VIRY.CZ

Zdravím..
na svém starem PC jsem mel dojem, jakobych mel sledovaný internetový prohlížeč.. Vždy když jsem zavřel Firefox, tak se pikosekundu potom jakoby zavřelo ještě jedno okno... no z laického pohledu mi to přišlo jako nějaký "stínový" prohlížeč co sleduje na co koukám...nevím zda je to možné...

Nicméně mám nový počítač a po trech tydnech mi zacal prohlizet (Chrome) pri zavirani delat uplne to same...

Nechal jsem otestovat KL-detectorem, a tohle je výsledný report:

KL-Detector has found some suspicious files:
C:\ProgramData\Spybot - Search & Destroy\Logs\Scanner.log
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage-journal
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3L2R9S6F\clients[1].txt
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\22DA9U5X\clients[1].txt
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cfhdojbkjhnklbpkdaibdccddilifddb_0.localstorage-journal
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History-journal
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cfhdojbkjhnklbpkdaibdccddilifddb_0.localstorage
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cookies
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage-journal
C:\ProgramData\Spybot - Search & Destroy\ClientCount.bin
C:\ProgramData\ESET\ESET NOD32 Antivirus\local.db
C:\Users\Admin\AppData\Local\ATI\ACE\Profiles.xml

Please check; someone might have installed a keylogger on your computer!


You MAY want to take a look at:
C:\ProgramData\Spybot - Search & Destroy\Logs\
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\
C:\Users\Admin\AppData\Local\Google\Chrome\
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3L2R9S6F\
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\22DA9U5X\
C:\Windows\System32\wbem\Repository\
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\
C:\Windows\Temp\
C:\ProgramData\ESET\ESET NOD32 Antivirus\updfiles\
C:\Windows\System32\config\
C:\ProgramData\ESET\ESET NOD32 Antivirus\
C:\Windows\Prefetch\
C:\ProgramData\Spybot - Search & Destroy\
C:\Windows\System32\sru\


Poradíte mi někdo?? je to vubec mozne bez fyzickeho pristupu na muj comp, aby nekdo nainstaloval sledovaci software?? Diky moc

Zdravim

Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786

tak tady to je.. díky moc

Logfile of random's system information tool 1.09 (written by random/random)
Run by Admin at 2014-01-18 16:29:46
Microsoft Windows 8
System drive C: has 801 GB (84%) free of 954 GB
Total RAM: 8147 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:29:54, on 18. 1. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Admin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7544 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
dashost.exe {717b941c-c188-451f-867e7ad72902524b}
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5856.0.1841502589\1902303262" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,13,23 --gpu-vendor-id=0x1002 --gpu-device-id=0x683d --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_56/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --instant-process --disable-html-notifications --enable-software-compositing --channel="5856.1.2056465149\2058951732" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_56/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="5856.3.1560435324\694229744" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5856.8.670410417\189105349" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_56/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="5856.10.1167467304\1010235962" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_56/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="5856.11.23254142\1884509952" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_56/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="5856.12.143201657\1918572889" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_56/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="5856.13.1875805600\478368647" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe21_ Global\UsGthrCtrlFltPipeMssGthrPipe21 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 556 560 568 65536 564
"C:\Users\Admin\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-10-01 7199448]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2013-09-12 5618456]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-21 20551840]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-12-06 766208]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

a pokračování:

======List of files/folders created in the last 1 month======

2014-01-18 16:29:47 ----D---- C:\Program Files\trend micro
2014-01-18 16:29:46 ----D---- C:\rsit
2014-01-18 13:12:32 ----A---- C:\Windows\system32\sdnclean64.exe
2014-01-18 13:12:30 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-01-18 13:12:23 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-15 17:05:10 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2014-01-15 17:05:10 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 17:05:10 ----A---- C:\Windows\system32\WSShared.dll
2014-01-15 17:05:10 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-13 16:42:57 ----D---- C:\ProgramData\Battle.net
2014-01-13 16:26:16 ----D---- C:\Program Files (x86)\Diablo III Collectors Edition
2014-01-01 20:50:18 ----A---- C:\Windows\SYSWOW64\SETEA45.tmp
2014-01-01 20:50:18 ----A---- C:\Windows\system32\SETEC48.tmp
2014-01-01 20:48:17 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-01-01 20:41:55 ----D---- C:\Ubisoft
2014-01-01 20:27:59 ----D---- C:\Program Files (x86)\Ubisoft
2014-01-01 16:11:15 ----D---- C:\Program Files (x86)\DriverToolkit
2013-12-28 13:20:04 ----D---- C:\ProgramData\ESET
2013-12-28 13:20:04 ----D---- C:\Program Files\ESET
2013-12-28 12:43:30 ----D---- C:\Program Files (x86)\Activision
2013-12-27 09:26:02 ----D---- C:\ProgramData\Rockstar Games
2013-12-26 10:43:19 ----D---- C:\Program Files (x86)\Rockstar Games
2013-12-26 10:29:38 ----D---- C:\Program Files (x86)\Steam
2013-12-25 21:12:17 ----D---- C:\Users\Admin\AppData\Roaming\WinRAR
2013-12-25 17:36:48 ----D---- C:\ProgramData\MSScanAppDataDir
2013-12-25 11:17:07 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-25 11:17:07 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-24 23:58:48 ----D---- C:\Program Files (x86)\Reference Assemblies
2013-12-24 23:57:50 ----D---- C:\Windows\SYSWOW64\XPSViewer
2013-12-24 23:57:37 ----D---- C:\Program Files\Reference Assemblies
2013-12-24 23:57:37 ----D---- C:\Program Files\MSBuild
2013-12-24 23:56:12 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2013-12-24 23:56:12 ----A---- C:\Windows\SYSWOW64\PresentationNative_v0300.dll
2013-12-24 23:56:12 ----A---- C:\Windows\system32\TsWpfWrp.exe
2013-12-24 23:56:12 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2013-12-24 23:50:10 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2013-12-24 23:50:10 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2013-12-24 23:50:10 ----A---- C:\Windows\system32\d3dx10_40.dll
2013-12-24 23:50:10 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2013-12-24 23:50:08 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2013-12-24 23:50:08 ----A---- C:\Windows\system32\D3DX9_40.dll
2013-12-24 22:49:10 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-12-24 22:49:07 ----D---- C:\Users\Admin\AppData\Roaming\DAEMON Tools Lite
2013-12-24 22:49:06 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-12-24 22:43:31 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-12-24 13:39:23 ----D---- C:\Users\Admin\AppData\Roaming\uTorrent
2013-12-24 13:24:57 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-12-24 13:24:57 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-12-24 13:24:57 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-12-24 13:24:57 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-12-24 13:24:56 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-12-24 13:24:56 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-12-24 13:24:55 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-12-24 13:24:55 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-12-24 13:24:54 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-12-24 13:24:54 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-12-24 13:24:53 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-12-24 13:24:53 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-12-24 13:24:52 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-12-24 13:24:52 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-12-24 13:24:50 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2013-12-24 13:24:50 ----A---- C:\Windows\system32\D3DX9_43.dll
2013-12-24 13:24:49 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-12-24 13:24:49 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-12-24 13:24:49 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-12-24 13:24:49 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-12-24 13:24:48 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-12-24 13:24:48 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-12-24 13:24:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-12-24 13:24:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-12-24 13:24:46 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2013-12-24 13:24:46 ----A---- C:\Windows\system32\XAudio2_5.dll
2013-12-24 13:24:45 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2013-12-24 13:24:45 ----A---- C:\Windows\system32\xactengine3_5.dll
2013-12-24 13:24:44 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2013-12-24 13:24:44 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2013-12-24 13:24:42 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2013-12-24 13:24:42 ----A---- C:\Windows\system32\d3dcsx_42.dll
2013-12-24 13:24:41 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2013-12-24 13:24:41 ----A---- C:\Windows\system32\d3dx11_42.dll
2013-12-24 13:24:40 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2013-12-24 13:24:40 ----A---- C:\Windows\system32\d3dx10_42.dll
2013-12-24 13:24:38 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2013-12-24 13:24:38 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-12-24 13:24:37 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2013-12-24 13:24:37 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2013-12-24 13:24:37 ----A---- C:\Windows\system32\d3dx10_41.dll
2013-12-24 13:24:37 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2013-12-24 13:24:36 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2013-12-24 13:24:36 ----A---- C:\Windows\system32\D3DX9_41.dll
2013-12-24 13:24:34 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2013-12-24 13:24:34 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2013-12-24 13:24:34 ----A---- C:\Windows\system32\XAudio2_4.dll
2013-12-24 13:24:34 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2013-12-24 13:24:32 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2013-12-24 13:24:32 ----A---- C:\Windows\system32\xactengine3_4.dll
2013-12-24 13:24:30 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2013-12-24 13:24:30 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2013-12-24 13:24:26 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2013-12-24 13:24:26 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2013-12-24 13:24:26 ----A---- C:\Windows\system32\XAudio2_3.dll
2013-12-24 13:24:26 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2013-12-24 13:24:25 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2013-12-24 13:24:25 ----A---- C:\Windows\system32\xactengine3_3.dll
2013-12-24 13:24:24 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2013-12-24 13:24:24 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2013-12-24 13:24:23 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2013-12-24 13:24:23 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2013-12-24 13:24:23 ----A---- C:\Windows\system32\XAudio2_2.dll
2013-12-24 13:24:23 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2013-12-24 13:24:22 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2013-12-24 13:24:22 ----A---- C:\Windows\system32\xactengine3_2.dll
2013-12-24 13:24:20 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-12-24 13:24:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-12-24 13:24:20 ----A---- C:\Windows\system32\d3dx10_39.dll
2013-12-24 13:24:20 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2013-12-24 13:24:18 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-12-24 13:24:18 ----A---- C:\Windows\system32\D3DX9_39.dll
2013-12-24 13:24:17 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2013-12-24 13:24:17 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2013-12-24 13:24:17 ----A---- C:\Windows\system32\XAudio2_1.dll
2013-12-24 13:24:17 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2013-12-24 13:24:14 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2013-12-24 13:24:14 ----A---- C:\Windows\system32\xactengine3_1.dll
2013-12-24 13:24:13 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2013-12-24 13:24:13 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2013-12-24 13:24:12 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2013-12-24 13:24:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2013-12-24 13:24:12 ----A---- C:\Windows\system32\d3dx10_38.dll
2013-12-24 13:24:12 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2013-12-24 13:24:10 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2013-12-24 13:24:10 ----A---- C:\Windows\system32\D3DX9_38.dll
2013-12-24 13:24:08 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2013-12-24 13:24:08 ----A---- C:\Windows\system32\XAudio2_0.dll
2013-12-24 13:24:06 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2013-12-24 13:24:06 ----A---- C:\Windows\system32\xactengine3_0.dll
2013-12-24 13:24:05 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2013-12-24 13:24:05 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2013-12-24 13:24:04 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2013-12-24 13:24:04 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2013-12-24 13:24:03 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2013-12-24 13:24:03 ----A---- C:\Windows\system32\d3dx10_37.dll
2013-12-24 13:24:02 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2013-12-24 13:24:02 ----A---- C:\Windows\system32\D3DX9_37.dll
2013-12-24 13:24:01 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2013-12-24 13:24:01 ----A---- C:\Windows\system32\xactengine2_10.dll
2013-12-24 13:23:57 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2013-12-24 13:23:57 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2013-12-24 13:23:57 ----A---- C:\Windows\system32\d3dx10_36.dll
2013-12-24 13:23:57 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2013-12-24 13:23:55 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2013-12-24 13:23:55 ----A---- C:\Windows\system32\d3dx9_36.dll
2013-12-24 13:23:53 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2013-12-24 13:23:53 ----A---- C:\Windows\system32\xactengine2_9.dll
2013-12-24 13:23:52 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2013-12-24 13:23:52 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2013-12-24 13:23:52 ----A---- C:\Windows\system32\d3dx10_35.dll
2013-12-24 13:23:52 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2013-12-24 13:23:49 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2013-12-24 13:23:49 ----A---- C:\Windows\system32\d3dx9_35.dll
2013-12-24 13:23:48 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2013-12-24 13:23:48 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2013-12-24 13:23:48 ----A---- C:\Windows\system32\xactengine2_8.dll
2013-12-24 13:23:48 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2013-12-24 13:23:47 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2013-12-24 13:23:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2013-12-24 13:23:47 ----A---- C:\Windows\system32\d3dx10_34.dll
2013-12-24 13:23:47 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2013-12-24 13:23:45 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2013-12-24 13:23:45 ----A---- C:\Windows\system32\d3dx9_34.dll
2013-12-24 13:23:43 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2013-12-24 13:23:43 ----A---- C:\Windows\system32\xinput1_3.dll
2013-12-24 13:23:42 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2013-12-24 13:23:42 ----A---- C:\Windows\system32\xactengine2_7.dll
2013-12-24 13:23:41 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2013-12-24 13:23:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2013-12-24 13:23:41 ----A---- C:\Windows\system32\d3dx10_33.dll
2013-12-24 13:23:41 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2013-12-24 13:23:40 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2013-12-24 13:23:40 ----A---- C:\Windows\system32\d3dx9_33.dll
2013-12-24 13:23:38 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2013-12-24 13:23:38 ----A---- C:\Windows\system32\xactengine2_6.dll
2013-12-24 13:23:37 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2013-12-24 13:23:37 ----A---- C:\Windows\system32\xactengine2_5.dll
2013-12-24 13:23:35 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2013-12-24 13:23:35 ----A---- C:\Windows\system32\d3dx10.dll
2013-12-24 13:23:34 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2013-12-24 13:23:34 ----A---- C:\Windows\system32\d3dx9_32.dll
2013-12-24 13:23:33 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2013-12-24 13:23:33 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2013-12-24 13:23:33 ----A---- C:\Windows\system32\xactengine2_4.dll
2013-12-24 13:23:33 ----A---- C:\Windows\system32\x3daudio1_1.dll
2013-12-24 13:23:32 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2013-12-24 13:23:32 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-12-24 13:23:30 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2013-12-24 13:23:30 ----A---- C:\Windows\system32\xactengine2_3.dll
2013-12-24 13:23:29 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2013-12-24 13:23:29 ----A---- C:\Windows\system32\xinput1_2.dll
2013-12-24 13:23:28 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2013-12-24 13:23:28 ----A---- C:\Windows\system32\xactengine2_2.dll
2013-12-24 13:23:27 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2013-12-24 13:23:27 ----A---- C:\Windows\system32\xinput1_1.dll
2013-12-24 13:23:25 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2013-12-24 13:23:25 ----A---- C:\Windows\system32\xactengine2_1.dll
2013-12-24 13:23:24 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2013-12-24 13:23:24 ----A---- C:\Windows\system32\d3dx9_30.dll
2013-12-24 13:23:22 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2013-12-24 13:23:22 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2013-12-24 13:23:22 ----A---- C:\Windows\system32\xactengine2_0.dll
2013-12-24 13:23:22 ----A---- C:\Windows\system32\x3daudio1_0.dll
2013-12-24 13:23:20 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2013-12-24 13:23:20 ----A---- C:\Windows\system32\d3dx9_29.dll
2013-12-24 13:23:18 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2013-12-24 13:23:18 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-12-24 13:23:14 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2013-12-24 13:23:14 ----A---- C:\Windows\system32\d3dx9_27.dll
2013-12-24 13:23:13 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2013-12-24 13:23:13 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-12-24 13:23:12 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2013-12-24 13:23:12 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-12-24 13:23:09 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2013-12-24 13:23:09 ----A---- C:\Windows\system32\d3dx9_24.dll
2013-12-24 13:21:41 ----HD---- C:\Windows\msdownld.tmp
2013-12-24 13:21:41 ----D---- C:\Windows\SYSWOW64\directx
2013-12-24 11:51:17 ----D---- C:\ProgramData\WarThunder
2013-12-24 11:51:03 ----D---- C:\Program Files (x86)\WarThunder
2013-12-23 10:45:58 ----D---- C:\Users\Admin\AppData\Roaming\ATI
2013-12-23 10:45:58 ----D---- C:\ProgramData\ATI
2013-12-23 10:45:25 ----D---- C:\ProgramData\AMD
2013-12-23 10:45:24 ----D---- C:\Program Files (x86)\AMD AVT
2013-12-23 10:44:56 ----D---- C:\Program Files\AMD
2013-12-23 10:44:40 ----D---- C:\Program Files\Common Files\ATI Technologies
2013-12-23 10:44:37 ----D---- C:\Program Files (x86)\ATI Technologies
2013-12-23 10:44:32 ----D---- C:\ProgramData\Package Cache
2013-12-23 10:44:22 ----D---- C:\Program Files\ATI Technologies
2013-12-23 10:44:21 ----D---- C:\Program Files\ATI
2013-12-23 10:43:34 ----D---- C:\AMD
2013-12-23 10:38:41 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-12-23 07:57:09 ----SHD---- C:\ProgramData\Šablony
2013-12-23 07:57:09 ----SHD---- C:\ProgramData\Nabídka Start
2013-12-23 07:57:09 ----SHD---- C:\ProgramData\Dokumenty
2013-12-23 07:57:09 ----SHD---- C:\ProgramData\Data aplikací
2013-12-23 07:57:08 ----SHD---- C:\ProgramData\Plocha
2013-12-23 07:56:55 ----ASH---- C:\hiberfil.sys
2013-12-23 07:55:43 ----A---- C:\Windows\system32\netcfg-53453.txt
2013-12-23 07:55:43 ----A---- C:\Windows\system32\netcfg-53156.txt
2013-12-23 07:55:43 ----A---- C:\Windows\system32\netcfg-52843.txt
2013-12-23 07:55:42 ----A---- C:\Windows\system32\netcfg-52640.txt
2013-12-23 07:55:42 ----A---- C:\Windows\system32\netcfg-52406.txt
2013-12-23 07:55:42 ----A---- C:\Windows\system32\netcfg-51968.txt
2013-12-23 07:55:41 ----A---- C:\Windows\system32\netcfg-51625.txt
2013-12-23 07:55:41 ----A---- C:\Windows\system32\netcfg-51406.txt
2013-12-23 07:55:37 ----A---- C:\Windows\system32\netcfg-46937.txt
2013-12-23 07:55:36 ----A---- C:\Windows\system32\netcfg-46515.txt
2013-12-23 07:55:36 ----A---- C:\Windows\system32\netcfg-46203.txt
2013-12-23 07:55:32 ----D---- C:\Windows\Prefetch
2013-12-23 07:54:59 ----ASH---- C:\swapfile.sys
2013-12-23 07:54:59 ----ASH---- C:\pagefile.sys
2013-12-23 07:44:03 ----SHD---- C:\System Volume Information
2013-12-23 07:43:37 ----D---- C:\Windows\Panther
2013-12-23 03:22:29 ----D---- C:\Users\Admin\AppData\Roaming\AVAST Software
2013-12-23 03:20:48 ----D---- C:\Program Files (x86)\Google
2013-12-23 03:20:38 ----A---- C:\Windows\system32\aswBoot.exe
2013-12-23 03:19:55 ----D---- C:\ProgramData\AVAST Software
2013-12-23 03:19:41 ----D---- C:\Users\Admin\AppData\Roaming\Skype
2013-12-23 03:19:37 ----RD---- C:\Program Files (x86)\Skype
2013-12-23 03:19:31 ----D---- C:\ProgramData\Skype
2013-12-23 03:19:25 ----D---- C:\Program Files (x86)\TeamViewer
2013-12-23 03:19:01 ----A---- C:\Windows\UC.PIF
2013-12-23 03:19:01 ----A---- C:\Windows\RAR.PIF
2013-12-23 03:19:01 ----A---- C:\Windows\PKZIP.PIF
2013-12-23 03:19:00 ----D---- C:\Users\Admin\AppData\Roaming\GHISLER
2013-12-23 03:19:00 ----D---- C:\totalcmd
2013-12-23 03:19:00 ----A---- C:\Windows\PKUNZIP.PIF
2013-12-23 03:19:00 ----A---- C:\Windows\NOCLOSE.PIF
2013-12-23 03:19:00 ----A---- C:\Windows\LHA.PIF
2013-12-23 03:19:00 ----A---- C:\Windows\ARJ.PIF
2013-12-23 03:18:44 ----D---- C:\Program Files (x86)\WinRAR
2013-12-23 03:18:33 ----D---- C:\Program Files (x86)\Adobe
2013-12-23 03:18:28 ----D---- C:\Program Files (x86)\Webteh
2013-12-23 03:18:13 ----D---- C:\ProgramData\Adobe
2013-12-23 03:18:06 ----D---- C:\Program Files (x86)\ACDSee32
2013-12-23 03:13:55 ----D---- C:\Program Files (x86)\Microsoft Works
2013-12-23 03:13:45 ----D---- C:\Program Files (x86)\MSBuild
2013-12-23 03:13:29 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2013-12-23 03:13:10 ----D---- C:\Windows\PCHEALTH
2013-12-23 03:11:34 ----D---- C:\Program Files\Microsoft Office
2013-12-23 03:10:57 ----D---- C:\ProgramData\Microsoft Help
2013-12-23 03:10:57 ----D---- C:\Program Files (x86)\Microsoft Office
2013-12-23 03:10:45 ----RHD---- C:\MSOCache
2013-12-23 02:45:19 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-12-23 02:45:19 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2013-12-23 02:45:19 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2013-12-23 02:45:19 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-12-23 02:45:19 ----A---- C:\Windows\system32\wfapigp.dll
2013-12-23 02:45:19 ----A---- C:\Windows\system32\WebClnt.dll
2013-12-23 02:45:19 ----A---- C:\Windows\system32\SHCore.dll
2013-12-23 02:45:19 ----A---- C:\Windows\system32\MPSSVC.dll
2013-12-23 02:45:19 ----A---- C:\Windows\system32\icfupgd.dll
2013-12-23 02:45:19 ----A---- C:\Windows\system32\FirewallAPI.dll
2013-12-23 02:45:19 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2013-12-23 02:45:19 ----A---- C:\Windows\system32\drivers\disk.sys
2013-12-23 02:45:19 ----A---- C:\Windows\system32\davclnt.dll
2013-12-23 02:45:18 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2013-12-23 02:44:30 ----A---- C:\Windows\system32\drivers\evbda.sys
2013-12-23 02:44:20 ----A---- C:\Windows\system32\WpcMon.exe
2013-12-23 02:44:19 ----A---- C:\Windows\system32\d2d1.dll
2013-12-23 02:44:18 ----A---- C:\Windows\system32\WinSAT.exe
2013-12-23 02:44:17 ----A---- C:\Windows\system32\drivers\bxvbda.sys
2013-12-23 02:44:16 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-12-23 02:44:16 ----A---- C:\Windows\system32\vssapi.dll
2013-12-23 02:44:14 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2013-12-23 02:44:14 ----A---- C:\Windows\system32\uDWM.dll
2013-12-23 02:44:14 ----A---- C:\Windows\system32\RacEngn.dll
2013-12-23 02:44:14 ----A---- C:\Windows\system32\provcore.dll
2013-12-23 02:44:14 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2013-12-23 02:44:14 ----A---- C:\Windows\system32\MMDevAPI.dll
2013-12-23 02:44:14 ----A---- C:\Windows\system32\d3d10warp.dll
2013-12-23 02:44:13 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2013-12-23 02:44:13 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-12-23 02:44:11 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2013-12-23 02:44:11 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2013-12-23 02:44:11 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2013-12-23 02:44:11 ----A---- C:\Windows\system32\WinSATAPI.dll
2013-12-23 02:44:10 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2013-12-23 02:44:10 ----A---- C:\Windows\system32\WWAHost.exe
2013-12-23 02:44:10 ----A---- C:\Windows\system32\MFPlay.dll
2013-12-23 02:44:10 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2013-12-23 02:44:10 ----A---- C:\Windows\system32\dnsapi.dll
2013-12-23 02:44:10 ----A---- C:\Windows\system32\combase.dll
2013-12-23 02:44:10 ----A---- C:\Windows\system32\apphelp.dll
2013-12-23 02:44:09 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2013-12-23 02:44:09 ----A---- C:\Windows\system32\wlidcredprov.dll
2013-12-23 02:44:09 ----A---- C:\Windows\system32\WinTypes.dll
2013-12-23 02:44:09 ----A---- C:\Windows\system32\taskeng.exe
2013-12-23 02:44:09 ----A---- C:\Windows\system32\mfsvr.dll
2013-12-23 02:44:09 ----A---- C:\Windows\system32\mfsrcsnk.dll
2013-12-23 02:44:09 ----A---- C:\Windows\system32\fveapi.dll
2013-12-23 02:44:09 ----A---- C:\Windows\system32\bcdsrv.dll
2013-12-23 02:44:08 ----A---- C:\Windows\system32\wpnprv.dll
2013-12-23 02:44:07 ----A---- C:\Windows\system32\propsys.dll
2013-12-23 02:44:06 ----A---- C:\Windows\system32\VAN.dll
2013-12-23 02:44:06 ----A---- C:\Windows\system32\drivers\acpi.sys
2013-12-23 02:44:05 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2013-12-23 02:44:05 ----A---- C:\Windows\system32\services.exe
2013-12-23 02:44:05 ----A---- C:\Windows\system32\fveapibase.dll
2013-12-23 02:44:04 ----A---- C:\Windows\system32\mmcss.dll
2013-12-23 02:44:03 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2013-12-23 02:44:03 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2013-12-23 02:44:03 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2013-12-23 02:44:03 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2013-12-23 02:44:03 ----A---- C:\Windows\system32\TpmTasks.dll
2013-12-23 02:44:03 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2013-12-23 02:44:02 ----A---- C:\Windows\SYSWOW64\VAN.dll
2013-12-23 02:44:02 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2013-12-23 02:44:02 ----A---- C:\Windows\SYSWOW64\provcore.dll
2013-12-23 02:44:02 ----A---- C:\Windows\SYSWOW64\propsys.dll
2013-12-23 02:44:02 ----A---- C:\Windows\SYSWOW64\PackageStateRoaming.dll
2013-12-23 02:44:02 ----A---- C:\Windows\SYSWOW64\combase.dll
2013-12-23 02:44:02 ----A---- C:\Windows\SYSWOW64\avrt.dll
2013-12-23 02:44:02 ----A---- C:\Windows\system32\setbcdlocale.dll
2013-12-23 02:44:02 ----A---- C:\Windows\system32\ProximityService.dll
2013-12-23 02:44:02 ----A---- C:\Windows\system32\msvproc.dll
2013-12-23 02:44:02 ----A---- C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2013-12-23 02:44:02 ----A---- C:\Windows\system32\avrt.dll
2013-12-23 02:44:01 ----A---- C:\Windows\SYSWOW64\svchost.exe
2013-12-23 02:44:01 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2013-12-23 02:44:01 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2013-12-23 02:44:01 ----A---- C:\Windows\system32\SettingSyncHost.exe
2013-12-23 02:44:01 ----A---- C:\Windows\system32\perfdisk.dll
2013-12-23 02:44:01 ----A---- C:\Windows\system32\batmeter.dll
2013-12-23 02:43:59 ----A---- C:\Windows\SYSWOW64\wlidcredprov.dll
2013-12-23 02:43:59 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2013-12-23 02:43:59 ----A---- C:\Windows\SYSWOW64\perfdisk.dll
2013-12-23 02:43:59 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2013-12-23 02:43:59 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-12-23 02:43:59 ----A---- C:\Windows\system32\svchost.exe
2013-12-23 02:43:59 ----A---- C:\Windows\system32\aelupsvc.dll
2013-12-23 02:43:58 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2013-12-23 02:43:58 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2013-12-23 02:43:58 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2013-12-23 02:43:58 ----A---- C:\Windows\SYSWOW64\mfh264enc.dll
2013-12-23 02:43:58 ----A---- C:\Windows\system32\winsrv.dll
2013-12-23 02:43:58 ----A---- C:\Windows\system32\user32.dll
2013-12-23 02:43:58 ----A---- C:\Windows\system32\perfnet.dll
2013-12-23 02:43:58 ----A---- C:\Windows\system32\mfh264enc.dll
2013-12-23 02:43:58 ----A---- C:\Windows\system32\lsass.exe
2013-12-23 02:43:58 ----A---- C:\Windows\system32\lpksetup.exe
2013-12-23 02:43:58 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-12-23 02:43:57 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-12-23 02:43:57 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2013-12-23 02:43:57 ----A---- C:\Windows\system32\twinapi.dll
2013-12-23 02:43:57 ----A---- C:\Windows\system32\dwm.exe
2013-12-23 02:43:57 ----A---- C:\Windows\system32\drvinst.exe
2013-12-23 02:43:57 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-12-23 02:43:57 ----A---- C:\Windows\system32\DevPropMgr.dll
2013-12-23 02:43:56 ----A---- C:\Windows\SYSWOW64\webio.dll
2013-12-23 02:43:56 ----A---- C:\Windows\SYSWOW64\perfnet.dll
2013-12-23 02:43:56 ----A---- C:\Windows\system32\webio.dll
2013-12-23 02:43:56 ----A---- C:\Windows\system32\RpcEpMap.dll
2013-12-23 02:43:56 ----A---- C:\Windows\system32\perfos.dll
2013-12-23 02:43:56 ----A---- C:\Windows\system32\dxgi.dll
2013-12-23 02:43:56 ----A---- C:\Windows\system32\DAFWSD.dll
2013-12-23 02:43:54 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2013-12-23 02:43:54 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2013-12-23 02:43:54 ----A---- C:\Windows\system32\vsstrace.dll
2013-12-23 02:43:54 ----A---- C:\Windows\system32\umpo.dll
2013-12-23 02:43:54 ----A---- C:\Windows\system32\sspicli.dll
2013-12-23 02:43:54 ----A---- C:\Windows\system32\sdbinst.exe
2013-12-23 02:43:54 ----A---- C:\Windows\system32\lpremove.exe
2013-12-23 02:43:54 ----A---- C:\Windows\system32\drivers\ws2ifsl.sys
2013-12-23 02:43:52 ----A---- C:\Windows\SYSWOW64\perfproc.dll
2013-12-23 02:43:52 ----A---- C:\Windows\SYSWOW64\perfos.dll
2013-12-23 02:43:52 ----A---- C:\Windows\SYSWOW64\perfctrs.dll
2013-12-23 02:43:52 ----A---- C:\Windows\system32\perfproc.dll
2013-12-23 02:43:52 ----A---- C:\Windows\system32\perfctrs.dll
2013-12-23 02:43:51 ----A---- C:\Windows\system32\sspisrv.dll
2013-12-23 02:43:50 ----A---- C:\Windows\SYSWOW64\eventcls.dll
2013-12-23 02:43:50 ----A---- C:\Windows\system32\MUILanguageCleanup.dll
2013-12-23 02:43:50 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2013-12-23 02:43:50 ----A---- C:\Windows\system32\eventcls.dll
2013-12-23 02:43:49 ----A---- C:\Windows\SYSWOW64\user32.dll
2013-12-23 02:43:49 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-12-23 02:43:49 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2013-12-23 02:43:49 ----A---- C:\Windows\system32\shimeng.dll
2013-12-23 02:43:49 ----A---- C:\Windows\system32\lpksetupproxyserv.dll
2013-12-23 02:43:49 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2013-12-23 02:43:28 ----A---- C:\Windows\system32\glcndFilter.dll
2013-12-23 02:43:24 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2013-12-23 02:43:24 ----A---- C:\Windows\system32\winhttp.dll
2013-12-23 02:43:24 ----A---- C:\Windows\system32\KernelBase.dll
2013-12-23 02:43:23 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2013-12-23 02:43:23 ----A---- C:\Windows\system32\ole32.dll
2013-12-23 02:43:22 ----A---- C:\Windows\SYSWOW64\ole32.dll
2013-12-23 02:43:22 ----A---- C:\Windows\system32\wlansvc.dll
2013-12-23 02:43:22 ----A---- C:\Windows\HelpPane.exe
2013-12-23 02:43:20 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-12-23 02:43:19 ----A---- C:\Windows\system32\wlanmsm.dll
2013-12-23 02:43:19 ----A---- C:\Windows\system32\wlanapi.dll
2013-12-23 02:43:19 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2013-12-23 02:43:19 ----A---- C:\Windows\system32\dafWCN.dll
2013-12-23 02:43:18 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2013-12-23 02:43:18 ----A---- C:\Windows\system32\wlansec.dll
2013-12-23 02:43:18 ----A---- C:\Windows\system32\rdpclip.exe
2013-12-23 02:43:18 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2013-12-23 02:43:16 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2013-12-23 02:43:16 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2013-12-23 02:43:16 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2013-12-23 02:43:16 ----A---- C:\Windows\system32\wcncsvc.dll
2013-12-23 02:43:15 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2013-12-23 02:43:15 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2013-12-23 02:43:15 ----A---- C:\Windows\system32\wfdprov.dll
2013-12-23 02:43:15 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2013-12-23 02:43:15 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2013-12-23 02:43:15 ----A---- C:\Windows\system32\WcnApi.dll
2013-12-23 02:43:15 ----A---- C:\Windows\system32\fdWCN.dll
2013-12-23 02:43:14 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2013-12-23 02:43:14 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2013-12-23 02:43:14 ----A---- C:\Windows\system32\wlanhlp.dll
2013-12-23 02:43:14 ----A---- C:\Windows\system32\iscsilog.dll
2013-12-23 02:43:14 ----A---- C:\Windows\system32\drivers\processr.sys
2013-12-23 02:43:14 ----A---- C:\Windows\system32\drivers\intelppm.sys
2013-12-23 02:43:14 ----A---- C:\Windows\system32\drivers\fxppm.sys
2013-12-23 02:43:14 ----A---- C:\Windows\system32\drivers\amdppm.sys
2013-12-23 02:43:14 ----A---- C:\Windows\system32\drivers\amdk8.sys
2013-12-23 02:42:43 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2013-12-23 02:42:42 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2013-12-23 02:42:42 ----A---- C:\Windows\system32\StructuredQuery.dll
2013-12-23 02:42:42 ----A---- C:\Windows\system32\lsasrv.dll
2013-12-23 02:42:41 ----A---- C:\Windows\system32\mfplat.dll
2013-12-23 02:42:38 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2013-12-23 02:42:37 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2013-12-23 02:42:36 ----A---- C:\Windows\system32\winlogon.exe
2013-12-23 02:42:36 ----A---- C:\Windows\system32\drivers\netio.sys
2013-12-23 02:42:35 ----A---- C:\Windows\system32\Windows.Storage.Compression.dll
2013-12-23 02:42:35 ----A---- C:\Windows\system32\usercpl.dll
2013-12-23 02:42:35 ----A---- C:\Windows\system32\bdesvc.dll
2013-12-23 02:42:34 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2013-12-23 02:42:34 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-12-23 02:42:34 ----A---- C:\Windows\system32\SpaceControl.dll
2013-12-23 02:42:34 ----A---- C:\Windows\system32\ListSvc.dll
2013-12-23 02:42:34 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-12-23 02:42:33 ----A---- C:\Windows\system32\drivers\sdstor.sys
2013-12-23 02:42:33 ----A---- C:\Windows\system32\drivers\battc.sys
2013-12-23 02:42:32 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Compression.dll
2013-12-23 02:42:32 ----A---- C:\Windows\SYSWOW64\input.dll
2013-12-23 02:42:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-12-23 02:42:32 ----A---- C:\Windows\system32\drivers\cng.sys
2013-12-23 02:42:31 ----A---- C:\Windows\system32\input.dll
2013-12-23 02:42:30 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-12-23 02:42:29 ----A---- C:\Windows\SYSWOW64\PCPKsp.dll
2013-12-23 02:42:29 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-12-23 02:42:29 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2013-12-23 02:42:29 ----A---- C:\Windows\system32\mswsock.dll
2013-12-23 02:42:29 ----A---- C:\Windows\system32\microsoft-windows-pdc.dll
2013-12-23 02:42:29 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-12-23 02:42:28 ----A---- C:\Windows\SYSWOW64\AppxSip.dll
2013-12-23 02:42:28 ----A---- C:\Windows\system32\FntCache.dll
2013-12-23 02:42:28 ----A---- C:\Windows\system32\dhcpcore.dll
2013-12-23 02:42:28 ----A---- C:\Windows\system32\BdeUISrv.exe
2013-12-23 02:42:28 ----A---- C:\Windows\system32\AppxSip.dll
2013-12-23 02:42:27 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2013-12-23 02:42:27 ----A---- C:\Windows\system32\PCPKsp.dll
2013-12-23 02:42:27 ----A---- C:\Windows\system32\dhcpcsvc.dll
2013-12-23 02:42:26 ----A---- C:\Windows\SYSWOW64\kbdhebl3.dll
2013-12-23 02:42:26 ----A---- C:\Windows\system32\kbdhebl3.dll
2013-12-23 02:42:16 ----A---- C:\Windows\system32\shell32.dll
2013-12-23 02:42:14 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-12-23 02:42:14 ----A---- C:\Windows\SYSWOW64\msctf.dll
2013-12-23 02:42:14 ----A---- C:\Windows\system32\msctf.dll
2013-12-23 02:42:14 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-12-23 02:42:13 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2013-12-23 02:42:13 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2013-12-23 02:42:13 ----A---- C:\Windows\system32\shdocvw.dll
2013-12-23 02:42:13 ----A---- C:\Windows\system32\SettingSync.dll
2013-12-23 02:42:13 ----A---- C:\Windows\system32\mbsmsapi.dll
2013-12-23 02:42:12 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-12-23 02:42:12 ----A---- C:\Windows\system32\SettingSyncInfo.dll
2013-12-23 02:42:06 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2013-12-23 02:42:06 ----A---- C:\Windows\system32\dwmcore.dll
2013-12-23 02:42:05 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2013-12-23 02:42:05 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-12-23 02:42:05 ----A---- C:\Windows\system32\samsrv.dll
2013-12-23 02:42:05 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-12-23 02:42:05 ----A---- C:\Windows\system32\mfcore.dll
2013-12-23 02:42:05 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-12-23 02:42:05 ----A---- C:\Windows\explorer.exe
2013-12-23 02:42:04 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-12-23 02:42:04 ----A---- C:\Windows\system32\winresume.exe
2013-12-23 02:42:04 ----A---- C:\Windows\system32\winload.exe
2013-12-23 02:42:04 ----A---- C:\Windows\system32\vds.exe
2013-12-23 02:42:04 ----A---- C:\Windows\system32\mscms.dll
2013-12-23 02:42:04 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2013-12-23 02:42:04 ----A---- C:\Windows\system32\audiosrv.dll
2013-12-23 02:42:03 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-12-23 02:42:03 ----A---- C:\Windows\SYSWOW64\samlib.dll
2013-12-23 02:42:03 ----A---- C:\Windows\SYSWOW64\mscms.dll
2013-12-23 02:42:03 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2013-12-23 02:42:03 ----A---- C:\Windows\system32\vdsutil.dll
2013-12-23 02:42:03 ----A---- C:\Windows\system32\samlib.dll
2013-12-23 02:42:03 ----A---- C:\Windows\system32\MbaeParserTask.exe
2013-12-23 02:42:03 ----A---- C:\Windows\system32\drivers\BthAvrcpTg.sys
2013-12-23 02:42:03 ----A---- C:\Windows\system32\DeviceSetupManager.dll
2013-12-23 02:41:56 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2013-12-23 02:41:56 ----A---- C:\Windows\SYSWOW64\resutils.dll
2013-12-23 02:41:56 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2013-12-23 02:41:56 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2013-12-23 02:41:56 ----A---- C:\Windows\system32\wucltux.dll
2013-12-23 02:41:56 ----A---- C:\Windows\system32\wuaueng.dll
2013-12-23 02:41:56 ----A---- C:\Windows\system32\wuapi.dll
2013-12-23 02:41:56 ----A---- C:\Windows\system32\resutils.dll
2013-12-23 02:41:56 ----A---- C:\Windows\system32\oleaut32.dll
2013-12-23 02:41:56 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2013-12-23 02:41:56 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-12-23 02:41:56 ----A---- C:\Windows\system32\clusapi.dll
2013-12-23 02:41:55 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2013-12-23 02:41:55 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2013-12-23 02:41:55 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2013-12-23 02:41:55 ----A---- C:\Windows\system32\wuwebv.dll
2013-12-23 02:41:55 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2013-12-23 02:41:55 ----A---- C:\Windows\system32\wudriver.dll
2013-12-23 02:41:55 ----A---- C:\Windows\system32\wuauclt.exe
2013-12-23 02:41:55 ----A---- C:\Windows\system32\wuapp.exe
2013-12-23 02:41:55 ----A---- C:\Windows\system32\storewuauth.dll
2013-12-23 02:41:55 ----A---- C:\Windows\system32\drivers\spaceport.sys
2013-12-23 02:41:48 ----A---- C:\Windows\SYSWOW64\newdev.exe
2013-12-23 02:41:48 ----A---- C:\Windows\SYSWOW64\newdev.dll
2013-12-23 02:41:48 ----A---- C:\Windows\SYSWOW64\ndadmin.exe
2013-12-23 02:41:48 ----A---- C:\Windows\system32\newdev.exe
2013-12-23 02:41:48 ----A---- C:\Windows\system32\newdev.dll
2013-12-23 02:41:48 ----A---- C:\Windows\system32\ndadmin.exe
2013-12-23 02:41:39 ----A---- C:\Windows\SYSWOW64\KBDKURD.DLL
2013-12-23 02:41:39 ----A---- C:\Windows\SYSWOW64\Display.dll
2013-12-23 02:41:39 ----A---- C:\Windows\system32\KBDKURD.DLL
2013-12-23 02:41:39 ----A---- C:\Windows\system32\Display.dll
2013-12-23 02:41:35 ----A---- C:\Windows\system32\dskquota.dll
2013-12-23 02:41:34 ----A---- C:\Windows\SYSWOW64\dskquota.dll
2013-12-23 02:41:29 ----A---- C:\Windows\system32\hal.dll
2013-12-23 02:41:27 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2013-12-23 02:41:27 ----A---- C:\Windows\system32\mfnetsrc.dll
2013-12-23 02:41:27 ----A---- C:\Windows\system32\mfnetcore.dll
2013-12-23 02:41:27 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2013-12-23 02:41:26 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2013-12-23 02:41:26 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2013-12-23 02:41:25 ----A---- C:\Windows\SYSWOW64\wvc.dll
2013-12-23 02:41:25 ----A---- C:\Windows\SYSWOW64\wdc.dll
2013-12-23 02:41:25 ----A---- C:\Windows\system32\wvc.dll
2013-12-23 02:41:25 ----A---- C:\Windows\system32\wdc.dll
2013-12-23 02:41:17 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2013-12-23 02:41:16 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2013-12-23 02:41:15 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2013-12-23 02:41:15 ----A---- C:\Windows\system32\UIAutomationCore.dll
2013-12-23 02:41:14 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2013-12-23 02:41:14 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2013-12-23 02:41:14 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2013-12-23 02:41:14 ----A---- C:\Windows\system32\WSDApi.dll
2013-12-23 02:41:14 ----A---- C:\Windows\system32\ubpm.dll
2013-12-23 02:41:14 ----A---- C:\Windows\system32\kerberos.dll
2013-12-23 02:41:14 ----A---- C:\Windows\system32\drivers\tpm.sys
2013-12-23 02:41:14 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-12-23 02:41:14 ----A---- C:\Windows\system32\drivers\dumpfve.sys
2013-12-23 02:41:14 ----A---- C:\Windows\system32\drivers\crashdmp.sys
2013-12-23 02:41:01 ----A---- C:\Windows\system32\rdpcorets.dll
2013-12-23 02:40:59 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2013-12-23 02:40:59 ----A---- C:\Windows\system32\Taskmgr.exe
2013-12-23 02:40:58 ----A---- C:\Windows\system32\WebcamUi.dll
2013-12-23 02:40:58 ----A---- C:\Windows\system32\storagewmi.dll
2013-12-23 02:40:57 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2013-12-23 02:40:57 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2013-12-23 02:40:56 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2013-12-23 02:40:56 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2013-12-23 02:40:56 ----A---- C:\Windows\system32\wpnapps.dll
2013-12-23 02:40:55 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2013-12-23 02:40:55 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-12-23 02:40:55 ----A---- C:\Windows\system32\mstsc.exe
2013-12-23 02:40:55 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-12-23 02:40:53 ----A---- C:\Windows\system32\vdsldr.exe
2013-12-23 02:40:52 ----A---- C:\Windows\SYSWOW64\vds_ps.dll
2013-12-23 02:40:52 ----A---- C:\Windows\system32\vds_ps.dll
2013-12-23 02:40:52 ----A---- C:\Windows\system32\rfxvmt.dll
2013-12-23 02:40:52 ----A---- C:\Windows\system32\rdpudd.dll
2013-12-23 02:40:37 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-12-23 02:40:31 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2013-12-23 02:40:31 ----A---- C:\Windows\system32\msftedit.dll
2013-12-23 02:40:30 ----A---- C:\Windows\system32\localspl.dll
2013-12-23 02:40:28 ----A---- C:\Windows\SYSWOW64\winmmbase.dll
2013-12-23 02:40:28 ----A---- C:\Windows\SYSWOW64\winmm.dll
2013-12-23 02:40:28 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2013-12-23 02:40:28 ----A---- C:\Windows\system32\wwansvc.dll
2013-12-23 02:40:28 ----A---- C:\Windows\system32\wwanconn.dll
2013-12-23 02:40:28 ----A---- C:\Windows\system32\WinSCard.dll
2013-12-23 02:40:28 ----A---- C:\Windows\system32\winmmbase.dll
2013-12-23 02:40:28 ----A---- C:\Windows\system32\winmm.dll
2013-12-23 02:40:28 ----A---- C:\Windows\system32\WerFault.exe
2013-12-23 02:40:28 ----A---- C:\Windows\system32\wcmsvc.dll
2013-12-23 02:40:28 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2013-12-23 02:40:27 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-23 02:40:27 ----A---- C:\Windows\system32\Wwanadvui.dll
2013-12-23 02:40:27 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-23 02:40:27 ----A---- C:\Windows\system32\wcmcsp.dll
2013-12-23 02:40:27 ----A---- C:\Windows\system32\openfiles.exe
2013-12-23 02:40:27 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2013-12-23 02:40:27 ----A---- C:\Windows\system32\drivers\sdbus.sys
2013-12-23 02:40:27 ----A---- C:\Windows\system32\drivers\msgpioclx.sys
2013-12-23 02:40:27 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2013-12-23 02:40:27 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2013-12-23 02:40:26 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2013-12-23 02:40:26 ----A---- C:\Windows\SYSWOW64\openfiles.exe
2013-12-23 02:40:26 ----A---- C:\Windows\SYSWOW64\LocationApi.dll
2013-12-23 02:40:26 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-12-23 02:40:26 ----A---- C:\Windows\system32\wwanmm.dll
2013-12-23 02:40:26 ----A---- C:\Windows\system32\LocationApi.dll
2013-12-23 02:40:26 ----A---- C:\Windows\system32\drivers\udfs.sys
2013-12-23 02:26:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-12-23 02:23:28 ----RD---- C:\Windows\BrowserChoice
2013-12-23 01:57:31 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-12-23 01:57:31 ----D---- C:\Program Files\Realtek
2013-12-23 01:50:22 ----D---- C:\Windows\system32\MRT
2013-12-23 01:50:21 ----A---- C:\Windows\system32\MRT.exe
2013-12-23 01:46:32 ----N---- C:\Windows\system32\MpSigStub.exe
2013-12-23 01:31:52 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-12-23 01:31:50 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-12-23 01:31:50 ----A---- C:\Windows\system32\wmpmde.dll
2013-12-23 01:31:50 ----A---- C:\Windows\system32\mstscax.dll
2013-12-23 01:31:49 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2013-12-23 01:31:49 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-12-23 01:31:49 ----A---- C:\Windows\system32\winmde.dll
2013-12-23 01:31:49 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2013-12-23 01:31:49 ----A---- C:\Windows\system32\Windows.Globalization.dll
2013-12-23 01:31:48 ----A---- C:\Windows\SYSWOW64\winmde.dll
2013-12-23 01:31:48 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2013-12-23 01:31:48 ----A---- C:\Windows\system32\wpdbusenum.dll
2013-12-23 01:31:48 ----A---- C:\Windows\system32\usbmon.dll
2013-12-23 01:31:48 ----A---- C:\Windows\system32\TimeBrokerServer.dll
2013-12-23 01:31:48 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2013-12-23 01:31:48 ----A---- C:\Windows\system32\netcfgx.dll
2013-12-23 01:31:48 ----A---- C:\Windows\system32\drvstore.dll
2013-12-23 01:31:48 ----A---- C:\Windows\system32\drivers\storport.sys
2013-12-23 01:31:47 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2013-12-23 01:31:47 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2013-12-23 01:31:47 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2013-12-23 01:31:46 ----A---- C:\Windows\SYSWOW64\SettingSyncInfo.dll
2013-12-23 01:31:46 ----A---- C:\Windows\system32\WSDPrintProxy.DLL
2013-12-23 01:31:46 ----A---- C:\Windows\system32\NdisImPlatform.dll
2013-12-23 01:31:46 ----A---- C:\Windows\system32\drivers\storahci.sys
2013-12-23 01:31:46 ----A---- C:\Windows\system32\discan.dll
2013-12-23 01:31:46 ----A---- C:\Windows\system32\DevDispItemProvider.dll
2013-12-23 01:31:45 ----A---- C:\Windows\SYSWOW64\DevDispItemProvider.dll
2013-12-23 01:31:45 ----A---- C:\Windows\system32\drivers\mouhid.sys
2013-12-23 01:31:44 ----A---- C:\Windows\system32\drivers\monitor.sys
2013-12-23 01:30:59 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2013-12-23 01:30:49 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2013-12-23 01:30:10 ----A---- C:\Windows\SYSWOW64\mmc.exe
2013-12-23 01:30:10 ----A---- C:\Windows\system32\wlidsvc.dll
2013-12-23 01:30:10 ----A---- C:\Windows\system32\mmc.exe
2013-12-23 01:30:09 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2013-12-23 01:30:09 ----A---- C:\Windows\system32\Windows.Media.dll
2013-12-23 01:30:09 ----A---- C:\Windows\system32\setupapi.dll
2013-12-23 01:30:09 ----A---- C:\Windows\system32\lsm.dll
2013-12-23 01:30:09 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-12-23 01:30:09 ----A---- C:\Windows\system32\drivers\msgpiowin32.sys
2013-12-23 01:30:08 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2013-12-23 01:30:08 ----A---- C:\Windows\SYSWOW64\wiaacmgr.exe
2013-12-23 01:30:08 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2013-12-23 01:30:08 ----A---- C:\Windows\system32\WSDMon.dll
2013-12-23 01:30:08 ----A---- C:\Windows\system32\wiaacmgr.exe
2013-12-23 01:30:08 ----A---- C:\Windows\system32\ncbservice.dll
2013-12-23 01:30:08 ----A---- C:\Windows\system32\MP4SDECD.DLL
2013-12-23 01:30:08 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-12-23 01:30:08 ----A---- C:\Windows\system32\inetpp.dll
2013-12-23 01:30:08 ----A---- C:\Windows\system32\httpprxm.dll
2013-12-23 01:30:08 ----A---- C:\Windows\system32\adhsvc.dll
2013-12-23 01:30:07 ----A---- C:\Windows\system32\keepaliveprovider.dll
2013-12-23 01:30:07 ----A---- C:\Windows\system32\httpprxp.dll
2013-12-23 01:30:07 ----A---- C:\Windows\system32\adhapi.dll
2013-12-23 01:29:52 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-12-23 01:29:52 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-12-23 01:29:48 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2013-12-23 01:29:47 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2013-12-23 01:29:45 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-12-23 01:29:44 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-12-23 01:29:44 ----A---- C:\Windows\system32\rpcrt4.dll
2013-12-23 01:29:40 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-12-23 01:29:40 ----A---- C:\Windows\system32\comctl32.dll
2013-12-23 01:29:26 ----A---- C:\Windows\system32\wmp.dll
2013-12-23 01:29:26 ----A---- C:\Windows\system32\tquery.dll
2013-12-23 01:29:24 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-23 01:29:24 ----A---- C:\Windows\system32\mssrch.dll
2013-12-23 01:29:23 ----A---- C:\Windows\SYSWOW64\tquery.dll
2013-12-23 01:29:22 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2013-12-23 01:29:22 ----A---- C:\Windows\system32\ntdll.dll
2013-12-23 01:29:21 ----A---- C:\Windows\system32\MSAudDecMFT.dll
2013-12-23 01:29:20 ----A---- C:\Windows\SYSWOW64\mssph.dll
2013-12-23 01:29:20 ----A---- C:\Windows\SYSWOW64\MSAudDecMFT.dll
2013-12-23 01:29:20 ----A---- C:\Windows\system32\schedsvc.dll
2013-12-23 01:29:20 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-12-23 01:29:20 ----A---- C:\Windows\system32\rsaenh.dll
2013-12-23 01:29:20 ----A---- C:\Windows\system32\kd_02_10ec.dll
2013-12-23 01:29:20 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-12-23 01:29:20 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2013-12-23 01:29:20 ----A---- C:\Windows\system32\AudioSes.dll
2013-12-23 01:29:19 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2013-12-23 01:29:19 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2013-12-23 01:29:19 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-12-23 01:29:19 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2013-12-23 01:29:19 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2013-12-23 01:29:19 ----A---- C:\Windows\system32\Windows.Networking.dll
2013-12-23 01:29:19 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-12-23 01:29:19 ----A---- C:\Windows\system32\mssph.dll
2013-12-23 01:29:19 ----A---- C:\Windows\system32\dwmredir.dll
2013-12-23 01:29:19 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-12-23 01:29:19 ----A---- C:\Windows\system32\conhost.exe
2013-12-23 01:29:19 ----A---- C:\Windows\system32\AudioEng.dll
2013-12-23 01:29:19 ----A---- C:\Windows\system32\audiodg.exe
2013-12-23 01:29:18 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2013-12-23 01:29:18 ----A---- C:\Windows\system32\wpncore.dll
2013-12-23 01:29:18 ----A---- C:\Windows\system32\RecoveryDrive.exe
2013-12-23 01:29:18 ----A---- C:\Windows\system32\MFMediaEngine.dll
2013-12-23 01:29:17 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2013-12-23 01:29:17 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2013-12-23 01:29:17 ----A---- C:\Windows\system32\rascfg.dll
2013-12-23 01:29:17 ----A---- C:\Windows\system32\fhengine.dll
2013-12-23 01:29:17 ----A---- C:\Windows\system32\dmvdsitf.dll
2013-12-23 01:29:17 ----A---- C:\Windows\system32\ci.dll
2013-12-23 01:29:16 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2013-12-23 01:29:16 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2013-12-23 01:29:16 ----A---- C:\Windows\system32\XpsRasterService.dll
2013-12-23 01:29:15 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2013-12-23 01:29:15 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2013-12-23 01:29:15 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2013-12-23 01:29:15 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2013-12-23 01:29:15 ----A---- C:\Windows\SYSWOW64\dmvdsitf.dll
2013-12-23 01:29:15 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2013-12-23 01:29:15 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-12-23 01:29:15 ----A---- C:\Windows\system32\Robocopy.exe
2013-12-23 01:29:15 ----A---- C:\Windows\system32\mfreadwrite.dll
2013-12-23 01:29:15 ----A---- C:\Windows\system32\kdvm.dll
2013-12-23 01:29:15 ----A---- C:\Windows\system32\kdnet.dll
2013-12-23 01:29:15 ----A---- C:\Windows\system32\iuilp.dll
2013-12-23 01:29:15 ----A---- C:\Windows\system32\drivers\hidbth.sys
2013-12-23 01:29:15 ----A---- C:\Windows\system32\AUDIOKSE.dll
2013-12-23 01:29:15 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2013-12-23 01:29:14 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2013-12-23 01:29:14 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2013-12-23 01:29:14 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2013-12-23 01:29:14 ----A---- C:\Windows\SYSWOW64\fmifs.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\wscsvc.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\mssvp.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\mssprxy.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\mssphtb.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\msshooks.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\GenuineCenter.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\fmifs.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\fhsvc.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\fhsrchapi.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\fhshl.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\fhevents.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\fhcfg.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\fhcat.dll
2013-12-23 01:29:14 ----A---- C:\Windows\system32\drivers\wanarp.sys
2013-12-23 01:29:14 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2013-12-23 01:29:14 ----A---- C:\Windows\system32\drivers\hidi2c.sys
2013-12-23 01:29:14 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-12-23 01:29:13 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2013-12-23 01:29:13 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2013-12-23 01:29:13 ----A---- C:\Windows\system32\rasdiag.dll
2013-12-23 01:29:13 ----A---- C:\Windows\system32\fhsrchph.dll
2013-12-23 01:29:13 ----A---- C:\Windows\system32\fhmanagew.exe
2013-12-23 01:29:13 ----A---- C:\Windows\system32\fhlisten.dll
2013-12-23 01:29:13 ----A---- C:\Windows\system32\fhcleanup.dll
2013-12-23 01:29:11 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2013-12-23 01:29:11 ----A---- C:\Windows\system32\rasmxs.dll
2013-12-23 01:29:11 ----A---- C:\Windows\system32\mssitlb.dll
2013-12-23 01:29:11 ----A---- C:\Windows\system32\msscntrs.dll
2013-12-23 01:29:11 ----A---- C:\Windows\system32\fhtask.dll
2013-12-23 01:29:10 ----A---- C:\Windows\SYSWOW64\rasser.dll
2013-12-23 01:29:10 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2013-12-23 01:29:10 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2013-12-23 01:29:10 ----A---- C:\Windows\system32\rasser.dll
2013-12-23 01:29:10 ----A---- C:\Windows\system32\fhautoplay.dll
2013-12-23 01:29:10 ----A---- C:\Windows\system32\EncDump.dll
2013-12-23 01:29:09 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2013-12-23 01:29:09 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2013-12-23 01:29:09 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-23 01:29:09 ----A---- C:\Windows\system32\spwmp.dll
2013-12-23 01:29:09 ----A---- C:\Windows\system32\fhsvcctl.dll
2013-12-23 01:29:09 ----A---- C:\Windows\system32\dxmasf.dll
2013-12-23 01:29:09 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2013-12-23 01:29:08 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-23 01:28:52 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-23 01:28:52 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-23 01:28:52 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-12-23 01:28:51 ----A---- C:\Windows\system32\drivers\usbprint.sys
2013-12-23 01:28:51 ----A---- C:\Windows\system32\drivers\hidusb.sys
2013-12-23 01:28:51 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-12-23 01:28:40 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2013-12-23 01:28:39 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2013-12-23 01:28:39 ----A---- C:\Windows\system32\VSSVC.exe
2013-12-23 01:28:39 ----A---- C:\Windows\system32\sysmain.dll
2013-12-23 01:28:39 ----A---- C:\Windows\system32\netprofmsvc.dll
2013-12-23 01:28:39 ----A---- C:\Windows\system32\netprofm.dll
2013-12-23 01:28:39 ----A---- C:\Windows\system32\drivers\rdbss.sys
2013-12-23 01:28:39 ----A---- C:\Windows\system32\BCP47Langs.dll
2013-12-23 01:28:37 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2013-12-23 01:28:35 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2013-12-23 01:28:35 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2013-12-23 01:28:35 ----A---- C:\Windows\system32\taskhost.exe
2013-12-23 01:28:35 ----A---- C:\Windows\system32\stobject.dll
2013-12-23 01:28:35 ----A---- C:\Windows\system32\psmsrv.dll
2013-12-23 01:28:35 ----A---- C:\Windows\system32\netplwiz.dll
2013-12-23 01:28:35 ----A---- C:\Windows\system32\Magnify.exe
2013-12-23 01:28:35 ----A---- C:\Windows\system32\bisrv.dll
2013-12-23 01:28:35 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2013-12-23 01:28:34 ----A---- C:\Windows\SYSWOW64\stobject.dll
2013-12-23 01:28:34 ----A---- C:\Windows\SYSWOW64\netprofm.dll
2013-12-23 01:28:34 ----A---- C:\Windows\SYSWOW64\Magnify.exe
2013-12-23 01:28:34 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2013-12-23 01:28:34 ----A---- C:\Windows\SYSWOW64\biwinrt.dll
2013-12-23 01:28:34 ----A---- C:\Windows\system32\wuaext.dll
2013-12-23 01:28:34 ----A---- C:\Windows\system32\taskhostex.exe
2013-12-23 01:28:34 ----A---- C:\Windows\system32\DevicePairing.dll
2013-12-23 01:28:34 ----A---- C:\Windows\system32\biwinrt.dll
2013-12-23 01:28:34 ----A---- C:\Windows\system32\AuthHost.exe
2013-12-23 01:28:33 ----A---- C:\Windows\SYSWOW64\npmproxy.dll
2013-12-23 01:28:33 ----A---- C:\Windows\SYSWOW64\nlmsprep.dll
2013-12-23 01:28:33 ----A---- C:\Windows\SYSWOW64\nlmproxy.dll
2013-12-23 01:28:33 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2013-12-23 01:28:33 ----A---- C:\Windows\system32\wushareduxresources.dll
2013-12-23 01:28:33 ----A---- C:\Windows\system32\muifontsetup.dll
2013-12-23 01:28:27 ----A---- C:\Windows\system32\certutil.exe
2013-12-23 01:28:26 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-12-23 01:28:26 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-12-23 01:28:26 ----A---- C:\Windows\system32\untfs.dll
2013-12-23 01:28:26 ----A---- C:\Windows\system32\cryptnet.dll
2013-12-23 01:28:26 ----A---- C:\Windows\system32\autochk.exe
2013-12-23 01:28:25 ----A---- C:\Windows\SYSWOW64\untfs.dll
2013-12-23 01:28:25 ----A---- C:\Windows\SYSWOW64\autochk.exe
2013-12-23 01:28:22 ----A---- C:\Windows\SYSWOW64\synceng.dll
2013-12-23 01:28:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-12-23 01:28:22 ----A---- C:\Windows\system32\synceng.dll
2013-12-23 01:28:22 ----A---- C:\Windows\system32\kernel32.dll
2013-12-23 01:28:21 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-12-23 01:28:21 ----A---- C:\Windows\system32\qedit.dll
2013-12-23 01:28:21 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-12-23 01:28:14 ----A---- C:\Windows\system32\sppsvc.exe
2013-12-23 01:28:13 ----A---- C:\Windows\system32\WSService.dll
2013-12-23 01:28:13 ----A---- C:\Windows\system32\NotificationUI.exe
2013-12-23 01:28:12 ----A---- C:\Windows\system32\sppobjs.dll
2013-12-23 01:28:11 ----A---- C:\Windows\system32\WinSetupUI.dll
2013-12-23 01:28:10 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2013-12-23 01:28:10 ----A---- C:\Windows\SYSWOW64\sppc.dll
2013-12-23 01:28:10 ----A---- C:\Windows\system32\WSSync.dll
2013-12-23 01:28:10 ----A---- C:\Windows\system32\sppwinob.dll
2013-12-23 01:28:10 ----A---- C:\Windows\system32\sppc.dll
2013-12-23 01:28:08 ----A---- C:\Windows\SYSWOW64\WSSync.dll
2013-12-23 01:28:08 ----A---- C:\Windows\system32\WSClient.dll
2013-12-23 01:28:08 ----A---- C:\Windows\system32\drivers\dam.sys
2013-12-23 01:28:07 ----A---- C:\Windows\SYSWOW64\wups.dll
2013-12-23 01:28:07 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2013-12-23 01:28:07 ----A---- C:\Windows\system32\wups2.dll
2013-12-23 01:28:07 ----A---- C:\Windows\system32\wups.dll
2013-12-23 01:28:07 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2013-12-23 01:28:07 ----A---- C:\Windows\system32\setupcln.dll
2013-12-23 01:28:06 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2013-12-23 01:28:06 ----A---- C:\Windows\SYSWOW64\OEMLicense.dll
2013-12-23 01:28:06 ----A---- C:\Windows\system32\OEMLicense.dll
2013-12-23 01:28:03 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-12-23 01:28:03 ----A---- C:\Windows\system32\gdi32.dll
2013-12-23 01:28:03 ----A---- C:\Windows\system32\atmfd.dll
2013-12-23 01:28:02 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2013-12-23 01:28:02 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-12-23 01:28:02 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-12-23 01:28:02 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-12-23 01:28:02 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-12-23 01:28:02 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-12-23 01:28:02 ----A---- C:\Windows\system32\ncryptsslp.dll
2013-12-23 01:28:02 ----A---- C:\Windows\system32\lpk.dll
2013-12-23 01:28:02 ----A---- C:\Windows\system32\fontsub.dll
2013-12-23 01:28:02 ----A---- C:\Windows\system32\dciman32.dll
2013-12-23 01:28:02 ----A---- C:\Windows\system32\atmlib.dll
2013-12-23 01:28:01 ----A---- C:\Windows\system32\mshtml.dll
2013-12-23 01:27:55 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-23 01:27:47 ----A---- C:\Windows\system32\jscript9.dll
2013-12-23 01:27:47 ----A---- C:\Windows\system32\ieframe.dll
2013-12-23 01:27:46 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-23 01:27:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-23 01:27:45 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-23 01:27:45 ----A---- C:\Windows\system32\iertutil.dll
2013-12-23 01:27:44 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-23 01:27:44 ----A---- C:\Windows\system32\wininet.dll
2013-12-23 01:27:44 ----A---- C:\Windows\system32\urlmon.dll
2013-12-23 01:27:43 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2013-12-23 01:27:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-23 01:27:43 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-12-23 01:27:43 ----A---- C:\Windows\system32\uxtheme.dll
2013-12-23 01:27:43 ----A---- C:\Windows\system32\jscript.dll
2013-12-23 01:27:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-12-23 01:27:42 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-23 01:27:42 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-12-23 01:27:42 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-23 01:27:42 ----A---- C:\Windows\system32\ie4uinit.exe
2013-12-23 01:27:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-23 01:27:40 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2013-12-23 01:27:40 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-12-23 01:27:40 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-12-23 01:27:40 ----A---- C:\Windows\system32\UXInit.dll
2013-12-23 01:27:40 ----A---- C:\Windows\system32\iesysprep.dll
2013-12-23 01:27:40 ----A---- C:\Windows\system32\iesetup.dll
2013-12-23 01:27:40 ----A---- C:\Windows\system32\iernonce.dll
2013-12-23 01:27:35 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-12-23 01:27:35 ----A---- C:\Windows\system32\crypt32.dll
2013-12-23 01:27:24 ----A---- C:\Windows\system32\drivers\afd.sys
2013-12-23 01:27:23 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-12-23 01:27:23 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-12-23 01:27:23 ----A---- C:\Windows\system32\nshwfp.dll
2013-12-23 01:27:23 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-12-23 01:27:23 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-12-23 01:27:23 ----A---- C:\Windows\system32\drivers\wfplwfs.sys
2013-12-23 01:27:23 ----A---- C:\Windows\system32\BFE.DLL
2013-12-23 01:27:21 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-12-23 01:27:21 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-12-23 01:27:19 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2013-12-23 01:27:19 ----A---- C:\Windows\system32\ReAgentc.exe
2013-12-23 01:27:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-12-23 01:27:02 ----A---- C:\Windows\system32\schannel.dll
2013-12-23 01:26:39 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2013-12-23 01:26:39 ----A---- C:\Windows\system32\sysreset.exe
2013-12-23 01:26:39 ----A---- C:\Windows\system32\resetengmig.dll
2013-12-23 01:26:39 ----A---- C:\Windows\system32\reseteng.dll
2013-12-23 01:26:39 ----A---- C:\Windows\system32\ReAgent.dll
2013-12-23 01:26:37 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2013-12-23 01:26:37 ----A---- C:\Windows\system32\drivers\UCX01000.SYS
2013-12-23 01:26:36 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-12-23 01:26:36 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-12-23 01:26:36 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-12-23 01:26:36 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-12-23 01:26:36 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-12-23 01:26:36 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-12-23 01:26:36 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-12-23 01:26:35 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-12-23 01:26:35 ----A---- C:\Windows\system32\DWrite.dll
2013-12-23 01:26:28 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-12-23 01:26:28 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-12-23 01:26:27 ----A---- C:\Windows\system32\win32k.sys
2013-12-23 01:26:24 ----A---- C:\Windows\system32\tssdisai.dll
2013-12-23 01:26:23 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2013-12-23 01:26:23 ----A---- C:\Windows\system32\VmHostAI.dll
2013-12-23 01:26:23 ----A---- C:\Windows\system32\RDWebAI.dll
2013-12-23 01:26:23 ----A---- C:\Windows\system32\poqexec.exe
2013-12-23 01:26:23 ----A---- C:\Windows\system32\appserverai.dll
2013-12-23 01:26:18 ----A---- C:\Windows\system32\pcasvc.dll
2013-12-23 01:26:18 ----A---- C:\Windows\system32\pcalua.exe
2013-12-23 01:26:18 ----A---- C:\Windows\system32\pcaevts.dll
2013-12-23 01:26:18 ----A---- C:\Windows\system32\pcadm.dll
2013-12-23 01:26:17 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2013-12-23 01:26:17 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-12-23 01:26:17 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2013-12-23 01:26:17 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-12-23 01:26:17 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2013-12-23 01:26:17 ----A---- C:\Windows\system32\msxml6r.dll
2013-12-23 01:26:17 ----A---- C:\Windows\system32\msxml6.dll
2013-12-23 01:26:17 ----A---- C:\Windows\system32\msxml3r.dll
2013-12-23 01:26:17 ----A---- C:\Windows\system32\msxml3.dll
2013-12-23 01:26:17 ----A---- C:\Windows\system32\dpnsvr.exe
2013-12-23 01:26:17 ----A---- C:\Windows\system32\dpnet.dll
2013-12-23 01:26:16 ----A---- C:\Windows\SYSWOW64\dpnsvr.exe
2013-12-23 01:26:16 ----A---- C:\Windows\SYSWOW64\dpnlobby.dll
2013-12-23 01:26:16 ----A---- C:\Windows\SYSWOW64\dpnhupnp.dll
2013-12-23 01:26:16 ----A---- C:\Windows\SYSWOW64\dpnhpast.dll
2013-12-23 01:26:16 ----A---- C:\Windows\SYSWOW64\dpnathlp.dll
2013-12-23 01:26:16 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2013-12-23 01:26:16 ----A---- C:\Windows\system32\dpnlobby.dll
2013-12-23 01:26:16 ----A---- C:\Windows\system32\dpnhupnp.dll
2013-12-23 01:26:16 ----A---- C:\Windows\system32\dpnhpast.dll
2013-12-23 01:26:16 ----A---- C:\Windows\system32\dpnathlp.dll
2013-12-23 01:26:16 ----A---- C:\Windows\system32\dpnaddr.dll
2013-12-23 01:25:34 ----A---- C:\Windows\SYSWOW64\duser.dll
2013-12-23 01:25:34 ----A---- C:\Windows\system32\wlroamextension.dll
2013-12-23 01:25:34 ----A---- C:\Windows\system32\ncsi.dll
2013-12-23 01:25:34 ----A---- C:\Windows\system32\duser.dll
2013-12-23 01:25:34 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-12-23 01:25:33 ----A---- C:\Windows\SYSWOW64\wlroamextension.dll
2013-12-23 01:25:33 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2013-12-23 01:25:33 ----A---- C:\Windows\system32\WWanAPI.dll
2013-12-23 01:25:33 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2013-12-23 01:25:33 ----A---- C:\Windows\system32\taskkill.exe
2013-12-23 01:25:33 ----A---- C:\Windows\system32\hotspotauth.dll
2013-12-23 01:25:33 ----A---- C:\Windows\system32\drivers\ks.sys
2013-12-23 01:25:32 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2013-12-23 01:25:32 ----A---- C:\Windows\SYSWOW64\tasklist.exe
2013-12-23 01:25:32 ----A---- C:\Windows\SYSWOW64\taskkill.exe
2013-12-23 01:25:32 ----A---- C:\Windows\system32\wpd_ci.dll
2013-12-23 01:25:32 ----A---- C:\Windows\system32\wersvc.dll
2013-12-23 01:25:32 ----A---- C:\Windows\system32\tasklist.exe
2013-12-23 01:25:32 ----A---- C:\Windows\system32\nlasvc.dll
2013-12-23 01:25:31 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-12-23 01:25:31 ----A---- C:\Windows\system32\nlaapi.dll
2013-12-23 01:25:31 ----A---- C:\Windows\system32\drivers\BthhfHid.sys
2013-12-23 01:25:31 ----A---- C:\Windows\system32\drivers\BtaMPM.sys
2013-12-23 01:25:25 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-12-23 01:25:25 ----A---- C:\Windows\system32\wintrust.dll
2013-12-23 01:25:25 ----A---- C:\Windows\system32\cryptsvc.dll
2013-12-23 01:25:24 ----A---- C:\Windows\SYSWOW64\apprepsync.dll
2013-12-23 01:25:24 ----A---- C:\Windows\SYSWOW64\apprepapi.dll
2013-12-23 01:25:24 ----A---- C:\Windows\system32\apprepsync.dll
2013-12-23 01:25:24 ----A---- C:\Windows\system32\apprepapi.dll
2013-12-23 01:25:21 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-12-23 01:25:21 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-12-23 01:25:20 ----A---- C:\Windows\system32\win32spl.dll
2013-12-23 01:25:18 ----A---- C:\Windows\system32\SysFxUI.dll
2013-12-23 01:25:18 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-23 01:25:18 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2013-12-23 01:25:18 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-12-23 01:25:16 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2013-12-23 01:25:16 ----A---- C:\Windows\system32\GdiPlus.dll
2013-12-23 01:25:16 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-12-23 01:25:02 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-23 01:25:02 ----A---- C:\Windows\SYSWOW64\scrobj.dll
2013-12-23 01:25:02 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-23 01:25:02 ----A---- C:\Windows\system32\scrrun.dll
2013-12-23 01:25:02 ----A---- C:\Windows\system32\scrobj.dll
2013-12-23 01:25:02 ----A---- C:\Windows\system32\drivers\http.sys
2013-12-23 01:25:02 ----A---- C:\Windows\system32\cscript.exe
2013-12-23 01:25:01 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-12-23 01:25:01 ----A---- C:\Windows\system32\cryptdlg.dll
2013-12-23 01:22:37 ----A---- C:\Windows\system32\consent.exe
2013-12-23 01:22:37 ----A---- C:\Windows\system32\appinfo.dll
2013-12-23 01:22:35 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-12-23 01:22:35 ----A---- C:\Windows\system32\d3d11.dll
2013-12-23 01:22:26 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-23 01:22:26 ----A---- C:\Windows\system32\msieftp.dll
2013-12-23 01:22:25 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-23 01:22:25 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-23 01:21:56 ----A---- C:\Windows\system32\twinui.dll
2013-12-23 01:21:53 ----A---- C:\Windows\SYSWOW64\twinui.dll
2013-12-23 01:21:53 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2013-12-23 01:21:53 ----A---- C:\Windows\system32\authui.dll
2013-12-23 01:21:53 ----A---- C:\Windows\system32\actxprxy.dll
2013-12-23 01:21:52 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-12-23 01:21:52 ----A---- C:\Windows\system32\drivers\pdc.sys
2013-12-23 01:21:49 ----A---- C:\Windows\SYSWOW64\esent.dll
2013-12-23 01:21:49 ----A---- C:\Windows\system32\esent.dll
2013-12-23 01:16:59 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-23 01:16:59 ----A---- C:\Windows\system32\tzres.dll
2013-12-23 01:09:17 ----A---- C:\Windows\system32\netcfg-368765.txt
2013-12-23 01:09:13 ----A---- C:\Windows\system32\netcfg-364812.txt
2013-12-23 01:09:12 ----A---- C:\Windows\system32\netcfg-364531.txt
2013-12-23 01:09:08 ----D---- C:\Program Files\ASUS
2013-12-23 01:06:31 ----D---- C:\Users\Admin\AppData\Roaming\Adobe
2013-12-23 01:05:22 ----D---- C:\ProgramData\PRICache
2013-12-23 01:05:02 ----SD---- C:\Users\Admin\AppData\Roaming\Microsoft
2013-12-23 01:04:36 ----D---- C:\Windows\SoftwareDistribution
2013-12-23 01:04:33 ----A---- C:\Windows\system32\netcfg-85515.txt
2013-12-23 01:04:24 ----A---- C:\Windows\system32\netcfg-76390.txt

======List of files/folders modified in the last 1 month======

2014-01-18 16:29:47 ----RD---- C:\Program Files
2014-01-18 16:00:00 ----D---- C:\Windows\system32\sru
2014-01-18 15:53:22 ----D---- C:\Windows\Temp
2014-01-18 13:14:27 ----D---- C:\Windows\system32\drivers\etc
2014-01-18 13:12:43 ----D---- C:\Windows\system32\Tasks
2014-01-18 13:12:32 ----RD---- C:\Windows\System32
2014-01-18 13:12:30 ----HD---- C:\ProgramData
2014-01-18 13:12:23 ----RD---- C:\Program Files (x86)
2014-01-18 12:43:18 ----D---- C:\Windows\Microsoft.NET
2014-01-16 14:04:09 ----SHD---- C:\Windows\Installer
2014-01-16 14:03:36 ----D---- C:\Windows\SysWOW64
2014-01-15 22:30:56 ----SHD---- C:\$Recycle.Bin
2014-01-15 17:19:08 ----D---- C:\Windows\system32\config
2014-01-15 17:14:23 ----D---- C:\Windows\WinSxS
2014-01-15 17:14:08 ----D---- C:\Windows\WinStore
2014-01-15 17:14:01 ----D---- C:\Windows\CbsTemp
2014-01-15 17:02:48 ----D---- C:\Windows\Inf
2014-01-06 22:05:42 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-01 16:09:23 ----D---- C:\Program Files (x86)\Common Files
2013-12-28 13:26:05 ----D---- C:\Windows\system32\catroot2
2013-12-28 13:25:07 ----D---- C:\Windows
2013-12-28 13:20:31 ----D---- C:\Windows\system32\DriverStore
2013-12-28 13:20:31 ----D---- C:\Windows\system32\Drivers
2013-12-28 11:12:43 ----D---- C:\Windows\rescache
2013-12-28 11:05:10 ----RSD---- C:\Windows\assembly
2013-12-28 01:58:57 ----D---- C:\Windows\system32\catroot
2013-12-27 09:25:45 ----D---- C:\Windows\Logs
2013-12-24 23:57:50 ----D---- C:\Windows\SYSWOW64\MUI
2013-12-24 23:57:50 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-12-24 23:57:47 ----RSD---- C:\Windows\Fonts
2013-12-24 23:57:47 ----D---- C:\Windows\system32\MUI
2013-12-24 23:57:47 ----D---- C:\Windows\system32\cs-CZ
2013-12-23 21:33:35 ----HD---- C:\Program Files\WindowsApps
2013-12-23 21:33:34 ----D---- C:\Windows\AUInstallAgent
2013-12-23 10:44:40 ----D---- C:\Program Files\Common Files
2013-12-23 10:25:16 ----D---- C:\Windows\system32\wdi
2013-12-23 07:57:12 ----D---- C:\Windows\system32\Recovery
2013-12-23 07:57:09 ----D---- C:\Program Files\Windows NT
2013-12-23 03:20:55 ----D---- C:\Windows\Tasks
2013-12-23 03:14:44 ----SD---- C:\ProgramData\Microsoft
2013-12-23 03:13:27 ----D---- C:\Windows\ShellNew
2013-12-23 03:12:21 ----D---- C:\Program Files\Common Files\microsoft shared
2013-12-23 03:11:09 ----A---- C:\Windows\win.ini
2013-12-23 02:59:44 ----D---- C:\Windows\system32\Boot
2013-12-23 02:59:39 ----RD---- C:\Windows\ToastData
2013-12-23 02:59:29 ----D---- C:\Program Files\Windows Media Player
2013-12-23 02:59:29 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-23 02:59:21 ----RD---- C:\Windows\ImmersiveControlPanel
2013-12-23 02:59:20 ----D---- C:\Windows\system32\oobe
2013-12-23 02:59:09 ----D---- C:\Windows\apppatch
2013-12-23 02:58:37 ----D---- C:\Windows\system32\en-US
2013-12-23 02:58:26 ----D---- C:\Windows\system32\SecureBootUpdates
2013-12-23 02:58:10 ----D---- C:\Windows\SYSWOW64\en-US
2013-12-23 02:26:56 ----D---- C:\Windows\servicing
2013-12-23 02:26:35 ----D---- C:\Windows\system32\drivers\UMDF
2013-12-23 02:24:22 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-23 02:24:18 ----D---- C:\Program Files\Internet Explorer
2013-12-23 02:24:00 ----D---- C:\Windows\SYSWOW64\migration
2013-12-23 02:24:00 ----D---- C:\Windows\system32\wbem
2013-12-23 02:24:00 ----D---- C:\Windows\system32\migration
2013-12-23 02:23:56 ----D---- C:\Program Files\Windows Defender
2013-12-23 02:23:56 ----D---- C:\Program Files (x86)\Windows Defender
2013-12-23 02:23:49 ----D---- C:\Windows\PolicyDefinitions
2013-12-23 02:23:41 ----D---- C:\Program Files\Windows Journal
2013-12-23 02:21:42 ----D---- C:\Windows\SYSWOW64\wbem
2013-12-23 02:21:24 ----D---- C:\Program Files\Windows Photo Viewer
2013-12-23 02:21:24 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-12-23 02:21:23 ----D---- C:\Windows\SYSWOW64\Dism
2013-12-23 02:21:20 ----D---- C:\Windows\system32\Dism
2013-12-23 01:37:08 ----D---- C:\Windows\system32\restore
2013-12-23 01:13:10 ----D---- C:\Windows\system32\CodeIntegrity
2013-12-23 01:04:59 ----RD---- C:\Users
2013-12-23 01:04:51 ----D---- C:\Windows\debug

a další pokračování:)

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\Windows\System32\drivers\ACPI.sys [2012-09-20 425192]
R0 acpiex;Microsoft ACPIEx Driver; C:\Windows\System32\Drivers\acpiex.sys [2012-07-26 77040]
R0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\Windows\System32\drivers\atapi.sys [2012-07-26 25840]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\Windows\System32\drivers\CLFS.sys [2012-07-26 361200]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2012-10-11 562392]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\Windows\System32\drivers\disk.sys [2013-10-13 100696]
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2013-09-17 239296]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\System32\drivers\fileinfo.sys [2012-07-26 71920]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\Windows\system32\drivers\fltmgr.sys [2012-07-26 374512]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2013-08-21 465240]
R0 KSecDD;KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [2012-09-20 100072]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2012-10-11 172264]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\Windows\System32\drivers\mountmgr.sys [2012-07-26 93936]
R0 msisadrv;msisadrv; C:\Windows\System32\drivers\msisadrv.sys [2012-07-26 17136]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\Windows\System32\Drivers\mup.sys [2012-07-26 83696]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\Windows\system32\drivers\ndis.sys [2013-06-16 997632]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\Windows\System32\drivers\partmgr.sys [2013-01-10 91880]
R0 pci;@machine.inf,%pci_svcdesc%;PCI Bus Driver; C:\Windows\System32\drivers\pci.sys [2012-07-26 234224]
R0 pciide;pciide; C:\Windows\System32\drivers\pciide.sys [2012-07-26 14064]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2012-07-26 52464]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\Windows\system32\drivers\pdc.sys [2013-03-02 69864]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-07-26 217328]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\Windows\System32\drivers\spaceport.sys [2013-10-05 285016]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\Windows\System32\drivers\tcpip.sys [2013-08-01 2233688]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\Windows\System32\drivers\vdrvroot.sys [2012-07-26 36080]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\Windows\System32\drivers\volmgr.sys [2012-07-26 83184]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2012-07-26 378608]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\Windows\System32\drivers\volsnap.sys [2013-06-01 327936]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\Windows\system32\drivers\Wdf01000.sys [2013-06-22 785624]
R0 WFPLWFS;@%SystemRoot%\System32\drivers\wfplwfs.sys,-6000; C:\Windows\system32\DRIVERS\wfplwfs.sys [2013-10-10 96600]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\Windows\system32\drivers\afd.sys [2013-09-04 576512]
R1 BasicDisplay;BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [2012-07-26 48640]
R1 BasicRender;BasicRender; C:\Windows\System32\drivers\BasicRender.sys [2012-07-26 29696]
R1 Beep;Beep; C:\Windows\system32\drivers\Beep.sys [2012-07-26 7680]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\Windows\System32\drivers\cdrom.sys [2012-07-26 174080]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\Windows\System32\Drivers\dfsc.sys [2012-07-26 118784]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2012-07-26 50688]
R1 dtsoftbus01;@oem7.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2013-12-24 283064]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 Msfs;Msfs; C:\Windows\system32\drivers\Msfs.sys [2012-07-26 26112]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\Windows\System32\drivers\mssmbios.sys [2012-07-26 37616]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\Windows\system32\DRIVERS\netbios.sys [2012-07-26 46080]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\Windows\System32\DRIVERS\netbt.sys [2012-07-26 331776]
R1 Npfs;Npfs; C:\Windows\system32\drivers\Npfs.sys [2012-07-26 49152]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\Windows\System32\drivers\npsvctrig.sys [2012-07-26 23552]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2012-07-26 34304]
R1 Null;Null; C:\Windows\system32\drivers\Null.sys [2012-07-26 5632]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\Windows\system32\DRIVERS\pacer.sys [2012-07-26 145408]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\Windows\system32\DRIVERS\rdbss.sys [2013-05-04 427520]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2012-07-26 117248]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2013-04-09 83456]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2013-09-17 157432]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\Windows\system32\DRIVERS\lltdio.sys [2012-07-26 60416]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2012-07-26 134144]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\Windows\system32\drivers\Ndu.sys [2012-07-26 97792]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2013-04-09 805376]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\Windows\system32\DRIVERS\rspndr.sys [2012-07-26 78848]
R2 secdrv;Security Driver; C:\Windows\system32\drivers\secdrv.sys [2012-07-26 23040]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2012-07-26 45056]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-12-06 13207552]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-12-06 626176]
R3 AtiHDAudioService;@oem6.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW86.sys [2013-09-24 215040]
R3 AU8168;@oem2.inf,%rtl8168.Service.DispName%;AU 8168 NT Driver; C:\Windows\system32\DRIVERS\au630x64.sys [2013-09-23 792648]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2012-07-26 101888]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\Windows\System32\drivers\CompositeBus.sys [2012-07-26 36352]
R3 condrv;Console Driver; C:\Windows\System32\drivers\condrv.sys [2012-07-26 33792]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2013-09-19 1455448]
R3 fastfat;FAT12/16/32 File System Driver; C:\Windows\system32\drivers\fastfat.sys [2012-07-26 210672]
R3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2012-07-26 57584]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Ovladač sběrnice Microsoft UAA pro zvuk High Definition Audio; C:\Windows\System32\drivers\HDAudBus.sys [2012-09-20 71168]
R3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\Windows\System32\drivers\hidusb.sys [2013-05-04 27648]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\Windows\system32\drivers\HTTP.sys [2013-03-15 861184]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-10-01 3674712]
R3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\Windows\System32\drivers\intelppm.sys [2012-11-06 89088]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\Windows\System32\drivers\kbdclass.sys [2012-07-26 48368]
R3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\Windows\System32\drivers\kbdhid.sys [2012-07-26 29184]
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Miniport ladění jádra společnosti Microsoft (NDIS 6.20); C:\Windows\system32\DRIVERS\kdnic.sys [2012-07-26 18432]
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys [2012-07-26 21376]
R3 MEIx64;@oem1.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2010-10-19 56344]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Služba ovladače funkce třídy monitorů Microsoft; C:\Windows\System32\drivers\monitor.sys [2013-03-01 30720]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\Windows\System32\drivers\mouclass.sys [2012-07-26 45808]
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\Windows\System32\drivers\mouhid.sys [2013-03-02 26112]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2013-10-31 74752]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\Windows\system32\DRIVERS\mrxsmb.sys [2013-02-05 370688]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2012-07-26 279552]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2013-02-05 215552]
R3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\Windows\system32\DRIVERS\ndistapi.sys [2012-09-20 25088]
R3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
R3 NDProxy;NDIS Proxy; C:\Windows\system32\drivers\NDProxy.sys [2013-04-09 60416]
R3 Ntfs;Ntfs; C:\Windows\system32\drivers\Ntfs.sys [2013-02-02 1933544]
R3 Parport;@msports.inf,%Parport.SVCDESC%;Ovladač paralelního portu; C:\Windows\System32\drivers\parport.sys [2012-07-26 105984]
R3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\Windows\system32\DRIVERS\raspptp.sys [2012-07-26 114176]
R3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;Připojení WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2012-07-26 68608]
R3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\Windows\system32\DRIVERS\rasl2tp.sys [2012-07-26 124928]
R3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\Windows\system32\DRIVERS\raspppoe.sys [2012-07-26 81920]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2012-07-26 92672]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\Windows\System32\drivers\rdpbus.sys [2012-07-26 22528]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-10-12 27880]
R3 Serenum;@msports.inf,%Serenum.SVCDESC%;Ovladač filtru Serenum; C:\Windows\System32\drivers\serenum.sys [2012-07-26 23040]
R3 Serial;@msports.inf,%Serial.SVCDESC%;Ovladač sériového portu; C:\Windows\System32\drivers\serial.sys [2012-07-26 76800]
R3 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\Windows\System32\DRIVERS\srv.sys [2012-07-26 416768]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2013-04-09 623104]
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2013-04-09 247808]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\Windows\System32\drivers\swenum.sys [2012-07-26 13680]
R3 TPM;@tpm.inf,%TPM%;TPM; C:\Windows\system32\drivers\tpm.sys [2013-08-10 151896]
R3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Microsoft Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys [2012-07-26 149504]
R3 UCX01000;USB Controller Extension; C:\Windows\System32\drivers\ucx01000.sys [2013-07-02 213336]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\Windows\System32\drivers\umbus.sys [2012-07-26 48128]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\Windows\System32\drivers\usbccgp.sys [2013-06-29 120832]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\System32\drivers\usbehci.sys [2013-07-01 79192]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Ovladač standardního rozbočovače USB; C:\Windows\System32\drivers\usbhub.sys [2013-07-01 623448]
R3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\Windows\System32\drivers\UsbHub3.sys [2013-10-02 447320]
R3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\Windows\System32\drivers\USBXHCI.SYS [2013-07-02 337752]
R3 vhdmp;vhdmp; C:\Windows\System32\drivers\vhdmp.sys [2013-03-02 495336]
R3 WmiAcpi;@wmiacpi.inf,%WMIMAP.SvcDesc%;Microsoft Windows Management Interface for ACPI; C:\Windows\System32\drivers\wmiacpi.sys [2012-07-26 17408]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 87040]
R4 cdfs;CD/DVD File System Reader; C:\Windows\system32\DRIVERS\cdfs.sys [2012-07-26 108544]
R4 udfs;udfs; C:\Windows\system32\DRIVERS\udfs.sys [2013-06-26 321536]
S0 3ware;3ware; C:\Windows\System32\drivers\3ware.sys [2012-07-26 106736]
S0 adp94xx;adp94xx; C:\Windows\System32\drivers\adp94xx.sys [2012-07-26 492272]
S0 adpahci;adpahci; C:\Windows\System32\drivers\adpahci.sys [2012-07-26 340720]
S0 adpu320;adpu320; C:\Windows\System32\drivers\adpu320.sys [2012-07-26 184048]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\Windows\System32\drivers\agp440.sys [2012-07-26 63216]
S0 amdkmafd;@oem4.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\Windows\System32\drivers\amdkmafd.sys [2012-09-23 21160]
S0 amdsata;amdsata; C:\Windows\System32\drivers\amdsata.sys [2012-07-26 76016]
S0 amdsbs;amdsbs; C:\Windows\System32\drivers\amdsbs.sys [2012-07-26 258288]
S0 amdxata;amdxata; C:\Windows\System32\drivers\amdxata.sys [2012-07-26 26352]
S0 arc;arc; C:\Windows\System32\drivers\arc.sys [2012-07-26 104688]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Windows Inbox Miniport Driver; C:\Windows\System32\drivers\arcsas.sys [2012-07-26 108272]
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II VBD; C:\Windows\System32\drivers\bxvbda.sys [2012-09-20 533224]
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\System32\drivers\evbda.sys [2012-09-20 3265256]
S0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\Windows\System32\drivers\EhStorClass.sys [2012-07-26 81136]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\Windows\System32\drivers\EhStorTcgDrv.sys [2012-07-26 113904]
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\System32\drivers\gagp30kx.sys [2012-07-26 66800]
S0 HpSAMD;HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [2012-07-26 64752]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2012-07-26 24816]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\Windows\System32\drivers\iaStorV.sys [2012-07-26 411888]
S0 iirsp;iirsp; C:\Windows\System32\drivers\iirsp.sys [2012-07-26 45296]
S0 intelide;intelide; C:\Windows\System32\drivers\intelide.sys [2012-07-26 18672]
S0 isapnp;isapnp; C:\Windows\System32\drivers\isapnp.sys [2012-07-26 22256]
S0 LSI_SAS;LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [2012-07-26 108784]
S0 LSI_SAS2;LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [2012-07-26 92400]
S0 LSI_SCSI;LSI_SCSI; C:\Windows\System32\drivers\lsi_scsi.sys [2012-07-26 116976]
S0 LSI_SSS;LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [2012-07-26 81136]
S0 megasas;megasas; C:\Windows\System32\drivers\megasas.sys [2012-07-26 51952]
S0 MegaSR;MegaSR; C:\Windows\System32\drivers\MegaSR.sys [2012-07-26 353008]
S0 mvumis;mvumis; C:\Windows\System32\drivers\mvumis.sys [2012-07-26 64240]
S0 nfrd960;nfrd960; C:\Windows\System32\drivers\nfrd960.sys [2012-07-26 52464]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\Windows\System32\drivers\nv_agp.sys [2012-07-26 125168]
S0 nvraid;nvraid; C:\Windows\System32\drivers\nvraid.sys [2012-07-26 150256]
S0 nvstor;nvstor; C:\Windows\System32\drivers\nvstor.sys [2012-07-26 168176]
S0 pcmcia;pcmcia; C:\Windows\System32\drivers\pcmcia.sys [2012-07-26 237808]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\Windows\System32\drivers\sbp2port.sys [2012-07-26 107760]
S0 SiSRaid2;SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [2012-07-26 44784]
S0 SiSRaid4;SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [2012-07-26 81648]
S0 stexstor;stexstor; C:\Windows\System32\drivers\stexstor.sys [2012-07-26 30960]
S0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\Windows\System32\drivers\storahci.sys [2013-03-02 77544]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2012-07-26 45160]
S0 storvsc;storvsc; C:\Windows\System32\drivers\storvsc.sys [2012-07-26 37992]
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Microsoft AGPv3.5 Filter; C:\Windows\System32\drivers\uagp35.sys [2012-07-26 65776]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\Windows\System32\drivers\uliagpkx.sys [2012-07-26 66800]
S0 viaide;viaide; C:\Windows\System32\drivers\viaide.sys [2012-07-26 19184]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\System32\drivers\vmbus.sys [2012-07-26 137832]
S0 vsmraid;vsmraid; C:\Windows\System32\drivers\vsmraid.sys [2012-07-26 164080]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage Controller Windows Driver; C:\Windows\System32\drivers\vstxraid.sys [2012-07-26 322800]
S0 Wd;@wd.inf,%WdServiceDisplayName%;Microsoft Watchdog Timer Driver; C:\Windows\System32\drivers\wd.sys [2012-07-26 23792]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\Windows\system32\drivers\dam.sys [2013-08-16 58200]
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\Windows\System32\drivers\1394ohci.sys [2012-07-26 226304]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\Windows\System32\drivers\acpipagr.sys [2012-07-26 10240]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\Windows\System32\drivers\acpipmi.sys [2012-07-26 12288]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\Windows\System32\drivers\acpitime.sys [2012-07-26 10752]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\Windows\System32\drivers\amdk8.sys [2012-11-06 90624]
S3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\Windows\System32\drivers\amdppm.sys [2012-11-06 88064]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2012-07-26 79360]
S3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\Windows\system32\DRIVERS\asyncmac.sys [2012-07-26 26624]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2013-06-01 37632]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 51200]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2012-11-27 29952]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\Windows\System32\drivers\bthmodem.sys [2012-07-26 65536]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\Windows\System32\drivers\circlass.sys [2012-07-26 45056]
S3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\Windows\System32\drivers\CmBatt.sys [2012-07-26 25600]
S3 dmvsc;dmvsc; C:\Windows\System32\drivers\dmvsc.sys [2012-07-26 33280]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\Windows\system32\drivers\drmkaud.sys [2012-10-11 5632]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\Windows\System32\drivers\errdev.sys [2012-07-26 10240]
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2012-07-26 194560]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\Windows\System32\drivers\fdc.sys [2012-07-26 30720]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2012-07-26 34816]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\Windows\System32\drivers\flpydisk.sys [2012-07-26 24576]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\Windows\System32\drivers\fxppm.sys [2012-11-06 22528]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\Windows\System32\drivers\vmgencounter.sys [2012-07-26 12288]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\Windows\System32\Drivers\msgpioclx.sys [2013-07-09 120144]
S3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2013-06-26 341504]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\Windows\System32\drivers\HidBatt.sys [2012-07-26 27136]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\Windows\System32\drivers\hidbth.sys [2013-04-09 95744]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\Windows\System32\drivers\hidi2c.sys [2012-11-20 39936]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\Windows\System32\drivers\hidir.sys [2012-07-26 46080]
S3 hyperkbd;hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [2012-07-26 11776]
S3 HyperVideo;HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [2012-07-26 24576]
S3 i8042prt;@msmouse.inf,%i8042prt.SvcDesc%;PS/2 Keyboard and Mouse Port Driver; C:\Windows\System32\drivers\i8042prt.sys [2012-07-26 112640]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\Windows\system32\DRIVERS\ipfltdrv.sys [2012-07-26 89088]
S3 IPMIDRV;IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [2012-07-26 78336]
S3 IPNAT;IP Network Address Translator; C:\Windows\System32\drivers\ipnat.sys [2012-07-26 145920]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\Windows\system32\drivers\irenum.sys [2012-07-26 17920]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\Windows\System32\drivers\msiscsi.sys [2012-11-06 277736]
S3 Modem;Modem; C:\Windows\system32\drivers\modem.sys [2012-07-26 40448]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\Windows\system32\drivers\mrxdav.sys [2012-07-26 141312]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2012-07-26 129536]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;GPIO Buttons Driver; C:\Windows\System32\drivers\msgpiowin32.sys [2013-01-10 28904]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2012-07-26 8704]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\Windows\System32\drivers\mshidumdf.sys [2012-07-26 10752]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2012-07-26 11008]
S3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\Windows\system32\DRIVERS\mslldp.sys [2012-07-26 68608]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2012-07-26 7168]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2012-07-26 6912]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2012-07-26 390896]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2012-07-26 8192]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\Windows\System32\drivers\MTConfig.sys [2012-07-26 14848]
S3 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\Windows\system32\DRIVERS\nwifi.sys [2012-07-26 427520]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\Windows\system32\DRIVERS\ndiscap.sys [2012-07-26 46592]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [2012-07-26 126464]
S3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\Windows\system32\DRIVERS\ndisuio.sys [2012-07-26 58880]
S3 NDISWANLEGACY;@%systemroot%\system32\rascfg.dll,-32014; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\Windows\System32\drivers\processr.sys [2012-11-06 87552]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2012-07-26 46592]
S3 RasAcd;Remote Access Auto Connection Driver; C:\Windows\System32\DRIVERS\rasacd.sys [2012-07-26 16384]
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\Windows\System32\drivers\rdpdr.sys [2012-07-26 179712]
S3 RDPWD;RDP Winstation Driver; C:\Windows\system32\drivers\RDPWD.sys [2012-07-26 208384]
S3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-06-02 589824]
S3 s3cap;s3cap; C:\Windows\System32\drivers\vms3cap.sys [2012-07-26 7168]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2012-07-26 36864]
S3 sdbus;sdbus; C:\Windows\System32\drivers\sdbus.sys [2013-06-29 195416]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\Windows\System32\drivers\sdstor.sys [2012-10-11 56552]
S3 SerCx;Serial UART Support Library; C:\Windows\system32\drivers\SerCx.sys [2012-07-26 62976]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\Windows\System32\drivers\sermouse.sys [2012-07-26 27136]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\Windows\System32\drivers\sfloppy.sys [2012-07-26 16896]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\Windows\system32\drivers\SpbCx.sys [2012-07-26 59392]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2013-08-01 2233688]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\Windows\System32\drivers\terminpt.sys [2012-07-26 36592]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-07-26 57344]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\Windows\System32\drivers\TsUsbGD.sys [2012-07-26 30208]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\Windows\System32\drivers\uaspstor.sys [2012-07-26 97008]
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Ovladač Microsoft UMPass; C:\Windows\System32\drivers\umpass.sys [2012-07-26 11776]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\Windows\System32\drivers\usbcir.sys [2013-07-05 99328]
S3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\System32\drivers\usbohci.sys [2012-11-20 27136]
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\Windows\System32\drivers\usbprint.sys [2013-07-01 25600]
S3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\Windows\System32\drivers\USBSTOR.SYS [2013-06-06 119040]
S3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\System32\drivers\usbuhci.sys [2013-06-29 32256]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\Windows\system32\drivers\VerifierExt.sys [2012-07-26 106224]
S3 VMBusHID;VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [2012-07-26 22144]
S3 vpci;@wvpci.inf,%vpci.SVCDESC%;Microsoft Hyper-V Virtual PCI Bus; C:\Windows\System32\drivers\vpci.sys [2012-07-26 67824]
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2012-07-26 24064]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\Windows\System32\drivers\wacompen.sys [2012-07-26 27008]
S3 Wanarp;@%systemroot%\system32\rascfg.dll,-32011; C:\Windows\system32\DRIVERS\wanarp.sys [2013-04-09 83456]
S3 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\Windows\system32\drivers\WdBoot.sys [2013-07-02 36288]
S3 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\Windows\system32\drivers\WdFilter.sys [2013-07-01 247216]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2012-07-26 33520]
S3 wpcfltr;Family Safety Filter Driver; C:\Windows\system32\DRIVERS\wpcfltr.sys [2012-07-26 45056]
S3 WpdUpFltr;@%systemroot%\System32\drivers\WpdUpFltr.sys,-100; C:\Windows\System32\drivers\WpdUpFltr.sys [2012-07-26 19968]
S3 WUDFRd;@hidbthle.inf,%WudfRdDisplayName%;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\Windows\System32\drivers\WUDFRd.sys [2012-07-26 198656]
S3 WUDFWpdFs;WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
S4 ws2ifsl;@%systemroot%\System32\drivers\ws2ifsl.sys,-1000; C:\Windows\system32\drivers\ws2ifsl.sys [2012-09-20 22528]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-12-06 239616]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 DcomLaunch;@combase.dll,-5012; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2013-09-12 1337752]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 RpcSs;@combase.dll,-5010; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe [2012-09-20 35840]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe [2012-07-26 769024]
R2 stisvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Winmgmt;@%Systemroot%\system32\wbem\wmisvc.dll,-205; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 wscsvc;@%SystemRoot%\System32\wscsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; C:\Windows\system32\SearchIndexer.exe [2013-04-09 816128]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2013-08-16 4917760]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe [2012-07-26 94208]
S3 AllUserInstallAgent;@%SystemRoot%\System32\AUInstallAgent.dll,-101; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe [2012-07-26 10752]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 Eaphost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2012-09-20 35840]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2012-07-26 669696]
S3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-06 43616]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2012-09-20 35840]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe [2012-07-26 144384]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe [2012-07-26 124416]
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe [2012-09-20 35840]
S3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2012-07-26 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 PrintNotify;@C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe [2012-07-26 9728]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2012-07-26 14848]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-01-07 569768]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2013-05-15 98304]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2012-07-26 40960]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2012-09-20 35840]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2013-06-01 680960]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\Windows\system32\vssvc.exe [2013-05-04 1483776]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2012-07-26 1616896]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WinDefend;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310; C:\Program Files\Windows Defender\MsMpEng.exe [2013-07-02 16048]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WlanSvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wlidsvc;@%SystemRoot%\system32\wlidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wmiApSrv;@%Systemroot%\system32\wbem\wmiapsrv.exe,-110; C:\Windows\system32\wbem\WmiApSrv.exe [2012-07-26 198144]
S3 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; C:\Program Files\Windows Media Player\wmpnetwk.exe [2012-09-20 1314816]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WSService;@%SystemRoot%\system32\WSService.dll,-103; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 wuauserv;@%systemroot%\system32\wuaueng.dll,-105; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-12 139696]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S4 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S4 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\Windows\System32\svchost.exe [2012-09-20 29696]

-----------------EOF-----------------

Odinstalujte Spybota, program je zastraly.


Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.

první log:
# AdwCleaner v3.017 - Report created 18/01/2014 at 16:49:08
# Updated 12/01/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Admin - DOMA
# Running from : C:\Users\Admin\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v32.0.1700.76

[ File : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [591 octets] - [18/01/2014 16:49:08]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [650 octets] ##########





druhý log (po zvolení možnosti "clean"...mám ale dojem že jsem zaskrtnul ze NECHCI vymazat ten soubor z toho chromu..

# AdwCleaner v3.017 - Report created 18/01/2014 at 16:49:08
# Updated 12/01/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Admin - DOMA
# Running from : C:\Users\Admin\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v32.0.1700.76

[ File : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [591 octets] - [18/01/2014 16:49:08]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [650 octets] ##########

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

cus
tak to naslo jen jeden file...

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.01.19.04

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16750
Admin :: DOMA [administrátor]

Ochrana: Povolena

19. 1. 2014 16:33:43
MBAM-log-2014-01-19 (17-01-08).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 346398
Uplynulý čas: 21 minut, 22 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 1
C:\Users\Admin\Downloads\DTLite4481-0347.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

(konec)

Nalez nechte odstrani, pak MBAM odinstalujte.

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

ahoj

omlouvám se, byl jsem nejakou dobu mimo

udelal jsem krok který jsi mi poradil prez program RogueKiller a tady je log:

RogueKiller V8.8.2 [Jan 17 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Admin [Práva správce]
Mód : Kontrola -- Datum : 02/03/2014 22:42:12
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD10EZEX-00KUWA0 ATA Device +++++
--- User ---
[MBR] fa9ea653ad1fdca3a19b43bf9ab7694d
[BSP] cae5ebd2e625a67e458905650ea77a16 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 350 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 718848 | Size: 953517 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_02032014_224212.txt >>


MYSLÍŠ ŽE NA TO PŘÍJDEM?:)

Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.

RogueKiller V8.8.2 [Jan 17 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Admin [Práva správce]
Mód : Odebrat -- Datum : 02/05/2014 13:44:45
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD10EZEX-00KUWA0 ATA Device +++++
--- User ---
[MBR] fa9ea653ad1fdca3a19b43bf9ab7694d
[BSP] cae5ebd2e625a67e458905650ea77a16 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 350 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 718848 | Size: 953517 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_02052014_134445.txt >>
RKreport[0]_S_02032014_224212.txt;RKreport[0]_S_02052014_133405.txt


A PO OPRAVA HOST



RogueKiller V8.8.2 [Jan 17 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Admin [Práva správce]
Mód : Oprava HOSTS -- Datum : 02/05/2014 13:45:33
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]


¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost


Dokončeno : << RKreport[0]_H_02052014_134533.txt >>
RKreport[0]_D_02052014_134445.txt;RKreport[0]_S_02032014_224212.txt;RKreport[0]_S_02052014_133405.txt

Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku



27.2. pro neaktivitu http://forum.viry.cz/viewtopic.php?f=12&t=123975