VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

samo se mi občas mění nastavení v PC

https://forum.viry.cz:443/viewtopic.php?t=136079

Stránka 1 z 1

samo se mi občas mění nastavení v PC

Napsal: 10 úno 2014 10:43
od cid750
Dobrý den.
Měl bych na Vás velikou prosbu.
Myslím si, že se mi někdo dostal do PC a bohužel nevím, co s tím.
Dával jsem si počítač překontrolovat a našli tam vir Z-TERM, který údajně odesílá navštěvované stránky a hesla. Ale obávám se, že nenašli asi vše. Od té doby se mi stalo, že při prohlížení pošty, aniž bych na cokoliv sáhl mi přeskočila další zpráva. Ve firefoxu se mi změnilo nastavení z nepamatovat si hesla a historii na pravý opak. I když jsem blokoval vzdálený přísup na plochu tak nevím, jestli i tam není problém.
Děti na počítač chodí, ale tohle by určitě nezvládly přenastavit.
Velice Vám děkuji za případnou pomoc.

Podle návodu jsem se pokusil udělat Logfile:
Při odelání mi to napsalo, že mohu poslat jenom 100000 znaků tak to posílám na dvě části.




Logfile of random's system information tool 1.09 (written by random/random)
Run by name at 2014-02-10 10:26:43
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 52 GB (50%) free of 103 GB
Total RAM: 4095 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:27:07, on 10.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\trend micro\name.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1187863526-2632742443-2962134052-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1187863526-2632742443-2962134052-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: Sledovat výstrahy inkoustu - HP Deskjet 5520 series.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8363 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2014\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=d53b881b-95af-4a3b-9908-ed4bb1a2681b /coreSdkOptions=4382 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\5c8ca717-966b-4c13-b91f-0d6b3867b915-14c-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
C:\Windows\System32\svchost.exe -k NetworkService
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\AVG\AVG2014\avgfws.exe"
"C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Deskjet 5520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2A91B1JM05SX;CONNECTION=USB;MONITOR=1;
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2014\avgemca.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\CyberLink\Shared files\brs.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=d6955834-42ce-4458-9382-990348353621 /coreSdkOptions=4114 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\bf9d8451-f2fa-465f-96a5-1d4de60a8964-a30-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE"
C:\Windows\splwow64.exe 12288
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
taskeng.exe {5E4B3472-938C-4E42-97AF-BC3A1D85648D}
"C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe"
"D:\stahování internet\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\HP Photo Creations Communicator.job

=========Mozilla firefox=========

ProfilePath - C:\Users\name\AppData\Roaming\Mozilla\Firefox\Profiles\8s7f7y5u.default

prefs.js - "browser.startup.homepage" - "about blank"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.43 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.43 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll [2013-12-16 1154720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll [2013-12-16 1432224]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-01-21 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-01-21 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll [2013-12-16 1154720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll [2013-12-16 1432224]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2010-02-03 87336]
"BDRegion"=C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [2010-06-28 75048]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2013-11-07 4956176]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2011-10-28 49208]
""= []

C:\Users\name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sledovat výstrahy inkoustu - HP Deskjet 5520 series.lnk - C:\Windows\system32\RunDll32.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-02-10 10:26:43 ----D---- C:\rsit
2014-02-10 10:26:43 ----D---- C:\Program Files\trend micro
2014-01-30 11:26:32 ----D---- C:\Users\name\AppData\Roaming\NVIDIA
2014-01-21 21:11:35 ----D---- C:\Users\name\AppData\Roaming\Wargaming.net
2014-01-21 18:52:23 ----D---- C:\Windows\SYSWOW64\directx
2014-01-21 18:52:20 ----D---- C:\Games
2014-01-21 18:41:31 ----D---- C:\Users\name\AppData\Roaming\Visan
2014-01-21 17:55:34 ----D---- C:\Program Files (x86)\Microsoft
2014-01-21 17:55:25 ----D---- C:\ProgramData\Visan
2014-01-21 17:55:25 ----D---- C:\ProgramData\HP Photo Creations
2014-01-21 17:55:25 ----D---- C:\Program Files (x86)\HP Photo Creations
2014-01-21 17:55:08 ----D---- C:\Users\name\AppData\Roaming\HpUpdate
2014-01-21 17:55:01 ----N---- C:\Windows\system32\HPDiscoPMB611.dll
2014-01-21 17:54:26 ----D---- C:\ProgramData\HP
2014-01-21 17:54:16 ----D---- C:\Program Files (x86)\HP
2014-01-21 17:54:00 ----D---- C:\Program Files\HP
2014-01-21 17:53:55 ----A---- C:\ProgramData\Ament.ini
2014-01-21 17:15:10 ----D---- C:\Users\name\AppData\Roaming\Thunderbird
2014-01-21 17:15:02 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2014-01-21 02:29:32 ----D---- C:\Users\name\AppData\Roaming\Macromedia
2014-01-21 02:27:04 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-01-21 02:27:03 ----D---- C:\Windows\SYSWOW64\Macromed
2014-01-21 02:27:02 ----D---- C:\Windows\system32\Macromed
2014-01-21 02:12:34 ----D---- C:\Users\name\AppData\Roaming\Opera
2014-01-21 02:12:29 ----D---- C:\Program Files (x86)\Opera
2014-01-21 02:08:44 ----D---- C:\Windows\SYSWOW64\Adobe
2014-01-21 01:25:14 ----D---- C:\Users\name\AppData\Roaming\AVG2014
2014-01-21 01:23:28 ----HD---- C:\$AVG
2014-01-21 01:23:28 ----D---- C:\ProgramData\AVG2014
2014-01-21 01:22:01 ----D---- C:\Program Files (x86)\AVG
2014-01-21 01:20:51 ----HD---- C:\ProgramData\Common Files
2014-01-21 01:20:51 ----D---- C:\ProgramData\MFAData
2014-01-21 01:17:33 ----D---- C:\ProgramData\Sun
2014-01-21 01:17:23 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-01-21 01:17:18 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-01-21 01:17:18 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-01-21 01:17:18 ----A---- C:\Windows\SYSWOW64\java.exe
2014-01-21 01:17:10 ----D---- C:\Program Files (x86)\Java
2014-01-21 01:02:03 ----D---- C:\Program Files (x86)\IrfanView
2014-01-21 00:38:46 ----D---- C:\Program Files (x86)\MSXML 4.0
2014-01-21 00:30:49 ----A---- C:\Windows\SYSWOW64\rmoc3260.dll
2014-01-21 00:30:49 ----A---- C:\Windows\SYSWOW64\pndx5032.dll
2014-01-21 00:30:49 ----A---- C:\Windows\SYSWOW64\pndx5016.dll
2014-01-21 00:30:49 ----A---- C:\Windows\SYSWOW64\pncrt.dll
2014-01-21 00:30:48 ----D---- C:\Program Files (x86)\Real Alternative
2014-01-21 00:30:34 ----D---- C:\ProgramData\Apple Computer
2014-01-21 00:30:32 ----A---- C:\Windows\SYSWOW64\QTCF.dll
2014-01-21 00:30:30 ----D---- C:\Program Files (x86)\QuickTime Alternative
2014-01-21 00:28:27 ----D---- C:\Program Files (x86)\Adobe
2014-01-21 00:27:42 ----D---- C:\ProgramData\Adobe
2014-01-21 00:27:06 ----D---- C:\Program Files (x86)\MSECache
2014-01-21 00:16:52 ----D---- C:\Program Files (x86)\Microsoft Works
2014-01-21 00:16:41 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2014-01-21 00:16:30 ----D---- C:\Windows\PCHEALTH
2014-01-21 00:15:11 ----D---- C:\Program Files\Microsoft Office
2014-01-21 00:14:18 ----D---- C:\ProgramData\Microsoft Help
2014-01-21 00:14:18 ----D---- C:\Program Files (x86)\Microsoft Office
2014-01-21 00:13:59 ----RHD---- C:\MSOCache
2014-01-20 22:16:51 ----D---- C:\Users\name\AppData\Roaming\CyberLink
2014-01-20 22:13:44 ----D---- C:\ProgramData\CyberLink
2014-01-20 22:13:29 ----D---- C:\Program Files (x86)\InstallShield Installation Information
2014-01-20 22:11:36 ----D---- C:\Program Files (x86)\CyberLink
2014-01-20 22:11:36 ----A---- C:\Windows\SYSWOW64\msxml3a.dll
2014-01-20 22:11:36 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-01-20 22:11:36 ----A---- C:\Windows\SYSWOW64\msvcp71.dll
2014-01-20 22:11:18 ----D---- C:\ProgramData\Temp
2014-01-20 22:09:14 ----D---- C:\Users\name\AppData\Roaming\Media Player Classic
2014-01-20 21:47:48 ----D---- C:\Program Files (x86)\FinalWire
2014-01-20 21:45:59 ----D---- C:\Program Files (x86)\CrystalDiskInfo6_0_4
2014-01-20 21:42:51 ----D---- C:\Program Files\ffdshow
2014-01-20 21:42:51 ----A---- C:\Windows\system32\ff_vfw.dll
2014-01-20 21:41:49 ----D---- C:\Program Files\MPC-HC.1.6.5.6366.x64
2014-01-20 21:40:03 ----D---- C:\Users\name\AppData\Roaming\WinRAR
2014-01-20 21:39:28 ----D---- C:\Program Files\WinRAR
2014-01-20 21:35:50 ----D---- C:\Users\name\AppData\Roaming\BSplayer PRO
2014-01-20 21:35:49 ----D---- C:\Program Files (x86)\Webteh
2014-01-20 21:26:37 ----D---- C:\ProgramData\LightScribe
2014-01-20 21:25:35 ----D---- C:\Users\name\AppData\Roaming\Nero
2014-01-20 21:21:40 ----D---- C:\Program Files (x86)\Nero
2014-01-20 21:21:31 ----D---- C:\ProgramData\Nero
2014-01-20 21:13:57 ----D---- C:\Program Files\cpu-z_1.62-64bits-en
2014-01-20 21:07:39 ----D---- C:\Users\name\AppData\Roaming\GHISLER
2014-01-20 21:07:39 ----D---- C:\totalcmd
2014-01-20 20:42:49 ----A---- C:\Windows\system32\ieui.dll
2014-01-20 20:42:49 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-01-20 20:42:48 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-01-20 20:42:48 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-01-20 20:42:48 ----A---- C:\Windows\system32\jsproxy.dll
2014-01-20 20:42:48 ----A---- C:\Windows\system32\ieUnatt.exe
2014-01-20 20:42:48 ----A---- C:\Windows\system32\iesetup.dll
2014-01-20 20:42:48 ----A---- C:\Windows\system32\iernonce.dll
2014-01-20 20:42:48 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-01-20 20:42:48 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-01-20 20:42:48 ----A---- C:\Windows\system32\ie4uinit.exe
2014-01-20 20:42:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-01-20 20:42:47 ----A---- C:\Windows\system32\mshtml.dll
2014-01-20 20:42:47 ----A---- C:\Windows\system32\jscript9diag.dll
2014-01-20 20:42:47 ----A---- C:\Windows\system32\ieapfltr.dll
2014-01-20 20:42:46 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-01-20 20:42:46 ----A---- C:\Windows\system32\iertutil.dll
2014-01-20 20:42:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-01-20 20:42:45 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-01-20 20:42:45 ----A---- C:\Windows\system32\wininet.dll
2014-01-20 20:42:44 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-01-20 20:42:44 ----A---- C:\Windows\system32\urlmon.dll
2014-01-20 20:42:43 ----A---- C:\Windows\system32\ieframe.dll
2014-01-20 20:42:42 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-01-20 20:42:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-01-20 20:42:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-01-20 20:42:41 ----A---- C:\Windows\system32\jscript9.dll
2014-01-20 20:41:34 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-01-20 20:41:34 ----A---- C:\Windows\system32\WMPhoto.dll
2014-01-20 20:41:33 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-01-20 20:41:33 ----A---- C:\Windows\explorer.exe
2014-01-20 20:41:32 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-01-20 20:41:32 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-01-20 20:41:32 ----A---- C:\Windows\system32\spoolsv.exe
2014-01-20 20:41:32 ----A---- C:\Windows\splwow64.exe
2014-01-20 20:34:35 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-01-20 20:30:26 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-01-20 20:30:26 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-20 20:30:23 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-01-20 20:30:23 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-01-20 20:30:23 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-01-20 20:30:23 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-01-20 20:30:23 ----A---- C:\Windows\system32\elshyph.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\url.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-01-20 20:30:22 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\wextract.exe
2014-01-20 20:30:22 ----A---- C:\Windows\system32\webcheck.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\vbscript.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\url.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-01-20 20:30:22 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-20 20:30:22 ----A---- C:\Windows\system32\pngfilt.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\occache.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\msrating.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\msls31.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\mshtmler.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\mshtmled.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\mshta.exe
2014-01-20 20:30:22 ----A---- C:\Windows\system32\msfeedssync.exe
2014-01-20 20:30:22 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\msfeeds.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\licmgr10.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\jsIntl.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\jscript.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\inseng.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\imgutil.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\iexpress.exe
2014-01-20 20:30:22 ----A---- C:\Windows\system32\iesysprep.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\iepeers.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\iedkcs32.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\ieapfltr.dat
2014-01-20 20:30:22 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\icardie.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\dxtrans.dll
2014-01-20 20:30:22 ----A---- C:\Windows\system32\dxtmsft.dll
2014-01-20 20:25:03 ----D---- C:\Users\name\AppData\Roaming\Adobe
2014-01-20 20:15:51 ----A---- C:\Windows\system32\wmploc.DLL
2014-01-20 20:15:50 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-01-20 20:15:50 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-01-20 20:15:49 ----A---- C:\Windows\system32\wmp.dll
2014-01-20 20:09:35 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-01-20 20:07:51 ----D---- C:\Windows\Migration
2014-01-20 19:30:27 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-01-20 19:30:27 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-01-20 19:30:27 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-01-20 19:30:26 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-01-20 19:30:26 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-01-20 19:30:25 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-01-20 19:30:25 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-01-20 19:30:25 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2014-01-20 19:30:25 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-01-20 19:30:25 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2014-01-20 19:30:25 ----A---- C:\Windows\system32\wksprtPS.dll
2014-01-20 19:30:25 ----A---- C:\Windows\system32\wksprt.exe
2014-01-20 19:30:25 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-01-20 19:30:25 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-01-20 19:30:25 ----A---- C:\Windows\system32\tsgqec.dll
2014-01-20 19:30:25 ----A---- C:\Windows\system32\rdpudd.dll
2014-01-20 19:30:25 ----A---- C:\Windows\system32\rdpendp_winip.dll
2014-01-20 19:30:25 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-01-20 19:30:25 ----A---- C:\Windows\system32\aaclient.dll
2014-01-20 19:30:24 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-01-20 19:30:24 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-01-20 19:30:24 ----A---- C:\Windows\system32\rdpcorets.dll
2014-01-20 19:30:24 ----A---- C:\Windows\system32\mstscax.dll
2014-01-20 19:30:24 ----A---- C:\Windows\system32\mstsc.exe
2014-01-20 19:09:42 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2014-01-20 19:09:42 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-01-20 19:09:42 ----A---- C:\Windows\system32\UIAnimation.dll
2014-01-20 19:09:42 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-01-20 19:09:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-01-20 19:09:39 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-01-20 19:09:39 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-01-20 19:09:39 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-01-20 19:09:39 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-01-20 19:09:39 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-01-20 19:09:39 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2014-01-20 19:09:39 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2014-01-20 19:09:39 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2014-01-20 19:09:39 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2014-01-20 19:09:39 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-01-20 19:09:39 ----A---- C:\Windows\system32\dxgi.dll
2014-01-20 19:09:39 ----A---- C:\Windows\system32\d3d10warp.dll
2014-01-20 19:09:39 ----A---- C:\Windows\system32\d3d10level9.dll
2014-01-20 19:09:39 ----A---- C:\Windows\system32\d3d10core.dll
2014-01-20 19:09:39 ----A---- C:\Windows\system32\d3d10_1core.dll
2014-01-20 19:09:39 ----A---- C:\Windows\system32\d3d10_1.dll
2014-01-20 19:09:38 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2014-01-20 19:09:38 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2014-01-20 19:09:38 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-01-20 19:09:38 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-01-20 19:09:38 ----A---- C:\Windows\system32\XpsPrint.dll
2014-01-20 19:09:38 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2014-01-20 19:09:38 ----A---- C:\Windows\system32\FntCache.dll
2014-01-20 19:09:38 ----A---- C:\Windows\system32\DWrite.dll
2014-01-20 19:09:38 ----A---- C:\Windows\system32\d3d10.dll
2014-01-20 19:09:38 ----A---- C:\Windows\system32\d2d1.dll
2014-01-20 18:46:56 ----A---- C:\Windows\system32\consent.exe
2014-01-20 18:46:56 ----A---- C:\Windows\system32\appinfo.dll
2014-01-20 18:46:44 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-01-20 18:46:44 ----A---- C:\Windows\system32\d3d11.dll
2014-01-20 18:46:37 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-01-20 18:46:37 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-01-20 18:46:37 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-01-20 18:46:37 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-20 18:46:37 ----A---- C:\Windows\system32\credui.dll
2014-01-20 18:46:37 ----A---- C:\Windows\system32\authui.dll
2014-01-20 18:46:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-01-20 18:46:28 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-01-20 18:46:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-01-20 18:46:28 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-01-20 18:46:28 ----A---- C:\Windows\system32\sspisrv.dll
2014-01-20 18:46:28 ----A---- C:\Windows\system32\sspicli.dll
2014-01-20 18:46:28 ----A---- C:\Windows\system32\schannel.dll
2014-01-20 18:46:28 ----A---- C:\Windows\system32\secur32.dll
2014-01-20 18:46:28 ----A---- C:\Windows\system32\ncrypt.dll
2014-01-20 18:46:28 ----A---- C:\Windows\system32\lsass.exe
2014-01-20 18:46:28 ----A---- C:\Windows\system32\lsasrv.dll
2014-01-20 18:46:28 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-01-20 18:46:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-01-20 18:46:28 ----A---- C:\Windows\system32\drivers\cng.sys
2014-01-20 18:46:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-01-20 18:46:24 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-01-20 18:46:24 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-01-20 18:46:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-01-20 18:46:24 ----A---- C:\Windows\system32\tdh.dll
2014-01-20 18:46:24 ----A---- C:\Windows\system32\ntdll.dll
2014-01-20 18:46:24 ----A---- C:\Windows\system32\advapi32.dll
2014-01-20 18:46:23 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-01-20 18:46:23 ----A---- C:\Windows\SYSWOW64\user.exe
2014-01-20 18:46:23 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-01-20 18:46:23 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-01-20 18:46:23 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-01-20 18:46:23 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-01-20 18:46:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-01-20 18:46:23 ----A---- C:\Windows\system32\wow64.dll
2014-01-20 18:46:21 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-01-20 18:46:21 ----A---- C:\Windows\system32\tzres.dll
2014-01-20 18:46:03 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-01-20 18:46:03 ----A---- C:\Windows\system32\wintrust.dll
2014-01-20 18:45:56 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-01-20 18:45:54 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-01-20 18:45:54 ----A---- C:\Windows\system32\KernelBase.dll
2014-01-20 18:45:53 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-01-20 18:45:53 ----A---- C:\Windows\system32\winsrv.dll
2014-01-20 18:45:53 ----A---- C:\Windows\system32\smss.exe
2014-01-20 18:45:53 ----A---- C:\Windows\system32\kernel32.dll
2014-01-20 18:45:53 ----A---- C:\Windows\system32\csrsrv.dll
2014-01-20 18:45:53 ----A---- C:\Windows\system32\conhost.exe
2014-01-20 18:45:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-01-20 18:45:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-01-20 18:45:52 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-01-20 18:45:52 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-01-20 18:45:52 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-01-20 18:45:52 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-01-20 18:45:51 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-01-20 18:45:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-01-20 18:45:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-01-20 18:45:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-01-20 18:45:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-01-20 18:45:50 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-01-20 18:45:50 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-01-20 18:45:50 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-01-20 18:45:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-01-20 18:45:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-01-20 18:45:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-01-20 18:45:49 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-01-20 18:45:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-01-20 18:45:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-01-20 18:45:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-01-20 18:45:48 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-01-20 18:45:48 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-01-20 18:45:48 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-01-20 18:45:48 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-01-20 18:45:48 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-01-20 18:45:48 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-01-20 18:45:47 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-01-20 18:45:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-01-20 18:45:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-01-20 18:45:46 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-01-20 18:45:46 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-01-20 18:45:46 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-01-20 18:45:46 ----A---- C:\Windows\system32\apisetschema.dll
2014-01-20 18:45:43 ----A---- C:\Windows\system32\shell32.dll
2014-01-20 18:45:42 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-01-20 18:45:42 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-01-20 18:45:42 ----A---- C:\Windows\system32\shdocvw.dll
2014-01-20 18:45:36 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2014-01-20 18:45:36 ----A---- C:\Windows\SYSWOW64\netevent.dll
2014-01-20 18:45:36 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2014-01-20 18:45:36 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2014-01-20 18:45:36 ----A---- C:\Windows\system32\nlasvc.dll
2014-01-20 18:45:36 ----A---- C:\Windows\system32\nlaapi.dll
2014-01-20 18:45:36 ----A---- C:\Windows\system32\netevent.dll
2014-01-20 18:45:36 ----A---- C:\Windows\system32\netcorehc.dll
2014-01-20 18:45:36 ----A---- C:\Windows\system32\ncsi.dll
2014-01-20 18:45:36 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-01-20 18:45:36 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2014-01-20 18:45:33 ----A---- C:\Windows\system32\taskhost.exe
2014-01-20 18:45:33 ----A---- C:\Windows\system32\drivers\afd.sys
2014-01-20 18:45:30 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2014-01-20 18:45:30 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2014-01-20 18:45:30 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2014-01-20 18:45:30 ----A---- C:\Windows\system32\dhcpcore6.dll
2014-01-20 18:45:25 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-01-20 18:45:25 ----A---- C:\Windows\system32\qedit.dll
2014-01-20 18:45:20 ----A---- C:\Windows\system32\OxpsConverter.exe
2014-01-20 18:45:17 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-01-20 18:45:17 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-01-20 18:45:17 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-01-20 18:45:17 ----A---- C:\Windows\system32\cryptsvc.dll
2014-01-20 18:45:17 ----A---- C:\Windows\system32\cryptnet.dll
2014-01-20 18:45:17 ----A---- C:\Windows\system32\crypt32.dll
2014-01-20 18:45:11 ----A---- C:\Windows\system32\wwansvc.dll
2014-01-20 18:45:11 ----A---- C:\Windows\system32\wwanprotdim.dll
2014-01-20 18:45:10 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-01-20 18:45:10 ----A---- C:\Windows\system32\mswsock.dll
2014-01-20 18:45:09 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-01-20 18:45:08 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-01-20 18:45:08 ----A---- C:\Windows\system32\comctl32.dll
2014-01-20 18:45:07 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-01-20 18:45:07 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-01-20 18:45:07 ----A---- C:\Windows\system32\WebClnt.dll
2014-01-20 18:45:07 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2014-01-20 18:45:07 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-01-20 18:45:07 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-01-20 18:45:07 ----A---- C:\Windows\system32\davclnt.dll
2014-01-20 18:45:06 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-01-20 18:45:06 ----A---- C:\Windows\system32\msieftp.dll
2014-01-20 18:45:05 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-01-20 18:45:05 ----A---- C:\Windows\system32\qdvd.dll
2014-01-20 18:45:05 ----A---- C:\Windows\system32\drivers\usbscan.sys
2014-01-20 18:45:05 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-01-20 18:45:05 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-01-20 18:44:07 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2014-01-20 18:44:07 ----A---- C:\Windows\system32\win32spl.dll
2014-01-20 18:44:05 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-01-20 18:44:04 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-01-20 18:44:04 ----A---- C:\Windows\system32\rpcrt4.dll
2014-01-20 18:44:04 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-01-20 18:44:04 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-01-20 18:44:03 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-01-20 18:44:03 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-01-20 18:44:03 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-01-20 18:44:03 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-01-20 18:44:03 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-01-20 18:44:03 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-01-20 18:44:03 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-01-20 18:44:03 ----A---- C:\Windows\system32\lpk.dll
2014-01-20 18:44:03 ----A---- C:\Windows\system32\fontsub.dll
2014-01-20 18:44:03 ----A---- C:\Windows\system32\dciman32.dll
2014-01-20 18:44:03 ----A---- C:\Windows\system32\atmlib.dll
2014-01-20 18:44:03 ----A---- C:\Windows\system32\atmfd.dll
2014-01-20 18:44:02 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-01-20 18:44:02 ----A---- C:\Windows\system32\imagehlp.dll
2014-01-20 18:44:02 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-20 18:44:02 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-20 18:44:02 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-20 18:44:02 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-20 18:44:02 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-20 18:44:02 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-20 18:39:38 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-01-20 18:39:38 ----A---- C:\Windows\system32\gdi32.dll
2014-01-20 18:39:17 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-01-20 18:39:10 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-01-20 18:39:10 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-20 18:39:02 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2014-01-20 18:39:02 ----A---- C:\Windows\SYSWOW64\esent.dll
2014-01-20 18:39:02 ----A---- C:\Windows\system32\fsutil.exe
2014-01-20 18:39:02 ----A---- C:\Windows\system32\esent.dll
2014-01-20 18:39:02 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-01-20 18:39:02 ----A---- C:\Windows\system32\drivers\storport.sys
2014-01-20 18:39:02 ----A---- C:\Windows\system32\drivers\nvstor.sys
2014-01-20 18:39:02 ----A---- C:\Windows\system32\drivers\nvraid.sys
2014-01-20 18:39:02 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2014-01-20 18:39:02 ----A---- C:\Windows\system32\drivers\amdxata.sys
2014-01-20 18:39:02 ----A---- C:\Windows\system32\drivers\amdsata.sys
2014-01-20 18:38:53 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-01-20 18:38:53 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-01-20 18:38:53 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-01-20 18:38:53 ----A---- C:\Windows\system32\wscript.exe
2014-01-20 18:38:53 ----A---- C:\Windows\system32\scrrun.dll
2014-01-20 18:38:53 ----A---- C:\Windows\system32\cscript.exe
2014-01-20 18:38:25 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2014-01-20 18:38:25 ----A---- C:\Windows\system32\cryptdlg.dll
2014-01-20 18:38:18 ----A---- C:\Windows\system32\win32k.sys
2014-01-20 18:36:44 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-20 18:36:44 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-20 18:36:33 ----A---- C:\Windows\SYSWOW64\certutil.exe
2014-01-20 18:36:33 ----A---- C:\Windows\SYSWOW64\certenc.dll
2014-01-20 18:36:33 ----A---- C:\Windows\system32\certutil.exe
2014-01-20 18:36:33 ----A---- C:\Windows\system32\certenc.dll
2014-01-20 18:36:10 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-01-20 18:36:10 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-01-20 18:36:10 ----A---- C:\Windows\system32\cdd.dll
2014-01-20 18:36:07 ----A---- C:\Windows\system32\scavengeui.dll
2014-01-20 18:36:06 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-01-20 18:36:06 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-01-20 18:36:06 ----A---- C:\Windows\system32\nshwfp.dll
2014-01-20 18:36:06 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-01-20 18:36:06 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-01-20 18:24:29 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-01-20 18:24:10 ----SHD---- C:\Windows\Installer
2014-01-20 18:05:44 ----D---- C:\Users\name\AppData\Roaming\Mozilla
2014-01-20 18:05:40 ----D---- C:\ProgramData\Mozilla
2014-01-20 18:05:40 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-20 18:05:38 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-01-20 17:59:57 ----D---- C:\Windows\SYSWOW64\Wat
2014-01-20 17:59:57 ----D---- C:\Windows\system32\Wat
2014-01-20 17:49:42 ----D---- C:\ProgramData\NVIDIA
2014-01-20 17:49:35 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-01-20 17:49:18 ----A---- C:\Windows\system32\nvvsvc.exe
2014-01-20 17:49:18 ----A---- C:\Windows\system32\nvsvcr.dll
2014-01-20 17:49:18 ----A---- C:\Windows\system32\nvsvc64.dll
2014-01-20 17:49:18 ----A---- C:\Windows\system32\nvshext.dll
2014-01-20 17:49:18 ----A---- C:\Windows\system32\nvmctray.dll
2014-01-20 17:49:18 ----A---- C:\Windows\system32\nvcpl.dll
2014-01-20 17:49:03 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-01-20 17:49:03 ----A---- C:\Windows\system32\OpenCL.dll
2014-01-20 17:48:44 ----D---- C:\ProgramData\NVIDIA Corporation
2014-01-20 17:43:51 ----D---- C:\Program Files\NVIDIA Corporation
2014-01-20 17:43:51 ----A---- C:\Windows\system32\cohelper.dll
2014-01-20 17:41:05 ----A---- C:\Windows\system32\Wdfres.dll
2014-01-20 17:41:05 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2014-01-20 17:34:56 ----A---- C:\Windows\system32\browserchoice.exe
2014-01-20 17:25:21 ----A---- C:\Windows\system32\WUDFSvc.dll
2014-01-20 17:25:21 ----A---- C:\Windows\system32\WUDFPlatform.dll
2014-01-20 17:25:21 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2014-01-20 17:25:21 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2014-01-20 17:25:20 ----A---- C:\Windows\system32\WUDFx.dll
2014-01-20 17:25:20 ----A---- C:\Windows\system32\WUDFHost.exe
2014-01-20 17:25:20 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2014-01-20 17:22:31 ----A---- C:\Windows\SYSWOW64\wmi.dll
2014-01-20 17:22:31 ----A---- C:\Windows\system32\wmi.dll
2014-01-20 17:22:31 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2014-01-20 17:20:23 ----D---- C:\Windows\system32\MRT
2014-01-20 17:20:18 ----A---- C:\Windows\system32\MRT.exe
2014-01-20 17:03:17 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2014-01-20 17:03:17 ----A---- C:\Windows\system32\ntshrui.dll
2014-01-20 17:03:13 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2014-01-20 17:03:13 ----A---- C:\Windows\system32\sbe.dll
2014-01-20 17:03:13 ----A---- C:\Windows\system32\CPFilters.dll
2014-01-20 17:03:12 ----A---- C:\Windows\SYSWOW64\sbe.dll
2014-01-20 17:03:09 ----A---- C:\Windows\system32\tquery.dll
2014-01-20 17:03:09 ----A---- C:\Windows\system32\mssrch.dll
2014-01-20 17:03:08 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-01-20 17:03:08 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-01-20 17:03:08 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-01-20 17:03:08 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-01-20 17:03:08 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-01-20 17:03:08 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-01-20 17:03:08 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-01-20 17:03:08 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-01-20 17:03:08 ----A---- C:\Windows\system32\mssvp.dll
2014-01-20 17:03:08 ----A---- C:\Windows\system32\mssphtb.dll
2014-01-20 17:03:08 ----A---- C:\Windows\system32\mssph.dll
2014-01-20 17:03:07 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-01-20 17:03:07 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-01-20 17:03:07 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-01-20 17:03:07 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2014-01-20 17:03:07 ----A---- C:\Windows\system32\msscntrs.dll
2014-01-20 17:02:54 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-01-20 17:02:54 ----A---- C:\Windows\system32\poqexec.exe
2014-01-20 17:02:53 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-01-20 17:02:53 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-01-20 17:02:53 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-01-20 17:02:38 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-01-20 17:02:38 ----A---- C:\Windows\system32\quartz.dll
2014-01-20 17:02:37 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-01-20 17:02:37 ----A---- C:\Windows\system32\webio.dll
2014-01-20 17:02:32 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2014-01-20 17:02:32 ----A---- C:\Windows\system32\xmllite.dll
2014-01-20 17:02:31 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2014-01-20 17:02:31 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2014-01-20 17:02:31 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2014-01-20 17:02:31 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2014-01-20 17:02:31 ----A---- C:\Windows\system32\odbctrac.dll
2014-01-20 17:02:31 ----A---- C:\Windows\system32\odbccu32.dll
2014-01-20 17:02:31 ----A---- C:\Windows\system32\odbccr32.dll
2014-01-20 17:02:31 ----A---- C:\Windows\system32\odbccp32.dll
2014-01-20 17:02:30 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2014-01-20 17:01:48 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-01-20 17:01:39 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2014-01-20 17:01:39 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2014-01-20 17:01:39 ----A---- C:\Windows\system32\mfc42u.dll
2014-01-20 17:01:39 ----A---- C:\Windows\system32\mfc42.dll
2014-01-20 17:01:38 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-01-20 17:01:25 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2014-01-20 17:01:25 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-01-20 17:01:25 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-01-20 17:01:25 ----A---- C:\Windows\system32\dnscacheugc.exe
2014-01-20 17:01:25 ----A---- C:\Windows\system32\dnsapi.dll
2014-01-20 17:01:23 ----A---- C:\Windows\system32\rdrmemptylst.exe
2014-01-20 17:01:23 ----A---- C:\Windows\system32\rdpwsx.dll
2014-01-20 17:01:23 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-01-20 17:01:23 ----A---- C:\Windows\system32\drivers\usb8023.sys
2014-01-20 17:01:17 ----A---- C:\Windows\system32\profsvc.dll
2014-01-20 17:01:16 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-01-20 17:01:16 ----A---- C:\Windows\system32\msxml6.dll
2014-01-20 17:01:16 ----A---- C:\Windows\system32\msxml3.dll
2014-01-20 17:01:15 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-01-20 17:01:15 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-01-20 17:01:15 ----A---- C:\Windows\system32\msxml3r.dll
2014-01-20 17:00:48 ----A---- C:\Windows\system32\dpnet.dll
2014-01-20 17:00:47 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2014-01-20 17:00:46 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-01-20 17:00:46 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-01-20 17:00:46 ----A---- C:\Windows\system32\drivers\srv.sys
2014-01-20 17:00:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-01-20 17:00:45 ----A---- C:\Windows\system32\kerberos.dll
2014-01-20 17:00:41 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-01-20 17:00:35 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2014-01-20 17:00:35 ----A---- C:\Windows\SYSWOW64\gameux.dll
2014-01-20 17:00:35 ----A---- C:\Windows\system32\Wpc.dll
2014-01-20 17:00:35 ----A---- C:\Windows\system32\gameux.dll
2014-01-20 17:00:25 ----A---- C:\Windows\system32\usp10.dll
2014-01-20 17:00:24 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-01-20 17:00:22 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-01-20 17:00:21 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2014-01-20 17:00:21 ----A---- C:\Windows\system32\psisdecd.dll
2014-01-20 17:00:17 ----A---- C:\Windows\system32\drivers\partmgr.sys
2014-01-20 17:00:11 ----A---- C:\Windows\SYSWOW64\synceng.dll
2014-01-20 17:00:11 ----A---- C:\Windows\system32\synceng.dll
2014-01-20 17:00:06 ----A---- C:\Windows\system32\wow64win.dll
2014-01-20 17:00:05 ----A---- C:\Windows\system32\ntvdm64.dll
2014-01-20 17:00:04 ----A---- C:\Windows\system32\wow64cpu.dll
2014-01-20 16:59:49 ----A---- C:\Windows\system32\msi.dll
2014-01-20 16:59:48 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-01-20 16:59:26 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-01-20 16:59:26 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-01-20 16:59:26 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-01-20 16:59:26 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-01-20 16:59:25 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-01-20 16:59:25 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-01-20 16:59:24 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-01-20 16:59:24 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-01-20 16:59:24 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-01-20 16:59:24 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-01-20 16:59:23 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-01-20 16:59:23 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-01-20 16:59:23 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-01-20 16:59:23 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-01-20 16:59:23 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-01-20 16:59:23 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-01-20 16:59:22 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-01-20 16:59:22 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-01-20 16:59:22 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-01-20 16:59:22 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-01-20 16:59:21 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-01-20 16:59:21 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-01-20 16:59:20 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-01-20 16:59:20 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-01-20 16:59:19 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-01-20 16:59:19 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-01-20 16:59:18 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-01-20 16:59:18 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-01-20 16:59:18 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-01-20 16:59:18 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-01-20 16:59:18 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-01-20 16:59:18 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-01-20 16:59:17 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-01-20 16:59:17 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-01-20 16:59:16 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-01-20 16:59:16 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-01-20 16:59:16 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-01-20 16:59:16 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-01-20 16:59:15 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-01-20 16:59:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-01-20 16:59:15 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-01-20 16:59:15 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-01-20 16:59:14 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-01-20 16:59:14 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-01-20 16:59:14 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-01-20 16:59:14 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-01-20 16:59:14 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-01-20 16:59:14 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-01-20 16:59:13 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-01-20 16:59:13 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-01-20 16:59:13 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-01-20 16:59:13 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-01-20 16:59:12 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-01-20 16:59:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-01-20 16:59:12 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-01-20 16:59:12 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-01-20 16:59:11 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-01-20 16:59:11 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-01-20 16:59:10 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-01-20 16:59:10 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-01-20 16:59:10 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-01-20 16:59:10 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-01-20 16:59:09 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-01-20 16:59:09 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-01-20 16:59:09 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-01-20 16:59:09 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-01-20 16:59:09 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-01-20 16:59:09 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-01-20 16:59:09 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-01-20 16:59:09 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-01-20 16:59:09 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-01-20 16:59:09 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-01-20 16:59:08 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-01-20 16:59:08 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-01-20 16:59:08 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-01-20 16:59:08 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-01-20 16:59:08 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-01-20 16:59:08 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-01-20 16:59:08 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-01-20 16:59:08 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-01-20 16:59:08 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-01-20 16:59:08 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-01-20 16:59:07 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-01-20 16:59:07 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-01-20 16:59:07 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-01-20 16:59:07 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-01-20 16:59:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-01-20 16:59:07 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-01-20 16:59:07 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-01-20 16:59:07 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-01-20 16:59:07 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-01-20 16:59:07 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-01-20 16:59:06 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-01-20 16:59:06 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-01-20 16:59:05 ----A---- C:\Windows\system32\winresume.exe
2014-01-20 16:59:05 ----A---- C:\Windows\system32\winload.exe
2014-01-20 16:59:05 ----A---- C:\Windows\system32\kdusb.dll
2014-01-20 16:59:05 ----A---- C:\Windows\system32\kdcom.dll
2014-01-20 16:59:05 ----A---- C:\Windows\system32\kd1394.dll
2014-01-20 16:59:04 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-01-20 16:59:04 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-01-20 16:59:03 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-01-20 16:59:03 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-01-20 16:59:03 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-01-20 16:59:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-01-20 16:59:03 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-01-20 16:59:03 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-01-20 16:59:03 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-01-20 16:59:03 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-01-20 16:59:02 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-01-20 16:59:02 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-01-20 16:59:00 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-01-20 16:59:00 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-01-20 16:59:00 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-01-20 16:59:00 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-01-20 16:59:00 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-01-20 16:59:00 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-01-20 16:58:56 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-01-20 16:58:56 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-01-20 16:58:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-01-20 16:58:56 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-01-20 16:58:56 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-01-20 16:58:56 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-01-20 16:58:55 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-01-20 16:58:55 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-01-20 16:58:54 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-01-20 16:58:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-01-20 16:58:54 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-01-20 16:58:54 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-01-20 16:58:54 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-01-20 16:58:54 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-01-20 16:58:54 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-01-20 16:58:54 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-01-20 16:58:51 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-01-20 16:58:51 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-01-20 16:58:50 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-01-20 16:58:50 ----A---- C:\Windows\system32\xinput1_3.dll
2014-01-20 16:58:49 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-01-20 16:58:49 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-01-20 16:58:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-01-20 16:58:49 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-01-20 16:58:49 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-01-20 16:58:49 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-01-20 16:58:48 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-01-20 16:58:48 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-01-20 16:58:47 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-01-20 16:58:47 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-01-20 16:58:43 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-01-20 16:58:43 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-01-20 16:58:42 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-01-20 16:58:42 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-01-20 16:58:42 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-01-20 16:58:42 ----A---- C:\Windows\system32\d3dx10.dll
2014-01-20 16:58:41 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-01-20 16:58:41 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-01-20 16:58:41 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-01-20 16:58:41 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-01-20 16:58:39 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-01-20 16:58:39 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-01-20 16:58:38 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-01-20 16:58:38 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-01-20 16:58:38 ----A---- C:\Windows\system32\xinput1_2.dll
2014-01-20 16:58:38 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-01-20 16:58:36 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-01-20 16:58:36 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-01-20 16:58:36 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-01-20 16:58:36 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-01-20 16:58:36 ----A---- C:\Windows\system32\xinput1_1.dll
2014-01-20 16:58:36 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-01-20 16:58:36 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-01-20 16:58:36 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-01-20 16:58:35 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2014-01-20 16:58:35 ----A---- C:\Windows\SYSWOW64\devobj.dll
2014-01-20 16:58:35 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2014-01-20 16:58:25 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-01-20 16:58:25 ----A---- C:\Windows\system32\inetcomm.dll
2014-01-20 16:58:25 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-01-20 16:58:24 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-01-20 16:58:24 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-01-20 16:58:24 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-01-20 16:58:24 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-01-20 16:58:24 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-01-20 16:58:24 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-01-20 16:58:24 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-01-20 16:58:23 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-01-20 16:58:23 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-01-20 16:58:23 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-01-20 16:58:23 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-01-20 16:58:23 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-01-20 16:58:23 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-01-20 16:58:22 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-01-20 16:58:22 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-01-20 16:58:21 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-01-20 16:58:21 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-01-20 16:58:21 ----A---- C:\Windows\system32\browser.dll
2014-01-20 16:58:20 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2014-01-20 16:58:20 ----A---- C:\Windows\SYSWOW64\browcli.dll
2014-01-20 16:58:20 ----A---- C:\Windows\system32\netapi32.dll
2014-01-20 16:58:20 ----A---- C:\Windows\system32\browcli.dll
2014-01-20 16:58:18 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2014-01-20 16:58:18 ----A---- C:\Windows\system32\prevhost.exe
2014-01-20 16:58:15 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-01-20 16:58:15 ----A---- C:\Windows\system32\srcore.dll
2014-01-20 16:58:13 ----A---- C:\Windows\system32\FXSCOVER.exe
2014-01-20 16:58:10 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-01-20 16:58:10 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2014-01-20 16:58:10 ----A---- C:\Windows\system32\oleaut32.dll
2014-01-20 16:58:10 ----A---- C:\Windows\system32\oleacc.dll
2014-01-20 16:58:07 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-01-20 16:58:01 ----A---- C:\Windows\system32\msvcrt.dll
2014-01-20 16:58:00 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2014-01-20 16:57:50 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2014-01-20 16:57:50 ----A---- C:\Windows\system32\EncDec.dll
2014-01-20 16:57:46 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-01-20 16:57:44 ----A---- C:\Windows\system32\localspl.dll
2014-01-20 16:57:33 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2014-01-20 16:57:32 ----A---- C:\Windows\system32\cdosys.dll
2014-01-20 16:36:46 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-01-20 16:36:46 ----A---- C:\Windows\system32\packager.dll
2014-01-20 16:36:40 ----D---- C:\Windows\system32\SPReview
2014-01-20 16:31:17 ----N---- C:\Windows\system32\MpSigStub.exe
2014-01-20 16:30:53 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-01-20 16:30:53 ----A---- C:\Windows\system32\rdpcore.dll
2014-01-20 16:30:53 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-01-20 16:07:39 ----A---- C:\Windows\SYSWOW64\mstask.dll
2014-01-20 16:07:39 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-01-20 16:07:39 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2014-01-20 16:07:39 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2014-01-20 16:07:39 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2014-01-20 16:07:39 ----A---- C:\Windows\system32\msdri.dll
2014-01-20 16:07:39 ----A---- C:\Windows\system32\mprddm.dll
2014-01-20 16:07:39 ----A---- C:\Windows\system32\mobsync.exe
2014-01-20 16:07:39 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\samcli.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\raschap.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\propsys.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\logagent.exe
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2014-01-20 16:07:38 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\sdcpl.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\Ribbons.scr
2014-01-20 16:07:38 ----A---- C:\Windows\system32\RDPENCDD.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\rdpclip.exe
2014-01-20 16:07:38 ----A---- C:\Windows\system32\printui.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\pnidui.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\pifmgr.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\OobeFldr.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\nslookup.exe
2014-01-20 16:07:38 ----A---- C:\Windows\system32\netshell.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\netlogon.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\netjoin.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\MultiDigiMon.exe
2014-01-20 16:07:38 ----A---- C:\Windows\system32\KBDBLR.DLL
2014-01-20 16:07:38 ----A---- C:\Windows\system32\itircl.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\inetmib1.dll
2014-01-20 16:07:38 ----A---- C:\Windows\system32\drivers\scsiport.sys
2014-01-20 16:07:38 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2014-01-20 16:07:37 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2014-01-20 16:07:37 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-01-20 16:07:37 ----A---- C:\Windows\SYSWOW64\cmd.exe
2014-01-20 16:07:37 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2014-01-20 16:07:37 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2014-01-20 16:07:37 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-01-20 16:07:37 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2014-01-20 16:07:37 ----A---- C:\Windows\SYSWOW64\activeds.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\ftp.exe
2014-01-20 16:07:37 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2014-01-20 16:07:37 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2014-01-20 16:07:37 ----A---- C:\Windows\system32\drivers\cdrom.sys
2014-01-20 16:07:37 ----A---- C:\Windows\system32\drivers\appid.sys
2014-01-20 16:07:37 ----A---- C:\Windows\system32\diagperf.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\dbghelp.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\dbgeng.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\d3d9.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\comdlg32.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\CertPolEng.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\certmgr.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\certcli.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\bcdsrv.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\bcdedit.exe
2014-01-20 16:07:37 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\aepdu.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\aeinv.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\AdmTmpl.dll
2014-01-20 16:07:37 ----A---- C:\Windows\system32\acppage.dll
2014-01-20 16:07:36 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2014-01-20 16:07:36 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2014-01-20 16:07:36 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-01-20 16:07:36 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2014-01-20 16:07:36 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2014-01-20 16:07:36 ----A---- C:\Windows\system32\SearchFolder.dll
2014-01-20 16:07:36 ----A---- C:\Windows\system32\imapi2fs.dll
2014-01-20 16:07:36 ----A---- C:\Windows\system32\Faultrep.dll
2014-01-20 16:07:36 ----A---- C:\Windows\system32\ExplorerFrame.dll
2014-01-20 16:07:36 ----A---- C:\Windows\system32\elsTrans.dll
2014-01-20 16:07:36 ----A---- C:\Windows\system32\drivers\http.sys
2014-01-20 16:07:36 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2014-01-20 16:07:36 ----A---- C:\Windows\system32\Display.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\spp.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2014-01-20 16:07:35 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\wmdrmnet.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\wmdrmdev.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\tscfgwmi.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\thumbcache.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\taskschd.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\tabcal.exe
2014-01-20 16:07:35 ----A---- C:\Windows\system32\sysmain.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\sysclass.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\srchadmin.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\sqmapi.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\sppsvc.exe
2014-01-20 16:07:35 ----A---- C:\Windows\system32\spp.dll
2014-01-20 16:07:35 ----A---- C:\Windows\system32\shwebsvc.dll
2014-01-20 16:07:34 ----A---- C:\Windows\twain_32.dll
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\wvc.dll
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2014-01-20 16:07:34 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2014-01-20 16:07:34 ----A---- C:\Windows\system32\wwanconn.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\wsqmcons.exe
2014-01-20 16:07:34 ----A---- C:\Windows\system32\wsdchngr.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\ws2_32.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\wpdwcn.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\wpd_ci.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2014-01-20 16:07:34 ----A---- C:\Windows\system32\wmpeffects.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\WMADMOD.DLL
2014-01-20 16:07:34 ----A---- C:\Windows\system32\wkssvc.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\winhttp.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\userinit.exe
2014-01-20 16:07:34 ----A---- C:\Windows\system32\umrdp.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\umb.dll
2014-01-20 16:07:34 ----A---- C:\Windows\system32\drivers\volsnap.sys
2014-01-20 16:07:33 ----A---- C:\Windows\system32\drivers\umbus.sys
2014-01-20 16:07:32 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2014-01-20 16:07:32 ----A---- C:\Windows\SYSWOW64\wdc.dll
2014-01-20 16:07:32 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2014-01-20 16:07:32 ----A---- C:\Windows\SYSWOW64\shacct.dll
2014-01-20 16:07:32 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-01-20 16:07:32 ----A---- C:\Windows\system32\WerFaultSecure.exe
2014-01-20 16:07:32 ----A---- C:\Windows\system32\VSSVC.exe
2014-01-20 16:07:32 ----A---- C:\Windows\system32\vssapi.dll
2014-01-20 16:07:32 ----A---- C:\Windows\system32\vss_ps.dll
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\logman.exe
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2014-01-20 16:07:31 ----A---- C:\Windows\SYSWOW64\itircl.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\OpcServices.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\netutils.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\mscorier.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2014-01-20 16:07:31 ----A---- C:\Windows\system32\mimefilt.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\mfps.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\MFPlay.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\mfds.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\mf.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\Mcx2Svc.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\mblctr.exe
2014-01-20 16:07:31 ----A---- C:\Windows\system32\luainstall.dll
2014-01-20 16:07:31 ----A---- C:\Windows\system32\LogonUI.exe
2014-01-20 16:07:31 ----A---- C:\Windows\system32\logoff.exe
2014-01-20 16:07:31 ----A---- C:\Windows\system32\KBDUS.DLL
2014-01-20 16:07:31 ----A---- C:\Windows\system32\KBDTUF.DLL
2014-01-20 16:07:31 ----A---- C:\Windows\system32\KBDINBEN.DLL
2014-01-20 16:07:31 ----A---- C:\Windows\system32\KBDGKL.DLL
2014-01-20 16:07:31 ----A---- C:\Windows\system32\IPSECSVC.DLL
2014-01-20 16:07:30 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2014-01-20 16:07:30 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2014-01-20 16:07:30 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2014-01-20 16:07:30 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2014-01-20 16:07:30 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2014-01-20 16:07:30 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-01-20 16:07:30 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2014-01-20 16:07:30 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2014-01-20 16:07:30 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\ole32.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2014-01-20 16:07:30 ----A---- C:\Windows\system32\muifontsetup.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\msvidc32.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\msrle32.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\mspbda.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\msdrm.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\msdmo.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\choice.exe
2014-01-20 16:07:30 ----A---- C:\Windows\system32\chgusr.exe
2014-01-20 16:07:30 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2014-01-20 16:07:30 ----A---- C:\Windows\system32\drivers\msdsm.sys
2014-01-20 16:07:30 ----A---- C:\Windows\system32\drivers\csc.sys
2014-01-20 16:07:30 ----A---- C:\Windows\system32\dot3cfg.dll
2014-01-20 16:07:30 ----A---- C:\Windows\system32\CscMig.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\imm32.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\cabview.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\Bubbles.scr
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\autochk.exe
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\AdmTmpl.dll
2014-01-20 16:07:29 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\imapi2.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\IcCoinstall.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\iasrad.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\iasacct.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\chgport.exe
2014-01-20 16:07:29 ----A---- C:\Windows\system32\chglogon.exe
2014-01-20 16:07:29 ----A---- C:\Windows\system32\change.exe
2014-01-20 16:07:29 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\fveapi.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2014-01-20 16:07:29 ----A---- C:\Windows\system32\diskraid.exe
2014-01-20 16:07:29 ----A---- C:\Windows\system32\cca.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\Bubbles.scr
2014-01-20 16:07:29 ----A---- C:\Windows\system32\asycfilt.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\apphelp.dll
2014-01-20 16:07:29 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2014-01-20 16:07:28 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2014-01-20 16:07:28 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2014-01-20 16:07:28 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2014-01-20 16:07:28 ----A---- C:\Windows\SYSWOW64\themeui.dll
2014-01-20 16:07:28 ----A---- C:\Windows\SYSWOW64\fde.dll
2014-01-20 16:07:28 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2014-01-20 16:07:28 ----A---- C:\Windows\SYSWOW64\efscore.dll
2014-01-20 16:07:28 ----A---- C:\Windows\system32\UIRibbonRes.dll
2014-01-20 16:07:28 ----A---- C:\Windows\system32\UIRibbon.dll
2014-01-20 16:07:28 ----A---- C:\Windows\system32\tsmf.dll
2014-01-20 16:07:28 ----A---- C:\Windows\system32\tskill.exe
2014-01-20 16:07:28 ----A---- C:\Windows\system32\tsdiscon.exe
2014-01-20 16:07:28 ----A---- C:\Windows\system32\tscon.exe
2014-01-20 16:07:28 ----A---- C:\Windows\system32\TRAPI.dll
2014-01-20 16:07:28 ----A---- C:\Windows\system32\fontext.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\winmm.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\upnp.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\Ribbons.scr
2014-01-20 16:07:27 ----A---- C:\Windows\SYSWOW64\relog.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\XpsRasterService.dll

samo se mi občas mění nastavení v PC

Napsal: 10 úno 2014 10:44
od cid750
Zde je druhá polovina

2014-01-20 16:07:27 ----A---- C:\Windows\system32\wvc.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\wusa.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\wsnmp32.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\wpdshext.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\WMVSDECD.DLL
2014-01-20 16:07:27 ----A---- C:\Windows\system32\WMNetMgr.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\WinSAT.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\wdc.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\vmictimeprovider.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\vmicsvc.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\vmicres.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\termsrv.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\taskmgr.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\taskbarcpl.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\takeown.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\t2embed.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\syssetup.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\SyncCenter.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\scesrv.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\scansetting.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\rwinsta.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\runonce.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\rtutils.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\Robocopy.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\riched32.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\riched20.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\reset.exe
2014-01-20 16:07:27 ----A---- C:\Windows\system32\regapi.dll
2014-01-20 16:07:27 ----A---- C:\Windows\system32\drivers\wanarp.sys
2014-01-20 16:07:27 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\sud.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\slwga.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\qcap.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\pla.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2014-01-20 16:07:26 ----A---- C:\Windows\SYSWOW64\pdh.dll
2014-01-20 16:07:26 ----A---- C:\Windows\system32\StructuredQuery.dll
2014-01-20 16:07:26 ----A---- C:\Windows\system32\spreview.exe
2014-01-20 16:07:26 ----A---- C:\Windows\system32\sppcomapi.dll
2014-01-20 16:07:26 ----A---- C:\Windows\system32\spinstall.exe
2014-01-20 16:07:26 ----A---- C:\Windows\system32\SmiEngine.dll
2014-01-20 16:07:26 ----A---- C:\Windows\system32\slui.exe
2014-01-20 16:07:26 ----A---- C:\Windows\system32\schedsvc.dll
2014-01-20 16:07:26 ----A---- C:\Windows\system32\rdpdd.dll
2014-01-20 16:07:26 ----A---- C:\Windows\system32\rasmans.dll
2014-01-20 16:07:26 ----A---- C:\Windows\system32\query.exe
2014-01-20 16:07:26 ----A---- C:\Windows\system32\qprocess.exe
2014-01-20 16:07:26 ----A---- C:\Windows\system32\qdv.dll
2014-01-20 16:07:26 ----A---- C:\Windows\system32\qappsrv.exe
2014-01-20 16:07:26 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2014-01-20 16:07:26 ----A---- C:\Windows\system32\perfmon.exe
2014-01-20 16:07:26 ----A---- C:\Windows\system32\drivers\rdbss.sys
2014-01-20 16:07:26 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\migisol.dll
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2014-01-20 16:07:25 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\srrstr.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\spwizui.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\sppwinob.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\shunimpl.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\sharemediacpl.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\shadow.exe
2014-01-20 16:07:25 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\mcbuilder.exe
2014-01-20 16:07:25 ----A---- C:\Windows\system32\manage-bde.exe
2014-01-20 16:07:25 ----A---- C:\Windows\system32\lpksetup.exe
2014-01-20 16:07:25 ----A---- C:\Windows\system32\logman.exe
2014-01-20 16:07:25 ----A---- C:\Windows\system32\KMSVC.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\system32\KBDSG.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\system32\KBDNEPR.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\system32\kbdlk41a.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\KBDINKAN.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\system32\KBDINHIN.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\system32\KBDBULG.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\system32\iTVData.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\iprtrmgr.dll
2014-01-20 16:07:25 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2014-01-20 16:07:25 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2014-01-20 16:07:25 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2014-01-20 16:07:23 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2014-01-20 16:07:23 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2014-01-20 16:07:23 ----A---- C:\Windows\SYSWOW64\netshell.dll
2014-01-20 16:07:23 ----A---- C:\Windows\system32\odbc32.dll
2014-01-20 16:07:22 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2014-01-20 16:07:22 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2014-01-20 16:07:22 ----A---- C:\Windows\SYSWOW64\ole32.dll
2014-01-20 16:07:22 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2014-01-20 16:07:22 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2014-01-20 16:07:22 ----A---- C:\Windows\SYSWOW64\nci.dll
2014-01-20 16:07:22 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2014-01-20 16:07:22 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2014-01-20 16:07:22 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\PnPUnattend.exe
2014-01-20 16:07:22 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\nrpsrv.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\nlsbres.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\netid.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\NAPHLPR.DLL
2014-01-20 16:07:22 ----A---- C:\Windows\system32\napdsnap.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\Mystify.scr
2014-01-20 16:07:22 ----A---- C:\Windows\system32\msv1_0.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\mstask.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\msnetobj.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\msiexec.exe
2014-01-20 16:07:22 ----A---- C:\Windows\system32\msftedit.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\mscoree.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\mscms.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\MPSSVC.dll
2014-01-20 16:07:22 ----A---- C:\Windows\system32\drivers\netbt.sys
2014-01-20 16:07:22 ----A---- C:\Windows\system32\drivers\mpio.sys
2014-01-20 16:07:21 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-01-20 16:07:21 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2014-01-20 16:07:19 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-01-20 16:07:19 ----A---- C:\Windows\SYSWOW64\calc.exe
2014-01-20 16:07:19 ----A---- C:\Windows\system32\msscp.dll
2014-01-20 16:07:19 ----A---- C:\Windows\system32\cryptui.dll
2014-01-20 16:07:19 ----A---- C:\Windows\system32\clusapi.dll
2014-01-20 16:07:19 ----A---- C:\Windows\system32\CertEnroll.dll
2014-01-20 16:07:19 ----A---- C:\Windows\system32\cabview.dll
2014-01-20 16:07:19 ----A---- C:\Windows\system32\browseui.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\ftp.exe
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\findstr.exe
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\dpx.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\appmgr.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2014-01-20 16:07:18 ----A---- C:\Windows\SYSWOW64\acppage.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\hgprint.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\hgcpl.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\FXSUNATD.exe
2014-01-20 16:07:18 ----A---- C:\Windows\system32\FXSSVC.exe
2014-01-20 16:07:18 ----A---- C:\Windows\system32\FXSMON.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\fphc.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\fms.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\DXP.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\drivers\hidusb.sys
2014-01-20 16:07:18 ----A---- C:\Windows\system32\drivers\dfsc.sys
2014-01-20 16:07:18 ----A---- C:\Windows\system32\drivers\acpi.sys
2014-01-20 16:07:18 ----A---- C:\Windows\system32\dhcpcore.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\cscobj.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\certprop.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\BlbEvents.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\blackbox.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\biocpl.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\BFE.DLL
2014-01-20 16:07:18 ----A---- C:\Windows\system32\bcryptprimitives.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\basecsp.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\AxInstSv.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2014-01-20 16:07:18 ----A---- C:\Windows\system32\autochk.exe
2014-01-20 16:07:18 ----A---- C:\Windows\bfsvc.exe
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\twext.dll
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\takeown.exe
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\stobject.dll
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2014-01-20 16:07:17 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2014-01-20 16:07:17 ----A---- C:\Windows\system32\upnp.dll
2014-01-20 16:07:17 ----A---- C:\Windows\system32\untfs.dll
2014-01-20 16:07:17 ----A---- C:\Windows\system32\tzutil.exe
2014-01-20 16:07:17 ----A---- C:\Windows\system32\twext.dll
2014-01-20 16:07:17 ----A---- C:\Windows\system32\tlscsp.dll
2014-01-20 16:07:17 ----A---- C:\Windows\system32\themecpl.dll
2014-01-20 16:07:17 ----A---- C:\Windows\system32\eudcedit.exe
2014-01-20 16:07:17 ----A---- C:\Windows\system32\DxpTaskSync.dll
2014-01-20 16:07:17 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2014-01-20 16:07:17 ----A---- C:\Windows\system32\drivers\udfs.sys
2014-01-20 16:07:17 ----A---- C:\Windows\system32\drivers\tunnel.sys
2014-01-20 16:07:17 ----A---- C:\Windows\system32\dot3ui.dll
2014-01-20 16:07:17 ----A---- C:\Windows\system32\diskpart.exe
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\wusa.exe
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\webservices.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\Vault.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\userinit.exe
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\userenv.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2014-01-20 16:07:16 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\WsmSvc.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\WSDApi.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\WPDSp.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\wmpsrcwp.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\wlanmsm.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\wlangpui.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\wkscli.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\winlogon.exe
2014-01-20 16:07:16 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2014-01-20 16:07:16 ----A---- C:\Windows\system32\wiadefui.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\wevtsvc.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\werconcpl.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\webservices.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\wcncsvc.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\wavemsp.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\vfwwdm32.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\vdsutil.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\vds.exe
2014-01-20 16:07:16 ----A---- C:\Windows\system32\VAN.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\relog.exe
2014-01-20 16:07:16 ----A---- C:\Windows\system32\rastls.dll
2014-01-20 16:07:16 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2014-01-20 16:07:16 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\scecli.dll
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2014-01-20 16:07:15 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\sqlcese30.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\shsvcs.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\scecli.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\rstrui.exe
2014-01-20 16:07:15 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-01-20 16:07:15 ----A---- C:\Windows\system32\raschap.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\RacEngn.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\Query.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\qmgr.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\QCLIPROV.DLL
2014-01-20 16:07:15 ----A---- C:\Windows\system32\QAGENTRT.DLL
2014-01-20 16:07:15 ----A---- C:\Windows\system32\QAGENT.DLL
2014-01-20 16:07:15 ----A---- C:\Windows\system32\proquota.exe
2014-01-20 16:07:15 ----A---- C:\Windows\system32\propsys.dll
2014-01-20 16:07:15 ----A---- C:\Windows\system32\drivers\scfilter.sys
2014-01-20 16:07:14 ----A---- C:\Windows\system32\sppnp.dll
2014-01-20 16:07:14 ----A---- C:\Windows\system32\spopk.dll
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\mfds.dll
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2014-01-20 16:07:13 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2014-01-20 16:07:13 ----A---- C:\Windows\system32\mmcndmgr.dll
2014-01-20 16:07:13 ----A---- C:\Windows\system32\KBDMON.DLL
2014-01-20 16:07:13 ----A---- C:\Windows\system32\KBDINMAR.DLL
2014-01-20 16:07:13 ----A---- C:\Windows\system32\KBDGEO.DLL
2014-01-20 16:07:13 ----A---- C:\Windows\system32\iyuv_32.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\onexui.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\onex.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\netid.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\Mystify.scr
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2014-01-20 16:07:12 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2014-01-20 16:07:12 ----A---- C:\Windows\system32\odbcconf.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\ocsetup.exe
2014-01-20 16:07:12 ----A---- C:\Windows\system32\ocsetapi.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\ntlanman.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\netplwiz.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\netfxperf.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\net1.exe
2014-01-20 16:07:12 ----A---- C:\Windows\system32\ncryptui.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\mydocs.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\msyuv.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\msasn1.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\logoncli.dll
2014-01-20 16:07:12 ----A---- C:\Windows\system32\KBDSF.DLL
2014-01-20 16:07:12 ----A---- C:\Windows\system32\KBDPO.DLL
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2014-01-20 16:07:11 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\inetpp.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\hal.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\gpsvc.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2014-01-20 16:07:11 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2014-01-20 16:07:11 ----A---- C:\Windows\system32\DeviceCenter.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\cmstp.exe
2014-01-20 16:07:11 ----A---- C:\Windows\system32\cfgmgr32.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\cabinet.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\bcdboot.exe
2014-01-20 16:07:11 ----A---- C:\Windows\system32\autoplay.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\autofmt.exe
2014-01-20 16:07:11 ----A---- C:\Windows\system32\actxprxy.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\ActionQueue.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\ActionCenter.dll
2014-01-20 16:07:11 ----A---- C:\Windows\system32\accessibilitycpl.dll
2014-01-20 16:07:10 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2014-01-20 16:07:10 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2014-01-20 16:07:10 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2014-01-20 16:07:10 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2014-01-20 16:07:10 ----A---- C:\Windows\SYSWOW64\fontext.dll
2014-01-20 16:07:10 ----A---- C:\Windows\SYSWOW64\Display.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\tcpipcfg.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\syncui.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\SndVol.exe
2014-01-20 16:07:10 ----A---- C:\Windows\system32\fde.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\evr.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\efscore.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\dwmredir.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\dsauth.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\drvstore.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-01-20 16:07:10 ----A---- C:\Windows\system32\dot3svc.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\dot3msm.dll
2014-01-20 16:07:10 ----A---- C:\Windows\system32\dot3api.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\utildll.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\ssText3d.scr
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\sppc.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2014-01-20 16:07:09 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\wmpdxm.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\WinSCard.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\wbengine.exe
2014-01-20 16:07:09 ----A---- C:\Windows\system32\wbemcomn.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\vpnikeapi.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\vpnike.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\vmstorfltres.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\VmdCoinstall.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\Vault.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\tsbyuv.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\srvcli.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\SndVolSSO.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\schedcli.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-01-20 16:07:09 ----A---- C:\Windows\system32\drivers\vmstorfl.sys
2014-01-20 16:07:09 ----A---- C:\Windows\system32\drivers\storvsc.sys
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\riched32.dll
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\riched20.dll
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\qdv.dll
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\qasf.dll
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\proquota.exe
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2014-01-20 16:07:08 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\schtasks.exe
2014-01-20 16:07:08 ----A---- C:\Windows\system32\shlwapi.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\shacct.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\setupapi.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\SensorsCpl.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\rpchttp.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-01-20 16:07:08 ----A---- C:\Windows\system32\recovery.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\QUTIL.DLL
2014-01-20 16:07:08 ----A---- C:\Windows\system32\prncache.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\PresentationSettings.exe
2014-01-20 16:07:08 ----A---- C:\Windows\system32\MdSched.exe
2014-01-20 16:07:08 ----A---- C:\Windows\system32\mciqtz32.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2014-01-20 16:07:08 ----A---- C:\Windows\system32\lsmproxy.dll
2014-01-20 16:07:07 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2014-01-20 16:07:07 ----A---- C:\Windows\SYSWOW64\input.dll
2014-01-20 16:07:07 ----A---- C:\Windows\system32\iasrecst.dll
2014-01-20 16:07:07 ----A---- C:\Windows\system32\httpapi.dll
2014-01-20 16:07:07 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\netutils.dll
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\localsec.dll
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\system32\ntprint.dll
2014-01-20 16:07:06 ----A---- C:\Windows\system32\nltest.exe
2014-01-20 16:07:06 ----A---- C:\Windows\system32\netiohlp.dll
2014-01-20 16:07:06 ----A---- C:\Windows\system32\netcfgx.dll
2014-01-20 16:07:06 ----A---- C:\Windows\system32\netcenter.dll
2014-01-20 16:07:06 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2014-01-20 16:07:06 ----A---- C:\Windows\system32\mtxclu.dll
2014-01-20 16:07:06 ----A---- C:\Windows\system32\MSVidCtl.dll
2014-01-20 16:07:06 ----A---- C:\Windows\system32\ListSvc.dll
2014-01-20 16:07:06 ----A---- C:\Windows\system32\KBDTURME.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\system32\KBDMAORI.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\system32\KBDINTAM.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\system32\KBDGR1.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\system32\KBDCZ1.DLL
2014-01-20 16:07:06 ----A---- C:\Windows\system32\isoburn.exe
2014-01-20 16:07:06 ----A---- C:\Windows\system32\iscsium.dll
2014-01-20 16:07:06 ----A---- C:\Windows\system32\iscsicli.exe
2014-01-20 16:07:05 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-01-20 16:07:05 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-01-20 16:07:05 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2014-01-20 16:07:05 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2014-01-20 16:07:05 ----A---- C:\Windows\system32\mprapi.dll
2014-01-20 16:07:05 ----A---- C:\Windows\system32\drivers\msahci.sys
2014-01-20 16:07:04 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2014-01-20 16:07:04 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2014-01-20 16:07:04 ----A---- C:\Windows\SYSWOW64\cscobj.dll
2014-01-20 16:07:04 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2014-01-20 16:07:04 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2014-01-20 16:07:04 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2014-01-20 16:07:04 ----A---- C:\Windows\system32\msdtctm.dll
2014-01-20 16:07:04 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2014-01-20 16:07:04 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2014-01-20 16:07:04 ----A---- C:\Windows\system32\cmd.exe
2014-01-20 16:07:04 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2014-01-20 16:07:04 ----A---- C:\Windows\system32\bootres.dll
2014-01-20 16:07:03 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2014-01-20 16:07:03 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2014-01-20 16:07:02 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2014-01-20 16:07:02 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2014-01-20 16:07:02 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-01-20 16:07:02 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2014-01-20 16:07:02 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2014-01-20 16:07:02 ----A---- C:\Windows\SYSWOW64\azroles.dll
2014-01-20 16:07:02 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2014-01-20 16:07:02 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2014-01-20 16:07:02 ----A---- C:\Windows\SYSWOW64\amstream.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\hbaapi.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\fdProxy.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\eapphost.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\eappgnui.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\eapp3hst.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\dxmasf.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\dxdiagn.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\bitsperf.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\batmeter.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\AzSqlExt.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\azroles.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\autoconv.exe
2014-01-20 16:07:02 ----A---- C:\Windows\system32\audiosrv.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\AudioSes.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\audiodg.exe
2014-01-20 16:07:02 ----A---- C:\Windows\system32\amstream.dll
2014-01-20 16:07:02 ----A---- C:\Windows\system32\aitagent.exe
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\syncui.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\sxs.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\sscore.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\spopk.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\fphc.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2014-01-20 16:07:01 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\user32.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\unimdmat.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\taskeng.exe
2014-01-20 16:07:01 ----A---- C:\Windows\system32\taskcomp.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\TabSvc.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\sud.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\ssText3d.scr
2014-01-20 16:07:01 ----A---- C:\Windows\system32\spwmp.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\sppobjs.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\framedynos.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\framedyn.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2014-01-20 16:07:01 ----A---- C:\Windows\system32\drivers\termdd.sys
2014-01-20 16:07:01 ----A---- C:\Windows\system32\dpx.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\dps.dll
2014-01-20 16:07:01 ----A---- C:\Windows\system32\djoin.exe
2014-01-20 16:07:01 ----A---- C:\Windows\system32\dfshim.dll
2014-01-20 16:07:00 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2014-01-20 16:07:00 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2014-01-20 16:07:00 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2014-01-20 16:07:00 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-01-20 16:07:00 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2014-01-20 16:07:00 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2014-01-20 16:07:00 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\xpsservices.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\wshbth.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\WMVCORE.DLL
2014-01-20 16:07:00 ----A---- C:\Windows\system32\wmpmde.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\Wldap32.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\wlanui.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\wlanpref.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\wisptis.exe
2014-01-20 16:07:00 ----A---- C:\Windows\system32\winsta.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\vmbusres.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\vmbuspipe.dll
2014-01-20 16:07:00 ----A---- C:\Windows\system32\drivers\volmgr.sys
2014-01-20 16:06:58 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2014-01-20 16:06:58 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2014-01-20 16:06:58 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2014-01-20 16:06:58 ----A---- C:\Windows\SYSWOW64\resutils.dll
2014-01-20 16:06:58 ----A---- C:\Windows\SYSWOW64\regapi.dll
2014-01-20 16:06:58 ----A---- C:\Windows\SYSWOW64\rdpendp.dll
2014-01-20 16:06:58 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2014-01-20 16:06:58 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\WinSATAPI.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\WFS.exe
2014-01-20 16:06:58 ----A---- C:\Windows\system32\WavDest.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\VmbusCoinstaller.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\vdsbas.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\remotepg.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\ReAgent.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\rdpendp.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\rdpd3d.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\rasppp.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2014-01-20 16:06:58 ----A---- C:\Windows\system32\QSHVHOST.DLL
2014-01-20 16:06:58 ----A---- C:\Windows\system32\qasf.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\puiobj.dll
2014-01-20 16:06:58 ----A---- C:\Windows\system32\drivers\winhv.sys
2014-01-20 16:06:58 ----A---- C:\Windows\system32\drivers\vmbus.sys
2014-01-20 16:06:58 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2014-01-20 16:06:58 ----A---- C:\Windows\system32\drivers\raspptp.sys
2014-01-20 16:06:57 ----A---- C:\Windows\SYSWOW64\prncache.dll
2014-01-20 16:06:57 ----A---- C:\Windows\SYSWOW64\printui.dll
2014-01-20 16:06:57 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2014-01-20 16:06:57 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2014-01-20 16:06:57 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2014-01-20 16:06:57 ----A---- C:\Windows\SYSWOW64\perfts.dll
2014-01-20 16:06:57 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\setupcl.exe
2014-01-20 16:06:57 ----A---- C:\Windows\system32\SessEnv.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\provsvc.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\prnfldr.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\PresentationHost.exe
2014-01-20 16:06:57 ----A---- C:\Windows\system32\powercpl.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\pla.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\PkgMgr.exe
2014-01-20 16:06:57 ----A---- C:\Windows\system32\photowiz.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\pdh.dll
2014-01-20 16:06:57 ----A---- C:\Windows\system32\drivers\pci.sys
2014-01-20 16:06:57 ----A---- C:\Windows\system32\drivers\pacer.sys
2014-01-20 16:06:56 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2014-01-20 16:06:56 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2014-01-20 16:06:56 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2014-01-20 16:06:56 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-01-20 16:06:56 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2014-01-20 16:06:56 ----A---- C:\Windows\SYSWOW64\runonce.exe
2014-01-20 16:06:56 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2014-01-20 16:06:56 ----A---- C:\Windows\system32\shimgvw.dll
2014-01-20 16:06:56 ----A---- C:\Windows\system32\shgina.dll
2014-01-20 16:06:56 ----A---- C:\Windows\system32\secproc.dll
2014-01-20 16:06:56 ----A---- C:\Windows\system32\scrptadm.dll
2014-01-20 16:06:56 ----A---- C:\Windows\system32\samsrv.dll
2014-01-20 16:06:56 ----A---- C:\Windows\system32\samcli.dll
2014-01-20 16:06:55 ----A---- C:\Windows\SYSWOW64\shgina.dll
2014-01-20 16:06:55 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-01-20 16:06:55 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2014-01-20 16:06:55 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2014-01-20 16:06:55 ----A---- C:\Windows\SYSWOW64\mscms.dll
2014-01-20 16:06:55 ----A---- C:\Windows\system32\sisbkup.dll
2014-01-20 16:06:55 ----A---- C:\Windows\system32\shsetup.dll
2014-01-20 16:06:55 ----A---- C:\Windows\system32\RpcRtRemote.dll
2014-01-20 16:06:55 ----A---- C:\Windows\system32\RMActivate.exe
2014-01-20 16:06:55 ----A---- C:\Windows\system32\msconfig.exe
2014-01-20 16:06:55 ----A---- C:\Windows\system32\drivers\rmcast.sys
2014-01-20 16:06:54 ----A---- C:\Windows\SYSWOW64\sethc.exe
2014-01-20 16:06:54 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2014-01-20 16:06:54 ----A---- C:\Windows\system32\slwga.dll
2014-01-20 16:06:54 ----A---- C:\Windows\system32\sethc.exe
2014-01-20 16:06:54 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2014-01-20 16:06:53 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2014-01-20 16:06:53 ----A---- C:\Windows\system32\wmpshell.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\wmpps.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\WMPEncEn.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\wmicmiplugin.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\TSpkg.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\sxs.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\stobject.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\sscore.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\azroleui.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2014-01-20 16:06:53 ----A---- C:\Windows\system32\appmgr.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\scrptadm.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\printmanagement.msc
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\ppcsnap.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\pmcsnap.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2014-01-20 16:06:52 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\themeui.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\termmgr.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\tapisrv.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\systemcpl.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\srvsvc.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\sqlsrv32.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\spwizres.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\spwizeng.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\sppc.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\spbcd.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\seclogon.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\sdrsvc.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\sdengin2.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\sdclt.exe
2014-01-20 16:06:52 ----A---- C:\Windows\system32\repair-bde.exe
2014-01-20 16:06:52 ----A---- C:\Windows\system32\recdisc.exe
2014-01-20 16:06:52 ----A---- C:\Windows\system32\prntvpt.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2014-01-20 16:06:52 ----A---- C:\Windows\system32\onexui.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\onex.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\nshipsec.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\networkmap.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\networkexplorer.dll
2014-01-20 16:06:52 ----A---- C:\Windows\system32\drivers\tdi.sys
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\Query.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\PushPrinterConnections.exe
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\net1.exe
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\msutb.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2014-01-20 16:06:51 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\wshirda.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\wscapi.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\wpdbusenum.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\wpccpl.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\secproc_isv.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\rpcss.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-01-20 16:06:51 ----A---- C:\Windows\system32\rdpencom.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\rdpcfgex.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\qcap.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\profprov.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\netdiagfx.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\nci.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\Narrator.exe
2014-01-20 16:06:51 ----A---- C:\Windows\system32\msinfo32.exe
2014-01-20 16:06:51 ----A---- C:\Windows\system32\lsm.exe
2014-01-20 16:06:51 ----A---- C:\Windows\system32\localsec.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\KBDTUQ.DLL
2014-01-20 16:06:51 ----A---- C:\Windows\system32\KBDLT1.DLL
2014-01-20 16:06:51 ----A---- C:\Windows\system32\ipsmsnap.dll
2014-01-20 16:06:51 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2014-01-20 16:06:51 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2014-01-20 16:06:51 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2014-01-20 16:06:51 ----A---- C:\Windows\system32\drivers\msrpc.sys
2014-01-20 16:06:51 ----A---- C:\Windows\system32\drivers\ks.sys
2014-01-20 16:06:51 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\VAN.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\cca.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\browseui.dll
2014-01-20 16:06:50 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\wiavideo.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\wiaservc.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\uxlib.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\userenv.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\usercpl.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\mfreadwrite.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\mcmde.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\mapistub.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\mapi32.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\KBDINTEL.DLL
2014-01-20 16:06:50 ----A---- C:\Windows\system32\KBDINORI.DLL
2014-01-20 16:06:50 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-01-20 16:06:50 ----A---- C:\Windows\system32\gpprefcl.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\dwmcore.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\dsuiext.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\dskquoui.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\drivers\vms3cap.sys
2014-01-20 16:06:50 ----A---- C:\Windows\system32\drivers\VMBusHID.sys
2014-01-20 16:06:50 ----A---- C:\Windows\system32\dpnaddr.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\dnscmmc.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\DiagCpl.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\dfrgui.exe
2014-01-20 16:06:50 ----A---- C:\Windows\system32\cscui.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\cscsvc.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\cscdll.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\cscapi.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\credssp.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\ci.dll
2014-01-20 16:06:50 ----A---- C:\Windows\system32\C_ISCII.DLL
2014-01-20 16:06:50 ----A---- C:\Windows\system32\bitsadmin.exe
2014-01-20 16:06:49 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2014-01-20 16:06:49 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2014-01-20 16:06:49 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2014-01-20 16:06:49 ----A---- C:\Windows\SYSWOW64\fms.dll
2014-01-20 16:06:49 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2014-01-20 16:06:49 ----A---- C:\Windows\system32\zipfldr.dll
2014-01-20 16:06:49 ----A---- C:\Windows\system32\ifsutil.dll
2014-01-20 16:06:49 ----A---- C:\Windows\system32\FXSTIFF.dll
2014-01-20 16:06:49 ----A---- C:\Windows\system32\FXSAPI.dll
2014-01-20 16:06:49 ----A---- C:\Windows\system32\fixmapi.exe
2014-01-20 16:06:49 ----A---- C:\Windows\system32\findstr.exe
2014-01-20 16:06:49 ----A---- C:\Windows\system32\fdeploy.dll
2014-01-20 16:06:49 ----A---- C:\Windows\system32\EhStorAPI.dll
2014-01-20 16:06:49 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2014-01-20 16:05:09 ----D---- C:\Windows\system32\EventProviders
2014-01-20 16:04:53 ----A---- C:\Windows\system32\wups2.dll
2014-01-20 16:04:53 ----A---- C:\Windows\system32\wucltux.dll
2014-01-20 16:04:53 ----A---- C:\Windows\system32\wuaueng.dll
2014-01-20 16:04:53 ----A---- C:\Windows\system32\wuauclt.exe
2014-01-20 16:04:48 ----A---- C:\Windows\system32\wups.dll
2014-01-20 16:04:48 ----A---- C:\Windows\system32\wudriver.dll
2014-01-20 16:04:48 ----A---- C:\Windows\system32\wuapi.dll
2014-01-20 16:04:42 ----A---- C:\Windows\system32\wuwebv.dll
2014-01-20 16:04:42 ----A---- C:\Windows\system32\wuapp.exe
2014-01-20 16:01:32 ----D---- C:\Users\name\AppData\Roaming\Identities
2014-01-20 16:00:16 ----SD---- C:\Users\name\AppData\Roaming\Microsoft
2014-01-20 16:00:16 ----D---- C:\Users\name\AppData\Roaming\Media Center Programs
2014-01-20 15:59:42 ----SHD---- C:\Recovery
2014-01-20 15:59:42 ----SHD---- C:\ProgramData\Šablony
2014-01-20 15:59:42 ----SHD---- C:\ProgramData\Plocha
2014-01-20 15:59:42 ----SHD---- C:\ProgramData\Oblíbené položky
2014-01-20 15:59:42 ----SHD---- C:\ProgramData\Nabídka Start
2014-01-20 15:59:42 ----SHD---- C:\ProgramData\Dokumenty
2014-01-20 15:59:42 ----SHD---- C:\ProgramData\Data aplikací
2014-01-20 15:59:38 ----D---- C:\Windows\SoftwareDistribution
2014-01-20 15:54:05 ----D---- C:\Windows\Prefetch
2014-01-20 15:53:55 ----ASH---- C:\pagefile.sys
2014-01-20 15:53:53 ----SHD---- C:\System Volume Information
2014-01-20 15:53:53 ----ASH---- C:\hiberfil.sys
2014-01-20 15:52:52 ----D---- C:\Windows\Panther
2014-01-20 15:52:47 ----RASH---- C:\BOOTSECT.BAK
2014-01-20 15:52:46 ----SHD---- C:\Boot

======List of files/folders modified in the last 1 month======

2014-02-10 10:26:44 ----D---- C:\Windows\Temp
2014-02-10 10:26:43 ----RD---- C:\Program Files
2014-02-10 09:31:59 ----D---- C:\Windows\System32
2014-02-10 09:31:59 ----D---- C:\Windows\inf
2014-02-10 09:31:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-02-09 22:39:05 ----D---- C:\Windows\system32\config
2014-02-01 21:15:51 ----D---- C:\Windows\Logs
2014-01-30 08:18:08 ----D---- C:\Windows\system32\catroot2
2014-01-21 22:08:16 ----D---- C:\Windows
2014-01-21 21:54:26 ----D---- C:\Windows\rescache
2014-01-21 20:57:57 ----D---- C:\Windows\system32\LogFiles
2014-01-21 18:52:47 ----D---- C:\Windows\winsxs
2014-01-21 18:52:23 ----D---- C:\Windows\SysWOW64
2014-01-21 18:41:12 ----D---- C:\Windows\Tasks
2014-01-21 18:41:12 ----D---- C:\Windows\system32\Tasks
2014-01-21 18:27:46 ----D---- C:\Windows\Microsoft.NET
2014-01-21 18:18:11 ----RSD---- C:\Windows\assembly
2014-01-21 18:03:14 ----D---- C:\Windows\system32\drivers
2014-01-21 17:56:08 ----SD---- C:\ProgramData\Microsoft
2014-01-21 17:55:34 ----RD---- C:\Program Files (x86)
2014-01-21 17:55:25 ----HD---- C:\ProgramData
2014-01-21 17:54:58 ----D---- C:\Windows\system32\DriverStore
2014-01-21 17:54:58 ----D---- C:\Windows\system32\catroot
2014-01-21 17:54:16 ----D---- C:\Windows\twain_32
2014-01-21 01:17:33 ----D---- C:\Program Files (x86)\Common Files
2014-01-21 01:15:21 ----D---- C:\Windows\debug
2014-01-21 00:26:05 ----RSD---- C:\Windows\Fonts
2014-01-21 00:24:50 ----A---- C:\Windows\win.ini
2014-01-21 00:15:57 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-01-21 00:14:56 ----D---- C:\Windows\ShellNew
2014-01-21 00:01:36 ----D---- C:\Windows\system32\wdi
2014-01-20 20:45:48 ----D---- C:\Program Files\Internet Explorer
2014-01-20 20:45:48 ----D---- C:\Program Files (x86)\Internet Explorer
2014-01-20 20:35:22 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-01-20 20:35:22 ----D---- C:\Windows\system32\cs-CZ
2014-01-20 20:35:21 ----D---- C:\Windows\SYSWOW64\migration
2014-01-20 20:35:21 ----D---- C:\Windows\SYSWOW64\en-US
2014-01-20 20:35:20 ----D---- C:\Windows\system32\migration
2014-01-20 20:35:20 ----D---- C:\Windows\system32\en-US
2014-01-20 20:35:20 ----D---- C:\Windows\PolicyDefinitions
2014-01-20 20:19:18 ----D---- C:\Windows\AppPatch
2014-01-20 20:19:18 ----D---- C:\Program Files\Windows Media Player
2014-01-20 20:19:18 ----D---- C:\Program Files (x86)\Windows Media Player
2014-01-20 20:19:17 ----D---- C:\Program Files\Windows Defender
2014-01-20 20:19:17 ----D---- C:\Program Files (x86)\Windows Defender
2014-01-20 20:19:10 ----D---- C:\Windows\SYSWOW64\wbem
2014-01-20 20:19:10 ----D---- C:\Windows\system32\drivers\en-US
2014-01-20 20:19:09 ----D---- C:\Windows\system32\wbem
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\zh-TW
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\zh-HK
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\zh-CN
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\tr-TR
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\sv-SE
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\ru-RU
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\pt-PT
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\pt-BR
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\nb-NO
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\ko-KR
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\ja-JP
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\it-IT
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\fr-FR
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\fi-FI
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\es-ES
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\el-GR
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\de-DE
2014-01-20 20:19:04 ----D---- C:\Windows\SYSWOW64\da-DK
2014-01-20 20:19:03 ----D---- C:\Windows\system32\zh-TW
2014-01-20 20:19:03 ----D---- C:\Windows\system32\zh-HK
2014-01-20 20:19:03 ----D---- C:\Windows\system32\zh-CN
2014-01-20 20:19:03 ----D---- C:\Windows\system32\tr-TR
2014-01-20 20:19:03 ----D---- C:\Windows\system32\sv-SE
2014-01-20 20:19:03 ----D---- C:\Windows\system32\ru-RU
2014-01-20 20:19:03 ----D---- C:\Windows\system32\pt-PT
2014-01-20 20:19:03 ----D---- C:\Windows\system32\pt-BR
2014-01-20 20:19:03 ----D---- C:\Windows\system32\pl-PL
2014-01-20 20:19:03 ----D---- C:\Windows\system32\nl-NL
2014-01-20 20:19:03 ----D---- C:\Windows\system32\nb-NO
2014-01-20 20:19:03 ----D---- C:\Windows\system32\ko-KR
2014-01-20 20:19:03 ----D---- C:\Windows\system32\ja-JP
2014-01-20 20:19:03 ----D---- C:\Windows\system32\it-IT
2014-01-20 20:19:03 ----D---- C:\Windows\system32\hu-HU
2014-01-20 20:19:03 ----D---- C:\Windows\system32\fr-FR
2014-01-20 20:19:03 ----D---- C:\Windows\system32\fi-FI
2014-01-20 20:19:03 ----D---- C:\Windows\system32\es-ES
2014-01-20 20:19:03 ----D---- C:\Windows\system32\el-GR
2014-01-20 20:19:03 ----D---- C:\Windows\system32\de-DE
2014-01-20 20:19:03 ----D---- C:\Windows\system32\da-DK
2014-01-20 20:19:02 ----D---- C:\Program Files\Windows Journal
2014-01-20 18:00:05 ----D---- C:\Windows\ehome
2014-01-20 18:00:05 ----D---- C:\Program Files\Common Files\System
2014-01-20 18:00:04 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-01-20 17:59:54 ----D---- C:\Windows\system32\Boot
2014-01-20 17:50:00 ----RD---- C:\Users
2014-01-20 17:49:13 ----D---- C:\Windows\Help
2014-01-20 17:40:05 ----D---- C:\Windows\system32\drivers\UMDF
2014-01-20 16:39:32 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-01-20 16:39:32 ----D---- C:\Program Files (x86)\Windows Mail
2014-01-20 16:39:31 ----D---- C:\Program Files\Windows Sidebar
2014-01-20 16:39:31 ----D---- C:\Program Files\Windows Mail
2014-01-20 16:39:31 ----D---- C:\Program Files\DVD Maker
2014-01-20 16:39:31 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-01-20 16:39:31 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-01-20 16:39:30 ----D---- C:\Windows\servicing
2014-01-20 16:39:30 ----D---- C:\Program Files\Windows Portable Devices
2014-01-20 16:39:30 ----D---- C:\Program Files\Windows Photo Viewer
2014-01-20 16:39:27 ----D---- C:\Windows\SYSWOW64\Setup
2014-01-20 16:39:27 ----D---- C:\Windows\SYSWOW64\oobe
2014-01-20 16:39:27 ----D---- C:\Windows\SYSWOW64\cs
2014-01-20 16:39:27 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2014-01-20 16:39:23 ----D---- C:\Windows\SYSWOW64\sppui
2014-01-20 16:39:23 ----D---- C:\Windows\SYSWOW64\manifeststore
2014-01-20 16:39:22 ----D---- C:\Windows\SYSWOW64\migwiz
2014-01-20 16:39:22 ----D---- C:\Windows\SYSWOW64\Dism
2014-01-20 16:39:13 ----D---- C:\Windows\system32\oobe
2014-01-20 16:39:12 ----D---- C:\Windows\system32\Setup
2014-01-20 16:39:12 ----D---- C:\Windows\system32\cs
2014-01-20 16:39:12 ----D---- C:\Windows\system32\AdvancedInstallers
2014-01-20 16:39:11 ----D---- C:\Windows\system32\sppui
2014-01-20 16:39:11 ----D---- C:\Windows\system32\migwiz
2014-01-20 16:39:11 ----D---- C:\Windows\system32\manifeststore
2014-01-20 16:39:11 ----D---- C:\Windows\system32\Dism
2014-01-20 16:28:39 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2014-01-20 16:28:39 ----A---- C:\Windows\system32\msclmd.dll
2014-01-20 16:11:08 ----D---- C:\Windows\system32\CodeIntegrity
2014-01-20 16:00:33 ----SHD---- C:\$Recycle.Bin
2014-01-20 16:00:03 ----D---- C:\Windows\system32\restore
2014-01-20 15:59:42 ----D---- C:\Program Files\Windows NT
2014-01-20 15:56:34 ----D---- C:\Windows\system32\sysprep
2014-01-20 15:54:22 ----D---- C:\Windows\CSC
2014-01-20 15:52:32 ----D---- C:\Windows\Setup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-10-24 194872]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-10-31 294712]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-10-01 123704]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-09-10 31544]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2013-11-05 150808]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2013-09-26 57144]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-11-04 240920]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-10-31 212280]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-08-01 251192]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2014/01/20 22:13:42]; \??\C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-06-28 146928]
R3 AIDA64Driver;FinalWire AIDA64 Kernel Driver; \??\C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 [2012-01-24 28320]
R3 NVNET;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-08-12 350952]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [2013-09-24 1358944]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-11-11 3478544]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-09-24 348008]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-23 922912]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-27 1364256]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe [2013-12-16 247968]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe [2013-12-16 193696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-05 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 CscService;Offline soubory; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Re: samo se mi občas mění nastavení v PC

Napsal: 11 úno 2014 09:14
od JaRon
ahoj,
log vypada OK
doporucenia:
- zmen hesla (do pocitaca, posty atd.)
- prescanuj PC s MBAM - kompletna kontrola
- pouvazuj nad zmenou AV

Re: samo se mi občas mění nastavení v PC

Napsal: 11 úno 2014 12:21
od cid750
Ahoj.
Především chci moc poděkovat za pomoc. Jste opravdu SUPER.
Napsal jsem tuto zprávu i do nového tématu. Tak to píši, aby se to nemuselo řešit dvakrát.

Tak jsem po tvé radě spustil zkušební verzi Malwarebytes - anti-Malwer a našlo mi to 2 trojské koně Trojan.Agent.W a CK
Koukal jsem se přes google co to je a opravdu to asi je to co jsem si myslel. Odesílá hesla a stránky

Chci se ještě zeptat, jestli se mi to může znovu objevit.
Podle mě je to na mě cílený útok. Měl jsem totiž podezření již před časem.
Nechal jsem si i přeinstalovat nedávno windows aby vše zmizelo a stejně se to zase objevilo
- mohu si tento test pouštět vícekrát po nějaké době?
- a je možné, aby se mi tam dostávali, když znají mé IP počítače, protože jsem si u providera nechal měnit adresu, ale mou bohužel nezměním


PŘED
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.11.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
name :: HOME [administrátor]

Ochrana: Povolena

11.2.2014 10:53:24
MBAM-log-2014-02-11 (11-57-10).txt

Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 364887
Uplynulý čas: 47 minut, 49 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)


Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\Windows\Setup\SCRIPTS\Windows7Loader.exe (Trojan.Agent.W) -> Nebyla provedena žádná instrukce.
D:\DOWNLOADS_D\-=UTILITIES=-\WinRAR v4.01 Final (x86_x64)+cz\winrar\Keygen.exe (Trojan.Agent.CK) -> Nebyla provedena žádná instrukce.

(konec)

PO
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.11.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
name :: HOME [administrátor]

Ochrana: Povolena

11.2.2014 10:53:24
mbam-log-2014-02-11 (10-53-24).txt

Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 364887
Uplynulý čas: 47 minut, 49 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\Windows\Setup\SCRIPTS\Windows7Loader.exe (Trojan.Agent.W) -> Přesun do karantény a smazání se zdařilo.
D:\DOWNLOADS_D\-=UTILITIES=-\WinRAR v4.01 Final (x86_x64)+cz\winrar\Keygen.exe (Trojan.Agent.CK) -> Přesun do karantény a smazání se zdařilo.

(konec)

Re: samo se mi občas mění nastavení v PC

Napsal: 11 úno 2014 13:49
od vyosek
Zdravim :)

Omlouvam se kolegovi za vstup ale zkratim Vam cekani na odpoved.

Nelegalnimi systemy se dle pravidel froa nezabyvame...
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz