Poprosím preventívnu kontrolu logu. Vopred ďakujem.
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-04-2014
Ran by Jaroslav at 2014-04-20 10:47:22
Running from C:\Users\Jaroslav\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
==================== Installed Programs ======================
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
AirGet for TOSHIBA (HKLM-x32\...\{E81F1962-C6A1-4315-9B4D-6FC82E2E4202}) (Version: 2.02.0040 - sMedio Inc.)
Aktualizácie NVIDIA 12.4.55 (Version: 12.4.55 - NVIDIA Corporation) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 4.4.17.01504 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 4.4.17.01504 - Alcor Micro Corp.) Hidden
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Atheros)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
DTS Sound (HKLM-x32\...\{2DFA9084-CEB3-4A48-B9F7-9038FEF1B8F4}) (Version: 1.01.2700 - DTS, Inc.)
ESET NOD32 Antivirus (HKLM\...\{23BA8EDF-3278-45E6-BB01-99E9A26478FD}) (Version: 7.0.302.26 - ESET, spol s r. o.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Expert Lotto 5 (HKLM\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
FastShare.cz verzia 2.1 (HKLM-x32\...\FastShare.cz_is1) (Version: 2.1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
HP Deskjet 1510 series Basic Device Software (HKLM\...\{EB94EF62-E46A-495E-AF31-69D1CB3B46EA}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
IDT Audio Driver (HKLM\...\{588A747E-CFF6-46B3-9207-CD754F9473AF}) (Version: 6.10.6491.0 - IDT)
Intel(R) Chipset Device Software (Version: 10.0.13 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel® Chipset Device Software (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Metro Last Light (HKLM-x32\...\Metro Last Light_is1) (Version: - )
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d07b0db5-8dad-40e1-be90-88026298a46b}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{2749c485-3a8b-4533-92ff-7cf6e8221cff}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Minecraft1.7.2 (HKLM-x32\...\Minecraft1.7.2) (Version: - )
MPC-HC 1.7.3 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.3 - MPC-HC Team)
NVIDIA GeForce Experience 2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0 - NVIDIA Corporation)
NVIDIA Grafický ovládač 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.151.1095 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 12.4.55 (Version: 12.4.55 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA ShadowPlay 12.4.55 (Version: 12.4.55 - NVIDIA Corporation) Hidden
NVIDIA Softvér systému s podporou technológie PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Update Core (Version: 12.4.55 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.22 (Version: 1.2.22 - NVIDIA Corporation) Hidden
Oracle VM VirtualBox 4.3.10 (HKLM\...\{5632714F-6A48-4BF2-89E0-F8B6CE9FE6D1}) (Version: 4.3.10 - Oracle Corporation)
Ovládací panel NVIDIA 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.306 - Qualcomm Atheros)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
SHIELD Streaming (Version: 1.8.323 - NVIDIA Corporation) Hidden
Sniper Ghost Warrior 2 (HKLM-x32\...\Sniper Ghost Warrior 2_is1) (Version: - )
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.4 - Sophos Limited)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{1EBDF6D2-CEA0-484C-A23E-2DDAD7FD0DD0}) (Version: 4.5.22.0 - Husdawg, LLC)
TOSHIBA Audio Enhancement (HKLM\...\{1515F5E3-29EA-4CD1-A981-032D88880F09}) (Version: 2.0.15.4 - Toshiba Corporation)
TOSHIBA Desktop Assist (HKLM\...\{95CCACF0-010D-45F0-82BF-858643D8BC02}) (Version: 1.02.01.6407 - Toshiba Corporation)
TOSHIBA Display Utility (HKLM\...\{F64E9295-E1B3-4EEA-86D3-AF44A0087B06}) (Version: 1.1.16.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.2.0.6404 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.1.0001.6403 - Toshiba Corporation)
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{78931270-BC9E-441A-A52B-73ECD4ACFAB5}) (Version: 3.00.346 - Toshiba Corporation)
TOSHIBA Password Utility (x32 Version: 3.00.346 - Toshiba Corporation) Hidden
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.9.09.6400 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{181F81AE-3AD5-4497-B30B-5860D1B66815}) (Version: 2.6.8 - Toshiba Corporation)
TOSHIBA Sync Utility (HKLM-x32\...\{CCF62642-ECB1-4D2B-80C0-3FD3286AEAED}) (Version: 2.0.3092 - TOSHIBA Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0032 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.1.2.32001 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{F76F5214-83A8-4030-80C9-1EF57391D72A}) (Version: 4.5.1 - Toshiba Europe GmbH)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Wise Disk Cleaner 8.06 (HKLM-x32\...\Wise Disk Cleaner_is1) (Version: 8.06 - WiseCleaner.com, Inc.)
==================== Restore Points =========================
==================== Hosts content: ==========================
2014-04-15 17:48 - 2014-04-15 17:48 - 00000830 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {1D0621BA-2DE1-4421-A96B-833645992466} - System32\Tasks\SMEDIO\AirGetServiceTask => C:\Program Files (x86)\sMedio\AirGet\AirGetService.exe [2013-08-25] (sMedio Inc)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {37E4183B-D613-4B24-A9A8-A7D73C43FAC0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-14] (Adobe Systems Incorporated)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3C51C16E-397D-4CB1-B8C6-729A6E55F877} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-12] (Google Inc.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {51100E88-0CA8-41D4-BF27-B0B1EEA8F9CE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {6A40A490-1EFF-4159-90D2-93EA701012E1} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-03-31] (Microsoft Corporation)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {726130F1-E457-43A2-A604-F3D71DD07182} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9403C9BD-FC47-4F86-90AC-038856C534F7} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {9DC75765-BB53-4BC9-B0B5-9892B84AF74F} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A595A056-61E9-4F13-A362-F0F36122D30E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-12] (Google Inc.)
Task: {B8285BEE-B545-4FAF-9057-87DD862F5911} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {C3B2ED20-0A0D-4927-AFCB-CB773652437A} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2013-12-24] (Toshiba Europe GmbH)
Task: {C9741BB7-698E-40A4-8D62-2AA498D9B423} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2013-11-07] (TOSHIBA Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-01-22 07:37 - 2014-03-04 16:35 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-01-22 07:38 - 2014-03-04 15:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-04-16 01:27 - 2014-03-17 13:43 - 01433600 _____ () C:\Program Files (x86)\FastShare\FastShare.exe
2014-04-12 18:17 - 2014-04-12 18:18 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20461_x64__8wekyb3d8bbwe\ErrorReporting.dll
2014-04-16 01:27 - 2009-01-10 19:32 - 00011362 _____ () C:\Program Files (x86)\FastShare\mingwm10.dll
2014-04-16 01:27 - 2009-06-23 03:42 - 00043008 _____ () C:\Program Files (x86)\FastShare\libgcc_s_dw2-1.dll
2014-04-12 17:45 - 2014-04-02 03:57 - 00065352 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\chrome_elf.dll
2014-04-12 17:45 - 2014-04-02 03:57 - 00674632 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libglesv2.dll
2014-04-12 17:45 - 2014-04-02 03:57 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libegl.dll
2013-12-23 12:33 - 2014-03-04 16:35 - 00014280 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-04-12 17:45 - 2014-04-02 03:57 - 04081480 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\pdf.dll
2014-04-12 17:45 - 2014-04-02 03:58 - 00390472 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll
2014-04-12 17:45 - 2014-04-02 03:57 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Jaroslav\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Jaroslav\Desktop\BDUSBImmunizerLauncher.exe:BDU
AlternateDataStreams: C:\Users\Jaroslav\Desktop\esetsmartinstaller_sky.exe:BDU
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
==================== Disabled items from MSCONFIG ==============
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: AtherosSvc => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: dts_apo_service => 2
MSCONFIG\Services: Futuremark SystemInfo Service => 3
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: GFNEXSrv => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HomeNetSvc => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) ME Service => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: McAPExe => 2
MSCONFIG\Services: McAWFwk => 3
MSCONFIG\Services: McNaiAnn => 2
MSCONFIG\Services: McODS => 3
MSCONFIG\Services: McOobeSv2 => 2
MSCONFIG\Services: mcpltsvc => 2
MSCONFIG\Services: McProxy => 2
MSCONFIG\Services: MSK80Service => 2
MSCONFIG\Services: NvNetworkService => 3
MSCONFIG\Services: NvStreamSvc => 3
MSCONFIG\Services: nvUpdatusService => 2
MSCONFIG\Services: OBKSvc => 2
MSCONFIG\Services: STacSV => 2
MSCONFIG\Services: TemproMonitoringService => 3
MSCONFIG\Services: TMachInfo => 3
MSCONFIG\Services: TODDSrv => 2
MSCONFIG\Services: TOSHIBA eco Utility Service => 3
MSCONFIG\Services: TPCHSrv => 3
MSCONFIG\Services: UPDATESRV_SAFEPAY => 2
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/20/2014 10:08:51 AM) (Source: Perflib) (User: )
Description: C:\Windows\System32\winspool.drvSpooler8
Error: (04/20/2014 03:23:27 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Error: (04/19/2014 05:44:53 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Error: (04/19/2014 03:11:42 PM) (Source: Application Error) (User: )
Description: Názov chybujúcej aplikácie: arma3.exe, verzia: 1.14.116.216, časová značka: 0x5329e82b
Názov chybujúceho modulu: KERNELBASE.dll, verzia: 6.3.9600.17055, časová značka: 0x532943a3
Kód výnimky: 0xc06d007e
Odstup chyby: 0x00011d4d
Identifikácia chybujúceho procesu: 0xe90
Čas spustenia chybujúcej aplikácie: 0xarma3.exe0
Cesta chybujúcej aplikácie: arma3.exe1
Cesta chybujúceho modulu: arma3.exe2
Identifikácia hlásenia: arma3.exe3
Celé meno chybujúceho balíka: arma3.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: arma3.exe5
Error: (04/19/2014 03:06:56 PM) (Source: ESENT) (User: )
Description: taskhostex (2864) WebCacheLocal: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Users\Jaroslav\AppData\Local\Microsoft\Windows\WebCache\V0100002.log.
Error: (04/19/2014 02:05:45 PM) (Source: Application Error) (User: )
Description: Názov chybujúcej aplikácie: version_logging.exe, verzia: 4.0.0.0, časová značka: 0x530f167e
Názov chybujúceho modulu: OLEAUT32.dll, verzia: 6.3.9600.16506, časová značka: 0x52cc9123
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000000178c
Identifikácia chybujúceho procesu: 0x730
Čas spustenia chybujúcej aplikácie: 0xversion_logging.exe0
Cesta chybujúcej aplikácie: version_logging.exe1
Cesta chybujúceho modulu: version_logging.exe2
Identifikácia hlásenia: version_logging.exe3
Celé meno chybujúceho balíka: version_logging.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: version_logging.exe5
Error: (04/19/2014 08:29:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Error: (04/19/2014 08:29:38 AM) (Source: Perflib) (User: )
Description: C:\Windows\System32\winspool.drvSpooler8
Error: (04/19/2014 00:47:28 AM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 147c
Start Time: 01cf5b576fda5917
Termination Time: 4294967295
Application Path: C:\Windows\syswow64\wwahost.exe
Report Id: 63fc9fae-c74b-11e3-828f-20256418f378
Faulting package full name: Microsoft.SkypeApp_2.7.0.1002_x86__kzf8qxf38zg5c
Faulting package-relative application ID: App
Error: (04/18/2014 10:42:04 PM) (Source: Microsoft-Windows-RestartManager) (User: MACHINA)
Description: Application or service 'Apple Mobile Device' could not be restarted.
System errors:
=============
Error: (04/20/2014 10:30:36 AM) (Source: Microsoft-Windows-DNS-Client) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (04/20/2014 03:28:54 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
Error: (04/19/2014 06:57:42 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
Error: (04/19/2014 05:44:35 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (04/19/2014 04:07:22 PM) (Source: Service Control Manager) (User: )
Description: Služba ESET Service je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.
Error: (04/19/2014 03:10:04 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (04/19/2014 03:08:40 PM) (Source: Service Control Manager) (User: )
Description: Volanie ScRegSetValueExW zlyhalo pre DeleteFlag s nasledujúcou chybou:
%%5
Error: (04/19/2014 03:08:40 PM) (Source: Service Control Manager) (User: )
Description: Volanie ScRegSetValueExW zlyhalo pre FailureActions s nasledujúcou chybou:
%%5
Error: (04/19/2014 03:05:52 PM) (Source: Microsoft-Windows-DNS-Client) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
Error: (04/19/2014 02:54:30 PM) (Source: Service Control Manager) (User: )
Description: Služba GeekBuddyRSP Server sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 5000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
Microsoft Office Sessions:
=========================
Error: (04/20/2014 10:08:51 AM) (Source: Perflib)(User: )
Description: C:\Windows\System32\winspool.drvSpooler8
Error: (04/20/2014 03:23:27 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
Error: (04/19/2014 05:44:53 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Jaroslav\Desktop\esetsmartinstaller_sky.exe
Error: (04/19/2014 03:11:42 PM) (Source: Application Error)(User: )
Description: arma3.exe1.14.116.2165329e82bKERNELBASE.dll6.3.9600.17055532943a3c06d007e00011d4de9001cf5bd0e5aa079cC:\Program Files (x86)\Arma 3\arma3.exeC:\Windows\SYSTEM32\KERNELBASE.dll262a8ed8-c7c4-11e3-8293-20256418f378
Error: (04/19/2014 03:06:56 PM) (Source: ESENT)(User: )
Description: taskhostex2864WebCacheLocal: C:\Users\Jaroslav\AppData\Local\Microsoft\Windows\WebCache\V0100002.log-1811 (0xfffff8ed)
Error: (04/19/2014 02:05:45 PM) (Source: Application Error)(User: )
Description: version_logging.exe4.0.0.0530f167eOLEAUT32.dll6.3.9600.1650652cc9123c0000005000000000000178c73001cf5bc7b000d26aC:\Program Files\COMODO\GeekBuddy\version_logging.exeC:\Windows\system32\OLEAUT32.dllef4bc64d-c7ba-11e3-8291-20256418f378
Error: (04/19/2014 08:29:59 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
Error: (04/19/2014 08:29:38 AM) (Source: Perflib)(User: )
Description: C:\Windows\System32\winspool.drvSpooler8
Error: (04/19/2014 00:47:28 AM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.17031147c01cf5b576fda59174294967295C:\Windows\syswow64\wwahost.exe63fc9fae-c74b-11e3-828f-20256418f378Microsoft.SkypeApp_2.7.0.1002_x86__kzf8qxf38zg5cApp
Error: (04/18/2014 10:42:04 PM) (Source: Microsoft-Windows-RestartManager)(User: MACHINA)
Description: 0AppleMobileDeviceService.exeApple Mobile Device03026217830360
CodeIntegrity Errors:
===================================
Date: 2014-04-19 17:10:05.992
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-04-19 16:40:27.057
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-04-19 16:04:20.290
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-04-19 15:18:04.688
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-04-19 15:11:59.350
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-04-19 15:07:21.358
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-04-19 14:55:21.474
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-04-19 14:23:20.937
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 27%
Total physical RAM: 8103.96 MB
Available physical RAM: 5848.8 MB
Total Pagefile: 16295.96 MB
Available Pagefile: 14078.98 MB
Total Virtual: 131072 MB
Available Virtual: 131071.81 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:296.41 GB) (Free:248.7 GB) NTFS
Drive d: (Data) (Fixed) (Total:292.97 GB) (Free:274.36 GB) NTFS
Drive l: (Virtual) (Fixed) (Total:97.66 GB) (Free:97.43 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 699 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivna kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivna kontrola logu
Zdravim 
Tenhle log je mi celkem na nic. Potrebuji bud ten druhy, co FRST vytvoril, nebo log z RSIT http://forum.viry.cz/viewtopic.php?f=30&t=130787
Tenhle log je mi celkem na nic. Potrebuji bud ten druhy, co FRST vytvoril, nebo log z RSIT http://forum.viry.cz/viewtopic.php?f=30&t=130787
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivna kontrola logu
pisemi to toto: Vaše zpráva obsahuje 193322 znaků. Maximální povolený počet znaků je 100000.
Re: Preventivna kontrola logu
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivna kontrola logu
# AdwCleaner v3.100 - Report created 20/04/2014 at 14:21:46
# Updated 20/04/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Jaroslav - MACHINA
# Running from : C:\Users\Jaroslav\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Package Cache
Folder Deleted : C:\Program Files (x86)\Wise
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17037
-\\ Google Chrome v34.0.1847.116
[ File : C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [885 octets] - [20/04/2014 14:21:03]
AdwCleaner[S0].txt - [817 octets] - [20/04/2014 14:21:46]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [876 octets] ##########
# Updated 20/04/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Jaroslav - MACHINA
# Running from : C:\Users\Jaroslav\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Package Cache
Folder Deleted : C:\Program Files (x86)\Wise
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17037
-\\ Google Chrome v34.0.1847.116
[ File : C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [885 octets] - [20/04/2014 14:21:03]
AdwCleaner[S0].txt - [817 octets] - [20/04/2014 14:21:46]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [876 octets] ##########
Re: Preventivna kontrola logu
Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivna kontrola logu
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 20.4.2014
Čas skenování: 16:34:17
Protokol: mbam.txt
Správce: Ano
Verze: 2.00.1.1004
Databáze malwaru: v2014.04.20.05
Databáze rootkitů: v2014.03.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Chameleon: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Jaroslav
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 245799
Uplynulý čas: 9 min, 34 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Shuriken: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(No malicious items detected)
Moduly: 0
(No malicious items detected)
Klíče registru: 0
(No malicious items detected)
Hodnoty registru: 0
(No malicious items detected)
Data registru: 0
(No malicious items detected)
Složky: 0
(No malicious items detected)
Soubory: 1
PUP.Optional.Conduit.A, C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Preferences, Dobré: (), Špatné: ( "startup_urls": [ "http://crunchbang.org/start/", "http://search.conduit.com/?ctid=CT32890 ... 55025&UM=1", "https://www.google.sk/", "http://www.google.com/", "www.google.com" ],), ,[9203022a7cff15218cdbbc996b99758b]
Fyzické sektory: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Datum skenování: 20.4.2014
Čas skenování: 16:34:17
Protokol: mbam.txt
Správce: Ano
Verze: 2.00.1.1004
Databáze malwaru: v2014.04.20.05
Databáze rootkitů: v2014.03.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Chameleon: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Jaroslav
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 245799
Uplynulý čas: 9 min, 34 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Shuriken: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(No malicious items detected)
Moduly: 0
(No malicious items detected)
Klíče registru: 0
(No malicious items detected)
Hodnoty registru: 0
(No malicious items detected)
Data registru: 0
(No malicious items detected)
Složky: 0
(No malicious items detected)
Soubory: 1
PUP.Optional.Conduit.A, C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Preferences, Dobré: (), Špatné: ( "startup_urls": [ "http://crunchbang.org/start/", "http://search.conduit.com/?ctid=CT32890 ... 55025&UM=1", "https://www.google.sk/", "http://www.google.com/", "www.google.com" ],), ,[9203022a7cff15218cdbbc996b99758b]
Fyzické sektory: 0
(No malicious items detected)
(end)
Re: Preventivna kontrola logu
Nalez nechte odstranit, pak MBAM odinstalujte. Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivna kontrola logu
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : Jaroslav [Práva Správcu]
Režim : Kontrola -- Dátum : 04/20/2014 16:50:02
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NÁJDENÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spustenie položky : 0 ¤¤¤
¤¤¤ webové prehliadače : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) TOSHIBA MQ01ABD075 +++++
--- User ---
[MBR] a84dd93b5b19931ceaddbccc47850486
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Multiple Card Reader +++++
Error reading User MBR! ([0x15] Zariadenie nie je pripravené. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?iadavka nie je podporovaná. )
Dokončené : << RKreport[0]_S_04202014_165002.txt >>
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : Jaroslav [Práva Správcu]
Režim : Kontrola -- Dátum : 04/20/2014 16:50:02
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NÁJDENÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spustenie položky : 0 ¤¤¤
¤¤¤ webové prehliadače : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) TOSHIBA MQ01ABD075 +++++
--- User ---
[MBR] a84dd93b5b19931ceaddbccc47850486
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Multiple Card Reader +++++
Error reading User MBR! ([0x15] Zariadenie nie je pripravené. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?iadavka nie je podporovaná. )
Dokončené : << RKreport[0]_S_04202014_165002.txt >>
Re: Preventivna kontrola logu
Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivna kontrola logu
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : Jaroslav [Práva Správcu]
Režim : Odebrať -- Dátum : 04/20/2014 19:16:19
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 0 ¤¤¤
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spustenie položky : 0 ¤¤¤
¤¤¤ webové prehliadače : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) TOSHIBA MQ01ABD075 +++++
--- User ---
[MBR] a84dd93b5b19931ceaddbccc47850486
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Multiple Card Reader +++++
Error reading User MBR! ([0x15] Zariadenie nie je pripravené. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?iadavka nie je podporovaná. )
Dokončené : << RKreport[0]_D_04202014_191619.txt >>
RKreport[0]_S_04202014_191602.txt
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : Jaroslav [Práva Správcu]
Režim : Oprava HOSTS -- Dátum : 04/20/2014 19:16:56
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 0 ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončené : << RKreport[0]_H_04202014_191655.txt >>
RKreport[0]_D_04202014_191619.txt;RKreport[0]_S_04202014_191602.txt
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : Jaroslav [Práva Správcu]
Režim : Odebrať -- Dátum : 04/20/2014 19:16:19
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 0 ¤¤¤
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spustenie položky : 0 ¤¤¤
¤¤¤ webové prehliadače : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) TOSHIBA MQ01ABD075 +++++
--- User ---
[MBR] a84dd93b5b19931ceaddbccc47850486
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Multiple Card Reader +++++
Error reading User MBR! ([0x15] Zariadenie nie je pripravené. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?iadavka nie je podporovaná. )
Dokončené : << RKreport[0]_D_04202014_191619.txt >>
RKreport[0]_S_04202014_191602.txt
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spustené v : Normálny režim
Užívateľ : Jaroslav [Práva Správcu]
Režim : Oprava HOSTS -- Dátum : 04/20/2014 19:16:56
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 0 ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončené : << RKreport[0]_H_04202014_191655.txt >>
RKreport[0]_D_04202014_191619.txt;RKreport[0]_S_04202014_191602.txt
Re: Preventivna kontrola logu
Dejte log z RSITx64 http://forum.viry.cz/viewtopic.php?f=30&t=130787 . Kdyby byl dlouhy a nevesel se sem, rozdelte ho do vice prispevku.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivna kontrola logu
Logfile of random's system information tool 1.08 (written by random/random)
Run by Jaroslav at 2014-04-20 19:23:44
Microsoft Windows 8.1
System drive C: has 249 GB (82%) free of 304 GB
Total RAM: 8104 MB (75% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:23:49, on 20.4.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17037)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jaroslav.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com/?pc=TEJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba13.msn.com/?pc=TEJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
O4 - HKLM\..\Run: [1.TPUReg] "C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
O4 - HKLM\..\Run: [TSUScheduler] %ProgramFiles(x86)%\TOSHIBA\Sync Utility\TosSyncScheduler.exe
O4 - Startup: Monitor Ink Alerts - HP Deskjet 1510 series.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5954 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k imgsvc
taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3544.0.1642766214\596202463" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,28 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3345 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.2.1363982563\197864917" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.3.98752373\1803674505" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.7.79958100\793239539" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll" --lang=sk --channel="3544.46.510409262\664636723" /prefetch:-390060480
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.93.295696310\18968958" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.94.390439298\51649305" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.95.9544903\1909407156" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.122.2133278423\263107581" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Jaroslav\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2013-08-21 178016]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-04-02 2201032]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-04-02 1225920]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2013-08-13 354144]
"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2013-08-17 2556768]
"TSSSrv"=C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [2013-09-11 296520]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2000-01-01 380544]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-11-04 391128]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-11-04 771032]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-11-04 770008]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2013-09-12 5618456]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2011-10-28 49208]
""= []
"TSVU"=c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [2013-07-23 516512]
"1.TPUReg"=C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2013-03-27 2216800]
"TSUScheduler"=C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe [2011-08-18 923520]
C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Monitor Ink Alerts - HP Deskjet 1510 series.lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-11-04 623616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
Run by Jaroslav at 2014-04-20 19:23:44
Microsoft Windows 8.1
System drive C: has 249 GB (82%) free of 304 GB
Total RAM: 8104 MB (75% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:23:49, on 20.4.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17037)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jaroslav.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba13.msn.com/?pc=TEJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba13.msn.com/?pc=TEJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
O4 - HKLM\..\Run: [1.TPUReg] "C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
O4 - HKLM\..\Run: [TSUScheduler] %ProgramFiles(x86)%\TOSHIBA\Sync Utility\TosSyncScheduler.exe
O4 - Startup: Monitor Ink Alerts - HP Deskjet 1510 series.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5954 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k imgsvc
taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3544.0.1642766214\596202463" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,28 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3345 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.2.1363982563\197864917" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.3.98752373\1803674505" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.7.79958100\793239539" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll" --lang=sk --channel="3544.46.510409262\664636723" /prefetch:-390060480
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.93.295696310\18968958" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.94.390439298\51649305" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.95.9544903\1909407156" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR3/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="3544.122.2133278423\263107581" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Jaroslav\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2013-08-21 178016]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-04-02 2201032]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-04-02 1225920]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2013-08-13 354144]
"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2013-08-17 2556768]
"TSSSrv"=C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [2013-09-11 296520]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2000-01-01 380544]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-11-04 391128]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-11-04 771032]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-11-04 770008]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2013-09-12 5618456]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2011-10-28 49208]
""= []
"TSVU"=c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [2013-07-23 516512]
"1.TPUReg"=C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2013-03-27 2216800]
"TSUScheduler"=C:\Program Files (x86)\TOSHIBA\Sync Utility\TosSyncScheduler.exe [2011-08-18 923520]
C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Monitor Ink Alerts - HP Deskjet 1510 series.lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-11-04 623616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
Re: Preventivna kontrola logu
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2014-04-20 19:23:45 ----D---- C:\Program Files\trend micro
2014-04-20 19:23:44 ----D---- C:\rsit
2014-04-20 16:20:25 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-04-20 16:20:12 ----D---- C:\ProgramData\Malwarebytes
2014-04-20 12:28:49 ----D---- C:\Program Files (x86)\Far Cry 3
2014-04-19 21:49:26 ----D---- C:\Program Files (x86)\Sniper Ghost Warrior 2
2014-04-19 16:05:54 ----D---- C:\ProgramData\ESET
2014-04-19 16:05:53 ----D---- C:\Program Files\ESET
2014-04-19 15:51:17 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-04-19 15:51:17 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-04-19 14:56:16 ----A---- C:\Windows\wininit.ini
2014-04-19 14:06:04 ----D---- C:\ProgramData\Adtrustmedia
2014-04-19 14:05:21 ----D---- C:\Program Files\COMODO
2014-04-19 14:04:34 ----D---- C:\Program Files (x86)\Comodo
2014-04-19 14:03:11 ----D---- C:\ProgramData\Comodo
2014-04-19 13:45:02 ----D---- C:\ProgramData\Sophos
2014-04-18 22:15:53 ----D---- C:\Users\Jaroslav\AppData\Roaming\Apple Computer
2014-04-18 22:10:36 ----D---- C:\ProgramData\Apple Computer
2014-04-18 22:10:36 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-18 22:07:18 ----D---- C:\ProgramData\Apple
2014-04-18 17:41:12 ----D---- C:\ProgramData\Orbit
2014-04-18 17:01:41 ----HD---- C:\Windows\msdownld.tmp
2014-04-18 16:38:19 ----D---- C:\ProgramData\AVAST Software
2014-04-18 14:38:32 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-04-18 14:38:32 ----A---- C:\Windows\system32\wucltux.dll
2014-04-18 14:38:32 ----A---- C:\Windows\system32\wuaueng.dll
2014-04-18 14:38:32 ----A---- C:\Windows\system32\wuauclt.exe
2014-04-18 14:38:32 ----A---- C:\Windows\system32\storewuauth.dll
2014-04-17 16:25:04 ----D---- C:\Program Files (x86)\Elaborate Bytes
2014-04-17 13:49:51 ----D---- C:\Users\Jaroslav\AppData\Roaming\IDT
2014-04-16 14:31:32 ----D---- C:\ProgramData\TOSHIBA Tempro
2014-04-16 14:31:27 ----D---- C:\ProgramData\ToshibaEurope
2014-04-16 14:30:50 ----D---- C:\Program Files (x86)\Toshiba TEMPRO
2014-04-16 13:48:42 ----D---- C:\Program Files (x86)\ESET
2014-04-16 11:47:28 ----D---- C:\Program Files (x86)\Metro Last Light
2014-04-15 19:44:25 ----A---- C:\Windows\system32\drivers\VBoxDrv.sys
2014-04-15 19:44:12 ----A---- C:\Windows\system32\drivers\VBoxUSBMon.sys
2014-04-15 19:44:05 ----D---- C:\Program Files\Oracle
2014-04-15 17:46:42 ----D---- C:\ProgramData\BDLogging
2014-04-15 17:43:03 ----D---- C:\Program Files\Common Files\Bitdefender
2014-04-15 17:42:50 ----D---- C:\Users\Jaroslav\AppData\Roaming\uTorrent
2014-04-15 17:10:58 ----D---- C:\Users\Jaroslav\AppData\Roaming\sMedio
2014-04-15 13:36:56 ----D---- C:\Users\Jaroslav\AppData\Roaming\QuickScan
2014-04-15 11:07:12 ----D---- C:\Windows\SYSWOW64\directx
2014-04-15 10:16:54 ----A---- C:\Windows\system32\javaws.exe
2014-04-15 10:16:38 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2014-04-15 10:16:38 ----A---- C:\Windows\system32\javaw.exe
2014-04-15 10:16:38 ----A---- C:\Windows\system32\java.exe
2014-04-15 10:16:32 ----D---- C:\Program Files\Java
2014-04-14 22:48:17 ----D---- C:\Users\Jaroslav\AppData\Roaming\JAM Software
2014-04-14 22:15:54 ----D---- C:\Users\Jaroslav\AppData\Roaming\.minecraft
2014-04-14 21:38:51 ----D---- C:\Windows\SYSWOW64\Adobe
2014-04-14 20:29:43 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-04-14 20:29:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-04-14 20:29:43 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-04-14 20:29:43 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-04-14 20:29:42 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-04-14 20:29:42 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-04-14 20:29:42 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-04-14 20:29:42 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-04-14 20:29:42 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-04-14 20:29:42 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-04-14 20:29:41 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-04-14 20:29:41 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-04-14 20:29:40 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-04-14 20:29:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-04-14 20:29:40 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-04-14 20:29:40 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-04-14 20:29:36 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-04-14 20:29:36 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-04-14 20:29:36 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-04-14 20:29:36 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-04-14 20:29:35 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-04-14 20:29:34 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-04-14 20:29:34 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-04-14 20:29:34 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-04-14 20:29:34 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-04-14 20:29:33 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-04-14 20:29:33 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-04-14 20:29:33 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-04-14 20:29:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-04-14 20:29:33 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-04-14 20:29:33 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-04-14 20:29:33 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-04-14 20:29:33 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-04-14 20:29:32 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-04-14 20:29:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-04-14 20:29:32 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-04-14 20:29:32 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-04-14 20:29:32 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-04-14 20:29:32 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-04-14 20:29:32 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-04-14 20:29:32 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-04-14 20:29:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-04-14 20:29:31 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-04-14 20:29:29 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-04-14 20:29:29 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-04-14 20:29:29 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-04-14 20:29:29 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-04-14 20:29:29 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-04-14 20:29:29 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-04-14 20:29:28 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-04-14 20:29:28 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-04-14 20:29:28 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-04-14 20:29:26 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-04-14 20:29:26 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-04-14 20:29:26 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-04-14 20:29:26 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-04-14 20:29:23 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-04-14 20:29:23 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-04-14 20:29:23 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-04-14 20:29:23 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-04-14 20:29:22 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-04-14 20:29:21 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-04-14 20:29:21 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-04-14 20:29:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-04-14 20:29:21 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-04-14 20:29:21 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-04-14 20:29:21 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-04-14 20:29:20 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-04-14 20:29:20 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-04-14 20:29:19 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-04-14 20:29:19 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-04-14 20:29:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-04-14 20:29:19 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-04-14 20:29:19 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-04-14 20:29:19 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-04-14 20:29:14 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-04-14 20:29:14 ----A---- C:\Windows\system32\xinput1_3.dll
2014-04-14 20:29:14 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-04-14 20:29:13 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-04-14 20:29:13 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-04-14 20:29:13 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-04-14 20:29:12 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-04-14 20:29:12 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-04-14 20:29:10 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-04-14 20:29:10 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-04-14 20:29:10 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-04-14 20:29:10 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-04-14 20:29:10 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-04-14 20:29:10 ----A---- C:\Windows\system32\d3dx10.dll
2014-04-14 20:29:09 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-04-14 20:29:09 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-04-14 20:29:09 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-04-14 20:29:09 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-04-14 20:29:08 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-04-14 20:29:08 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-04-14 20:29:08 ----A---- C:\Windows\system32\xinput1_2.dll
2014-04-14 20:29:08 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-04-14 20:29:07 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-04-14 20:29:07 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-04-14 20:29:07 ----A---- C:\Windows\system32\xinput1_1.dll
2014-04-14 20:29:07 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-04-14 20:29:03 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-04-14 20:29:03 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-04-14 20:29:00 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-04-14 20:29:00 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-04-14 20:28:59 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-04-14 20:28:59 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-04-14 20:28:59 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-04-14 20:28:59 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-04-14 20:28:58 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-04-14 20:28:58 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-04-14 20:28:57 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-04-14 20:28:57 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-04-14 20:28:56 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-04-14 20:28:56 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-04-14 20:28:56 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-04-14 20:28:56 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-04-14 20:28:55 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-04-14 20:28:55 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-04-14 20:28:55 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-04-14 20:28:55 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-04-14 19:48:49 ----D---- C:\Windows\SYSWOW64\NV
2014-04-14 19:48:49 ----D---- C:\Windows\system32\NV
2014-04-14 19:10:42 ----D---- C:\Temp
2014-04-14 19:10:39 ----A---- C:\Windows\GPU-Z.INI
2014-04-14 19:08:22 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-04-14 19:08:22 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-04-14 19:08:22 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-04-14 19:08:22 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-04-14 19:08:21 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-04-14 19:08:20 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-04-14 19:08:20 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-04-14 19:08:15 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-04-14 19:08:15 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-04-14 19:05:24 ----D---- C:\Program Files\Microsoft Silverlight
2014-04-14 19:05:24 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-04-14 17:10:41 ----N---- C:\Windows\system32\MpSigStub.exe
2014-04-14 16:46:15 ----A---- C:\Windows\system32\drivers\TeeDriverx64.sys
2014-04-14 16:43:30 ----D---- C:\Windows\SYSWOW64\sda
2014-04-14 16:43:30 ----D---- C:\ProgramData\AmUStor
2014-04-14 16:43:30 ----D---- C:\Program Files (x86)\AmIcoSingLun
2014-04-14 16:36:58 ----A---- C:\Windows\system32\drivers\SWDUMon.sys
2014-04-14 15:26:10 ----D---- C:\ProgramData\Microsoft OneDrive
2014-04-14 15:10:52 ----A---- C:\Windows\system32\stlang64.dll
2014-04-14 15:10:14 ----D---- C:\Program Files\IDT
2014-04-14 15:00:48 ----D---- C:\Users\Jaroslav\AppData\Roaming\Wise Disk Cleaner
2014-04-14 14:42:48 ----D---- C:\Users\Jaroslav\AppData\Roaming\InstallShield
2014-04-14 14:39:26 ----D---- C:\ProgramData\SRS Labs
2014-04-14 14:39:26 ----D---- C:\Program Files (x86)\DTS, Inc
2014-04-14 14:21:36 ----D---- C:\Program Files\Common Files\QCA_Bluetooth
2014-04-14 14:21:36 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-04-14 14:18:50 ----D---- C:\ProgramData\sMedio
2014-04-14 14:18:50 ----D---- C:\Program Files (x86)\sMedio
2014-04-14 13:51:39 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2014-04-14 13:21:15 ----D---- C:\UBIOS
2014-04-14 13:01:00 ----D---- C:\Program Files (x86)\TOSHIBA
2014-04-14 12:57:45 ----D---- C:\Users\Jaroslav\AppData\Roaming\WinBatch
2014-04-14 12:22:19 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2014-04-14 12:13:51 ----D---- C:\Users\Jaroslav\AppData\Roaming\WinRAR
2014-04-14 11:24:02 ----D---- C:\Program Files\WinRAR
2014-04-13 22:18:48 ----D---- C:\Users\Jaroslav\AppData\Roaming\ESET
2014-04-13 21:09:10 ----A---- C:\Windows\system32\WdfCoInstaller01011.dll
2014-04-13 21:09:07 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2014-04-13 21:01:19 ----D---- C:\Windows\Minidump
2014-04-13 20:57:44 ----ASH---- C:\swapfile.sys
2014-04-13 20:57:44 ----ASH---- C:\pagefile.sys
2014-04-13 20:27:39 ----D---- C:\Users\Jaroslav\AppData\Roaming\Opera Software
2014-04-13 15:29:49 ----D---- C:\Users\Jaroslav\AppData\Roaming\Oracle
2014-04-13 15:23:43 ----D---- C:\ProgramData\Synaptics
2014-04-13 15:20:01 ----D---- C:\ProgramData\Sun
2014-04-13 15:05:36 ----D---- C:\Users\Jaroslav\AppData\Roaming\OpenOffice
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvopencl.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvoglv64.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\NvIFR64.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\NvFBC64.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvdispgenco6433523.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvdispco6433523.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvcuvid.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvcuda.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2014-04-13 13:59:01 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-04-13 13:59:00 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-04-13 13:59:00 ----A---- C:\Windows\system32\nvcompiler.dll
2014-04-13 12:23:07 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-04-13 12:23:06 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-04-13 12:22:33 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-04-13 12:22:33 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-04-13 12:22:33 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-04-13 12:22:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-04-13 11:48:08 ----D---- C:\Users\Jaroslav\AppData\Roaming\.expertlotto
2014-04-13 11:47:46 ----D---- C:\Program Files\Expert Lotto 5
2014-04-13 10:46:40 ----D---- C:\Program Files (x86)\Hewlett-Packard
2014-04-13 10:46:38 ----D---- C:\ProgramData\Visan
2014-04-13 10:46:38 ----D---- C:\ProgramData\HP Photo Creations
2014-04-13 10:46:38 ----D---- C:\Program Files (x86)\HP Photo Creations
2014-04-13 10:46:28 ----D---- C:\Users\Jaroslav\AppData\Roaming\HpUpdate
2014-04-13 10:45:25 ----D---- C:\Program Files (x86)\HP
2014-04-13 10:43:56 ----D---- C:\Program Files\HP
2014-04-13 10:43:53 ----A---- C:\ProgramData\Ament.ini
2014-04-13 10:31:42 ----D---- C:\ProgramData\HP
2014-04-13 09:13:28 ----D---- C:\Users\Jaroslav\AppData\Roaming\NVIDIA
2014-04-12 23:53:02 ----D---- C:\ProgramData\IsolatedStorage
2014-04-12 22:12:06 ----D---- C:\Program Files\CCleaner
2014-04-12 22:04:49 ----D---- C:\Users\Jaroslav\AppData\Roaming\MPC-HC
2014-04-12 22:03:46 ----D---- C:\Program Files\MPC-HC
2014-04-12 20:06:30 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-04-12 20:06:30 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-04-12 20:06:30 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-04-12 20:06:30 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-04-12 20:06:29 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-04-12 20:06:29 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-04-12 20:06:25 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-04-12 20:06:25 ----A---- C:\Windows\system32\nvspcap64.dll
2014-04-12 20:03:48 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-04-12 20:03:48 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-04-12 20:03:48 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-04-12 19:20:43 ----A---- C:\Windows\system32\WSService.dll
2014-04-12 19:20:37 ----A---- C:\Windows\system32\glcndFilter.dll
2014-04-12 19:20:35 ----A---- C:\Windows\system32\jscript9.dll
2014-04-12 19:20:33 ----A---- C:\Windows\system32\ieframe.dll
2014-04-12 19:20:31 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2014-04-12 19:20:31 ----A---- C:\Windows\system32\OobeFldr.dll
2014-04-12 19:20:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-04-12 19:20:28 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2014-04-12 19:20:25 ----A---- C:\Windows\system32\wmp.dll
2014-04-12 19:20:24 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-04-12 19:20:24 ----A---- C:\Windows\system32\sppobjs.dll
2014-04-12 19:20:23 ----A---- C:\Windows\system32\tquery.dll
2014-04-12 19:20:22 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-04-12 19:20:20 ----A---- C:\Windows\system32\sysmain.dll
2014-04-12 19:20:19 ----A---- C:\Windows\system32\mssrch.dll
2014-04-12 19:20:18 ----A---- C:\Windows\system32\wininet.dll
2014-04-12 19:20:18 ----A---- C:\Windows\system32\win32k.sys
2014-04-12 19:20:17 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2014-04-12 19:20:16 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-04-12 19:20:16 ----A---- C:\Windows\system32\Wpc.dll
2014-04-12 19:20:15 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-04-12 19:20:15 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-04-12 19:20:14 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-04-12 19:20:14 ----A---- C:\Windows\system32\combase.dll
2014-04-12 19:20:13 ----A---- C:\Windows\system32\webservices.dll
2014-04-12 19:20:13 ----A---- C:\Windows\system32\iertutil.dll
2014-04-12 19:20:12 ----A---- C:\Windows\system32\wlidsvc.dll
2014-04-12 19:20:12 ----A---- C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-04-12 19:20:12 ----A---- C:\Windows\system32\actxprxy.dll
2014-04-12 19:20:11 ----A---- C:\Windows\system32\WpcMon.exe
2014-04-12 19:20:11 ----A---- C:\Windows\system32\mfcore.dll
2014-04-12 19:20:11 ----A---- C:\Windows\system32\dui70.dll
2014-04-12 19:20:10 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-04-12 19:20:10 ----A---- C:\Windows\system32\msTextPrediction.dll
2014-04-12 19:20:09 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2014-04-12 19:20:09 ----A---- C:\Windows\system32\urlmon.dll
2014-04-12 19:20:08 ----A---- C:\Windows\system32\mfnetsrc.dll
2014-04-12 19:20:07 ----A---- C:\Windows\SYSWOW64\combase.dll
2014-04-12 19:20:07 ----A---- C:\Windows\system32\WpcWebSync.dll
2014-04-12 19:20:07 ----A---- C:\Windows\system32\Windows.Globalization.dll
2014-04-12 19:20:06 ----A---- C:\Windows\SYSWOW64\webservices.dll
2014-04-12 19:20:06 ----A---- C:\Windows\system32\mfnetcore.dll
2014-04-12 19:20:05 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-04-12 19:20:05 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2014-04-12 19:20:05 ----A---- C:\Windows\system32\uDWM.dll
2014-04-12 19:20:05 ----A---- C:\Windows\system32\StructuredQuery.dll
2014-04-12 19:20:05 ----A---- C:\Windows\system32\ExplorerFrame.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\WofTasks.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\setupapi.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\SettingSyncHost.exe
2014-04-12 19:20:04 ----A---- C:\Windows\system32\rpcss.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\DfpCommon.dll
2014-04-12 19:20:03 ----A---- C:\Windows\SYSWOW64\dui70.dll
2014-04-12 19:20:03 ----A---- C:\Windows\system32\RacEngn.dll
2014-04-12 19:20:03 ----A---- C:\Windows\system32\ntdll.dll
2014-04-12 19:20:02 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-04-12 19:20:02 ----A---- C:\Windows\system32\mf.dll
2014-04-12 19:20:01 ----AC---- C:\Windows\system32\drivers\acpi.sys
2014-04-12 19:20:01 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2014-04-12 19:20:01 ----A---- C:\Windows\system32\msctf.dll
2014-04-12 19:20:00 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-04-12 19:19:59 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\SHCore.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\SettingSyncCore.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\ieapfltr.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-04-12 19:19:58 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2014-04-12 19:19:58 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2014-04-12 19:19:58 ----A---- C:\Windows\system32\wpccpl.dll
2014-04-12 19:19:58 ----A---- C:\Windows\system32\wer.dll
2014-04-12 19:19:57 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2014-04-12 19:19:57 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2014-04-12 19:19:57 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2014-04-12 19:19:56 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2014-04-12 19:19:56 ----A---- C:\Windows\system32\samsrv.dll
2014-04-12 19:19:55 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-04-12 19:19:55 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2014-04-12 19:19:55 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-04-12 19:19:55 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-04-12 19:19:55 ----A---- C:\Windows\system32\uxtheme.dll
2014-04-12 19:19:55 ----A---- C:\Windows\system32\user32.dll
2014-04-12 19:19:55 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-04-12 19:19:55 ----A---- C:\Windows\system32\mfplat.dll
2014-04-12 19:19:54 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-04-12 19:19:54 ----A---- C:\Windows\system32\winmde.dll
2014-04-12 19:19:54 ----A---- C:\Windows\system32\storagewmi.dll
2014-04-12 19:19:53 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2014-04-12 19:19:53 ----A---- C:\Windows\system32\twinapi.dll
2014-04-12 19:19:53 ----A---- C:\Windows\system32\Taskmgr.exe
2014-04-12 19:19:53 ----A---- C:\Windows\system32\MMDevAPI.dll
2014-04-12 19:19:53 ----A---- C:\Windows\system32\jscript9diag.dll
2014-04-12 19:19:52 ----A---- C:\Windows\system32\WinTypes.dll
2014-04-12 19:19:52 ----A---- C:\Windows\system32\reseteng.dll
2014-04-12 19:19:51 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2014-04-12 19:19:51 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2014-04-12 19:19:51 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2014-04-12 19:19:51 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-04-12 19:19:51 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2014-04-12 19:19:51 ----A---- C:\Windows\system32\twinapi.appcore.dll
2014-04-12 19:19:51 ----A---- C:\Windows\system32\schannel.dll
2014-04-12 19:19:51 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2014-04-12 19:19:50 ----A---- C:\Windows\SYSWOW64\msctf.dll
2014-04-12 19:19:50 ----A---- C:\Windows\system32\wpncore.dll
2014-04-12 19:19:50 ----A---- C:\Windows\system32\perftrack.dll
2014-04-12 19:19:50 ----A---- C:\Windows\system32\mispace.dll
2014-04-12 19:19:49 ----A---- C:\Windows\system32\WWAHost.exe
2014-04-12 19:19:49 ----A---- C:\Windows\system32\lsm.dll
2014-04-12 19:19:49 ----A---- C:\Windows\system32\hal.dll
2014-04-12 19:19:49 ----A---- C:\Windows\system32\advapi32.dll
2014-04-12 19:19:48 ----A---- C:\Windows\SYSWOW64\mispace.dll
2014-04-12 19:19:48 ----A---- C:\Windows\system32\RecoveryDrive.exe
2014-04-12 19:19:47 ----A---- C:\Windows\system32\wcmsvc.dll
2014-04-12 19:19:47 ----A---- C:\Windows\system32\energy.dll
2014-04-12 19:19:46 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2014-04-12 19:19:46 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2014-04-12 19:19:46 ----A---- C:\Windows\system32\wintrust.dll
2014-04-12 19:19:46 ----A---- C:\Windows\system32\mssvp.dll
2014-04-12 19:19:46 ----A---- C:\Windows\system32\apphelp.dll
2014-04-12 19:19:45 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2014-04-12 19:19:45 ----A---- C:\Windows\system32\WSShared.dll
2014-04-12 19:19:45 ----A---- C:\Windows\system32\wmpmde.dll
2014-04-12 19:19:45 ----A---- C:\Windows\system32\tdh.dll
2014-04-12 19:19:44 ----AC---- C:\Windows\system32\drivers\pci.sys
2014-04-12 19:19:42 ----A---- C:\Windows\system32\workfolderssvc.dll
2014-04-12 19:19:42 ----A---- C:\Windows\system32\DismApi.dll
2014-04-12 19:19:41 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2014-04-12 19:19:41 ----A---- C:\Windows\system32\winlogon.exe
2014-04-12 19:19:41 ----A---- C:\Windows\system32\winload.exe
2014-04-12 19:19:41 ----A---- C:\Windows\system32\ie4uinit.exe
2014-04-12 19:19:40 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-04-12 19:19:40 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2014-04-12 19:19:40 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-04-12 19:19:39 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2014-04-12 19:19:39 ----A---- C:\Windows\system32\winresume.exe
2014-04-12 19:19:39 ----A---- C:\Windows\system32\drivers\ks.sys
2014-04-12 19:19:38 ----A---- C:\Windows\system32\mssph.dll
2014-04-12 19:19:36 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2014-04-12 19:19:36 ----A---- C:\Windows\system32\bcryptprimitives.dll
2014-04-12 19:19:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-04-12 19:19:35 ----A---- C:\Windows\system32\werconcpl.dll
2014-04-12 19:19:35 ----A---- C:\Windows\system32\ActionCenter.dll
2014-04-12 19:19:34 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2014-04-12 19:19:34 ----A---- C:\Windows\system32\stobject.dll
2014-04-12 19:19:33 ----AC---- C:\Windows\system32\WMALFXGFXDSP.dll
2014-04-12 19:19:33 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-04-12 19:19:33 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2014-04-12 19:19:33 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-04-12 19:19:33 ----A---- C:\Windows\system32\wuapi.dll
2014-04-12 19:19:33 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-04-12 19:19:33 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2014-04-12 19:19:32 ----AC---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-04-12 19:19:32 ----A---- C:\Windows\SYSWOW64\winmde.dll
2014-04-12 19:19:32 ----A---- C:\Windows\system32\WofUtil.dll
2014-04-12 19:19:32 ----A---- C:\Windows\system32\wimgapi.dll
2014-04-12 19:19:32 ----A---- C:\Windows\system32\SettingSync.dll
2014-04-12 19:19:32 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-04-12 19:19:31 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-04-12 19:19:31 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-04-12 19:19:31 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-04-12 19:19:31 ----A---- C:\Windows\system32\sppwinob.dll
2014-04-12 19:19:31 ----A---- C:\Windows\system32\ntshrui.dll
2014-04-12 19:19:31 ----A---- C:\Windows\system32\iuilp.dll
2014-04-12 19:19:30 ----A---- C:\Windows\system32\wlidcli.dll
2014-04-12 19:19:30 ----A---- C:\Windows\system32\thumbcache.dll
2014-04-12 19:19:30 ----A---- C:\Windows\system32\recimg.exe
2014-04-12 19:19:30 ----A---- C:\Windows\system32\dfp.exe
2014-04-12 19:19:29 ----AC---- C:\Windows\system32\drivers\volsnap.sys
2014-04-12 19:19:29 ----A---- C:\Windows\SYSWOW64\slc.dll
2014-04-12 19:19:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-04-12 19:19:29 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2014-04-12 19:19:29 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2014-04-12 19:19:29 ----A---- C:\Windows\system32\slc.dll
2014-04-12 19:19:29 ----A---- C:\Windows\system32\MrmIndexer.dll
2014-04-12 19:19:29 ----A---- C:\Windows\system32\Dism.exe
2014-04-12 19:19:29 ----A---- C:\Windows\system32\AppxPackaging.dll
2014-04-12 19:19:29 ----A---- C:\Windows\system32\aelupsvc.dll
2014-04-12 19:19:28 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2014-04-12 19:19:28 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2014-04-12 19:19:28 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-04-12 19:19:28 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-04-12 19:19:28 ----A---- C:\Windows\system32\nettrace.dll
2014-04-12 19:19:28 ----A---- C:\Windows\system32\bisrv.dll
2014-04-12 19:19:28 ----A---- C:\Windows\system32\AppReadiness.dll
2014-04-12 19:19:27 ----A---- C:\Windows\system32\pnidui.dll
2014-04-12 19:19:27 ----A---- C:\Windows\system32\dwmredir.dll
2014-04-12 19:19:27 ----A---- C:\Windows\system32\comdlg32.dll
2014-04-12 19:19:26 ----A---- C:\Windows\SYSWOW64\stobject.dll
2014-04-12 19:19:26 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2014-04-12 19:19:26 ----A---- C:\Windows\system32\WMPDMC.exe
2014-04-12 19:19:25 ----A---- C:\Windows\system32\psmsrv.dll
2014-04-12 19:19:25 ----A---- C:\Windows\system32\gpsvc.dll
2014-04-12 19:19:24 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2014-04-12 19:19:24 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\WlanMM.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\VAN.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\osk.exe
2014-04-12 19:19:24 ----A---- C:\Windows\system32\ninput.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\InputSwitch.dll
2014-04-12 19:19:23 ----A---- C:\Windows\system32\msvproc.dll
2014-04-12 19:19:23 ----A---- C:\Windows\system32\drivers\storport.sys
2014-04-12 19:19:23 ----A---- C:\Windows\system32\authz.dll
2014-04-12 19:19:22 ----AC---- C:\Windows\system32\drivers\spaceport.sys
2014-04-12 19:19:22 ----AC---- C:\Windows\system32\drivers\portcls.sys
2014-04-12 19:19:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-04-12 19:19:22 ----A---- C:\Windows\system32\SyncCenter.dll
2014-04-12 19:19:22 ----A---- C:\Windows\system32\swprv.dll
2014-04-12 19:19:22 ----A---- C:\Windows\system32\defragsvc.dll
2014-04-12 19:19:21 ----AC---- C:\Windows\system32\drivers\vhdmp.sys
2014-04-12 19:19:21 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2014-04-12 19:19:21 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\wlidcredprov.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\wersvc.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\vbscript.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\themeui.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\taskeng.exe
2014-04-12 19:19:21 ----A---- C:\Windows\system32\msfeeds.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\conhost.exe
2014-04-12 19:19:20 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-04-12 19:19:20 ----A---- C:\Windows\SYSWOW64\DismApi.dll
2014-04-12 19:19:20 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-04-12 19:19:20 ----A---- C:\Windows\system32\sqmapi.dll
2014-04-12 19:19:20 ----A---- C:\Windows\system32\rdpcore.dll
2014-04-12 19:19:20 ----A---- C:\Windows\system32\rdbui.dll
2014-04-12 19:19:20 ----A---- C:\Windows\system32\mdmregistration.dll
2014-04-12 19:19:19 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2014-04-12 19:19:19 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2014-04-12 19:19:19 ----A---- C:\Windows\system32\wbengine.exe
2014-04-12 19:19:18 ----A---- C:\Windows\SYSWOW64\themeui.dll
2014-04-12 19:19:18 ----A---- C:\Windows\system32\SndVol.exe
2014-04-12 19:19:18 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-04-12 19:19:17 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-04-12 19:19:17 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2014-04-12 19:19:17 ----A---- C:\Windows\SYSWOW64\Dism.exe
2014-04-12 19:19:17 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2014-04-12 19:19:17 ----A---- C:\Windows\system32\WerFault.exe
2014-04-12 19:19:17 ----A---- C:\Windows\system32\dxtmsft.dll
2014-04-12 19:19:16 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-04-12 19:19:16 ----A---- C:\Windows\SYSWOW64\InputSwitch.dll
2014-04-12 19:19:16 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\sppc.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\SkyDriveShell.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\oleaut32.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\msctfuimanager.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\bcrypt.dll
2014-04-12 19:19:15 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2014-04-12 19:19:15 ----A---- C:\Windows\system32\dwmapi.dll
2014-04-12 19:19:15 ----A---- C:\Windows\system32\aepdu.dll
2014-04-12 19:19:14 ----A---- C:\Windows\SYSWOW64\VAN.dll
2014-04-12 19:19:14 ----A---- C:\Windows\SYSWOW64\sppc.dll
2014-04-12 19:19:14 ----A---- C:\Windows\system32\wwanmm.dll
2014-04-12 19:19:14 ----A---- C:\Windows\system32\WSClient.dll
2014-04-12 19:19:14 ----A---- C:\Windows\system32\WLanConn.dll
2014-04-12 19:19:14 ----A---- C:\Windows\system32\wimserv.exe
2014-04-12 19:19:14 ----A---- C:\Windows\system32\PkgMgr.exe
2014-04-12 19:19:14 ----A---- C:\Windows\system32\ci.dll
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\SkyDriveShell.dll
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-04-12 19:19:13 ----A---- C:\Windows\system32\wscinterop.dll
2014-04-12 19:19:13 ----A---- C:\Windows\system32\PurchaseWindowsLicense.dll
2014-04-12 19:19:13 ----A---- C:\Windows\system32\ploptin.dll
2014-04-12 19:19:13 ----A---- C:\Windows\system32\microsoft-windows-system-events.dll
2014-04-12 19:19:12 ----A---- C:\Windows\SYSWOW64\WlanMM.dll
2014-04-12 19:19:12 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2014-04-12 19:19:12 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2014-04-12 19:19:12 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeui.exe
2014-04-12 19:19:12 ----A---- C:\Windows\system32\gameux.dll
2014-04-12 19:19:12 ----A---- C:\Windows\system32\fhcfg.dll
2014-04-12 19:19:12 ----A---- C:\Windows\system32\dwm.exe
2014-04-12 19:19:11 ----A---- C:\Windows\SYSWOW64\msctfuimanager.dll
2014-04-12 19:19:11 ----A---- C:\Windows\SYSWOW64\authz.dll
2014-04-12 19:19:11 ----A---- C:\Windows\system32\winsrv.dll
2014-04-12 19:19:11 ----A---- C:\Windows\system32\taskhost.exe
2014-04-12 19:19:11 ----A---- C:\Windows\system32\rasgcw.dll
2014-04-12 19:19:11 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-04-12 19:19:11 ----A---- C:\Windows\system32\drivers\luafv.sys
2014-04-12 19:19:11 ----A---- C:\Windows\system32\dmdskmgr.dll
2014-04-12 19:19:10 ----AC---- C:\Windows\system32\drivers\sdbus.sys
2014-04-12 19:19:10 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\wscsvc.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\wscapi.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\wermgr.exe
2014-04-12 19:19:10 ----A---- C:\Windows\system32\usercpl.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\srchadmin.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\Faultrep.dll
2014-04-12 19:19:09 ----A---- C:\Windows\SYSWOW64\ninput.dll
2014-04-12 19:19:09 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2014-04-12 19:19:09 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2014-04-12 19:19:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\wwanconn.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\wsqmcons.exe
2014-04-12 19:19:08 ----A---- C:\Windows\system32\systemreset.exe
2014-04-12 19:19:08 ----A---- C:\Windows\system32\SndVolSSO.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\smss.exe
2014-04-12 19:19:08 ----A---- C:\Windows\system32\RASMM.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\imm32.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\BioCredProv.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\AltTab.dll
2014-04-12 19:19:07 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2014-04-12 19:19:07 ----A---- C:\Windows\system32\vmrdvcore.dll
2014-04-12 19:19:07 ----A---- C:\Windows\system32\vdsbas.dll
2014-04-12 19:19:07 ----A---- C:\Windows\system32\PlayToManager.dll
2014-04-12 19:19:07 ----A---- C:\Windows\system32\fsutil.exe
2014-04-12 19:19:07 ----A---- C:\Windows\system32\fhcpl.dll
2014-04-12 19:19:06 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\taskhostex.exe
2014-04-12 19:19:06 ----A---- C:\Windows\system32\sharemediacpl.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\printui.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\netid.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\jsproxy.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\dxtrans.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\drivers\msgpioclx.sys
2014-04-12 19:19:06 ----A---- C:\Windows\system32\das.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\CloudNotifications.exe
2014-04-12 19:19:05 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2014-04-12 19:19:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-04-12 19:19:05 ----A---- C:\Windows\SYSWOW64\CloudNotifications.exe
2014-04-12 19:19:05 ----A---- C:\Windows\system32\WSDApi.dll
2014-04-12 19:19:05 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2014-04-12 19:19:05 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2014-04-12 19:19:05 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-04-12 19:19:05 ----A---- C:\Windows\system32\sdclt.exe
2014-04-12 19:19:05 ----A---- C:\Windows\system32\drivers\refs.sys
2014-04-12 19:19:05 ----A---- C:\Windows\system32\drivers\fileinfo.sys
2014-04-12 19:19:04 ----AC---- C:\Windows\system32\drivers\dumpsd.sys
2014-04-12 19:19:04 ----AC---- C:\Windows\system32\drivers\BasicRender.sys
2014-04-12 19:19:04 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2014-04-12 19:19:04 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2014-04-12 19:19:04 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2014-04-12 19:19:04 ----A---- C:\Windows\SYSWOW64\imm32.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\zipfldr.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\rascustom.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\powrprof.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\newdev.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\mssprxy.dll
2014-04-12 19:19:03 ----AC---- C:\Windows\system32\drivers\sdstor.sys
2014-04-12 19:19:03 ----AC---- C:\Windows\system32\drivers\BthLEEnum.sys
2014-04-12 19:19:03 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2014-04-12 19:19:03 ----A---- C:\Windows\SYSWOW64\gameux.dll
2014-04-12 19:19:03 ----A---- C:\Windows\system32\wusa.exe
2014-04-12 19:19:03 ----A---- C:\Windows\system32\spwizeng.dll
2014-04-12 19:19:03 ----A---- C:\Windows\system32\RestoreOptIn.exe
2014-04-12 19:19:03 ----A---- C:\Windows\system32\dmvdsitf.dll
2014-04-12 19:19:03 ----A---- C:\Windows\system32\aepic.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\WLanConn.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\rasgcw.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\powrprof.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\wow64win.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\vds.exe
2014-04-12 19:19:02 ----A---- C:\Windows\system32\UserAccountBroker.exe
2014-04-12 19:19:02 ----A---- C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\LockScreenContent.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\appinfo.dll
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\UserAccountBroker.exe
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\RestoreOptIn.exe
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\newdev.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\iedkcs32.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\dot3mm.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\clrhost.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\bcd.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\AppxSysprep.dll
2014-04-12 19:19:00 ----A---- C:\Windows\SYSWOW64\wscinterop.dll
2014-04-12 19:19:00 ----A---- C:\Windows\system32\easinvoker.exe
2014-04-12 19:19:00 ----A---- C:\Windows\system32\DAMM.dll
2014-04-12 19:19:00 ----A---- C:\Windows\system32\bootux.dll
2014-04-12 19:18:59 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-04-12 19:18:59 ----A---- C:\Windows\SYSWOW64\bcd.dll
2014-04-12 19:18:59 ----A---- C:\Windows\system32\WiFiDisplay.dll
2014-04-12 19:18:59 ----A---- C:\Windows\system32\srclient.dll
2014-04-12 19:18:59 ----A---- C:\Windows\system32\drivers\dumpfve.sys
2014-04-12 19:18:58 ----AC---- C:\Windows\system32\drivers\USBXHCI.SYS
2014-04-12 19:18:58 ----AC---- C:\Windows\system32\drivers\bthport.sys
2014-04-12 19:18:58 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-04-12 19:18:58 ----A---- C:\Windows\SYSWOW64\cleanmgr.exe
2014-04-12 19:18:58 ----A---- C:\Windows\system32\samlib.dll
2014-04-12 19:18:58 ----A---- C:\Windows\system32\rpchttp.dll
2014-04-12 19:18:58 ----A---- C:\Windows\system32\provsvc.dll
2014-04-12 19:18:58 ----A---- C:\Windows\system32\drivers\wpcfltr.sys
2014-04-12 19:18:58 ----A---- C:\Windows\system32\cleanmgr.exe
2014-04-12 19:18:57 ----AC---- C:\Windows\system32\drivers\UCX01000.SYS
2014-04-12 19:18:57 ----A---- C:\Windows\system32\rasmans.dll
2014-04-12 19:18:57 ----A---- C:\Windows\system32\AuthHost.exe
2014-04-12 19:18:56 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2014-04-12 19:18:56 ----A---- C:\Windows\system32\netiohlp.dll
2014-04-12 19:18:56 ----A---- C:\Windows\system32\korwbrkr.dll
2014-04-12 19:18:56 ----A---- C:\Windows\system32\deviceaccess.dll
2014-04-12 19:18:55 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2014-04-12 19:18:55 ----A---- C:\Windows\SYSWOW64\netid.dll
2014-04-12 19:18:55 ----A---- C:\Windows\SYSWOW64\BioCredProv.dll
2014-04-12 19:18:55 ----A---- C:\Windows\system32\WerFaultSecure.exe
2014-04-12 19:18:54 ----A---- C:\Windows\SYSWOW64\dmvdsitf.dll
2014-04-12 19:18:54 ----A---- C:\Windows\system32\scrrun.dll
2014-04-12 19:18:53 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-04-12 19:18:53 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2014-04-12 19:18:53 ----A---- C:\Windows\SYSWOW64\clrhost.dll
2014-04-12 19:18:53 ----A---- C:\Windows\system32\easwrt.dll
2014-04-12 19:18:53 ----A---- C:\Windows\system32\drivers\http.sys
2014-04-12 19:18:52 ----A---- C:\Windows\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-04-12 19:18:52 ----A---- C:\Windows\system32\srcore.dll
2014-04-12 19:18:52 ----A---- C:\Windows\system32\acppage.dll
2014-04-12 19:18:51 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2014-04-12 19:18:51 ----A---- C:\Windows\SYSWOW64\dmdskmgr.dll
2014-04-12 19:18:51 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\wcmcsp.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\VSSVC.exe
2014-04-12 19:18:51 ----A---- C:\Windows\system32\scrobj.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\netplwiz.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\CloudStorageWizard.exe
2014-04-12 19:18:51 ----A---- C:\Windows\system32\AuthBroker.dll
2014-04-12 19:18:50 ----AC---- C:\Windows\system32\drivers\rfcomm.sys
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\samlib.dll
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\deviceaccess.dll
2014-04-12 19:18:50 ----A---- C:\Windows\system32\wuwebv.dll
2014-04-12 19:18:50 ----A---- C:\Windows\system32\winbrand.dll
2014-04-12 19:18:50 ----A---- C:\Windows\system32\slpts.dll
2014-04-12 19:18:50 ----A---- C:\Windows\system32\LockScreenContentServer.exe
2014-04-12 19:18:50 ----A---- C:\Windows\system32\DWWIN.EXE
2014-04-12 19:18:49 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2014-04-12 19:18:49 ----A---- C:\Windows\SYSWOW64\acppage.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\wpnprv.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\wbadmin.exe
2014-04-12 19:18:49 ----A---- C:\Windows\system32\sud.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\PrintDialogs.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\bcdedit.exe
2014-04-12 19:18:49 ----A---- C:\Windows\system32\autofmt.exe
2014-04-12 19:18:49 ----A---- C:\Windows\system32\autoconv.exe
2014-04-12 19:18:48 ----A---- C:\Windows\SYSWOW64\wlidcredprov.dll
2014-04-12 19:18:48 ----A---- C:\Windows\SYSWOW64\scrobj.dll
2014-04-12 19:18:48 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2014-04-12 19:18:48 ----A---- C:\Windows\SYSWOW64\printui.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\wudriver.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\Windows.Media.Renewal.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\wbiosrvc.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\untfs.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\SysResetErr.exe
2014-04-12 19:18:48 ----A---- C:\Windows\system32\sppnp.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\spbcd.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\mfpmp.exe
2014-04-12 19:18:48 ----A---- C:\Windows\system32\BootMenuUX.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\bcdboot.exe
2014-04-12 19:18:48 ----A---- C:\Windows\system32\autochk.exe
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\winbrand.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\slpts.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\autochk.exe
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2014-04-12 19:18:47 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2014-04-12 19:18:47 ----A---- C:\Windows\system32\UXInit.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\migisol.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\IdCtrls.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\fhevents.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\dafBth.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\DAConn.dll
2014-04-12 19:18:46 ----AC---- C:\Windows\system32\drivers\BTHUSB.SYS
2014-04-12 19:18:46 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-12 19:18:46 ----A---- C:\Windows\SYSWOW64\StorageContextHandler.dll
2014-04-12 19:18:46 ----A---- C:\Windows\SYSWOW64\DWWIN.EXE
2014-04-12 19:18:46 ----A---- C:\Windows\SYSWOW64\AuthBroker.dll
2014-04-12 19:18:46 ----A---- C:\Windows\system32\vdsutil.dll
2014-04-12 19:18:46 ----A---- C:\Windows\system32\spcompat.dll
2014-04-12 19:18:46 ----A---- C:\Windows\system32\drivers\watchdog.sys
2014-04-12 19:18:46 ----A---- C:\Windows\system32\cscript.exe
2014-04-12 19:18:45 ----A---- C:\Windows\SYSWOW64\WimBootCompress.ini
2014-04-12 19:18:45 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2014-04-12 19:18:45 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2014-04-12 19:18:45 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2014-04-12 19:18:45 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2014-04-12 19:18:45 ----A---- C:\Windows\system32\WimBootCompress.ini
2014-04-12 19:18:45 ----A---- C:\Windows\system32\energytask.dll
2014-04-12 19:18:45 ----A---- C:\Windows\system32\diskpart.exe
2014-04-12 19:18:44 ----A---- C:\Windows\system32\werui.dll
2014-04-12 19:18:44 ----A---- C:\Windows\system32\devinv.dll
2014-04-12 19:18:43 ----A---- C:\Windows\system32\powercfg.exe
2014-04-12 19:18:42 ----A---- C:\Windows\SYSWOW64\sud.dll
2014-04-12 19:18:42 ----A---- C:\Windows\system32\RelPost.exe
2014-04-12 19:18:41 ----A---- C:\Windows\system32\SettingMonitor.dll
2014-04-12 19:18:41 ----A---- C:\Windows\system32\rstrui.exe
2014-04-12 19:18:41 ----A---- C:\Windows\system32\pnpclean.dll
2014-04-12 19:18:41 ----A---- C:\Windows\system32\deviceassociation.dll
2014-04-12 19:18:40 ----A---- C:\Windows\SYSWOW64\wlidcli.dll
2014-04-12 19:18:40 ----A---- C:\Windows\system32\dasHost.exe
2014-04-12 19:18:39 ----A---- C:\Windows\SYSWOW64\SettingMonitor.dll
2014-04-12 19:18:39 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-04-12 19:18:39 ----A---- C:\Windows\system32\srrstr.dll
2014-04-12 19:18:39 ----A---- C:\Windows\system32\qedit.dll
2014-04-12 19:18:39 ----A---- C:\Windows\system32\PlayToDevice.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\winsku.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\SSShim.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\PlayToDevice.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\offreg.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\IdCtrls.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\CloudStorageWizard.exe
2014-04-12 19:18:38 ----A---- C:\Windows\system32\wups.dll
2014-04-12 19:18:38 ----A---- C:\Windows\system32\wuapp.exe
2014-04-12 19:18:38 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-04-12 19:18:38 ----A---- C:\Windows\system32\ReAgentc.exe
2014-04-12 19:18:38 ----A---- C:\Windows\system32\offreg.dll
2014-04-12 19:18:38 ----A---- C:\Windows\system32\dfrgui.exe
2014-04-12 19:18:38 ----A---- C:\Windows\system32\ActionQueue.dll
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\werui.dll
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\powercfg.exe
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\migisol.dll
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\deviceassociation.dll
2014-04-12 19:18:37 ----A---- C:\Windows\system32\SystemSettings.Handlers.dll
2014-04-12 19:18:37 ----A---- C:\Windows\system32\msshooks.dll
2014-04-12 19:18:37 ----A---- C:\Windows\system32\mf3216.dll
2014-04-12 19:18:37 ----A---- C:\Windows\system32\f3ahvoas.dll
2014-04-12 19:18:33 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2014-04-12 19:18:33 ----A---- C:\Windows\SYSWOW64\easwrt.dll
2014-04-12 19:18:33 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2014-04-12 19:18:33 ----A---- C:\Windows\system32\winsku.dll
2014-04-12 19:18:33 ----A---- C:\Windows\system32\wercplsupport.dll
2014-04-12 19:18:33 ----A---- C:\Windows\system32\vdsdyn.dll
2014-04-12 19:18:33 ----A---- C:\Windows\system32\SrTasks.exe
2014-04-12 19:18:32 ----A---- C:\Windows\system32\themecpl.dll
2014-04-12 19:18:32 ----A---- C:\Windows\system32\LockScreenContentHost.dll
2014-04-12 19:18:32 ----A---- C:\Windows\system32\DevicePairing.dll
2014-04-12 19:18:32 ----A---- C:\Windows\system32\Defrag.exe
2014-04-12 19:18:32 ----A---- C:\Windows\system32\AepRoam.dll
2014-04-12 19:18:31 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2014-04-12 19:18:31 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\wusa.exe
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\sxshared.dll
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\ConfigureExpandedStorage.dll
2014-04-12 19:18:30 ----A---- C:\Windows\system32\ConfigureExpandedStorage.dll
2014-04-12 19:18:29 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-12 19:18:29 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-04-12 19:18:29 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-12 19:18:29 ----A---- C:\Windows\system32\scavengeui.dll
2014-04-12 19:18:24 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-12 19:18:24 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-04-12 19:18:24 ----A---- C:\Windows\system32\wincorlib.dll
2014-04-12 19:18:23 ----A---- C:\Windows\SYSWOW64\wincorlib.dll
2014-04-12 19:18:23 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2014-04-12 19:18:21 ----A---- C:\Windows\system32\BulkOperationHost.exe
2014-04-12 19:18:20 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2014-04-12 19:18:20 ----A---- C:\Windows\system32\syncui.dll
2014-04-12 19:18:20 ----A---- C:\Windows\system32\SettingSyncPolicy.dll
2014-04-12 19:18:15 ----A---- C:\Windows\system32\mshtmled.dll
2014-04-12 19:18:14 ----A---- C:\Windows\SYSWOW64\finger.exe
2014-04-12 19:18:12 ----A---- C:\Windows\system32\WorkfoldersControl.dll
2014-04-12 19:18:12 ----A---- C:\Windows\system32\wmpdxm.dll
2014-04-12 19:18:11 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2014-04-12 19:18:11 ----A---- C:\Windows\SYSWOW64\SettingSyncPolicy.dll
2014-04-12 19:18:09 ----A---- C:\Windows\system32\ocsetapi.dll
2014-04-12 19:18:09 ----A---- C:\Windows\system32\GlobCollationHost.dll
2014-04-12 19:18:06 ----A---- C:\Windows\system32\StorageContextHandler.dll
2014-04-12 19:18:05 ----AH---- C:\Windows\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-12 19:18:05 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2014-04-12 19:18:05 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2014-04-12 19:18:04 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-12 19:18:04 ----AH---- C:\Windows\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-12 19:18:04 ----A---- C:\Windows\SYSWOW64\korwbrkr.dll
2014-04-12 19:18:04 ----A---- C:\Windows\system32\shsetup.dll
2014-04-12 19:18:04 ----A---- C:\Windows\system32\dataclen.dll
2014-04-12 19:18:04 ----A---- C:\Windows\system32\aitagent.exe
2014-04-12 19:18:02 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-12 19:18:02 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-12 19:18:02 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-04-12 19:18:02 ----AH---- C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-12 19:18:02 ----AH---- C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-12 19:18:02 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-04-12 19:18:02 ----A---- C:\Windows\SYSWOW64\dataclen.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\winbici.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\shimeng.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\occache.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\lpksetupproxyserv.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\fveskybackup.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\finger.exe
2014-04-12 19:18:02 ----A---- C:\Windows\system32\fhsvcctl.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\dxmasf.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\aeinv.dll
2014-04-12 19:18:01 ----A---- C:\Windows\SYSWOW64\f3ahvoas.dll
2014-04-12 19:09:14 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2014-04-12 19:09:09 ----A---- C:\Windows\system32\shell32.dll
2014-04-12 19:09:08 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2014-04-12 19:09:06 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2014-04-12 19:09:06 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-04-12 19:09:05 ----A---- C:\Windows\system32\twinui.dll
2014-04-12 19:09:04 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-04-12 19:09:01 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-04-12 19:08:59 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2014-04-12 19:08:59 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-04-12 19:08:59 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-04-12 19:08:57 ----A---- C:\Windows\system32\SyncEngine.dll
2014-04-12 19:08:57 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-04-12 19:08:56 ----A---- C:\Windows\system32\msxml6.dll
2014-04-12 19:08:56 ----A---- C:\Windows\system32\msftedit.dll
2014-04-12 19:08:55 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-04-12 19:08:55 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-04-12 19:08:55 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-04-12 19:08:55 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2014-04-12 19:08:55 ----A---- C:\Windows\explorer.exe
2014-04-12 19:08:54 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-04-12 19:08:54 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2014-04-12 19:08:54 ----A---- C:\Windows\system32\KernelBase.dll
2014-04-12 19:08:54 ----A---- C:\Windows\system32\dwmcore.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\twinui.appcore.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\SearchFolder.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\lsasrv.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-04-12 19:08:53 ----A---- C:\Windows\system32\d3d11.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\authui.dll
2014-04-12 19:08:52 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2014-04-12 19:08:52 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2014-04-12 19:08:52 ----A---- C:\Windows\system32\ole32.dll
2014-04-12 19:08:52 ----A---- C:\Windows\system32\localspl.dll
2014-04-12 19:08:51 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-04-12 19:08:51 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-04-12 19:08:51 ----A---- C:\Windows\system32\propsys.dll
2014-04-12 19:08:51 ----A---- C:\Windows\system32\gdi32.dll
2014-04-12 19:08:50 ----A---- C:\Windows\system32\wlidprov.dll
2014-04-12 19:08:49 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2014-04-12 19:08:49 ----A---- C:\Windows\system32\kernel32.dll
2014-04-12 19:08:49 ----A---- C:\Windows\system32\dnsapi.dll
2014-04-12 19:08:48 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-04-12 19:08:48 ----A---- C:\Windows\system32\mstscax.dll
2014-04-12 19:08:48 ----A---- C:\Windows\system32\kerberos.dll
2014-04-12 19:08:48 ----A---- C:\Windows\system32\audiosrv.dll
2014-04-12 19:08:47 ----A---- C:\Windows\system32\dcomp.dll
2014-04-12 19:08:46 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-04-12 19:08:46 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-04-12 19:08:46 ----A---- C:\Windows\system32\wlansvc.dll
2014-04-12 19:08:46 ----A---- C:\Windows\system32\mfsvr.dll
2014-04-12 19:08:46 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-04-12 19:08:46 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-04-12 19:08:45 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2014-04-12 19:08:45 ----A---- C:\Windows\SYSWOW64\propsys.dll
2014-04-12 19:08:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2014-04-12 19:08:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\rasapi32.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\netlogon.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\MFMediaEngine.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\dxgi.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\drivers\wof.sys
2014-04-12 19:08:44 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-04-12 19:08:44 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2014-04-12 19:08:44 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-04-12 19:08:44 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-04-12 19:08:44 ----A---- C:\Windows\system32\ReAgent.dll
2014-04-12 19:08:44 ----A---- C:\Windows\system32\GdiPlus.dll
2014-04-12 19:08:44 ----A---- C:\Windows\system32\fveapi.dll
2014-04-12 19:08:44 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-04-12 19:08:44 ----A---- C:\Windows\system32\BFE.DLL
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\rasapi32.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2014-04-12 19:08:43 ----A---- C:\Windows\system32\SkyDriveTelemetry.dll
2014-04-12 19:08:43 ----A---- C:\Windows\system32\SkyDrive.exe
2014-04-12 19:08:43 ----A---- C:\Windows\system32\SensorsApi.dll
2014-04-12 19:08:43 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-04-12 19:08:43 ----A---- C:\Windows\system32\drivers\cng.sys
2014-04-12 19:08:43 ----A---- C:\Windows\system32\drivers\clfs.sys
2014-04-12 19:08:43 ----A---- C:\Windows\system32\bdesvc.dll
2014-04-12 19:08:42 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2014-04-12 19:08:42 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2014-04-12 19:08:42 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\WsmSvc.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\Windows.Media.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\netcfgx.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\MDMAgent.exe
2014-04-12 19:08:42 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2014-04-12 19:08:42 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\AudioSes.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\AudioEng.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2014-04-12 19:08:41 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2014-04-12 19:08:41 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-04-12 19:08:41 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-04-12 19:08:41 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\userenv.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\SessEnv.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\profsvc.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\pdh.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-04-12 19:08:41 ----A---- C:\Windows\system32\audiodg.exe
2014-04-12 19:08:41 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2014-04-12 19:08:40 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2014-04-12 19:08:40 ----A---- C:\Windows\system32\davclnt.dll
2014-04-12 19:08:39 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-04-12 19:08:39 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2014-04-12 19:08:37 ----A---- C:\Windows\system32\mfreadwrite.dll
2014-04-12 19:08:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-04-12 19:08:37 ----A---- C:\Windows\system32\cdd.dll
2014-04-12 19:08:36 ----A---- C:\Windows\SYSWOW64\AppxAllUserStore.dll
2014-04-12 19:08:35 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-04-12 19:08:35 ----A---- C:\Windows\system32\wlangpui.dll
2014-04-12 19:08:34 ----A---- C:\Windows\system32\drivers\nwifi.sys
2014-04-12 19:08:33 ----AC---- C:\Windows\system32\drivers\USBHUB3.SYS
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\userenv.dll
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\wlanapi.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\spp.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-04-12 19:08:33 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-04-12 19:08:33 ----A---- C:\Windows\system32\drivers\dfsc.sys
2014-04-12 19:08:33 ----A---- C:\Windows\system32\dafWfdProvider.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\aclui.dll
2014-04-12 19:08:32 ----A---- C:\Windows\SYSWOW64\spp.dll
2014-04-12 19:08:32 ----A---- C:\Windows\system32\drvinst.exe
2014-04-12 19:08:31 ----AC---- C:\Windows\system32\drivers\hidusb.sys
2014-04-12 19:08:31 ----A---- C:\Windows\SYSWOW64\pdh.dll
2014-04-12 19:08:31 ----A---- C:\Windows\system32\WSDMon.dll
2014-04-12 19:08:31 ----A---- C:\Windows\system32\drivers\wfplwfs.sys
2014-04-12 19:08:31 ----A---- C:\Windows\system32\AppxAllUserStore.dll
2014-04-12 19:08:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-04-12 19:08:30 ----A---- C:\Windows\system32\w32tm.exe
2014-04-12 19:08:30 ----A---- C:\Windows\system32\adtschema.dll
2014-04-12 19:08:29 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2014-04-12 19:08:29 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-04-12 19:08:29 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2014-04-12 19:08:29 ----A---- C:\Windows\system32\Display.dll
2014-04-12 19:08:29 ----A---- C:\Windows\system32\clusapi.dll
2014-04-12 19:08:28 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-04-12 19:08:28 ----A---- C:\Windows\system32\wlanmsm.dll
2014-04-12 19:08:28 ----A---- C:\Windows\system32\MDEServer.exe
2014-04-12 19:08:27 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2014-04-12 19:08:27 ----A---- C:\Windows\SYSWOW64\Display.dll
2014-04-12 19:08:27 ----A---- C:\Windows\system32\fveapibase.dll
2014-04-12 19:08:27 ----A---- C:\Windows\system32\drvcfg.exe
2014-04-12 19:08:27 ----A---- C:\Windows\system32\CredentialMigrationHandler.dll
2014-04-12 19:08:26 ----AC---- C:\Windows\system32\drivers\hidclass.sys
2014-04-12 19:08:26 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2014-04-12 19:08:26 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2014-04-12 19:08:26 ----A---- C:\Windows\SYSWOW64\CredentialMigrationHandler.dll
2014-04-12 19:08:26 ----A---- C:\Windows\SYSWOW64\aclui.dll
2014-04-12 19:08:26 ----A---- C:\Windows\system32\Windows.Devices.Scanners.dll
2014-04-12 19:08:26 ----A---- C:\Windows\system32\RMapi.dll
2014-04-12 19:08:26 ----A---- C:\Windows\system32\ReInfo.dll
2014-04-12 19:08:26 ----A---- C:\Windows\system32\LocationApi.dll
2014-04-12 19:08:25 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Scanners.dll
2014-04-12 19:08:25 ----A---- C:\Windows\SYSWOW64\ReInfo.dll
2014-04-12 19:08:25 ----A---- C:\Windows\SYSWOW64\LocationApi.dll
2014-04-12 19:08:25 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\tsgqec.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\sxproxy.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\nshwfp.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\fvewiz.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-04-12 19:08:25 ----A---- C:\Windows\system32\DevPropMgr.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\BitLockerDeviceEncryption.exe
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\sxproxy.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\l2gpstore.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\wlansec.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\wlanhlp.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\SetNetworkLocation.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\l2gpstore.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-04-12 19:08:24 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2014-04-12 19:08:24 ----A---- C:\Windows\system32\BdeHdCfgLib.dll
2014-04-12 19:08:14 ----A---- C:\Windows\system32\mshtml.dll
2014-04-12 19:08:13 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-04-12 19:08:04 ----A---- C:\Windows\system32\SettingsHandlers.dll
2014-04-12 18:08:10 ----D---- C:\Users\Jaroslav\AppData\Roaming\IObit
2014-04-12 17:50:30 ----D---- C:\Program Files (x86)\GUM1C27.tmp
2014-04-12 17:46:48 ----A---- C:\Windows\system32\poqexec.exe
2014-04-12 17:46:47 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-04-12 17:44:27 ----D---- C:\Program Files (x86)\Google
2014-04-12 17:36:50 ----RD---- C:\Windows\BrowserChoice
2014-04-12 17:08:19 ----D---- C:\Windows\system32\MRT
2014-04-12 17:08:16 ----A---- C:\Windows\system32\MRT.exe
2014-04-12 17:01:16 ----D---- C:\Windows\pss
2014-04-12 16:56:43 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-04-12 16:56:40 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-04-12 16:56:37 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2014-04-12 16:56:04 ----A---- C:\Windows\system32\schedsvc.dll
2014-04-12 16:56:02 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-04-12 16:56:02 ----A---- C:\Windows\system32\pnrpsvc.dll
2014-04-12 16:56:02 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2014-04-12 16:56:01 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-04-12 16:56:00 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2014-04-12 16:56:00 ----A---- C:\Windows\system32\drivers\rdbss.sys
2014-04-12 16:55:59 ----A---- C:\Windows\system32\sti.dll
2014-04-12 16:55:58 ----A---- C:\Windows\SYSWOW64\OEMLicense.dll
2014-04-12 16:55:58 ----A---- C:\Windows\system32\OEMLicense.dll
2014-04-12 16:55:57 ----A---- C:\Windows\SYSWOW64\sti.dll
2014-04-12 16:55:49 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-04-12 16:55:49 ----A---- C:\Windows\system32\d3d10warp.dll
2014-04-12 16:55:49 ----A---- C:\Windows\system32\d2d1.dll
2014-04-12 16:55:48 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-04-12 16:55:22 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2014-04-12 16:55:21 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2014-04-12 16:55:20 ----A---- C:\Windows\system32\d3d9.dll
2014-04-12 16:55:18 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2014-04-12 16:55:17 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-04-12 16:55:16 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2014-04-12 16:55:16 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2014-04-12 16:55:16 ----A---- C:\Windows\system32\UIAutomationCore.dll
2014-04-12 16:55:15 ----A---- C:\Windows\system32\d3d10level9.dll
2014-04-12 16:55:13 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2014-04-12 16:55:13 ----A---- C:\Windows\system32\eapphost.dll
2014-04-12 16:55:12 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2014-04-12 16:55:12 ----A---- C:\Windows\system32\kd_02_8086.dll
2014-04-12 16:55:11 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-04-12 16:55:11 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-04-12 16:55:11 ----A---- C:\Windows\system32\tsmf.dll
2014-04-12 16:55:11 ----A---- C:\Windows\system32\eapp3hst.dll
2014-04-12 16:55:10 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2014-04-12 16:55:10 ----A---- C:\Windows\system32\drivers\srv.sys
2014-04-12 16:55:09 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2014-04-12 16:55:09 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2014-04-12 16:55:09 ----A---- C:\Windows\system32\pcsvDevice.dll
2014-04-12 16:55:09 ----A---- C:\Windows\system32\msched.dll
2014-04-12 16:55:08 ----AC---- C:\Windows\system32\drivers\usbccgp.sys
2014-04-12 16:55:08 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-04-12 16:55:07 ----AC---- C:\Windows\system32\drivers\stornvme.sys
2014-04-12 16:55:07 ----A---- C:\Windows\system32\wldp.dll
2014-04-12 16:55:07 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-04-12 16:55:07 ----A---- C:\Windows\system32\ipnathlp.dll
2014-04-12 16:55:06 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2014-04-12 16:55:05 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2014-04-12 16:55:05 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2014-04-12 16:55:05 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2014-04-12 16:55:05 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-04-12 16:55:05 ----A---- C:\Windows\system32\eappcfg.dll
2014-04-12 16:55:04 ----A---- C:\Windows\system32\eappgnui.dll
2014-04-12 16:55:02 ----A---- C:\Windows\SYSWOW64\ftp.exe
2014-04-12 16:55:02 ----A---- C:\Windows\system32\WorkFoldersShell.dll
2014-04-12 16:55:00 ----A---- C:\Windows\SYSWOW64\miutils.dll
2014-04-12 16:55:00 ----A---- C:\Windows\system32\rdpclip.exe
2014-04-12 16:55:00 ----A---- C:\Windows\system32\miutils.dll
2014-04-12 16:55:00 ----A---- C:\Windows\system32\ftp.exe
2014-04-12 16:54:11 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-04-12 16:54:10 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-04-12 16:54:06 ----A---- C:\Windows\system32\ubpm.dll
2014-04-12 16:54:06 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2014-04-12 16:54:04 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2014-04-12 16:54:04 ----A---- C:\Windows\system32\mfds.dll
2014-04-12 16:54:03 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2014-04-12 16:54:02 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2014-04-12 16:54:02 ----A---- C:\Windows\SYSWOW64\mfds.dll
2014-04-12 16:54:02 ----A---- C:\Windows\system32\Windows.Graphics.dll
2014-04-12 16:54:02 ----A---- C:\Windows\system32\rastls.dll
2014-04-12 16:54:01 ----A---- C:\Windows\system32\msieftp.dll
2014-04-12 16:54:01 ----A---- C:\Windows\system32\drivers\ipnat.sys
2014-04-12 16:54:00 ----AC---- C:\Windows\system32\drivers\BtaMPM.sys
2014-04-12 16:54:00 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-04-12 16:54:00 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-04-12 16:54:00 ----A---- C:\Windows\system32\bi.dll
2014-04-12 16:53:59 ----A---- C:\Windows\system32\deviceregistration.dll
2014-04-12 16:52:52 ----AC---- C:\Windows\system32\drivers\intelpep.sys
2014-04-12 16:52:52 ----A---- C:\Windows\system32\drivers\SerCx2.sys
2014-04-12 16:52:51 ----A---- C:\Windows\system32\drivers\pdc.sys
2014-04-12 16:51:44 ----A---- C:\Windows\system32\WSCollect.exe
2014-04-12 16:51:42 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-04-12 16:51:42 ----A---- C:\Windows\system32\imagehlp.dll
2014-04-12 16:51:09 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-04-12 16:51:09 ----A---- C:\Windows\system32\msxml3.dll
2014-04-12 16:51:08 ----A---- C:\Windows\SYSWOW64\pcaui.exe
2014-04-12 16:51:08 ----A---- C:\Windows\system32\pcaui.exe
2014-04-12 16:50:58 ----A---- C:\Windows\system32\sppsvc.exe
2014-04-12 16:50:56 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2014-04-12 16:50:55 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2014-04-12 16:50:55 ----A---- C:\Windows\system32\dbghelp.dll
2014-04-12 16:50:55 ----A---- C:\Windows\system32\dbgeng.dll
2014-04-12 16:50:54 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2014-04-12 16:50:54 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2014-04-12 16:50:53 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2014-04-12 16:50:53 ----A---- C:\Windows\system32\rdpencom.dll
2014-04-12 16:50:52 ----A---- C:\Windows\system32\sppcomapi.dll
2014-04-12 16:50:47 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-04-12 16:50:47 ----A---- C:\Windows\system32\msdrm.dll
2014-04-12 16:50:35 ----A---- C:\Windows\system32\WMPhoto.dll
2014-04-12 16:50:34 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-04-12 16:50:15 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-04-12 16:50:15 ----A---- C:\Windows\system32\crypt32.dll
2014-04-12 16:42:13 ----D---- C:\Users\Jaroslav\AppData\Roaming\Macromedia
2014-04-12 16:26:31 ----D---- C:\Users\Jaroslav\AppData\Roaming\Adobe
2014-04-12 16:24:17 ----SD---- C:\Users\Jaroslav\AppData\Roaming\Microsoft
2014-03-26 19:00:14 ----A---- C:\Windows\system32\drivers\VBoxNetFlt.sys
2014-03-26 19:00:14 ----A---- C:\Windows\system32\drivers\VBoxNetAdp.sys
2014-03-26 18:58:04 ----A---- C:\Windows\system32\VBoxNetFltNobj.dll
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2014-04-20 19:23:45 ----D---- C:\Program Files\trend micro
2014-04-20 19:23:44 ----D---- C:\rsit
2014-04-20 16:20:25 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-04-20 16:20:12 ----D---- C:\ProgramData\Malwarebytes
2014-04-20 12:28:49 ----D---- C:\Program Files (x86)\Far Cry 3
2014-04-19 21:49:26 ----D---- C:\Program Files (x86)\Sniper Ghost Warrior 2
2014-04-19 16:05:54 ----D---- C:\ProgramData\ESET
2014-04-19 16:05:53 ----D---- C:\Program Files\ESET
2014-04-19 15:51:17 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-04-19 15:51:17 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-04-19 14:56:16 ----A---- C:\Windows\wininit.ini
2014-04-19 14:06:04 ----D---- C:\ProgramData\Adtrustmedia
2014-04-19 14:05:21 ----D---- C:\Program Files\COMODO
2014-04-19 14:04:34 ----D---- C:\Program Files (x86)\Comodo
2014-04-19 14:03:11 ----D---- C:\ProgramData\Comodo
2014-04-19 13:45:02 ----D---- C:\ProgramData\Sophos
2014-04-18 22:15:53 ----D---- C:\Users\Jaroslav\AppData\Roaming\Apple Computer
2014-04-18 22:10:36 ----D---- C:\ProgramData\Apple Computer
2014-04-18 22:10:36 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-18 22:07:18 ----D---- C:\ProgramData\Apple
2014-04-18 17:41:12 ----D---- C:\ProgramData\Orbit
2014-04-18 17:01:41 ----HD---- C:\Windows\msdownld.tmp
2014-04-18 16:38:19 ----D---- C:\ProgramData\AVAST Software
2014-04-18 14:38:32 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-04-18 14:38:32 ----A---- C:\Windows\system32\wucltux.dll
2014-04-18 14:38:32 ----A---- C:\Windows\system32\wuaueng.dll
2014-04-18 14:38:32 ----A---- C:\Windows\system32\wuauclt.exe
2014-04-18 14:38:32 ----A---- C:\Windows\system32\storewuauth.dll
2014-04-17 16:25:04 ----D---- C:\Program Files (x86)\Elaborate Bytes
2014-04-17 13:49:51 ----D---- C:\Users\Jaroslav\AppData\Roaming\IDT
2014-04-16 14:31:32 ----D---- C:\ProgramData\TOSHIBA Tempro
2014-04-16 14:31:27 ----D---- C:\ProgramData\ToshibaEurope
2014-04-16 14:30:50 ----D---- C:\Program Files (x86)\Toshiba TEMPRO
2014-04-16 13:48:42 ----D---- C:\Program Files (x86)\ESET
2014-04-16 11:47:28 ----D---- C:\Program Files (x86)\Metro Last Light
2014-04-15 19:44:25 ----A---- C:\Windows\system32\drivers\VBoxDrv.sys
2014-04-15 19:44:12 ----A---- C:\Windows\system32\drivers\VBoxUSBMon.sys
2014-04-15 19:44:05 ----D---- C:\Program Files\Oracle
2014-04-15 17:46:42 ----D---- C:\ProgramData\BDLogging
2014-04-15 17:43:03 ----D---- C:\Program Files\Common Files\Bitdefender
2014-04-15 17:42:50 ----D---- C:\Users\Jaroslav\AppData\Roaming\uTorrent
2014-04-15 17:10:58 ----D---- C:\Users\Jaroslav\AppData\Roaming\sMedio
2014-04-15 13:36:56 ----D---- C:\Users\Jaroslav\AppData\Roaming\QuickScan
2014-04-15 11:07:12 ----D---- C:\Windows\SYSWOW64\directx
2014-04-15 10:16:54 ----A---- C:\Windows\system32\javaws.exe
2014-04-15 10:16:38 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2014-04-15 10:16:38 ----A---- C:\Windows\system32\javaw.exe
2014-04-15 10:16:38 ----A---- C:\Windows\system32\java.exe
2014-04-15 10:16:32 ----D---- C:\Program Files\Java
2014-04-14 22:48:17 ----D---- C:\Users\Jaroslav\AppData\Roaming\JAM Software
2014-04-14 22:15:54 ----D---- C:\Users\Jaroslav\AppData\Roaming\.minecraft
2014-04-14 21:38:51 ----D---- C:\Windows\SYSWOW64\Adobe
2014-04-14 20:29:43 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-04-14 20:29:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-04-14 20:29:43 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-04-14 20:29:43 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-04-14 20:29:42 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-04-14 20:29:42 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-04-14 20:29:42 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-04-14 20:29:42 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-04-14 20:29:42 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-04-14 20:29:42 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-04-14 20:29:41 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-04-14 20:29:41 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-04-14 20:29:40 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-04-14 20:29:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-04-14 20:29:40 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-04-14 20:29:40 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-04-14 20:29:39 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-04-14 20:29:36 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-04-14 20:29:36 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-04-14 20:29:36 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-04-14 20:29:36 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-04-14 20:29:35 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-04-14 20:29:34 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-04-14 20:29:34 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-04-14 20:29:34 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-04-14 20:29:34 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-04-14 20:29:33 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-04-14 20:29:33 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-04-14 20:29:33 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-04-14 20:29:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-04-14 20:29:33 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-04-14 20:29:33 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-04-14 20:29:33 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-04-14 20:29:33 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-04-14 20:29:32 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-04-14 20:29:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-04-14 20:29:32 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-04-14 20:29:32 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-04-14 20:29:32 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-04-14 20:29:32 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-04-14 20:29:32 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-04-14 20:29:32 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-04-14 20:29:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-04-14 20:29:31 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-04-14 20:29:29 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-04-14 20:29:29 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-04-14 20:29:29 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-04-14 20:29:29 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-04-14 20:29:29 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-04-14 20:29:29 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-04-14 20:29:28 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-04-14 20:29:28 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-04-14 20:29:28 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-04-14 20:29:28 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-04-14 20:29:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-04-14 20:29:27 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-04-14 20:29:26 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-04-14 20:29:26 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-04-14 20:29:26 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-04-14 20:29:26 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-04-14 20:29:23 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-04-14 20:29:23 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-04-14 20:29:23 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-04-14 20:29:23 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-04-14 20:29:22 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-04-14 20:29:22 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-04-14 20:29:21 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-04-14 20:29:21 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-04-14 20:29:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-04-14 20:29:21 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-04-14 20:29:21 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-04-14 20:29:21 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-04-14 20:29:20 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-04-14 20:29:20 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-04-14 20:29:19 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-04-14 20:29:19 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-04-14 20:29:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-04-14 20:29:19 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-04-14 20:29:19 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-04-14 20:29:19 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-04-14 20:29:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-04-14 20:29:15 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-04-14 20:29:14 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-04-14 20:29:14 ----A---- C:\Windows\system32\xinput1_3.dll
2014-04-14 20:29:14 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-04-14 20:29:13 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-04-14 20:29:13 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-04-14 20:29:13 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-04-14 20:29:13 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-04-14 20:29:12 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-04-14 20:29:12 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-04-14 20:29:10 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-04-14 20:29:10 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-04-14 20:29:10 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-04-14 20:29:10 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-04-14 20:29:10 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-04-14 20:29:10 ----A---- C:\Windows\system32\d3dx10.dll
2014-04-14 20:29:09 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-04-14 20:29:09 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-04-14 20:29:09 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-04-14 20:29:09 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-04-14 20:29:08 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-04-14 20:29:08 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-04-14 20:29:08 ----A---- C:\Windows\system32\xinput1_2.dll
2014-04-14 20:29:08 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-04-14 20:29:07 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-04-14 20:29:07 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-04-14 20:29:07 ----A---- C:\Windows\system32\xinput1_1.dll
2014-04-14 20:29:07 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-04-14 20:29:03 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-04-14 20:29:03 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-04-14 20:29:00 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-04-14 20:29:00 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-04-14 20:28:59 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-04-14 20:28:59 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-04-14 20:28:59 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-04-14 20:28:59 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-04-14 20:28:58 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-04-14 20:28:58 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-04-14 20:28:57 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-04-14 20:28:57 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-04-14 20:28:56 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-04-14 20:28:56 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-04-14 20:28:56 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-04-14 20:28:56 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-04-14 20:28:55 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-04-14 20:28:55 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-04-14 20:28:55 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-04-14 20:28:55 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-04-14 19:48:49 ----D---- C:\Windows\SYSWOW64\NV
2014-04-14 19:48:49 ----D---- C:\Windows\system32\NV
2014-04-14 19:10:42 ----D---- C:\Temp
2014-04-14 19:10:39 ----A---- C:\Windows\GPU-Z.INI
2014-04-14 19:08:22 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-04-14 19:08:22 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-04-14 19:08:22 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-04-14 19:08:22 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-04-14 19:08:21 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-04-14 19:08:20 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-04-14 19:08:20 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-04-14 19:08:15 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-04-14 19:08:15 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-04-14 19:05:24 ----D---- C:\Program Files\Microsoft Silverlight
2014-04-14 19:05:24 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-04-14 17:10:41 ----N---- C:\Windows\system32\MpSigStub.exe
2014-04-14 16:46:15 ----A---- C:\Windows\system32\drivers\TeeDriverx64.sys
2014-04-14 16:43:30 ----D---- C:\Windows\SYSWOW64\sda
2014-04-14 16:43:30 ----D---- C:\ProgramData\AmUStor
2014-04-14 16:43:30 ----D---- C:\Program Files (x86)\AmIcoSingLun
2014-04-14 16:36:58 ----A---- C:\Windows\system32\drivers\SWDUMon.sys
2014-04-14 15:26:10 ----D---- C:\ProgramData\Microsoft OneDrive
2014-04-14 15:10:52 ----A---- C:\Windows\system32\stlang64.dll
2014-04-14 15:10:14 ----D---- C:\Program Files\IDT
2014-04-14 15:00:48 ----D---- C:\Users\Jaroslav\AppData\Roaming\Wise Disk Cleaner
2014-04-14 14:42:48 ----D---- C:\Users\Jaroslav\AppData\Roaming\InstallShield
2014-04-14 14:39:26 ----D---- C:\ProgramData\SRS Labs
2014-04-14 14:39:26 ----D---- C:\Program Files (x86)\DTS, Inc
2014-04-14 14:21:36 ----D---- C:\Program Files\Common Files\QCA_Bluetooth
2014-04-14 14:21:36 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-04-14 14:18:50 ----D---- C:\ProgramData\sMedio
2014-04-14 14:18:50 ----D---- C:\Program Files (x86)\sMedio
2014-04-14 13:51:39 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2014-04-14 13:21:15 ----D---- C:\UBIOS
2014-04-14 13:01:00 ----D---- C:\Program Files (x86)\TOSHIBA
2014-04-14 12:57:45 ----D---- C:\Users\Jaroslav\AppData\Roaming\WinBatch
2014-04-14 12:22:19 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2014-04-14 12:13:51 ----D---- C:\Users\Jaroslav\AppData\Roaming\WinRAR
2014-04-14 11:24:02 ----D---- C:\Program Files\WinRAR
2014-04-13 22:18:48 ----D---- C:\Users\Jaroslav\AppData\Roaming\ESET
2014-04-13 21:09:10 ----A---- C:\Windows\system32\WdfCoInstaller01011.dll
2014-04-13 21:09:07 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2014-04-13 21:01:19 ----D---- C:\Windows\Minidump
2014-04-13 20:57:44 ----ASH---- C:\swapfile.sys
2014-04-13 20:57:44 ----ASH---- C:\pagefile.sys
2014-04-13 20:27:39 ----D---- C:\Users\Jaroslav\AppData\Roaming\Opera Software
2014-04-13 15:29:49 ----D---- C:\Users\Jaroslav\AppData\Roaming\Oracle
2014-04-13 15:23:43 ----D---- C:\ProgramData\Synaptics
2014-04-13 15:20:01 ----D---- C:\ProgramData\Sun
2014-04-13 15:05:36 ----D---- C:\Users\Jaroslav\AppData\Roaming\OpenOffice
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-04-13 13:59:01 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvopencl.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvoglv64.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\NvIFR64.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\NvFBC64.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvdispgenco6433523.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvdispco6433523.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvcuvid.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\nvcuda.dll
2014-04-13 13:59:01 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2014-04-13 13:59:01 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-04-13 13:59:00 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-04-13 13:59:00 ----A---- C:\Windows\system32\nvcompiler.dll
2014-04-13 12:23:07 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-04-13 12:23:06 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-04-13 12:22:33 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-04-13 12:22:33 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-04-13 12:22:33 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-04-13 12:22:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-04-13 11:48:08 ----D---- C:\Users\Jaroslav\AppData\Roaming\.expertlotto
2014-04-13 11:47:46 ----D---- C:\Program Files\Expert Lotto 5
2014-04-13 10:46:40 ----D---- C:\Program Files (x86)\Hewlett-Packard
2014-04-13 10:46:38 ----D---- C:\ProgramData\Visan
2014-04-13 10:46:38 ----D---- C:\ProgramData\HP Photo Creations
2014-04-13 10:46:38 ----D---- C:\Program Files (x86)\HP Photo Creations
2014-04-13 10:46:28 ----D---- C:\Users\Jaroslav\AppData\Roaming\HpUpdate
2014-04-13 10:45:25 ----D---- C:\Program Files (x86)\HP
2014-04-13 10:43:56 ----D---- C:\Program Files\HP
2014-04-13 10:43:53 ----A---- C:\ProgramData\Ament.ini
2014-04-13 10:31:42 ----D---- C:\ProgramData\HP
2014-04-13 09:13:28 ----D---- C:\Users\Jaroslav\AppData\Roaming\NVIDIA
2014-04-12 23:53:02 ----D---- C:\ProgramData\IsolatedStorage
2014-04-12 22:12:06 ----D---- C:\Program Files\CCleaner
2014-04-12 22:04:49 ----D---- C:\Users\Jaroslav\AppData\Roaming\MPC-HC
2014-04-12 22:03:46 ----D---- C:\Program Files\MPC-HC
2014-04-12 20:06:30 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-04-12 20:06:30 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-04-12 20:06:30 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-04-12 20:06:30 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-04-12 20:06:29 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-04-12 20:06:29 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-04-12 20:06:25 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-04-12 20:06:25 ----A---- C:\Windows\system32\nvspcap64.dll
2014-04-12 20:03:48 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-04-12 20:03:48 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-04-12 20:03:48 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-04-12 19:20:43 ----A---- C:\Windows\system32\WSService.dll
2014-04-12 19:20:37 ----A---- C:\Windows\system32\glcndFilter.dll
2014-04-12 19:20:35 ----A---- C:\Windows\system32\jscript9.dll
2014-04-12 19:20:33 ----A---- C:\Windows\system32\ieframe.dll
2014-04-12 19:20:31 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2014-04-12 19:20:31 ----A---- C:\Windows\system32\OobeFldr.dll
2014-04-12 19:20:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-04-12 19:20:28 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2014-04-12 19:20:25 ----A---- C:\Windows\system32\wmp.dll
2014-04-12 19:20:24 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-04-12 19:20:24 ----A---- C:\Windows\system32\sppobjs.dll
2014-04-12 19:20:23 ----A---- C:\Windows\system32\tquery.dll
2014-04-12 19:20:22 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-04-12 19:20:20 ----A---- C:\Windows\system32\sysmain.dll
2014-04-12 19:20:19 ----A---- C:\Windows\system32\mssrch.dll
2014-04-12 19:20:18 ----A---- C:\Windows\system32\wininet.dll
2014-04-12 19:20:18 ----A---- C:\Windows\system32\win32k.sys
2014-04-12 19:20:17 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2014-04-12 19:20:16 ----A---- C:\Windows\SYSWOW64\tquery.dll
2014-04-12 19:20:16 ----A---- C:\Windows\system32\Wpc.dll
2014-04-12 19:20:15 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-04-12 19:20:15 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2014-04-12 19:20:14 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-04-12 19:20:14 ----A---- C:\Windows\system32\combase.dll
2014-04-12 19:20:13 ----A---- C:\Windows\system32\webservices.dll
2014-04-12 19:20:13 ----A---- C:\Windows\system32\iertutil.dll
2014-04-12 19:20:12 ----A---- C:\Windows\system32\wlidsvc.dll
2014-04-12 19:20:12 ----A---- C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-04-12 19:20:12 ----A---- C:\Windows\system32\actxprxy.dll
2014-04-12 19:20:11 ----A---- C:\Windows\system32\WpcMon.exe
2014-04-12 19:20:11 ----A---- C:\Windows\system32\mfcore.dll
2014-04-12 19:20:11 ----A---- C:\Windows\system32\dui70.dll
2014-04-12 19:20:10 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-04-12 19:20:10 ----A---- C:\Windows\system32\msTextPrediction.dll
2014-04-12 19:20:09 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2014-04-12 19:20:09 ----A---- C:\Windows\system32\urlmon.dll
2014-04-12 19:20:08 ----A---- C:\Windows\system32\mfnetsrc.dll
2014-04-12 19:20:07 ----A---- C:\Windows\SYSWOW64\combase.dll
2014-04-12 19:20:07 ----A---- C:\Windows\system32\WpcWebSync.dll
2014-04-12 19:20:07 ----A---- C:\Windows\system32\Windows.Globalization.dll
2014-04-12 19:20:06 ----A---- C:\Windows\SYSWOW64\webservices.dll
2014-04-12 19:20:06 ----A---- C:\Windows\system32\mfnetcore.dll
2014-04-12 19:20:05 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-04-12 19:20:05 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2014-04-12 19:20:05 ----A---- C:\Windows\system32\uDWM.dll
2014-04-12 19:20:05 ----A---- C:\Windows\system32\StructuredQuery.dll
2014-04-12 19:20:05 ----A---- C:\Windows\system32\ExplorerFrame.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\WofTasks.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\setupapi.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\SettingSyncHost.exe
2014-04-12 19:20:04 ----A---- C:\Windows\system32\rpcss.dll
2014-04-12 19:20:04 ----A---- C:\Windows\system32\DfpCommon.dll
2014-04-12 19:20:03 ----A---- C:\Windows\SYSWOW64\dui70.dll
2014-04-12 19:20:03 ----A---- C:\Windows\system32\RacEngn.dll
2014-04-12 19:20:03 ----A---- C:\Windows\system32\ntdll.dll
2014-04-12 19:20:02 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-04-12 19:20:02 ----A---- C:\Windows\system32\mf.dll
2014-04-12 19:20:01 ----AC---- C:\Windows\system32\drivers\acpi.sys
2014-04-12 19:20:01 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2014-04-12 19:20:01 ----A---- C:\Windows\system32\msctf.dll
2014-04-12 19:20:00 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-04-12 19:19:59 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\SHCore.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\SettingSyncCore.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\ieapfltr.dll
2014-04-12 19:19:59 ----A---- C:\Windows\system32\drivers\ndis.sys
2014-04-12 19:19:58 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2014-04-12 19:19:58 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2014-04-12 19:19:58 ----A---- C:\Windows\system32\wpccpl.dll
2014-04-12 19:19:58 ----A---- C:\Windows\system32\wer.dll
2014-04-12 19:19:57 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2014-04-12 19:19:57 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2014-04-12 19:19:57 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2014-04-12 19:19:56 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2014-04-12 19:19:56 ----A---- C:\Windows\system32\samsrv.dll
2014-04-12 19:19:55 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-04-12 19:19:55 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2014-04-12 19:19:55 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-04-12 19:19:55 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-04-12 19:19:55 ----A---- C:\Windows\system32\uxtheme.dll
2014-04-12 19:19:55 ----A---- C:\Windows\system32\user32.dll
2014-04-12 19:19:55 ----A---- C:\Windows\system32\SearchIndexer.exe
2014-04-12 19:19:55 ----A---- C:\Windows\system32\mfplat.dll
2014-04-12 19:19:54 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-04-12 19:19:54 ----A---- C:\Windows\system32\winmde.dll
2014-04-12 19:19:54 ----A---- C:\Windows\system32\storagewmi.dll
2014-04-12 19:19:53 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2014-04-12 19:19:53 ----A---- C:\Windows\system32\twinapi.dll
2014-04-12 19:19:53 ----A---- C:\Windows\system32\Taskmgr.exe
2014-04-12 19:19:53 ----A---- C:\Windows\system32\MMDevAPI.dll
2014-04-12 19:19:53 ----A---- C:\Windows\system32\jscript9diag.dll
2014-04-12 19:19:52 ----A---- C:\Windows\system32\WinTypes.dll
2014-04-12 19:19:52 ----A---- C:\Windows\system32\reseteng.dll
2014-04-12 19:19:51 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2014-04-12 19:19:51 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2014-04-12 19:19:51 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2014-04-12 19:19:51 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-04-12 19:19:51 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2014-04-12 19:19:51 ----A---- C:\Windows\system32\twinapi.appcore.dll
2014-04-12 19:19:51 ----A---- C:\Windows\system32\schannel.dll
2014-04-12 19:19:51 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2014-04-12 19:19:50 ----A---- C:\Windows\SYSWOW64\msctf.dll
2014-04-12 19:19:50 ----A---- C:\Windows\system32\wpncore.dll
2014-04-12 19:19:50 ----A---- C:\Windows\system32\perftrack.dll
2014-04-12 19:19:50 ----A---- C:\Windows\system32\mispace.dll
2014-04-12 19:19:49 ----A---- C:\Windows\system32\WWAHost.exe
2014-04-12 19:19:49 ----A---- C:\Windows\system32\lsm.dll
2014-04-12 19:19:49 ----A---- C:\Windows\system32\hal.dll
2014-04-12 19:19:49 ----A---- C:\Windows\system32\advapi32.dll
2014-04-12 19:19:48 ----A---- C:\Windows\SYSWOW64\mispace.dll
2014-04-12 19:19:48 ----A---- C:\Windows\system32\RecoveryDrive.exe
2014-04-12 19:19:47 ----A---- C:\Windows\system32\wcmsvc.dll
2014-04-12 19:19:47 ----A---- C:\Windows\system32\energy.dll
2014-04-12 19:19:46 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2014-04-12 19:19:46 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2014-04-12 19:19:46 ----A---- C:\Windows\system32\wintrust.dll
2014-04-12 19:19:46 ----A---- C:\Windows\system32\mssvp.dll
2014-04-12 19:19:46 ----A---- C:\Windows\system32\apphelp.dll
2014-04-12 19:19:45 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2014-04-12 19:19:45 ----A---- C:\Windows\system32\WSShared.dll
2014-04-12 19:19:45 ----A---- C:\Windows\system32\wmpmde.dll
2014-04-12 19:19:45 ----A---- C:\Windows\system32\tdh.dll
2014-04-12 19:19:44 ----AC---- C:\Windows\system32\drivers\pci.sys
2014-04-12 19:19:42 ----A---- C:\Windows\system32\workfolderssvc.dll
2014-04-12 19:19:42 ----A---- C:\Windows\system32\DismApi.dll
2014-04-12 19:19:41 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2014-04-12 19:19:41 ----A---- C:\Windows\system32\winlogon.exe
2014-04-12 19:19:41 ----A---- C:\Windows\system32\winload.exe
2014-04-12 19:19:41 ----A---- C:\Windows\system32\ie4uinit.exe
2014-04-12 19:19:40 ----A---- C:\Windows\SYSWOW64\mssph.dll
2014-04-12 19:19:40 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2014-04-12 19:19:40 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-04-12 19:19:39 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2014-04-12 19:19:39 ----A---- C:\Windows\system32\winresume.exe
2014-04-12 19:19:39 ----A---- C:\Windows\system32\drivers\ks.sys
2014-04-12 19:19:38 ----A---- C:\Windows\system32\mssph.dll
2014-04-12 19:19:36 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2014-04-12 19:19:36 ----A---- C:\Windows\system32\bcryptprimitives.dll
2014-04-12 19:19:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-04-12 19:19:35 ----A---- C:\Windows\system32\werconcpl.dll
2014-04-12 19:19:35 ----A---- C:\Windows\system32\ActionCenter.dll
2014-04-12 19:19:34 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2014-04-12 19:19:34 ----A---- C:\Windows\system32\stobject.dll
2014-04-12 19:19:33 ----AC---- C:\Windows\system32\WMALFXGFXDSP.dll
2014-04-12 19:19:33 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-04-12 19:19:33 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2014-04-12 19:19:33 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2014-04-12 19:19:33 ----A---- C:\Windows\system32\wuapi.dll
2014-04-12 19:19:33 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2014-04-12 19:19:33 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2014-04-12 19:19:32 ----AC---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-04-12 19:19:32 ----A---- C:\Windows\SYSWOW64\winmde.dll
2014-04-12 19:19:32 ----A---- C:\Windows\system32\WofUtil.dll
2014-04-12 19:19:32 ----A---- C:\Windows\system32\wimgapi.dll
2014-04-12 19:19:32 ----A---- C:\Windows\system32\SettingSync.dll
2014-04-12 19:19:32 ----A---- C:\Windows\system32\drivers\fvevol.sys
2014-04-12 19:19:31 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-04-12 19:19:31 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-04-12 19:19:31 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-04-12 19:19:31 ----A---- C:\Windows\system32\sppwinob.dll
2014-04-12 19:19:31 ----A---- C:\Windows\system32\ntshrui.dll
2014-04-12 19:19:31 ----A---- C:\Windows\system32\iuilp.dll
2014-04-12 19:19:30 ----A---- C:\Windows\system32\wlidcli.dll
2014-04-12 19:19:30 ----A---- C:\Windows\system32\thumbcache.dll
2014-04-12 19:19:30 ----A---- C:\Windows\system32\recimg.exe
2014-04-12 19:19:30 ----A---- C:\Windows\system32\dfp.exe
2014-04-12 19:19:29 ----AC---- C:\Windows\system32\drivers\volsnap.sys
2014-04-12 19:19:29 ----A---- C:\Windows\SYSWOW64\slc.dll
2014-04-12 19:19:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-04-12 19:19:29 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2014-04-12 19:19:29 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2014-04-12 19:19:29 ----A---- C:\Windows\system32\slc.dll
2014-04-12 19:19:29 ----A---- C:\Windows\system32\MrmIndexer.dll
2014-04-12 19:19:29 ----A---- C:\Windows\system32\Dism.exe
2014-04-12 19:19:29 ----A---- C:\Windows\system32\AppxPackaging.dll
2014-04-12 19:19:29 ----A---- C:\Windows\system32\aelupsvc.dll
2014-04-12 19:19:28 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2014-04-12 19:19:28 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2014-04-12 19:19:28 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2014-04-12 19:19:28 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-04-12 19:19:28 ----A---- C:\Windows\system32\nettrace.dll
2014-04-12 19:19:28 ----A---- C:\Windows\system32\bisrv.dll
2014-04-12 19:19:28 ----A---- C:\Windows\system32\AppReadiness.dll
2014-04-12 19:19:27 ----A---- C:\Windows\system32\pnidui.dll
2014-04-12 19:19:27 ----A---- C:\Windows\system32\dwmredir.dll
2014-04-12 19:19:27 ----A---- C:\Windows\system32\comdlg32.dll
2014-04-12 19:19:26 ----A---- C:\Windows\SYSWOW64\stobject.dll
2014-04-12 19:19:26 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2014-04-12 19:19:26 ----A---- C:\Windows\system32\WMPDMC.exe
2014-04-12 19:19:25 ----A---- C:\Windows\system32\psmsrv.dll
2014-04-12 19:19:25 ----A---- C:\Windows\system32\gpsvc.dll
2014-04-12 19:19:24 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2014-04-12 19:19:24 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\WlanMM.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\VAN.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\osk.exe
2014-04-12 19:19:24 ----A---- C:\Windows\system32\ninput.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2014-04-12 19:19:24 ----A---- C:\Windows\system32\InputSwitch.dll
2014-04-12 19:19:23 ----A---- C:\Windows\system32\msvproc.dll
2014-04-12 19:19:23 ----A---- C:\Windows\system32\drivers\storport.sys
2014-04-12 19:19:23 ----A---- C:\Windows\system32\authz.dll
2014-04-12 19:19:22 ----AC---- C:\Windows\system32\drivers\spaceport.sys
2014-04-12 19:19:22 ----AC---- C:\Windows\system32\drivers\portcls.sys
2014-04-12 19:19:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-04-12 19:19:22 ----A---- C:\Windows\system32\SyncCenter.dll
2014-04-12 19:19:22 ----A---- C:\Windows\system32\swprv.dll
2014-04-12 19:19:22 ----A---- C:\Windows\system32\defragsvc.dll
2014-04-12 19:19:21 ----AC---- C:\Windows\system32\drivers\vhdmp.sys
2014-04-12 19:19:21 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2014-04-12 19:19:21 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\wlidcredprov.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\wersvc.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\vbscript.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\themeui.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\taskeng.exe
2014-04-12 19:19:21 ----A---- C:\Windows\system32\msfeeds.dll
2014-04-12 19:19:21 ----A---- C:\Windows\system32\conhost.exe
2014-04-12 19:19:20 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2014-04-12 19:19:20 ----A---- C:\Windows\SYSWOW64\DismApi.dll
2014-04-12 19:19:20 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-04-12 19:19:20 ----A---- C:\Windows\system32\sqmapi.dll
2014-04-12 19:19:20 ----A---- C:\Windows\system32\rdpcore.dll
2014-04-12 19:19:20 ----A---- C:\Windows\system32\rdbui.dll
2014-04-12 19:19:20 ----A---- C:\Windows\system32\mdmregistration.dll
2014-04-12 19:19:19 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2014-04-12 19:19:19 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2014-04-12 19:19:19 ----A---- C:\Windows\system32\wbengine.exe
2014-04-12 19:19:18 ----A---- C:\Windows\SYSWOW64\themeui.dll
2014-04-12 19:19:18 ----A---- C:\Windows\system32\SndVol.exe
2014-04-12 19:19:18 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-04-12 19:19:17 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-04-12 19:19:17 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2014-04-12 19:19:17 ----A---- C:\Windows\SYSWOW64\Dism.exe
2014-04-12 19:19:17 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2014-04-12 19:19:17 ----A---- C:\Windows\system32\WerFault.exe
2014-04-12 19:19:17 ----A---- C:\Windows\system32\dxtmsft.dll
2014-04-12 19:19:16 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2014-04-12 19:19:16 ----A---- C:\Windows\SYSWOW64\InputSwitch.dll
2014-04-12 19:19:16 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\sppc.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\SkyDriveShell.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\oleaut32.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\msctfuimanager.dll
2014-04-12 19:19:16 ----A---- C:\Windows\system32\bcrypt.dll
2014-04-12 19:19:15 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2014-04-12 19:19:15 ----A---- C:\Windows\system32\dwmapi.dll
2014-04-12 19:19:15 ----A---- C:\Windows\system32\aepdu.dll
2014-04-12 19:19:14 ----A---- C:\Windows\SYSWOW64\VAN.dll
2014-04-12 19:19:14 ----A---- C:\Windows\SYSWOW64\sppc.dll
2014-04-12 19:19:14 ----A---- C:\Windows\system32\wwanmm.dll
2014-04-12 19:19:14 ----A---- C:\Windows\system32\WSClient.dll
2014-04-12 19:19:14 ----A---- C:\Windows\system32\WLanConn.dll
2014-04-12 19:19:14 ----A---- C:\Windows\system32\wimserv.exe
2014-04-12 19:19:14 ----A---- C:\Windows\system32\PkgMgr.exe
2014-04-12 19:19:14 ----A---- C:\Windows\system32\ci.dll
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\SkyDriveShell.dll
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2014-04-12 19:19:13 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-04-12 19:19:13 ----A---- C:\Windows\system32\wscinterop.dll
2014-04-12 19:19:13 ----A---- C:\Windows\system32\PurchaseWindowsLicense.dll
2014-04-12 19:19:13 ----A---- C:\Windows\system32\ploptin.dll
2014-04-12 19:19:13 ----A---- C:\Windows\system32\microsoft-windows-system-events.dll
2014-04-12 19:19:12 ----A---- C:\Windows\SYSWOW64\WlanMM.dll
2014-04-12 19:19:12 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2014-04-12 19:19:12 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2014-04-12 19:19:12 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeui.exe
2014-04-12 19:19:12 ----A---- C:\Windows\system32\gameux.dll
2014-04-12 19:19:12 ----A---- C:\Windows\system32\fhcfg.dll
2014-04-12 19:19:12 ----A---- C:\Windows\system32\dwm.exe
2014-04-12 19:19:11 ----A---- C:\Windows\SYSWOW64\msctfuimanager.dll
2014-04-12 19:19:11 ----A---- C:\Windows\SYSWOW64\authz.dll
2014-04-12 19:19:11 ----A---- C:\Windows\system32\winsrv.dll
2014-04-12 19:19:11 ----A---- C:\Windows\system32\taskhost.exe
2014-04-12 19:19:11 ----A---- C:\Windows\system32\rasgcw.dll
2014-04-12 19:19:11 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-04-12 19:19:11 ----A---- C:\Windows\system32\drivers\luafv.sys
2014-04-12 19:19:11 ----A---- C:\Windows\system32\dmdskmgr.dll
2014-04-12 19:19:10 ----AC---- C:\Windows\system32\drivers\sdbus.sys
2014-04-12 19:19:10 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\wscsvc.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\wscapi.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\wermgr.exe
2014-04-12 19:19:10 ----A---- C:\Windows\system32\usercpl.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\srchadmin.dll
2014-04-12 19:19:10 ----A---- C:\Windows\system32\Faultrep.dll
2014-04-12 19:19:09 ----A---- C:\Windows\SYSWOW64\ninput.dll
2014-04-12 19:19:09 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2014-04-12 19:19:09 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2014-04-12 19:19:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\wwanconn.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\wsqmcons.exe
2014-04-12 19:19:08 ----A---- C:\Windows\system32\systemreset.exe
2014-04-12 19:19:08 ----A---- C:\Windows\system32\SndVolSSO.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\smss.exe
2014-04-12 19:19:08 ----A---- C:\Windows\system32\RASMM.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\imm32.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\BioCredProv.dll
2014-04-12 19:19:08 ----A---- C:\Windows\system32\AltTab.dll
2014-04-12 19:19:07 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2014-04-12 19:19:07 ----A---- C:\Windows\system32\vmrdvcore.dll
2014-04-12 19:19:07 ----A---- C:\Windows\system32\vdsbas.dll
2014-04-12 19:19:07 ----A---- C:\Windows\system32\PlayToManager.dll
2014-04-12 19:19:07 ----A---- C:\Windows\system32\fsutil.exe
2014-04-12 19:19:07 ----A---- C:\Windows\system32\fhcpl.dll
2014-04-12 19:19:06 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\taskhostex.exe
2014-04-12 19:19:06 ----A---- C:\Windows\system32\sharemediacpl.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\printui.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\netid.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\jsproxy.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\dxtrans.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\drivers\msgpioclx.sys
2014-04-12 19:19:06 ----A---- C:\Windows\system32\das.dll
2014-04-12 19:19:06 ----A---- C:\Windows\system32\CloudNotifications.exe
2014-04-12 19:19:05 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2014-04-12 19:19:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-04-12 19:19:05 ----A---- C:\Windows\SYSWOW64\CloudNotifications.exe
2014-04-12 19:19:05 ----A---- C:\Windows\system32\WSDApi.dll
2014-04-12 19:19:05 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2014-04-12 19:19:05 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2014-04-12 19:19:05 ----A---- C:\Windows\system32\SearchFilterHost.exe
2014-04-12 19:19:05 ----A---- C:\Windows\system32\sdclt.exe
2014-04-12 19:19:05 ----A---- C:\Windows\system32\drivers\refs.sys
2014-04-12 19:19:05 ----A---- C:\Windows\system32\drivers\fileinfo.sys
2014-04-12 19:19:04 ----AC---- C:\Windows\system32\drivers\dumpsd.sys
2014-04-12 19:19:04 ----AC---- C:\Windows\system32\drivers\BasicRender.sys
2014-04-12 19:19:04 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2014-04-12 19:19:04 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2014-04-12 19:19:04 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2014-04-12 19:19:04 ----A---- C:\Windows\SYSWOW64\imm32.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\zipfldr.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\rascustom.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\powrprof.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\newdev.dll
2014-04-12 19:19:04 ----A---- C:\Windows\system32\mssprxy.dll
2014-04-12 19:19:03 ----AC---- C:\Windows\system32\drivers\sdstor.sys
2014-04-12 19:19:03 ----AC---- C:\Windows\system32\drivers\BthLEEnum.sys
2014-04-12 19:19:03 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2014-04-12 19:19:03 ----A---- C:\Windows\SYSWOW64\gameux.dll
2014-04-12 19:19:03 ----A---- C:\Windows\system32\wusa.exe
2014-04-12 19:19:03 ----A---- C:\Windows\system32\spwizeng.dll
2014-04-12 19:19:03 ----A---- C:\Windows\system32\RestoreOptIn.exe
2014-04-12 19:19:03 ----A---- C:\Windows\system32\dmvdsitf.dll
2014-04-12 19:19:03 ----A---- C:\Windows\system32\aepic.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\WLanConn.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\rasgcw.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\powrprof.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\PlayToManager.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-04-12 19:19:02 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\wow64win.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\vds.exe
2014-04-12 19:19:02 ----A---- C:\Windows\system32\UserAccountBroker.exe
2014-04-12 19:19:02 ----A---- C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\LockScreenContent.dll
2014-04-12 19:19:02 ----A---- C:\Windows\system32\appinfo.dll
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\UserAccountBroker.exe
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\RestoreOptIn.exe
2014-04-12 19:19:01 ----A---- C:\Windows\SYSWOW64\newdev.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\iedkcs32.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\dot3mm.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\clrhost.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\bcd.dll
2014-04-12 19:19:01 ----A---- C:\Windows\system32\AppxSysprep.dll
2014-04-12 19:19:00 ----A---- C:\Windows\SYSWOW64\wscinterop.dll
2014-04-12 19:19:00 ----A---- C:\Windows\system32\easinvoker.exe
2014-04-12 19:19:00 ----A---- C:\Windows\system32\DAMM.dll
2014-04-12 19:19:00 ----A---- C:\Windows\system32\bootux.dll
2014-04-12 19:18:59 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-04-12 19:18:59 ----A---- C:\Windows\SYSWOW64\bcd.dll
2014-04-12 19:18:59 ----A---- C:\Windows\system32\WiFiDisplay.dll
2014-04-12 19:18:59 ----A---- C:\Windows\system32\srclient.dll
2014-04-12 19:18:59 ----A---- C:\Windows\system32\drivers\dumpfve.sys
2014-04-12 19:18:58 ----AC---- C:\Windows\system32\drivers\USBXHCI.SYS
2014-04-12 19:18:58 ----AC---- C:\Windows\system32\drivers\bthport.sys
2014-04-12 19:18:58 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-04-12 19:18:58 ----A---- C:\Windows\SYSWOW64\cleanmgr.exe
2014-04-12 19:18:58 ----A---- C:\Windows\system32\samlib.dll
2014-04-12 19:18:58 ----A---- C:\Windows\system32\rpchttp.dll
2014-04-12 19:18:58 ----A---- C:\Windows\system32\provsvc.dll
2014-04-12 19:18:58 ----A---- C:\Windows\system32\drivers\wpcfltr.sys
2014-04-12 19:18:58 ----A---- C:\Windows\system32\cleanmgr.exe
2014-04-12 19:18:57 ----AC---- C:\Windows\system32\drivers\UCX01000.SYS
2014-04-12 19:18:57 ----A---- C:\Windows\system32\rasmans.dll
2014-04-12 19:18:57 ----A---- C:\Windows\system32\AuthHost.exe
2014-04-12 19:18:56 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2014-04-12 19:18:56 ----A---- C:\Windows\system32\netiohlp.dll
2014-04-12 19:18:56 ----A---- C:\Windows\system32\korwbrkr.dll
2014-04-12 19:18:56 ----A---- C:\Windows\system32\deviceaccess.dll
2014-04-12 19:18:55 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2014-04-12 19:18:55 ----A---- C:\Windows\SYSWOW64\netid.dll
2014-04-12 19:18:55 ----A---- C:\Windows\SYSWOW64\BioCredProv.dll
2014-04-12 19:18:55 ----A---- C:\Windows\system32\WerFaultSecure.exe
2014-04-12 19:18:54 ----A---- C:\Windows\SYSWOW64\dmvdsitf.dll
2014-04-12 19:18:54 ----A---- C:\Windows\system32\scrrun.dll
2014-04-12 19:18:53 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2014-04-12 19:18:53 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2014-04-12 19:18:53 ----A---- C:\Windows\SYSWOW64\clrhost.dll
2014-04-12 19:18:53 ----A---- C:\Windows\system32\easwrt.dll
2014-04-12 19:18:53 ----A---- C:\Windows\system32\drivers\http.sys
2014-04-12 19:18:52 ----A---- C:\Windows\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-04-12 19:18:52 ----A---- C:\Windows\system32\srcore.dll
2014-04-12 19:18:52 ----A---- C:\Windows\system32\acppage.dll
2014-04-12 19:18:51 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2014-04-12 19:18:51 ----A---- C:\Windows\SYSWOW64\dmdskmgr.dll
2014-04-12 19:18:51 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\wcmcsp.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\VSSVC.exe
2014-04-12 19:18:51 ----A---- C:\Windows\system32\scrobj.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\netplwiz.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-12 19:18:51 ----A---- C:\Windows\system32\CloudStorageWizard.exe
2014-04-12 19:18:51 ----A---- C:\Windows\system32\AuthBroker.dll
2014-04-12 19:18:50 ----AC---- C:\Windows\system32\drivers\rfcomm.sys
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\samlib.dll
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\MbaeApiPublic.dll
2014-04-12 19:18:50 ----A---- C:\Windows\SYSWOW64\deviceaccess.dll
2014-04-12 19:18:50 ----A---- C:\Windows\system32\wuwebv.dll
2014-04-12 19:18:50 ----A---- C:\Windows\system32\winbrand.dll
2014-04-12 19:18:50 ----A---- C:\Windows\system32\slpts.dll
2014-04-12 19:18:50 ----A---- C:\Windows\system32\LockScreenContentServer.exe
2014-04-12 19:18:50 ----A---- C:\Windows\system32\DWWIN.EXE
2014-04-12 19:18:49 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2014-04-12 19:18:49 ----A---- C:\Windows\SYSWOW64\acppage.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\wpnprv.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\wbadmin.exe
2014-04-12 19:18:49 ----A---- C:\Windows\system32\sud.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\PrintDialogs.dll
2014-04-12 19:18:49 ----A---- C:\Windows\system32\bcdedit.exe
2014-04-12 19:18:49 ----A---- C:\Windows\system32\autofmt.exe
2014-04-12 19:18:49 ----A---- C:\Windows\system32\autoconv.exe
2014-04-12 19:18:48 ----A---- C:\Windows\SYSWOW64\wlidcredprov.dll
2014-04-12 19:18:48 ----A---- C:\Windows\SYSWOW64\scrobj.dll
2014-04-12 19:18:48 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2014-04-12 19:18:48 ----A---- C:\Windows\SYSWOW64\printui.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\wudriver.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\Windows.Media.Renewal.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\wbiosrvc.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\untfs.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\SysResetErr.exe
2014-04-12 19:18:48 ----A---- C:\Windows\system32\sppnp.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\spbcd.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\mfpmp.exe
2014-04-12 19:18:48 ----A---- C:\Windows\system32\BootMenuUX.dll
2014-04-12 19:18:48 ----A---- C:\Windows\system32\bcdboot.exe
2014-04-12 19:18:48 ----A---- C:\Windows\system32\autochk.exe
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\winbrand.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\slpts.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\autochk.exe
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2014-04-12 19:18:47 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2014-04-12 19:18:47 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2014-04-12 19:18:47 ----A---- C:\Windows\system32\UXInit.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\migisol.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\IdCtrls.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\fhevents.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\dafBth.dll
2014-04-12 19:18:47 ----A---- C:\Windows\system32\DAConn.dll
2014-04-12 19:18:46 ----AC---- C:\Windows\system32\drivers\BTHUSB.SYS
2014-04-12 19:18:46 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-04-12 19:18:46 ----A---- C:\Windows\SYSWOW64\StorageContextHandler.dll
2014-04-12 19:18:46 ----A---- C:\Windows\SYSWOW64\DWWIN.EXE
2014-04-12 19:18:46 ----A---- C:\Windows\SYSWOW64\AuthBroker.dll
2014-04-12 19:18:46 ----A---- C:\Windows\system32\vdsutil.dll
2014-04-12 19:18:46 ----A---- C:\Windows\system32\spcompat.dll
2014-04-12 19:18:46 ----A---- C:\Windows\system32\drivers\watchdog.sys
2014-04-12 19:18:46 ----A---- C:\Windows\system32\cscript.exe
2014-04-12 19:18:45 ----A---- C:\Windows\SYSWOW64\WimBootCompress.ini
2014-04-12 19:18:45 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2014-04-12 19:18:45 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2014-04-12 19:18:45 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2014-04-12 19:18:45 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2014-04-12 19:18:45 ----A---- C:\Windows\system32\WimBootCompress.ini
2014-04-12 19:18:45 ----A---- C:\Windows\system32\energytask.dll
2014-04-12 19:18:45 ----A---- C:\Windows\system32\diskpart.exe
2014-04-12 19:18:44 ----A---- C:\Windows\system32\werui.dll
2014-04-12 19:18:44 ----A---- C:\Windows\system32\devinv.dll
2014-04-12 19:18:43 ----A---- C:\Windows\system32\powercfg.exe
2014-04-12 19:18:42 ----A---- C:\Windows\SYSWOW64\sud.dll
2014-04-12 19:18:42 ----A---- C:\Windows\system32\RelPost.exe
2014-04-12 19:18:41 ----A---- C:\Windows\system32\SettingMonitor.dll
2014-04-12 19:18:41 ----A---- C:\Windows\system32\rstrui.exe
2014-04-12 19:18:41 ----A---- C:\Windows\system32\pnpclean.dll
2014-04-12 19:18:41 ----A---- C:\Windows\system32\deviceassociation.dll
2014-04-12 19:18:40 ----A---- C:\Windows\SYSWOW64\wlidcli.dll
2014-04-12 19:18:40 ----A---- C:\Windows\system32\dasHost.exe
2014-04-12 19:18:39 ----A---- C:\Windows\SYSWOW64\SettingMonitor.dll
2014-04-12 19:18:39 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-04-12 19:18:39 ----A---- C:\Windows\system32\srrstr.dll
2014-04-12 19:18:39 ----A---- C:\Windows\system32\qedit.dll
2014-04-12 19:18:39 ----A---- C:\Windows\system32\PlayToDevice.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\winsku.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\SSShim.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\PlayToDevice.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\offreg.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\IdCtrls.dll
2014-04-12 19:18:38 ----A---- C:\Windows\SYSWOW64\CloudStorageWizard.exe
2014-04-12 19:18:38 ----A---- C:\Windows\system32\wups.dll
2014-04-12 19:18:38 ----A---- C:\Windows\system32\wuapp.exe
2014-04-12 19:18:38 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-04-12 19:18:38 ----A---- C:\Windows\system32\ReAgentc.exe
2014-04-12 19:18:38 ----A---- C:\Windows\system32\offreg.dll
2014-04-12 19:18:38 ----A---- C:\Windows\system32\dfrgui.exe
2014-04-12 19:18:38 ----A---- C:\Windows\system32\ActionQueue.dll
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\werui.dll
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\powercfg.exe
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\migisol.dll
2014-04-12 19:18:37 ----A---- C:\Windows\SYSWOW64\deviceassociation.dll
2014-04-12 19:18:37 ----A---- C:\Windows\system32\SystemSettings.Handlers.dll
2014-04-12 19:18:37 ----A---- C:\Windows\system32\msshooks.dll
2014-04-12 19:18:37 ----A---- C:\Windows\system32\mf3216.dll
2014-04-12 19:18:37 ----A---- C:\Windows\system32\f3ahvoas.dll
2014-04-12 19:18:33 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2014-04-12 19:18:33 ----A---- C:\Windows\SYSWOW64\easwrt.dll
2014-04-12 19:18:33 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2014-04-12 19:18:33 ----A---- C:\Windows\system32\winsku.dll
2014-04-12 19:18:33 ----A---- C:\Windows\system32\wercplsupport.dll
2014-04-12 19:18:33 ----A---- C:\Windows\system32\vdsdyn.dll
2014-04-12 19:18:33 ----A---- C:\Windows\system32\SrTasks.exe
2014-04-12 19:18:32 ----A---- C:\Windows\system32\themecpl.dll
2014-04-12 19:18:32 ----A---- C:\Windows\system32\LockScreenContentHost.dll
2014-04-12 19:18:32 ----A---- C:\Windows\system32\DevicePairing.dll
2014-04-12 19:18:32 ----A---- C:\Windows\system32\Defrag.exe
2014-04-12 19:18:32 ----A---- C:\Windows\system32\AepRoam.dll
2014-04-12 19:18:31 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2014-04-12 19:18:31 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\wusa.exe
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\sxshared.dll
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2014-04-12 19:18:30 ----A---- C:\Windows\SYSWOW64\ConfigureExpandedStorage.dll
2014-04-12 19:18:30 ----A---- C:\Windows\system32\ConfigureExpandedStorage.dll
2014-04-12 19:18:29 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-12 19:18:29 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-04-12 19:18:29 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-12 19:18:29 ----A---- C:\Windows\system32\scavengeui.dll
2014-04-12 19:18:24 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-12 19:18:24 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-04-12 19:18:24 ----A---- C:\Windows\system32\wincorlib.dll
2014-04-12 19:18:23 ----A---- C:\Windows\SYSWOW64\wincorlib.dll
2014-04-12 19:18:23 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2014-04-12 19:18:21 ----A---- C:\Windows\system32\BulkOperationHost.exe
2014-04-12 19:18:20 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2014-04-12 19:18:20 ----A---- C:\Windows\system32\syncui.dll
2014-04-12 19:18:20 ----A---- C:\Windows\system32\SettingSyncPolicy.dll
2014-04-12 19:18:15 ----A---- C:\Windows\system32\mshtmled.dll
2014-04-12 19:18:14 ----A---- C:\Windows\SYSWOW64\finger.exe
2014-04-12 19:18:12 ----A---- C:\Windows\system32\WorkfoldersControl.dll
2014-04-12 19:18:12 ----A---- C:\Windows\system32\wmpdxm.dll
2014-04-12 19:18:11 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2014-04-12 19:18:11 ----A---- C:\Windows\SYSWOW64\SettingSyncPolicy.dll
2014-04-12 19:18:09 ----A---- C:\Windows\system32\ocsetapi.dll
2014-04-12 19:18:09 ----A---- C:\Windows\system32\GlobCollationHost.dll
2014-04-12 19:18:06 ----A---- C:\Windows\system32\StorageContextHandler.dll
2014-04-12 19:18:05 ----AH---- C:\Windows\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-04-12 19:18:05 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2014-04-12 19:18:05 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2014-04-12 19:18:04 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-12 19:18:04 ----AH---- C:\Windows\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-04-12 19:18:04 ----A---- C:\Windows\SYSWOW64\korwbrkr.dll
2014-04-12 19:18:04 ----A---- C:\Windows\system32\shsetup.dll
2014-04-12 19:18:04 ----A---- C:\Windows\system32\dataclen.dll
2014-04-12 19:18:04 ----A---- C:\Windows\system32\aitagent.exe
2014-04-12 19:18:02 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-12 19:18:02 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-12 19:18:02 ----AH---- C:\Windows\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-04-12 19:18:02 ----AH---- C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-04-12 19:18:02 ----AH---- C:\Windows\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-04-12 19:18:02 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-04-12 19:18:02 ----A---- C:\Windows\SYSWOW64\dataclen.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\winbici.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\shimeng.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\occache.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\lpksetupproxyserv.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\fveskybackup.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\finger.exe
2014-04-12 19:18:02 ----A---- C:\Windows\system32\fhsvcctl.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\dxmasf.dll
2014-04-12 19:18:02 ----A---- C:\Windows\system32\aeinv.dll
2014-04-12 19:18:01 ----A---- C:\Windows\SYSWOW64\f3ahvoas.dll
2014-04-12 19:09:14 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2014-04-12 19:09:09 ----A---- C:\Windows\system32\shell32.dll
2014-04-12 19:09:08 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2014-04-12 19:09:06 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2014-04-12 19:09:06 ----A---- C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2014-04-12 19:09:05 ----A---- C:\Windows\system32\twinui.dll
2014-04-12 19:09:04 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-04-12 19:09:01 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-04-12 19:08:59 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2014-04-12 19:08:59 ----A---- C:\Windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-04-12 19:08:59 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-04-12 19:08:57 ----A---- C:\Windows\system32\SyncEngine.dll
2014-04-12 19:08:57 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-04-12 19:08:56 ----A---- C:\Windows\system32\msxml6.dll
2014-04-12 19:08:56 ----A---- C:\Windows\system32\msftedit.dll
2014-04-12 19:08:55 ----A---- C:\Windows\SYSWOW64\explorer.exe
2014-04-12 19:08:55 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-04-12 19:08:55 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-04-12 19:08:55 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2014-04-12 19:08:55 ----A---- C:\Windows\explorer.exe
2014-04-12 19:08:54 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-04-12 19:08:54 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2014-04-12 19:08:54 ----A---- C:\Windows\system32\KernelBase.dll
2014-04-12 19:08:54 ----A---- C:\Windows\system32\dwmcore.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\twinui.appcore.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\SearchFolder.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\lsasrv.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-04-12 19:08:53 ----A---- C:\Windows\system32\d3d11.dll
2014-04-12 19:08:53 ----A---- C:\Windows\system32\authui.dll
2014-04-12 19:08:52 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2014-04-12 19:08:52 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2014-04-12 19:08:52 ----A---- C:\Windows\system32\ole32.dll
2014-04-12 19:08:52 ----A---- C:\Windows\system32\localspl.dll
2014-04-12 19:08:51 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-04-12 19:08:51 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-04-12 19:08:51 ----A---- C:\Windows\system32\propsys.dll
2014-04-12 19:08:51 ----A---- C:\Windows\system32\gdi32.dll
2014-04-12 19:08:50 ----A---- C:\Windows\system32\wlidprov.dll
2014-04-12 19:08:49 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2014-04-12 19:08:49 ----A---- C:\Windows\system32\kernel32.dll
2014-04-12 19:08:49 ----A---- C:\Windows\system32\dnsapi.dll
2014-04-12 19:08:48 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-04-12 19:08:48 ----A---- C:\Windows\system32\mstscax.dll
2014-04-12 19:08:48 ----A---- C:\Windows\system32\kerberos.dll
2014-04-12 19:08:48 ----A---- C:\Windows\system32\audiosrv.dll
2014-04-12 19:08:47 ----A---- C:\Windows\system32\dcomp.dll
2014-04-12 19:08:46 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-04-12 19:08:46 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-04-12 19:08:46 ----A---- C:\Windows\system32\wlansvc.dll
2014-04-12 19:08:46 ----A---- C:\Windows\system32\mfsvr.dll
2014-04-12 19:08:46 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-04-12 19:08:46 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-04-12 19:08:45 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2014-04-12 19:08:45 ----A---- C:\Windows\SYSWOW64\propsys.dll
2014-04-12 19:08:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2014-04-12 19:08:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\rasapi32.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\netlogon.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\MFMediaEngine.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\dxgi.dll
2014-04-12 19:08:45 ----A---- C:\Windows\system32\drivers\wof.sys
2014-04-12 19:08:44 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-04-12 19:08:44 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2014-04-12 19:08:44 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-04-12 19:08:44 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-04-12 19:08:44 ----A---- C:\Windows\system32\ReAgent.dll
2014-04-12 19:08:44 ----A---- C:\Windows\system32\GdiPlus.dll
2014-04-12 19:08:44 ----A---- C:\Windows\system32\fveapi.dll
2014-04-12 19:08:44 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-04-12 19:08:44 ----A---- C:\Windows\system32\BFE.DLL
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\rasapi32.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-04-12 19:08:43 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2014-04-12 19:08:43 ----A---- C:\Windows\system32\SkyDriveTelemetry.dll
2014-04-12 19:08:43 ----A---- C:\Windows\system32\SkyDrive.exe
2014-04-12 19:08:43 ----A---- C:\Windows\system32\SensorsApi.dll
2014-04-12 19:08:43 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-04-12 19:08:43 ----A---- C:\Windows\system32\drivers\cng.sys
2014-04-12 19:08:43 ----A---- C:\Windows\system32\drivers\clfs.sys
2014-04-12 19:08:43 ----A---- C:\Windows\system32\bdesvc.dll
2014-04-12 19:08:42 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2014-04-12 19:08:42 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2014-04-12 19:08:42 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\WsmSvc.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\Windows.Media.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\netcfgx.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\MDMAgent.exe
2014-04-12 19:08:42 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2014-04-12 19:08:42 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\AudioSes.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\AudioEng.dll
2014-04-12 19:08:42 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2014-04-12 19:08:41 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2014-04-12 19:08:41 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-04-12 19:08:41 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-04-12 19:08:41 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\userenv.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\SessEnv.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\profsvc.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\pdh.dll
2014-04-12 19:08:41 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-04-12 19:08:41 ----A---- C:\Windows\system32\audiodg.exe
2014-04-12 19:08:41 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2014-04-12 19:08:40 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2014-04-12 19:08:40 ----A---- C:\Windows\system32\davclnt.dll
2014-04-12 19:08:39 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-04-12 19:08:39 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2014-04-12 19:08:37 ----A---- C:\Windows\system32\mfreadwrite.dll
2014-04-12 19:08:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-04-12 19:08:37 ----A---- C:\Windows\system32\cdd.dll
2014-04-12 19:08:36 ----A---- C:\Windows\SYSWOW64\AppxAllUserStore.dll
2014-04-12 19:08:35 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-04-12 19:08:35 ----A---- C:\Windows\system32\wlangpui.dll
2014-04-12 19:08:34 ----A---- C:\Windows\system32\drivers\nwifi.sys
2014-04-12 19:08:33 ----AC---- C:\Windows\system32\drivers\USBHUB3.SYS
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\userenv.dll
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2014-04-12 19:08:33 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\wlanapi.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\spp.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-04-12 19:08:33 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-04-12 19:08:33 ----A---- C:\Windows\system32\drivers\dfsc.sys
2014-04-12 19:08:33 ----A---- C:\Windows\system32\dafWfdProvider.dll
2014-04-12 19:08:33 ----A---- C:\Windows\system32\aclui.dll
2014-04-12 19:08:32 ----A---- C:\Windows\SYSWOW64\spp.dll
2014-04-12 19:08:32 ----A---- C:\Windows\system32\drvinst.exe
2014-04-12 19:08:31 ----AC---- C:\Windows\system32\drivers\hidusb.sys
2014-04-12 19:08:31 ----A---- C:\Windows\SYSWOW64\pdh.dll
2014-04-12 19:08:31 ----A---- C:\Windows\system32\WSDMon.dll
2014-04-12 19:08:31 ----A---- C:\Windows\system32\drivers\wfplwfs.sys
2014-04-12 19:08:31 ----A---- C:\Windows\system32\AppxAllUserStore.dll
2014-04-12 19:08:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-04-12 19:08:30 ----A---- C:\Windows\system32\w32tm.exe
2014-04-12 19:08:30 ----A---- C:\Windows\system32\adtschema.dll
2014-04-12 19:08:29 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2014-04-12 19:08:29 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-04-12 19:08:29 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2014-04-12 19:08:29 ----A---- C:\Windows\system32\Display.dll
2014-04-12 19:08:29 ----A---- C:\Windows\system32\clusapi.dll
2014-04-12 19:08:28 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-04-12 19:08:28 ----A---- C:\Windows\system32\wlanmsm.dll
2014-04-12 19:08:28 ----A---- C:\Windows\system32\MDEServer.exe
2014-04-12 19:08:27 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2014-04-12 19:08:27 ----A---- C:\Windows\SYSWOW64\Display.dll
2014-04-12 19:08:27 ----A---- C:\Windows\system32\fveapibase.dll
2014-04-12 19:08:27 ----A---- C:\Windows\system32\drvcfg.exe
2014-04-12 19:08:27 ----A---- C:\Windows\system32\CredentialMigrationHandler.dll
2014-04-12 19:08:26 ----AC---- C:\Windows\system32\drivers\hidclass.sys
2014-04-12 19:08:26 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2014-04-12 19:08:26 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2014-04-12 19:08:26 ----A---- C:\Windows\SYSWOW64\CredentialMigrationHandler.dll
2014-04-12 19:08:26 ----A---- C:\Windows\SYSWOW64\aclui.dll
2014-04-12 19:08:26 ----A---- C:\Windows\system32\Windows.Devices.Scanners.dll
2014-04-12 19:08:26 ----A---- C:\Windows\system32\RMapi.dll
2014-04-12 19:08:26 ----A---- C:\Windows\system32\ReInfo.dll
2014-04-12 19:08:26 ----A---- C:\Windows\system32\LocationApi.dll
2014-04-12 19:08:25 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Scanners.dll
2014-04-12 19:08:25 ----A---- C:\Windows\SYSWOW64\ReInfo.dll
2014-04-12 19:08:25 ----A---- C:\Windows\SYSWOW64\LocationApi.dll
2014-04-12 19:08:25 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\tsgqec.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\sxproxy.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\nshwfp.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\fvewiz.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-04-12 19:08:25 ----A---- C:\Windows\system32\DevPropMgr.dll
2014-04-12 19:08:25 ----A---- C:\Windows\system32\BitLockerDeviceEncryption.exe
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\sxproxy.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-04-12 19:08:24 ----A---- C:\Windows\SYSWOW64\l2gpstore.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\wlansec.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\wlanhlp.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\SetNetworkLocation.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\l2gpstore.dll
2014-04-12 19:08:24 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-04-12 19:08:24 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2014-04-12 19:08:24 ----A---- C:\Windows\system32\BdeHdCfgLib.dll
2014-04-12 19:08:14 ----A---- C:\Windows\system32\mshtml.dll
2014-04-12 19:08:13 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-04-12 19:08:04 ----A---- C:\Windows\system32\SettingsHandlers.dll
2014-04-12 18:08:10 ----D---- C:\Users\Jaroslav\AppData\Roaming\IObit
2014-04-12 17:50:30 ----D---- C:\Program Files (x86)\GUM1C27.tmp
2014-04-12 17:46:48 ----A---- C:\Windows\system32\poqexec.exe
2014-04-12 17:46:47 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-04-12 17:44:27 ----D---- C:\Program Files (x86)\Google
2014-04-12 17:36:50 ----RD---- C:\Windows\BrowserChoice
2014-04-12 17:08:19 ----D---- C:\Windows\system32\MRT
2014-04-12 17:08:16 ----A---- C:\Windows\system32\MRT.exe
2014-04-12 17:01:16 ----D---- C:\Windows\pss
2014-04-12 16:56:43 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-04-12 16:56:40 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-04-12 16:56:37 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2014-04-12 16:56:04 ----A---- C:\Windows\system32\schedsvc.dll
2014-04-12 16:56:02 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-04-12 16:56:02 ----A---- C:\Windows\system32\pnrpsvc.dll
2014-04-12 16:56:02 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2014-04-12 16:56:01 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-04-12 16:56:00 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2014-04-12 16:56:00 ----A---- C:\Windows\system32\drivers\rdbss.sys
2014-04-12 16:55:59 ----A---- C:\Windows\system32\sti.dll
2014-04-12 16:55:58 ----A---- C:\Windows\SYSWOW64\OEMLicense.dll
2014-04-12 16:55:58 ----A---- C:\Windows\system32\OEMLicense.dll
2014-04-12 16:55:57 ----A---- C:\Windows\SYSWOW64\sti.dll
2014-04-12 16:55:49 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-04-12 16:55:49 ----A---- C:\Windows\system32\d3d10warp.dll
2014-04-12 16:55:49 ----A---- C:\Windows\system32\d2d1.dll
2014-04-12 16:55:48 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-04-12 16:55:22 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2014-04-12 16:55:21 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2014-04-12 16:55:20 ----A---- C:\Windows\system32\d3d9.dll
2014-04-12 16:55:18 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2014-04-12 16:55:17 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-04-12 16:55:16 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2014-04-12 16:55:16 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2014-04-12 16:55:16 ----A---- C:\Windows\system32\UIAutomationCore.dll
2014-04-12 16:55:15 ----A---- C:\Windows\system32\d3d10level9.dll
2014-04-12 16:55:13 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2014-04-12 16:55:13 ----A---- C:\Windows\system32\eapphost.dll
2014-04-12 16:55:12 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2014-04-12 16:55:12 ----A---- C:\Windows\system32\kd_02_8086.dll
2014-04-12 16:55:11 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-04-12 16:55:11 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-04-12 16:55:11 ----A---- C:\Windows\system32\tsmf.dll
2014-04-12 16:55:11 ----A---- C:\Windows\system32\eapp3hst.dll
2014-04-12 16:55:10 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2014-04-12 16:55:10 ----A---- C:\Windows\system32\drivers\srv.sys
2014-04-12 16:55:09 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2014-04-12 16:55:09 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2014-04-12 16:55:09 ----A---- C:\Windows\system32\pcsvDevice.dll
2014-04-12 16:55:09 ----A---- C:\Windows\system32\msched.dll
2014-04-12 16:55:08 ----AC---- C:\Windows\system32\drivers\usbccgp.sys
2014-04-12 16:55:08 ----A---- C:\Windows\system32\iphlpsvc.dll
2014-04-12 16:55:07 ----AC---- C:\Windows\system32\drivers\stornvme.sys
2014-04-12 16:55:07 ----A---- C:\Windows\system32\wldp.dll
2014-04-12 16:55:07 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-04-12 16:55:07 ----A---- C:\Windows\system32\ipnathlp.dll
2014-04-12 16:55:06 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2014-04-12 16:55:05 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2014-04-12 16:55:05 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2014-04-12 16:55:05 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2014-04-12 16:55:05 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-04-12 16:55:05 ----A---- C:\Windows\system32\eappcfg.dll
2014-04-12 16:55:04 ----A---- C:\Windows\system32\eappgnui.dll
2014-04-12 16:55:02 ----A---- C:\Windows\SYSWOW64\ftp.exe
2014-04-12 16:55:02 ----A---- C:\Windows\system32\WorkFoldersShell.dll
2014-04-12 16:55:00 ----A---- C:\Windows\SYSWOW64\miutils.dll
2014-04-12 16:55:00 ----A---- C:\Windows\system32\rdpclip.exe
2014-04-12 16:55:00 ----A---- C:\Windows\system32\miutils.dll
2014-04-12 16:55:00 ----A---- C:\Windows\system32\ftp.exe
2014-04-12 16:54:11 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-04-12 16:54:10 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-04-12 16:54:06 ----A---- C:\Windows\system32\ubpm.dll
2014-04-12 16:54:06 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2014-04-12 16:54:04 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2014-04-12 16:54:04 ----A---- C:\Windows\system32\mfds.dll
2014-04-12 16:54:03 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2014-04-12 16:54:02 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2014-04-12 16:54:02 ----A---- C:\Windows\SYSWOW64\mfds.dll
2014-04-12 16:54:02 ----A---- C:\Windows\system32\Windows.Graphics.dll
2014-04-12 16:54:02 ----A---- C:\Windows\system32\rastls.dll
2014-04-12 16:54:01 ----A---- C:\Windows\system32\msieftp.dll
2014-04-12 16:54:01 ----A---- C:\Windows\system32\drivers\ipnat.sys
2014-04-12 16:54:00 ----AC---- C:\Windows\system32\drivers\BtaMPM.sys
2014-04-12 16:54:00 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-04-12 16:54:00 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-04-12 16:54:00 ----A---- C:\Windows\system32\bi.dll
2014-04-12 16:53:59 ----A---- C:\Windows\system32\deviceregistration.dll
2014-04-12 16:52:52 ----AC---- C:\Windows\system32\drivers\intelpep.sys
2014-04-12 16:52:52 ----A---- C:\Windows\system32\drivers\SerCx2.sys
2014-04-12 16:52:51 ----A---- C:\Windows\system32\drivers\pdc.sys
2014-04-12 16:51:44 ----A---- C:\Windows\system32\WSCollect.exe
2014-04-12 16:51:42 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-04-12 16:51:42 ----A---- C:\Windows\system32\imagehlp.dll
2014-04-12 16:51:09 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-04-12 16:51:09 ----A---- C:\Windows\system32\msxml3.dll
2014-04-12 16:51:08 ----A---- C:\Windows\SYSWOW64\pcaui.exe
2014-04-12 16:51:08 ----A---- C:\Windows\system32\pcaui.exe
2014-04-12 16:50:58 ----A---- C:\Windows\system32\sppsvc.exe
2014-04-12 16:50:56 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2014-04-12 16:50:55 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2014-04-12 16:50:55 ----A---- C:\Windows\system32\dbghelp.dll
2014-04-12 16:50:55 ----A---- C:\Windows\system32\dbgeng.dll
2014-04-12 16:50:54 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2014-04-12 16:50:54 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2014-04-12 16:50:53 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2014-04-12 16:50:53 ----A---- C:\Windows\system32\rdpencom.dll
2014-04-12 16:50:52 ----A---- C:\Windows\system32\sppcomapi.dll
2014-04-12 16:50:47 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-04-12 16:50:47 ----A---- C:\Windows\system32\msdrm.dll
2014-04-12 16:50:35 ----A---- C:\Windows\system32\WMPhoto.dll
2014-04-12 16:50:34 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-04-12 16:50:15 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-04-12 16:50:15 ----A---- C:\Windows\system32\crypt32.dll
2014-04-12 16:42:13 ----D---- C:\Users\Jaroslav\AppData\Roaming\Macromedia
2014-04-12 16:26:31 ----D---- C:\Users\Jaroslav\AppData\Roaming\Adobe
2014-04-12 16:24:17 ----SD---- C:\Users\Jaroslav\AppData\Roaming\Microsoft
2014-03-26 19:00:14 ----A---- C:\Windows\system32\drivers\VBoxNetFlt.sys
2014-03-26 19:00:14 ----A---- C:\Windows\system32\drivers\VBoxNetAdp.sys
2014-03-26 18:58:04 ----A---- C:\Windows\system32\VBoxNetFltNobj.dll
Přispějete na provoz fóra?