]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2013-12-11 311152]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2009-11-18 54576]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2013-10-09 11947080]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-31 1537320]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-11-16 641704]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 153672]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"TkBellExe"=C:\Program Files\Real\RealPlayer\update\realsched.exe [2013-08-29 295512]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdcBase.exe [2007-05-31 648072]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-01-31 17146504]
"KiesPDLR"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2013-12-11 845168]
"Advanced SystemCare 5"=C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe [2012-03-06 574296]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2012-12-12 969104]
"Google Update"=C:\Users\Volod\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-15 136176]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2013-12-11 1564528]
""=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2013-12-11 845168]
"GoogleDriveSync"=C:\Program Files\Google\Drive\googledrivesync.exe /autostart []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eyeBeam SIP Client]
C:\Program Files\CounterPath\X-Lite\x-lite.exe [2006-05-31 18550784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Volod^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Cashfiesta.lnk]
[]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\Volod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.2.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vgasave.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{59327d47-b5f7-11e1-8fe3-001d72079719}]
shell\AutoRun\command - G:\AutoRun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ad4463ce-6a36-11e1-ac18-001d72079719}]
shell\AutoRun\command - F:\Setup.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b2420ad0-a65c-11e1-9e15-001d72079719}]
shell\AutoRun\command - G:\iStudio.exe
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2014-01-11 12:49:19 ----D---- C:\Program Files\trend micro
2014-01-10 12:46:07 ----A---- C:\Windows\cpu.exe
2014-01-03 15:08:02 ----A---- C:\Windows\core.exe
2014-01-03 15:05:54 ----A---- C:\Windows\cpu1.exe
2014-01-03 09:31:56 ----A---- C:\Windows\start.exe
2013-12-30 14:33:58 ----A---- C:\Windows\system32\PnkBstrB.exe
2013-12-30 14:33:28 ----A---- C:\Windows\system32\PnkBstrA.exe
2013-12-30 14:32:13 ----D---- C:\ProgramData\Orbit
2013-12-27 19:47:53 ----D---- C:\Program Files\OMSI Addon Manager
2013-12-21 20:59:57 ----A---- C:\Windows\system32\wininet.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\mshtml.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\ieui.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\ieframe.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\vbscript.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\urlmon.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\url.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\jscript9.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\jscript.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-21 20:59:56 ----A---- C:\Windows\system32\iertutil.dll
2013-12-21 20:58:55 ----A---- C:\Windows\system32\msieftp.dll
2013-12-21 20:58:18 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-21 20:58:18 ----A---- C:\Windows\system32\wmp.dll
2013-12-21 20:57:38 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-21 20:57:02 ----A---- C:\Windows\system32\tzres.dll
2013-12-21 20:55:46 ----A---- C:\Windows\system32\wscript.exe
2013-12-21 20:55:46 ----A---- C:\Windows\system32\scrrun.dll
2013-12-21 20:55:46 ----A---- C:\Windows\system32\cscript.exe
2013-12-21 20:54:48 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-21 20:53:47 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-21 20:53:47 ----A---- C:\Windows\system32\authui.dll
2013-12-21 20:53:46 ----A---- C:\Windows\system32\credui.dll
2013-12-21 20:52:56 ----A---- C:\Windows\system32\crypt32.dll
2013-12-21 20:51:56 ----A---- C:\Windows\system32\gdi32.dll
2013-12-21 20:51:19 ----A---- C:\Windows\system32\schannel.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\sspisrv.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\sspicli.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\secur32.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\ncrypt.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\lsass.exe
2013-12-21 20:51:18 ----A---- C:\Windows\system32\lsasrv.dll
2013-12-21 20:50:30 ----A---- C:\Windows\system32\nshwfp.dll
2013-12-21 20:50:30 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-12-21 20:50:30 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-12-21 20:49:34 ----A---- C:\Windows\system32\comctl32.dll
2013-12-21 20:49:00 ----A---- C:\Windows\system32\cryptdlg.dll
2013-12-21 20:48:11 ----A---- C:\Windows\system32\WebClnt.dll
2013-12-21 20:48:11 ----A---- C:\Windows\system32\davclnt.dll
2013-12-21 20:47:36 ----A---- C:\Windows\system32\tdh.dll
2013-12-21 20:47:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-12-21 20:47:36 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-12-21 20:47:36 ----A---- C:\Windows\system32\ntdll.dll
2013-12-21 20:47:36 ----A---- C:\Windows\system32\advapi32.dll
2013-12-21 20:47:02 ----A---- C:\Windows\system32\scavengeui.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\lpk.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\fontsub.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\dciman32.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\atmlib.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\atmfd.dll
2013-12-21 20:34:56 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-21 20:34:21 ----A---- C:\Windows\system32\d3d11.dll
2013-12-21 20:33:51 ----A---- C:\Windows\system32\mswsock.dll
2013-12-21 20:33:20 ----A---- C:\Windows\system32\winsrv.dll
2013-12-21 20:33:20 ----A---- C:\Windows\system32\kernel32.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-21 20:33:19 ----A---- C:\Windows\system32\KernelBase.dll
2013-12-21 20:33:19 ----A---- C:\Windows\system32\conhost.exe
2013-12-21 20:32:27 ----A---- C:\Windows\system32\shell32.dll
2013-12-21 20:32:27 ----A---- C:\Windows\system32\shdocvw.dll
2013-12-21 20:30:48 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-12-21 20:25:21 ----A---- C:\Windows\system32\rpcrt4.dll
2013-12-21 20:24:49 ----A---- C:\Windows\system32\rdpcorets.dll
2013-12-21 20:24:21 ----A---- C:\Windows\system32\wintrust.dll
2013-12-21 20:24:21 ----A---- C:\Windows\system32\cryptsvc.dll
2013-12-21 20:24:21 ----A---- C:\Windows\system32\cryptnet.dll
2013-12-21 20:23:30 ----A---- C:\Windows\system32\qedit.dll
2013-12-21 20:22:21 ----A---- C:\Windows\system32\DWrite.dll
2013-12-21 20:16:22 ----A---- C:\Windows\system32\win32spl.dll
2013-12-21 20:16:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-12-21 20:15:45 ----A---- C:\Windows\system32\certutil.exe
2013-12-21 20:15:45 ----A---- C:\Windows\system32\certenc.dll
2013-12-20 10:13:41 ----D---- C:\Program Files\Mozilla Firefox
======List of files/folders modified in the last 1 months======
2014-01-11 14:36:02 ----D---- C:\Users\Volod\AppData\Roaming\uTorrent
2014-01-11 14:35:57 ----D---- C:\Windows\Temp
2014-01-11 14:09:39 ----D---- C:\Users\Volod\AppData\Roaming\Skype
2014-01-11 13:12:29 ----D---- C:\Windows\System32
2014-01-11 13:11:02 ----AD---- C:\Windows
2014-01-11 13:07:46 ----D---- C:\Windows\system32\Tasks
2014-01-11 13:07:39 ----D---- C:\Windows\system32\catroot2
2014-01-11 13:06:31 ----D---- C:\Windows\Minidump
2014-01-11 13:06:15 ----HD---- C:\Config.Msi
2014-01-11 12:49:19 ----D---- C:\Program Files
2014-01-11 12:39:23 ----SHD---- C:\Windows\Installer
2014-01-11 12:39:23 ----D---- C:\Program Files\Google
2014-01-11 12:36:47 ----SHD---- C:\System Volume Information
2014-01-11 12:27:36 ----A---- C:\bdlog.txt
2014-01-11 12:25:35 ----D---- C:\Program Files\HP
2014-01-11 12:22:26 ----D---- C:\Windows\system32\drivers
2014-01-11 12:16:44 ----HD---- C:\Program Files\InstallShield Installation Information
2014-01-11 12:15:35 ----D---- C:\Program Files\IObit
2014-01-11 12:15:29 ----D---- C:\Windows\Tasks
2014-01-11 12:14:23 ----D---- C:\Windows\system32\Macromed
2014-01-09 10:23:49 ----D---- C:\Windows\Microsoft.NET
2014-01-09 00:13:24 ----D---- C:\Windows\system32\catroot
2014-01-08 22:46:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-08 22:46:25 ----D---- C:\Windows\inf
2014-01-08 22:19:39 ----D---- C:\Windows\system32\config
2014-01-08 21:46:31 ----D---- C:\Windows\system32\DriverStore
2014-01-07 19:24:06 ----A---- C:\libSRTP_log.txt
2014-01-03 10:38:21 ----D---- C:\Windows\Prefetch
2014-01-01 16:06:20 ----D---- C:\Users\Volod\AppData\Roaming\vlc
2013-12-31 14:27:31 ----D---- C:\ProgramData\tmp
2013-12-30 19:40:42 ----D---- C:\Users\Volod\AppData\Roaming\DAEMON Tools Lite
2013-12-30 14:33:34 ----D---- C:\Windows\system32\LogFiles
2013-12-30 14:32:13 ----HD---- C:\ProgramData
2013-12-30 14:29:37 ----D---- C:\Windows\system32\directx
2013-12-27 11:01:35 ----A---- C:\Windows\win.ini
2013-12-27 11:00:42 ----D---- C:\Windows\twain_32
2013-12-22 10:53:44 ----RSD---- C:\Windows\assembly
2013-12-22 09:50:02 ----D---- C:\Windows\winsxs
2013-12-22 09:45:45 ----SHD---- C:\Boot
2013-12-21 23:44:15 ----D---- C:\Windows\system32\migration
2013-12-21 23:44:13 ----D---- C:\Program Files\Internet Explorer
2013-12-21 23:44:11 ----D---- C:\Program Files\Windows Media Player
2013-12-21 23:44:10 ----D---- C:\Windows\system32\sk-SK
2013-12-21 23:44:06 ----D---- C:\Windows\system32\en-US
2013-12-21 23:43:44 ----D---- C:\Program Files\Windows Defender
2013-12-21 23:43:43 ----D---- C:\Program Files\Windows Journal
2013-12-21 19:54:45 ----D---- C:\Windows\WindowsMobile
2013-12-21 10:11:08 ----D---- C:\Users\Volod\AppData\Roaming\Media Player Classic
2013-12-21 10:08:11 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-12-20 22:03:28 ----D---- C:\Program Files\Mozilla Firefox.bak
tu je log z RSIT, ale aj počas kontroly vyskočil error a nedokončil scan... poprosím o kontrolu a následnú pomoc. diky
Logfile of random's system information tool 1.06 (written by random/random)
Run by Volod at 2014-01-11 14:36:53
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 17 GB (27%) free of 62 GB
Total RAM: 2046 MB (44% free)
HijackThis download failed
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3110425667-343454514-1168498933-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3110425667-343454514-1168498933-1001UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-06-23 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-06-23 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{381FFDE8-2394-4F90-B10D-FC6124A40F8C} - Bitdefender Toolbar - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll [2012-03-09 161368]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{687578b9-7132-4a7a-80e4-30ee31099e03}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe [2012-03-09 92352]
"BDAgent"=C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe [2012-03-09 1451928]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2013-12-11 311152]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2009-11-18 54576]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2013-10-09 11947080]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-31 1537320]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-11-16 641704]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 153672]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"TkBellExe"=C:\Program Files\Real\RealPlayer\update\realsched.exe [2013-08-29 295512]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdcBase.exe [2007-05-31 648072]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-01-31 17146504]
"KiesPDLR"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2013-12-11 845168]
"Advanced SystemCare 5"=C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe [2012-03-06 574296]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2012-12-12 969104]
"Google Update"=C:\Users\Volod\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-15 136176]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2013-12-11 1564528]
""=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2013-12-11 845168]
"GoogleDriveSync"=C:\Program Files\Google\Drive\googledrivesync.exe /autostart []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eyeBeam SIP Client]
C:\Program Files\CounterPath\X-Lite\x-lite.exe [2006-05-31 18550784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Volod^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Cashfiesta.lnk]
[]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\Volod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.2.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vga.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vgasave.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{59327d47-b5f7-11e1-8fe3-001d72079719}]
shell\AutoRun\command - G:\AutoRun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ad4463ce-6a36-11e1-ac18-001d72079719}]
shell\AutoRun\command - F:\Setup.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b2420ad0-a65c-11e1-9e15-001d72079719}]
shell\AutoRun\command - G:\iStudio.exe
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2014-01-11 12:49:19 ----D---- C:\Program Files\trend micro
2014-01-10 12:46:07 ----A---- C:\Windows\cpu.exe
2014-01-03 15:08:02 ----A---- C:\Windows\core.exe
2014-01-03 15:05:54 ----A---- C:\Windows\cpu1.exe
2014-01-03 09:31:56 ----A---- C:\Windows\start.exe
2013-12-30 14:33:58 ----A---- C:\Windows\system32\PnkBstrB.exe
2013-12-30 14:33:28 ----A---- C:\Windows\system32\PnkBstrA.exe
2013-12-30 14:32:13 ----D---- C:\ProgramData\Orbit
2013-12-27 19:47:53 ----D---- C:\Program Files\OMSI Addon Manager
2013-12-21 20:59:57 ----A---- C:\Windows\system32\wininet.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\mshtml.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\ieui.dll
2013-12-21 20:59:57 ----A---- C:\Windows\system32\ieframe.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\vbscript.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\urlmon.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\url.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\jscript9.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\jscript.dll
2013-12-21 20:59:56 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-21 20:59:56 ----A---- C:\Windows\system32\iertutil.dll
2013-12-21 20:58:55 ----A---- C:\Windows\system32\msieftp.dll
2013-12-21 20:58:18 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-21 20:58:18 ----A---- C:\Windows\system32\wmp.dll
2013-12-21 20:57:38 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-21 20:57:02 ----A---- C:\Windows\system32\tzres.dll
2013-12-21 20:55:46 ----A---- C:\Windows\system32\wscript.exe
2013-12-21 20:55:46 ----A---- C:\Windows\system32\scrrun.dll
2013-12-21 20:55:46 ----A---- C:\Windows\system32\cscript.exe
2013-12-21 20:54:48 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-21 20:53:47 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-21 20:53:47 ----A---- C:\Windows\system32\authui.dll
2013-12-21 20:53:46 ----A---- C:\Windows\system32\credui.dll
2013-12-21 20:52:56 ----A---- C:\Windows\system32\crypt32.dll
2013-12-21 20:51:56 ----A---- C:\Windows\system32\gdi32.dll
2013-12-21 20:51:19 ----A---- C:\Windows\system32\schannel.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\sspisrv.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\sspicli.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\secur32.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\ncrypt.dll
2013-12-21 20:51:18 ----A---- C:\Windows\system32\lsass.exe
2013-12-21 20:51:18 ----A---- C:\Windows\system32\lsasrv.dll
2013-12-21 20:50:30 ----A---- C:\Windows\system32\nshwfp.dll
2013-12-21 20:50:30 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-12-21 20:50:30 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-12-21 20:49:34 ----A---- C:\Windows\system32\comctl32.dll
2013-12-21 20:49:00 ----A---- C:\Windows\system32\cryptdlg.dll
2013-12-21 20:48:11 ----A---- C:\Windows\system32\WebClnt.dll
2013-12-21 20:48:11 ----A---- C:\Windows\system32\davclnt.dll
2013-12-21 20:47:36 ----A---- C:\Windows\system32\tdh.dll
2013-12-21 20:47:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-12-21 20:47:36 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-12-21 20:47:36 ----A---- C:\Windows\system32\ntdll.dll
2013-12-21 20:47:36 ----A---- C:\Windows\system32\advapi32.dll
2013-12-21 20:47:02 ----A---- C:\Windows\system32\scavengeui.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\lpk.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\fontsub.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\dciman32.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\atmlib.dll
2013-12-21 20:41:07 ----A---- C:\Windows\system32\atmfd.dll
2013-12-21 20:34:56 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-21 20:34:21 ----A---- C:\Windows\system32\d3d11.dll
2013-12-21 20:33:51 ----A---- C:\Windows\system32\mswsock.dll
2013-12-21 20:33:20 ----A---- C:\Windows\system32\winsrv.dll
2013-12-21 20:33:20 ----A---- C:\Windows\system32\kernel32.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-21 20:33:19 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-21 20:33:19 ----A---- C:\Windows\system32\KernelBase.dll
2013-12-21 20:33:19 ----A---- C:\Windows\system32\conhost.exe
2013-12-21 20:32:27 ----A---- C:\Windows\system32\shell32.dll
2013-12-21 20:32:27 ----A---- C:\Windows\system32\shdocvw.dll
2013-12-21 20:30:48 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-12-21 20:25:21 ----A---- C:\Windows\system32\rpcrt4.dll
2013-12-21 20:24:49 ----A---- C:\Windows\system32\rdpcorets.dll
2013-12-21 20:24:21 ----A---- C:\Windows\system32\wintrust.dll
2013-12-21 20:24:21 ----A---- C:\Windows\system32\cryptsvc.dll
2013-12-21 20:24:21 ----A---- C:\Windows\system32\cryptnet.dll
2013-12-21 20:23:30 ----A---- C:\Windows\system32\qedit.dll
2013-12-21 20:22:21 ----A---- C:\Windows\system32\DWrite.dll
2013-12-21 20:16:22 ----A---- C:\Windows\system32\win32spl.dll
2013-12-21 20:16:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-12-21 20:15:45 ----A---- C:\Windows\system32\certutil.exe
2013-12-21 20:15:45 ----A---- C:\Windows\system32\certenc.dll
2013-12-20 10:13:41 ----D---- C:\Program Files\Mozilla Firefox
======List of files/folders modified in the last 1 months======
2014-01-11 14:36:02 ----D---- C:\Users\Volod\AppData\Roaming\uTorrent
2014-01-11 14:35:57 ----D---- C:\Windows\Temp
2014-01-11 14:09:39 ----D---- C:\Users\Volod\AppData\Roaming\Skype
2014-01-11 13:12:29 ----D---- C:\Windows\System32
2014-01-11 13:11:02 ----AD---- C:\Windows
2014-01-11 13:07:46 ----D---- C:\Windows\system32\Tasks
2014-01-11 13:07:39 ----D---- C:\Windows\system32\catroot2
2014-01-11 13:06:31 ----D---- C:\Windows\Minidump
2014-01-11 13:06:15 ----HD---- C:\Config.Msi
2014-01-11 12:49:19 ----D---- C:\Program Files
2014-01-11 12:39:23 ----SHD---- C:\Windows\Installer
2014-01-11 12:39:23 ----D---- C:\Program Files\Google
2014-01-11 12:36:47 ----SHD---- C:\System Volume Information
2014-01-11 12:27:36 ----A---- C:\bdlog.txt
2014-01-11 12:25:35 ----D---- C:\Program Files\HP
2014-01-11 12:22:26 ----D---- C:\Windows\system32\drivers
2014-01-11 12:16:44 ----HD---- C:\Program Files\InstallShield Installation Information
2014-01-11 12:15:35 ----D---- C:\Program Files\IObit
2014-01-11 12:15:29 ----D---- C:\Windows\Tasks
2014-01-11 12:14:23 ----D---- C:\Windows\system32\Macromed
2014-01-09 10:23:49 ----D---- C:\Windows\Microsoft.NET
2014-01-09 00:13:24 ----D---- C:\Windows\system32\catroot
2014-01-08 22:46:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-08 22:46:25 ----D---- C:\Windows\inf
2014-01-08 22:19:39 ----D---- C:\Windows\system32\config
2014-01-08 21:46:31 ----D---- C:\Windows\system32\DriverStore
2014-01-07 19:24:06 ----A---- C:\libSRTP_log.txt
2014-01-03 10:38:21 ----D---- C:\Windows\Prefetch
2014-01-01 16:06:20 ----D---- C:\Users\Volod\AppData\Roaming\vlc
2013-12-31 14:27:31 ----D---- C:\ProgramData\tmp
2013-12-30 19:40:42 ----D---- C:\Users\Volod\AppData\Roaming\DAEMON Tools Lite
2013-12-30 14:33:34 ----D---- C:\Windows\system32\LogFiles
2013-12-30 14:32:13 ----HD---- C:\ProgramData
2013-12-30 14:29:37 ----D---- C:\Windows\system32\directx
2013-12-27 11:01:35 ----A---- C:\Windows\win.ini
2013-12-27 11:00:42 ----D---- C:\Windows\twain_32
2013-12-22 10:53:44 ----RSD---- C:\Windows\assembly
2013-12-22 09:50:02 ----D---- C:\Windows\winsxs
2013-12-22 09:45:45 ----SHD---- C:\Boot
2013-12-21 23:44:15 ----D---- C:\Windows\system32\migration
2013-12-21 23:44:13 ----D---- C:\Program Files\Internet Explorer
2013-12-21 23:44:11 ----D---- C:\Program Files\Windows Media Player
2013-12-21 23:44:10 ----D---- C:\Windows\system32\sk-SK
2013-12-21 23:44:06 ----D---- C:\Windows\system32\en-US
2013-12-21 23:43:44 ----D---- C:\Program Files\Windows Defender
2013-12-21 23:43:43 ----D---- C:\Program Files\Windows Journal
2013-12-21 19:54:45 ----D---- C:\Windows\WindowsMobile
2013-12-21 10:11:08 ----D---- C:\Users\Volod\AppData\Roaming\Media Player Classic
2013-12-21 10:08:11 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-12-20 22:03:28 ----D---- C:\Program Files\Mozilla Firefox.bak