Nejde spustiť Firefox

[cappie]

Zdravím, nejde mi spustiť Firefox, skúšal som reinštaláciu aj update na "štvorku" spustiť nejde ani profil manager ani safe mode Vopred díky

Logfile of random's system information tool 1.08 (written by random/random)
Run by Martin at 2011-03-21 16:28:04
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 7 GB (5%) free of 153 GB
Total RAM: 2048 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:29:25, on 21. 3. 2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Windows\system32\taskhost.exe
C:\Windows\ZSSnp211.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\Martin\Desktop\RSIT.exe
C:\Program Files\Trend Micro\Martin.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;ftp=;https=;
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office 2007\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Microsoft Web Test Recorder 10.0 Helper - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - C:\Program Files\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\PROGRA~1\PCTRAN~1\webie.dll
O4 - HKLM\..\Run: [ZSSnp211] C:\Windows\ZSSnp211.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup
O4 - Global Startup: Canon LBP2900 Status Window.lnk = C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: WebTran - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\PROGRA~1\PCTRAN~1\webie.dll
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\PROGRA~1\PCTRAN~1\webie.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {62789780-B744-11D0-986B-00609731A21D} (Autodesk MapGuide ActiveX Control) - http://195.28.70.134/kapor2/lib/mgaxctrl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 1792919857
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office 2007\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: lxbk_device - - C:\Windows\system32\lxbkcoms.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd - C:\Program Files\RealVNC\VNC4\WinVNC4.exe

--
End of file - 6955 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-01-30 64928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office 2007\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DDA57003-0068-4ed2-9D32-4D1EC707D94D}]
Microsoft Web Test Recorder 10.0 Helper - C:\Program Files\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2010-03-19 61360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\PROGRA~1\PCTRAN~1\webie.dll [2004-05-13 319488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ZSSnp211"=C:\Windows\ZSSnp211.exe [2007-04-06 57344]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-11-25 98304]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-12-31 7739936]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"ISUSPM Startup"=c:\progra~1\common~1\instal~1\update~1\isuspm.exe [2004-04-17 196608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-10 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Domino]
C:\Windows\Domino.exe [2006-08-18 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office 2007\Office12\GrooveMonitor.exe [2008-10-25 31072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.2\ICQ.exe [2010-10-27 133432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelliPoint]
C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2010-07-21 1797008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2010-12-06 1910152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxbkbmgr.exe]
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2007-04-26 74672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-10-28 1406248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RocketDock]
C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ScreenManager Pro for LCD]
C:\Program Files\EIZO\ScreenManager Pro for LCD\Lcdctrl.exe [2007-08-30 10937640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2010-12-11 395640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2010-12-06 74752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acrobat Assistant.lnk]
E:\Distillr\AcroTray.exe [2001-03-15 49254]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Canon LBP2900 Status Window.lnk - C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2010-11-20 229376]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\Windows\system32\wpdshserviceobj.dll [2010-11-20 105984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2008-03-18 233888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office 2007\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"ConsentPromptBehaviorUser"=0
"PromptOnSecureDesktop"=0
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=60
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2011-03-12 20:27:42 ----D---- C:\Users\Martin\AppData\Roaming\Blueberry
2011-03-12 20:25:46 ----D---- C:\Users\Martin\AppData\Roaming\LogSys
2011-03-12 20:25:33 ----D---- C:\Program Files\Common Files\Blueberry Software
2011-03-12 20:25:33 ----D---- C:\Program Files\Blueberry Software
2011-03-12 20:25:05 ----HDC---- C:\ProgramData\{D82AC81F-4D4A-4B9D-9FE5-FF3930123446}
2011-03-12 19:38:24 ----D---- C:\Program Files\Fraps
2011-03-09 12:07:05 ----A---- C:\Windows\system32\EncDec.dll
2011-03-09 12:07:05 ----A---- C:\Windows\system32\CPFilters.dll
2011-03-09 12:07:04 ----A---- C:\Windows\system32\sbe.dll
2011-03-06 15:09:21 ----D---- C:\Program Files\Autodesk
2011-03-05 18:02:23 ----A---- C:\Windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2011-03-05 18:02:10 ----A---- C:\Windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2011-03-05 18:01:03 ----D---- C:\Windows\system32\RsFx
2011-03-05 17:48:55 ----D---- C:\Program Files\Microsoft SQL Server
2011-03-05 17:48:22 ----D---- C:\Program Files\Microsoft Sync Framework
2011-03-05 17:48:12 ----D---- C:\Program Files\Microsoft Synchronization Services
2011-03-05 17:46:54 ----D---- C:\ProgramData\PreEmptive Solutions
2011-03-05 17:40:52 ----D---- C:\Program Files\Microsoft ASP.NET
2011-03-05 17:40:45 ----D---- C:\Program Files\IIS
2011-03-05 17:28:57 ----D---- C:\Windows\system32\1033
2011-03-05 17:28:33 ----D---- C:\Windows\symbols
2011-03-05 17:27:54 ----D---- C:\Program Files\Microsoft F#
2011-03-05 17:27:54 ----D---- C:\Program Files\HTML Help Workshop
2011-03-05 17:27:53 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2011-03-05 17:27:53 ----D---- C:\Program Files\Microsoft SDKs
2011-03-05 17:27:53 ----D---- C:\Program Files\Microsoft Help Viewer
2011-03-05 17:27:53 ----D---- C:\Program Files\Common Files\Merge Modules
2011-03-05 17:24:51 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2011-03-05 13:05:41 ----D---- C:\Users\Martin\AppData\Roaming\Miranda
2011-03-05 13:05:19 ----D---- C:\Program Files\Miranda IM
2011-03-04 17:08:12 ----D---- C:\Program Files\Total Video Converter
2011-03-04 16:47:49 ----D---- C:\Users\Martin\AppData\Roaming\mkvtoolnix
2011-03-02 19:18:28 ----D---- C:\ProgramData\tmp
2011-02-25 11:43:19 ----A---- C:\Windows\system32\PdfPorts.dll
2011-02-25 11:43:19 ----A---- C:\Windows\system32\adistres.dll
2011-02-25 11:43:06 ----A---- C:\Windows\system32\pdfshell.dll
2011-02-25 11:42:44 ----D---- C:\Windows\system32\Adobe
2011-02-24 20:30:38 ----D---- C:\Windows\system32\SPReview
2011-02-24 20:27:53 ----D---- C:\Windows\system32\EventProviders
2011-02-24 20:20:00 ----A---- C:\Windows\system32\vmictimeprovider.dll
2011-02-24 20:20:00 ----A---- C:\Windows\system32\vmicsvc.exe
2011-02-24 20:20:00 ----A---- C:\Windows\system32\vmicres.dll
2011-02-24 20:20:00 ----A---- C:\Windows\system32\vmbusres.dll
2011-02-24 20:20:00 ----A---- C:\Windows\system32\vmbuspipe.dll
2011-02-24 20:20:00 ----A---- C:\Windows\system32\VmbusCoinstaller.dll
2011-02-24 20:20:00 ----A---- C:\Windows\system32\IcCoinstall.dll
2011-02-24 20:20:00 ----A---- C:\Windows\system32\drivers\winhv.sys
2011-02-24 20:20:00 ----A---- C:\Windows\system32\drivers\VMBusHID.sys
2011-02-24 20:20:00 ----A---- C:\Windows\system32\drivers\vmbus.sys
2011-02-24 20:19:59 ----A---- C:\Windows\system32\WSDApi.dll
2011-02-24 20:19:59 ----A---- C:\Windows\system32\vmstorfltres.dll
2011-02-24 20:19:59 ----A---- C:\Windows\system32\VmdCoinstall.dll
2011-02-24 20:19:59 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-02-24 20:19:59 ----A---- C:\Windows\system32\PresentationHost.exe
2011-02-24 20:19:59 ----A---- C:\Windows\system32\drivers\vmstorfl.sys
2011-02-24 20:19:59 ----A---- C:\Windows\system32\drivers\vms3cap.sys
2011-02-24 20:19:59 ----A---- C:\Windows\system32\drivers\storvsc.sys
2011-02-24 20:19:57 ----A---- C:\Windows\system32\tquery.dll
2011-02-24 20:19:57 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-02-24 20:19:57 ----A---- C:\Windows\system32\mssvp.dll
2011-02-24 20:19:57 ----A---- C:\Windows\system32\mssrch.dll
2011-02-24 20:19:57 ----A---- C:\Windows\system32\mssphtb.dll
2011-02-24 20:19:54 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-02-24 20:19:54 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2011-02-24 20:19:53 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-02-24 20:19:53 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-02-24 20:19:53 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-02-24 20:19:53 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-02-24 20:19:51 ----A---- C:\Windows\system32\umb.dll
2011-02-24 20:19:51 ----A---- C:\Windows\system32\drivers\winusb.sys
2011-02-24 20:19:51 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-02-24 20:19:51 ----A---- C:\Windows\system32\drivers\umbus.sys
2011-02-24 20:19:48 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-02-24 20:19:43 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-02-24 20:19:41 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-02-24 20:19:41 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-02-24 20:19:39 ----A---- C:\Windows\system32\MPSSVC.dll
2011-02-24 20:19:39 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2011-02-24 20:19:38 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2011-02-24 20:19:33 ----A---- C:\Windows\system32\netfxperf.dll
2011-02-24 20:19:33 ----A---- C:\Windows\system32\mscories.dll
2011-02-24 20:19:33 ----A---- C:\Windows\system32\mscorier.dll
2011-02-24 20:19:33 ----A---- C:\Windows\system32\mscoree.dll
2011-02-24 20:19:32 ----A---- C:\Windows\system32\Narrator.exe
2011-02-24 20:19:32 ----A---- C:\Windows\system32\NAPHLPR.DLL
2011-02-24 20:19:32 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2011-02-24 20:19:32 ----A---- C:\Windows\system32\dfshim.dll
2011-02-24 20:19:31 ----A---- C:\Windows\system32\wpd_ci.dll
2011-02-24 20:19:31 ----A---- C:\Windows\system32\winhttp.dll
2011-02-24 20:19:31 ----A---- C:\Windows\system32\drivers\scsiport.sys
2011-02-24 20:19:31 ----A---- C:\Windows\system32\drivers\msdsm.sys
2011-02-24 20:19:31 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-02-24 20:19:31 ----A---- C:\Windows\system32\drivers\mpio.sys
2011-02-24 20:19:31 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-02-24 20:19:28 ----A---- C:\Windows\system32\zipfldr.dll
2011-02-24 20:19:28 ----A---- C:\Windows\system32\CertEnroll.dll
2011-02-24 20:19:27 ----A---- C:\Windows\system32\wwanprotdim.dll
2011-02-24 20:19:27 ----A---- C:\Windows\system32\wwanconn.dll
2011-02-24 20:19:27 ----A---- C:\Windows\system32\wusa.exe
2011-02-24 20:19:27 ----A---- C:\Windows\system32\wsdchngr.dll
2011-02-24 20:19:23 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-02-24 20:19:23 ----A---- C:\Windows\system32\wpdshext.dll
2011-02-24 20:19:23 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2011-02-24 20:19:22 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-02-24 20:19:22 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-02-24 20:19:22 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-02-24 20:19:22 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-02-24 20:19:22 ----A---- C:\Windows\system32\wkssvc.dll
2011-02-24 20:19:22 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-02-24 20:19:21 ----A---- C:\Windows\system32\wbemcomn.dll
2011-02-24 20:19:21 ----A---- C:\Windows\system32\framedynos.dll
2011-02-24 20:19:21 ----A---- C:\Windows\system32\framedyn.dll
2011-02-24 20:19:20 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-02-24 20:19:20 ----A---- C:\Windows\system32\WMADMOD.DLL
2011-02-24 20:19:19 ----A---- C:\Windows\system32\wucltux.dll
2011-02-24 20:19:19 ----A---- C:\Windows\system32\wlanui.dll
2011-02-24 20:19:19 ----A---- C:\Windows\system32\wlanpref.dll
2011-02-24 20:19:19 ----A---- C:\Windows\system32\wlanmsm.dll
2011-02-24 20:19:19 ----A---- C:\Windows\system32\wlangpui.dll
2011-02-24 20:19:19 ----A---- C:\Windows\system32\wintrust.dll
2011-02-24 20:19:19 ----A---- C:\Windows\system32\winsrv.dll
2011-02-24 20:19:19 ----A---- C:\Windows\system32\winlogon.exe
2011-02-24 20:19:19 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-02-24 20:19:19 ----A---- C:\Windows\system32\wimserv.exe
2011-02-24 20:19:19 ----A---- C:\Windows\system32\ReAgentc.exe
2011-02-24 20:19:19 ----A---- C:\Windows\system32\ReAgent.dll
2011-02-24 20:19:19 ----A---- C:\Windows\system32\drivers\afd.sys
2011-02-24 20:19:18 ----A---- C:\Windows\system32\wimgapi.dll
2011-02-24 20:19:18 ----A---- C:\Windows\system32\webservices.dll
2011-02-24 20:19:18 ----A---- C:\Windows\system32\webio.dll
2011-02-24 20:19:18 ----A---- C:\Windows\system32\WebClnt.dll
2011-02-24 20:19:18 ----A---- C:\Windows\system32\wcncsvc.dll
2011-02-24 20:19:18 ----A---- C:\Windows\system32\fphc.dll
2011-02-24 20:19:18 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-02-24 20:19:18 ----A---- C:\Windows\system32\davclnt.dll
2011-02-24 20:19:13 ----A---- C:\Windows\system32\wuwebv.dll
2011-02-24 20:19:13 ----A---- C:\Windows\system32\wups2.dll
2011-02-24 20:19:13 ----A---- C:\Windows\system32\wuaueng.dll
2011-02-24 20:19:13 ----A---- C:\Windows\system32\wuauclt.exe
2011-02-24 20:19:13 ----A---- C:\Windows\system32\wuapp.exe
2011-02-24 20:19:13 ----A---- C:\Windows\system32\WinSAT.exe
2011-02-24 20:19:13 ----A---- C:\Windows\system32\wiaservc.dll
2011-02-24 20:19:13 ----A---- C:\Windows\system32\wiarpc.dll
2011-02-24 20:19:13 ----A---- C:\Windows\system32\wiadefui.dll
2011-02-24 20:19:13 ----A---- C:\Windows\system32\audiodev.dll
2011-02-24 20:19:10 ----A---- C:\Windows\system32\wups.dll
2011-02-24 20:19:10 ----A---- C:\Windows\system32\wudriver.dll
2011-02-24 20:19:10 ----A---- C:\Windows\system32\wuapi.dll
2011-02-24 20:19:09 ----A---- C:\Windows\twain_32.dll
2011-02-24 20:19:09 ----A---- C:\Windows\system32\ws2_32.dll
2011-02-24 20:19:09 ----A---- C:\Windows\system32\wpdwcn.dll
2011-02-24 20:19:09 ----A---- C:\Windows\system32\wmpmde.dll
2011-02-24 20:19:08 ----A---- C:\Windows\system32\wiavideo.dll
2011-02-24 20:19:07 ----A---- C:\Windows\system32\WsmSvc.dll
2011-02-24 20:19:07 ----A---- C:\Windows\system32\WinSATAPI.dll
2011-02-24 20:19:05 ----A---- C:\Windows\system32\WPDSp.dll
2011-02-24 20:19:05 ----A---- C:\Windows\system32\wkscli.dll
2011-02-24 20:19:05 ----A---- C:\Windows\system32\VSSVC.exe
2011-02-24 20:19:05 ----A---- C:\Windows\system32\vssapi.dll
2011-02-24 20:19:05 ----A---- C:\Windows\system32\vdsutil.dll
2011-02-24 20:19:05 ----A---- C:\Windows\system32\vds.exe
2011-02-24 20:19:05 ----A---- C:\Windows\system32\mswsock.dll
2011-02-24 20:19:05 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-02-24 20:19:05 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2011-02-24 20:19:04 ----A---- C:\Windows\system32\VAN.dll
2011-02-24 20:19:04 ----A---- C:\Windows\system32\msvidc32.dll
2011-02-24 20:19:04 ----A---- C:\Windows\system32\msvfw32.dll
2011-02-24 20:19:04 ----A---- C:\Windows\system32\msrle32.dll
2011-02-24 20:19:04 ----A---- C:\Windows\system32\mciavi32.dll
2011-02-24 20:19:04 ----A---- C:\Windows\system32\iccvid.dll
2011-02-24 20:19:04 ----A---- C:\Windows\system32\avifil32.dll
2011-02-24 20:19:03 ----A---- C:\Windows\system32\vdsbas.dll
2011-02-24 20:19:03 ----A---- C:\Windows\system32\cca.dll
2011-02-24 20:19:02 ----A---- C:\Windows\system32\usp10.dll
2011-02-24 20:19:02 ----A---- C:\Windows\system32\userinit.exe
2011-02-24 20:19:02 ----A---- C:\Windows\system32\userenv.dll
2011-02-24 20:19:02 ----A---- C:\Windows\system32\umpo.dll
2011-02-24 20:19:01 ----A---- C:\Windows\system32\usercpl.dll
2011-02-24 20:19:01 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-02-24 20:19:01 ----A---- C:\Windows\system32\user32.dll
2011-02-24 20:19:01 ----A---- C:\Windows\system32\upnp.dll
2011-02-24 20:19:01 ----A---- C:\Windows\system32\unimdmat.dll
2011-02-24 20:19:01 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-02-24 20:19:01 ----A---- C:\Windows\system32\UIRibbon.dll
2011-02-24 20:19:01 ----A---- C:\Windows\system32\tzutil.exe
2011-02-24 20:19:01 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-02-24 20:19:01 ----A---- C:\Windows\system32\drivers\USBCAMD.sys
2011-02-24 20:19:01 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-02-24 20:19:01 ----A---- C:\Windows\system32\djoin.exe
2011-02-24 20:19:00 ----A---- C:\Windows\system32\w32tm.exe
2011-02-24 20:19:00 ----A---- C:\Windows\system32\twext.dll
2011-02-24 20:19:00 ----A---- C:\Windows\system32\TRAPI.dll
2011-02-24 20:19:00 ----A---- C:\Windows\system32\thumbcache.dll
2011-02-24 20:19:00 ----A---- C:\Windows\system32\themeui.dll
2011-02-24 20:19:00 ----A---- C:\Windows\system32\themecpl.dll
2011-02-24 20:19:00 ----A---- C:\Windows\system32\drivers\tunnel.sys
2011-02-24 20:19:00 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2011-02-24 20:18:59 ----A---- C:\Windows\system32\wavemsp.dll
2011-02-24 20:18:59 ----A---- C:\Windows\system32\termmgr.dll
2011-02-24 20:18:59 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-02-24 20:18:59 ----A---- C:\Windows\system32\taskschd.dll
2011-02-24 20:18:59 ----A---- C:\Windows\system32\taskmgr.exe
2011-02-24 20:18:59 ----A---- C:\Windows\system32\taskhost.exe
2011-02-24 20:18:59 ----A---- C:\Windows\system32\taskeng.exe
2011-02-24 20:18:59 ----A---- C:\Windows\system32\taskbarcpl.dll
2011-02-24 20:18:59 ----A---- C:\Windows\system32\tapisrv.dll
2011-02-24 20:18:59 ----A---- C:\Windows\system32\takeown.exe
2011-02-24 20:18:59 ----A---- C:\Windows\system32\schedsvc.dll
2011-02-24 20:18:59 ----A---- C:\Windows\system32\schedcli.dll
2011-02-24 20:18:59 ----A---- C:\Windows\system32\netiougc.exe
2011-02-24 20:18:59 ----A---- C:\Windows\system32\netiohlp.dll
2011-02-24 20:18:59 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-02-24 20:18:59 ----A---- C:\Windows\system32\drivers\tdi.sys
2011-02-24 20:18:59 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-02-24 20:18:59 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-02-24 20:18:58 ----A---- C:\Windows\system32\tabcal.exe
2011-02-24 20:18:58 ----A---- C:\Windows\system32\MultiDigiMon.exe
2011-02-24 20:18:57 ----A---- C:\Windows\system32\wtsapi32.dll
2011-02-24 20:18:57 ----A---- C:\Windows\system32\termsrv.dll
2011-02-24 20:18:57 ----A---- C:\Windows\system32\SessEnv.dll
2011-02-24 20:18:57 ----A---- C:\Windows\system32\remotepg.dll
2011-02-24 20:18:57 ----A---- C:\Windows\system32\input.dll
2011-02-24 20:18:57 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-02-24 20:18:56 ----A---- C:\Windows\system32\wisptis.exe
2011-02-24 20:18:56 ----A---- C:\Windows\system32\tsgqec.dll
2011-02-24 20:18:56 ----A---- C:\Windows\system32\TabSvc.dll
2011-02-24 20:18:56 ----A---- C:\Windows\system32\regapi.dll
2011-02-24 20:18:56 ----A---- C:\Windows\system32\rdpencom.dll
2011-02-24 20:18:56 ----A---- C:\Windows\system32\rdpdd.dll
2011-02-24 20:18:56 ----A---- C:\Windows\system32\rdpd3d.dll
2011-02-24 20:18:56 ----A---- C:\Windows\system32\perfts.dll
2011-02-24 20:18:56 ----A---- C:\Windows\system32\mstscax.dll
2011-02-24 20:18:56 ----A---- C:\Windows\system32\aaclient.dll
2011-02-24 20:18:55 ----A---- C:\Windows\system32\winsta.dll
2011-02-24 20:18:55 ----A---- C:\Windows\system32\utildll.dll
2011-02-24 20:18:55 ----A---- C:\Windows\system32\TSWorkspace.dll
2011-02-24 20:18:55 ----A---- C:\Windows\system32\tspubwmi.dll
2011-02-24 20:18:55 ----A---- C:\Windows\system32\rdpsign.exe
2011-02-24 20:18:55 ----A---- C:\Windows\system32\rdpshell.exe
2011-02-24 20:18:55 ----A---- C:\Windows\system32\RDPENCDD.dll
2011-02-24 20:18:55 ----A---- C:\Windows\system32\rdpclip.exe
2011-02-24 20:18:55 ----A---- C:\Windows\system32\mstsc.exe
2011-02-24 20:18:55 ----A---- C:\Windows\system32\mstask.dll
2011-02-24 20:18:55 ----A---- C:\Windows\system32\lsm.exe
2011-02-24 20:18:55 ----A---- C:\Windows\system32\icaapi.dll
2011-02-24 20:18:55 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2011-02-24 20:18:55 ----A---- C:\Windows\system32\drivers\RDPCDD.sys
2011-02-24 20:18:54 ----A---- C:\Windows\system32\umrdp.dll
2011-02-24 20:18:54 ----A---- C:\Windows\system32\rdpwsx.dll
2011-02-24 20:18:54 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2011-02-24 20:18:54 ----A---- C:\Windows\system32\RDPREFDD.dll
2011-02-24 20:18:54 ----A---- C:\Windows\system32\rdpinit.exe
2011-02-24 20:18:54 ----A---- C:\Windows\system32\rdpendp.dll
2011-02-24 20:18:54 ----A---- C:\Windows\system32\rdpcorekmts.dll
2011-02-24 20:18:54 ----A---- C:\Windows\system32\msutb.dll
2011-02-24 20:18:53 ----A---- C:\Windows\system32\wksprt.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\tssrvlic.dll
2011-02-24 20:18:53 ----A---- C:\Windows\system32\tskill.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\tsdiscon.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\tscon.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\shadow.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\rwinsta.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\reset.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\query.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\qprocess.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\qappsrv.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\LSCSHostPolicy.dll
2011-02-24 20:18:53 ----A---- C:\Windows\system32\logoff.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\chgusr.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\chgport.exe
2011-02-24 20:18:53 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2011-02-24 20:18:53 ----A---- C:\Windows\system32\drivers\tdpipe.sys
2011-02-24 20:18:52 ----A---- C:\Windows\system32\tsmf.dll
2011-02-24 20:18:52 ----A---- C:\Windows\system32\tscfgwmi.dll
2011-02-24 20:18:52 ----A---- C:\Windows\system32\taskcomp.dll
2011-02-24 20:18:52 ----A---- C:\Windows\system32\rdpcfgex.dll
2011-02-24 20:18:52 ----A---- C:\Windows\system32\qwinsta.exe
2011-02-24 20:18:52 ----A---- C:\Windows\system32\quser.exe
2011-02-24 20:18:52 ----A---- C:\Windows\system32\chglogon.exe
2011-02-24 20:18:52 ----A---- C:\Windows\system32\change.exe
2011-02-24 20:18:52 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2011-02-24 20:18:52 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-02-24 20:18:51 ----A---- C:\Windows\system32\tlscsp.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\systemcpl.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\syssetup.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\sysclass.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\syncui.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\sxs.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\sud.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\srcore.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\spopk.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\spbcd.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\rstrui.exe
2011-02-24 20:18:51 ----A---- C:\Windows\system32\rdpcore.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\msg.exe
2011-02-24 20:18:51 ----A---- C:\Windows\system32\lsmproxy.dll
2011-02-24 20:18:51 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-02-24 20:18:50 ----A---- C:\Windows\system32\wsqmcons.exe
2011-02-24 20:18:50 ----A---- C:\Windows\system32\stobject.dll
2011-02-24 20:18:50 ----A---- C:\Windows\system32\sqmapi.dll
2011-02-24 20:18:50 ----A---- C:\Windows\system32\sqlcese30.dll
2011-02-24 20:18:50 ----A---- C:\Windows\system32\spp.dll
2011-02-24 20:18:50 ----A---- C:\Windows\system32\drivers\storport.sys
2011-02-24 20:18:49 ----A---- C:\Windows\system32\wsnmp32.dll
2011-02-24 20:18:49 ----A---- C:\Windows\system32\WavDest.dll
2011-02-24 20:18:49 ----A---- C:\Windows\system32\inetmib1.dll
2011-02-24 20:18:48 ----A---- C:\Windows\system32\sscore.dll
2011-02-24 20:18:48 ----A---- C:\Windows\system32\srvsvc.dll
2011-02-24 20:18:48 ----A---- C:\Windows\system32\SmiEngine.dll
2011-02-24 20:18:47 ----A---- C:\Windows\system32\srvcli.dll
2011-02-24 20:18:47 ----A---- C:\Windows\system32\sisbkup.dll
2011-02-24 20:18:47 ----A---- C:\Windows\system32\shwebsvc.dll
2011-02-24 20:18:47 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-02-24 20:18:47 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-02-24 20:18:47 ----A---- C:\Windows\system32\drivers\srv.sys
2011-02-24 20:18:47 ----A---- C:\Windows\system32\drivers\scfilter.sys
2011-02-24 20:18:47 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-02-24 20:18:47 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-02-24 20:18:47 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-02-24 20:18:47 ----A---- C:\Windows\system32\certprop.dll
2011-02-24 20:18:47 ----A---- C:\Windows\system32\basecsp.dll
2011-02-24 20:18:46 ----A---- C:\Windows\system32\shunimpl.dll
2011-02-24 20:18:46 ----A---- C:\Windows\system32\shsvcs.dll
2011-02-24 20:18:45 ----A---- C:\Windows\system32\shlwapi.dll
2011-02-24 20:18:42 ----A---- C:\Windows\system32\shimgvw.dll
2011-02-24 20:18:42 ----A---- C:\Windows\system32\shgina.dll
2011-02-24 20:18:42 ----A---- C:\Windows\system32\shell32.dll
2011-02-24 20:18:37 ----A---- C:\Windows\system32\shsetup.dll
2011-02-24 20:18:37 ----A---- C:\Windows\system32\shdocvw.dll
2011-02-24 20:18:37 ----A---- C:\Windows\system32\prevhost.exe
2011-02-24 20:18:37 ----A---- C:\Windows\system32\comctl32.dll
2011-02-24 20:18:36 ----A---- C:\Windows\system32\shacct.dll
2011-02-24 20:18:36 ----A---- C:\Windows\system32\setupcl.exe
2011-02-24 20:18:36 ----A---- C:\Windows\system32\setupapi.dll
2011-02-24 20:18:35 ----A---- C:\Windows\system32\unattend.dll
2011-02-24 20:18:31 ----A---- C:\Windows\system32\wscapi.dll
2011-02-24 20:18:31 ----A---- C:\Windows\system32\vaultsvc.dll
2011-02-24 20:18:31 ----A---- C:\Windows\system32\Vault.dll
2011-02-24 20:18:31 ----A---- C:\Windows\system32\spwizui.dll
2011-02-24 20:18:31 ----A---- C:\Windows\system32\spreview.exe
2011-02-24 20:18:31 ----A---- C:\Windows\system32\sppsvc.exe
2011-02-24 20:18:31 ----A---- C:\Windows\system32\spinstall.exe
2011-02-24 20:18:31 ----A---- C:\Windows\system32\setupcln.dll
2011-02-24 20:18:31 ----A---- C:\Windows\system32\sethc.exe
2011-02-24 20:18:31 ----A---- C:\Windows\system32\nltest.exe
2011-02-24 20:18:31 ----A---- C:\Windows\system32\ActionQueue.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\TSpkg.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\sppuinotify.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\sppinst.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\sppcomapi.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\sppc.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\slwga.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\slui.exe
2011-02-24 20:18:29 ----A---- C:\Windows\system32\schtasks.exe
2011-02-24 20:18:29 ----A---- C:\Windows\system32\schannel.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\SearchFolder.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\netlogon.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\msv1_0.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\manage-bde.exe
2011-02-24 20:18:29 ----A---- C:\Windows\system32\fvecpl.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\fveapi.dll
2011-02-24 20:18:29 ----A---- C:\Windows\system32\credssp.dll
2011-02-24 20:18:28 ----A---- C:\Windows\system32\sdrsvc.dll
2011-02-24 20:18:28 ----A---- C:\Windows\system32\sdengin2.dll
2011-02-24 20:18:28 ----A---- C:\Windows\system32\scavengeui.dll
2011-02-24 20:18:28 ----A---- C:\Windows\system32\scansetting.dll
2011-02-24 20:18:27 ----A---- C:\Windows\system32\sppobjs.dll
2011-02-24 20:18:27 ----A---- C:\Windows\system32\secproc.dll
2011-02-24 20:18:27 ----A---- C:\Windows\system32\sdclt.exe
2011-02-24 20:18:27 ----A---- C:\Windows\system32\scecli.dll
2011-02-24 20:18:27 ----A---- C:\Windows\system32\RMActivate.exe
2011-02-24 20:18:27 ----A---- C:\Windows\system32\repair-bde.exe
2011-02-24 20:18:27 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-02-24 20:18:27 ----A---- C:\Windows\system32\BdeHdCfg.exe
2011-02-24 20:18:25 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-02-24 20:18:25 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-02-24 20:18:24 ----A---- C:\Windows\system32\uxlib.dll
2011-02-24 20:18:24 ----A---- C:\Windows\system32\sysmain.dll
2011-02-24 20:18:24 ----A---- C:\Windows\system32\spwizres.dll
2011-02-24 20:18:24 ----A---- C:\Windows\system32\spwizeng.dll
2011-02-24 20:18:24 ----A---- C:\Windows\system32\secproc_isv.dll
2011-02-24 20:18:24 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-02-24 20:18:23 ----A---- C:\Windows\system32\WinSCard.dll
2011-02-24 20:18:23 ----A---- C:\Windows\system32\srrstr.dll
2011-02-24 20:18:23 ----A---- C:\Windows\system32\sharemediacpl.dll
2011-02-24 20:18:23 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-02-24 20:18:23 ----A---- C:\Windows\system32\scesrv.dll
2011-02-24 20:18:23 ----A---- C:\Windows\system32\logoncli.dll
2011-02-24 20:18:23 ----A---- C:\Windows\system32\CertPolEng.dll
2011-02-24 20:18:22 ----A---- C:\Windows\system32\sppwinob.dll
2011-02-24 20:18:22 ----A---- C:\Windows\system32\runonce.exe
2011-02-24 20:18:22 ----A---- C:\Windows\system32\rpchttp.dll
2011-02-24 20:18:22 ----A---- C:\Windows\system32\RpcRtRemote.dll
2011-02-24 20:18:22 ----A---- C:\Windows\system32\rpcrt4.dll
2011-02-24 20:18:22 ----A---- C:\Windows\system32\Robocopy.exe
2011-02-24 20:18:22 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-02-24 20:18:22 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-02-24 20:18:21 ----A---- C:\Windows\system32\rtutils.dll
2011-02-24 20:18:21 ----A---- C:\Windows\system32\riched32.dll
2011-02-24 20:18:21 ----A---- C:\Windows\system32\riched20.dll
2011-02-24 20:18:21 ----A---- C:\Windows\system32\RelPost.exe
2011-02-24 20:18:21 ----A---- C:\Windows\system32\recovery.dll
2011-02-24 20:18:21 ----A---- C:\Windows\system32\recdisc.exe
2011-02-24 20:18:21 ----A---- C:\Windows\system32\rastls.dll
2011-02-24 20:18:21 ----A---- C:\Windows\system32\rastapi.dll
2011-02-24 20:18:21 ----A---- C:\Windows\system32\rasppp.dll
2011-02-24 20:18:21 ----A---- C:\Windows\system32\mprddm.dll
2011-02-24 20:18:21 ----A---- C:\Windows\system32\iprtrmgr.dll
2011-02-24 20:18:21 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2011-02-24 20:18:21 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-02-24 20:18:20 ----A---- C:\Windows\system32\rasmans.dll
2011-02-24 20:18:20 ----A---- C:\Windows\system32\cmstp.exe
2011-02-24 20:18:18 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-02-24 20:18:18 ----A---- C:\Windows\system32\raschap.dll
2011-02-24 20:18:18 ----A---- C:\Windows\system32\drivers\wanarp.sys
2011-02-24 20:18:18 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-02-24 20:18:18 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-02-24 20:18:17 ----A---- C:\Windows\system32\vpnike.dll
2011-02-24 20:18:17 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-02-24 20:18:17 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-02-24 20:18:17 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2011-02-24 20:18:17 ----A---- C:\Windows\system32\RDVGHelper.exe
2011-02-24 20:18:17 ----A---- C:\Windows\system32\rdpudd.dll
2011-02-24 20:18:17 ----A---- C:\Windows\system32\rdpcorets.dll
2011-02-24 20:18:17 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2011-02-24 20:18:16 ----A---- C:\Windows\system32\RacEngn.dll
2011-02-24 20:18:16 ----A---- C:\Windows\system32\msdrm.dll
2011-02-24 20:18:15 ----A---- C:\Windows\system32\spoolsv.exe
2011-02-24 20:18:15 ----A---- C:\Windows\system32\qedit.dll
2011-02-24 20:18:15 ----A---- C:\Windows\system32\proquota.exe
2011-02-24 20:18:15 ----A---- C:\Windows\system32\propsys.dll
2011-02-24 20:18:15 ----A---- C:\Windows\system32\profsvc.dll
2011-02-24 20:18:15 ----A---- C:\Windows\system32\profprov.dll
2011-02-24 20:18:15 ----A---- C:\Windows\system32\prncache.dll
2011-02-24 20:18:15 ----A---- C:\Windows\system32\powercpl.dll
2011-02-24 20:18:15 ----A---- C:\Windows\system32\hgprint.dll
2011-02-24 20:18:14 ----A---- C:\Windows\system32\wvc.dll
2011-02-24 20:18:14 ----A---- C:\Windows\system32\WMPhoto.dll
2011-02-24 20:18:14 ----A---- C:\Windows\system32\wdc.dll
2011-02-24 20:18:14 ----A---- C:\Windows\system32\sppnp.dll
2011-02-24 20:18:14 ----A---- C:\Windows\system32\pifmgr.dll
2011-02-24 20:18:14 ----A---- C:\Windows\system32\photowiz.dll
2011-02-24 20:18:14 ----A---- C:\Windows\system32\perfmon.exe
2011-02-24 20:18:14 ----A---- C:\Windows\system32\pdhui.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\wpccpl.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\wdscore.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\unlodctr.exe
2011-02-24 20:18:13 ----A---- C:\Windows\system32\prnfldr.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\printui.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\PrintBrmUi.exe
2011-02-24 20:18:13 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-02-24 20:18:13 ----A---- C:\Windows\system32\pla.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\PkgMgr.exe
2011-02-24 20:18:13 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\pdh.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\ntprint.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\inetpp.dll
2011-02-24 20:18:13 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-02-24 20:18:12 ----A---- C:\Windows\system32\win32spl.dll
2011-02-24 20:18:12 ----A---- C:\Windows\system32\relog.exe
2011-02-24 20:18:12 ----A---- C:\Windows\system32\puiobj.dll
2011-02-24 20:18:12 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2011-02-24 20:18:12 ----A---- C:\Windows\system32\logman.exe
2011-02-24 20:18:12 ----A---- C:\Windows\system32\localspl.dll
2011-02-24 20:18:05 ----A---- C:\Windows\system32\prntvpt.dll
2011-02-24 20:18:04 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2011-02-24 20:18:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-02-24 20:18:03 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-02-24 20:17:58 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2011-02-24 20:17:58 ----A---- C:\Windows\system32\onexui.dll
2011-02-24 20:17:58 ----A---- C:\Windows\system32\onex.dll
2011-02-24 20:17:58 ----A---- C:\Windows\system32\olepro32.dll
2011-02-24 20:17:58 ----A---- C:\Windows\system32\oleaut32.dll
2011-02-24 20:17:58 ----A---- C:\Windows\system32\ocsetup.exe
2011-02-24 20:17:58 ----A---- C:\Windows\system32\ocsetapi.dll
2011-02-24 20:17:58 ----A---- C:\Windows\system32\drivers\csc.sys
2011-02-24 20:17:58 ----A---- C:\Windows\system32\cscui.dll
2011-02-24 20:17:58 ----A---- C:\Windows\system32\cscsvc.dll
2011-02-24 20:17:58 ----A---- C:\Windows\system32\CscMig.dll
2011-02-24 20:17:57 ----A---- C:\Windows\system32\ntshrui.dll
2011-02-24 20:17:57 ----A---- C:\Windows\system32\dosx.exe
2011-02-24 20:17:57 ----A---- C:\Windows\system32\cscobj.dll
2011-02-24 20:17:57 ----A---- C:\Windows\system32\cscdll.dll
2011-02-24 20:17:57 ----A---- C:\Windows\system32\cscapi.dll
2011-02-24 20:17:57 ----A---- C:\Windows\system32\asycfilt.dll
2011-02-24 20:17:56 ----A---- C:\Windows\system32\ntlanman.dll
2011-02-24 20:17:56 ----A---- C:\Windows\system32\ntdll.dll
2011-02-24 20:17:56 ----A---- C:\Windows\system32\nslookup.exe
2011-02-24 20:17:56 ----A---- C:\Windows\system32\nlasvc.dll
2011-02-24 20:17:56 ----A---- C:\Windows\system32\nlaapi.dll
2011-02-24 20:17:56 ----A---- C:\Windows\system32\ncsi.dll
2011-02-24 20:17:56 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-02-24 20:17:55 ----A---- C:\Windows\system32\pnidui.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\nshwfp.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\networkmap.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\networkexplorer.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\netutils.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\netshell.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\netplwiz.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\netjoin.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\netcfg.exe
2011-02-24 20:17:55 ----A---- C:\Windows\system32\netcenter.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\nci.dll
2011-02-24 20:17:55 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-02-24 20:17:55 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2011-02-24 20:17:55 ----A---- C:\Windows\system32\drivers\netio.sys
2011-02-24 20:17:55 ----A---- C:\Windows\system32\BFE.DLL
2011-02-24 20:17:54 ----A---- C:\Windows\system32\netcfgx.dll
2011-02-24 20:17:54 ----A---- C:\Windows\system32\netbtugc.exe
2011-02-24 20:17:54 ----A---- C:\Windows\system32\netapi32.dll
2011-02-24 20:17:54 ----A---- C:\Windows\system32\net1.exe
2011-02-24 20:17:54 ----A---- C:\Windows\system32\ncryptui.dll
2011-02-24 20:17:54 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-02-24 20:17:54 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-02-24 20:17:54 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2011-02-24 20:17:54 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-02-24 20:17:37 ----A---- C:\Windows\system32\QUTIL.DLL
2011-02-24 20:17:37 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2011-02-24 20:17:37 ----A---- C:\Windows\system32\QSHVHOST.DLL
2011-02-24 20:17:37 ----A---- C:\Windows\system32\nshipsec.dll
2011-02-24 20:17:37 ----A---- C:\Windows\system32\KMSVC.DLL
2011-02-24 20:17:37 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-02-24 20:17:37 ----A---- C:\Windows\system32\iasrecst.dll
2011-02-24 20:17:37 ----A---- C:\Windows\system32\iasrad.dll
2011-02-24 20:17:37 ----A---- C:\Windows\system32\iasacct.dll
2011-02-24 20:17:36 ----A---- C:\Windows\system32\QCLIPROV.DLL
2011-02-24 20:17:36 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-02-24 20:17:36 ----A---- C:\Windows\system32\QAGENT.DLL
2011-02-24 20:17:36 ----A---- C:\Windows\system32\netdiagfx.dll
2011-02-24 20:17:36 ----A---- C:\Windows\system32\napdsnap.dll
2011-02-24 20:17:31 ----A---- C:\Windows\system32\mydocs.dll
2011-02-24 20:17:31 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-02-24 20:17:30 ----A---- C:\Windows\system32\msxml6.dll
2011-02-24 20:17:30 ----A---- C:\Windows\system32\msxml3.dll
2011-02-24 20:17:30 ----A---- C:\Windows\system32\mcbuilder.exe
2011-02-24 20:17:29 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2011-02-24 20:17:29 ----A---- C:\Windows\system32\msinfo32.exe
2011-02-24 20:17:29 ----A---- C:\Windows\system32\msieftp.dll
2011-02-24 20:17:29 ----A---- C:\Windows\system32\msftedit.dll
2011-02-24 20:17:29 ----A---- C:\Windows\system32\msconfig.exe
2011-02-24 20:17:28 ----A---- C:\Windows\system32\SyncCenter.dll
2011-02-24 20:17:28 ----A---- C:\Windows\system32\msasn1.dll
2011-02-24 20:17:28 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2011-02-24 20:17:28 ----A---- C:\Windows\system32\mprapi.dll
2011-02-24 20:17:28 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2011-02-24 20:17:27 ----A---- C:\Windows\system32\SensorsCpl.dll
2011-02-24 20:17:27 ----A---- C:\Windows\system32\mobsync.exe
2011-02-24 20:17:27 ----A---- C:\Windows\system32\MMDevAPI.dll
2011-02-24 20:17:27 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-02-24 20:17:27 ----A---- C:\Windows\system32\MFPlay.dll
2011-02-24 20:17:27 ----A---- C:\Windows\system32\mfds.dll
2011-02-24 20:17:27 ----A---- C:\Windows\system32\mfc42u.dll
2011-02-24 20:17:26 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-02-24 20:17:26 ----A---- C:\Windows\system32\wmdrmnet.dll
2011-02-24 20:17:26 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-02-24 20:17:26 ----A---- C:\Windows\system32\mfc40u.dll
2011-02-24 20:17:26 ----A---- C:\Windows\system32\mfc40.dll
2011-02-24 20:17:25 ----A---- C:\Windows\system32\wmpsrcwp.dll
2011-02-24 20:17:25 ----A---- C:\Windows\system32\wmpshell.dll
2011-02-24 20:17:25 ----A---- C:\Windows\system32\wmpps.dll
2011-02-24 20:17:25 ----A---- C:\Windows\system32\WMPEncEn.dll
2011-02-24 20:17:25 ----A---- C:\Windows\system32\wmpeffects.dll
2011-02-24 20:17:25 ----A---- C:\Windows\system32\wmpdxm.dll
2011-02-24 20:17:25 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-02-24 20:17:25 ----A---- C:\Windows\system32\logagent.exe
2011-02-24 20:17:24 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-02-24 20:17:24 ----A---- C:\Windows\system32\msscp.dll
2011-02-24 20:17:24 ----A---- C:\Windows\system32\msnetobj.dll
2011-02-24 20:17:24 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-02-24 20:17:24 ----A---- C:\Windows\system32\blackbox.dll
2011-02-24 20:17:23 ----A---- C:\Windows\system32\wmploc.DLL
2011-02-24 20:17:23 ----A---- C:\Windows\system32\wmp.dll
2011-02-24 20:17:21 ----A---- C:\Windows\system32\spwmp.dll
2011-02-24 20:17:21 ----A---- C:\Windows\system32\mf.dll
2011-02-24 20:17:21 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-02-24 20:17:21 ----A---- C:\Windows\system32\dxmasf.dll
2011-02-24 20:17:20 ----A---- C:\Windows\system32\mapistub.dll
2011-02-24 20:17:19 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-02-24 20:17:19 ----A---- C:\Windows\system32\PresentationSettings.exe
2011-02-24 20:17:19 ----A---- C:\Windows\system32\odbcconf.dll
2011-02-24 20:17:19 ----A---- C:\Windows\system32\migisol.dll
2011-02-24 20:17:19 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-02-24 20:17:19 ----A---- C:\Windows\system32\mapi32.dll
2011-02-24 20:17:19 ----A---- C:\Windows\system32\inetcomm.dll
2011-02-24 20:17:19 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-02-24 20:17:19 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-02-24 20:17:17 ----A---- C:\Windows\system32\mcmde.dll
2011-02-24 20:17:17 ----A---- C:\Windows\system32\mblctr.exe
2011-02-24 20:17:15 ----A---- C:\Windows\system32\odbctrac.dll
2011-02-24 20:17:14 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-02-24 20:17:14 ----A---- C:\Windows\system32\MdSched.exe
2011-02-24 20:17:13 ----A---- C:\Windows\system32\odbc32.dll
2011-02-24 20:17:13 ----A---- C:\Windows\system32\msorcl32.dll
2011-02-24 20:17:12 ----A---- C:\Windows\system32\odbccp32.dll
2011-02-24 20:17:12 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2011-02-24 20:17:11 ----A---- C:\Windows\system32\odbcjt32.dll
2011-02-24 20:17:09 ----A---- C:\Windows\system32\sspisrv.dll
2011-02-24 20:17:09 ----A---- C:\Windows\system32\sspicli.dll
2011-02-24 20:17:09 ----A---- C:\Windows\system32\secur32.dll
2011-02-24 20:17:09 ----A---- C:\Windows\system32\luainstall.dll
2011-02-24 20:17:09 ----A---- C:\Windows\system32\lsasrv.dll
2011-02-24 20:17:09 ----A---- C:\Windows\system32\consent.exe
2011-02-24 20:17:09 ----A---- C:\Windows\system32\appinfo.dll
2011-02-24 20:17:08 ----A---- C:\Windows\system32\lpremove.exe
2011-02-24 20:17:08 ----A---- C:\Windows\system32\lpksetup.exe
2011-02-24 20:17:08 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-02-24 20:17:07 ----A---- C:\Windows\system32\Wldap32.dll
2011-02-24 20:17:07 ----A---- C:\Windows\system32\nrpsrv.dll
2011-02-24 20:16:21 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2011-02-24 20:16:06 ----A---- C:\Windows\system32\KernelBase.dll
2011-02-24 20:16:06 ----A---- C:\Windows\system32\kernel32.dll
2011-02-24 20:16:06 ----A---- C:\Windows\system32\iTVData.dll
2011-02-24 20:16:06 ----A---- C:\Windows\system32\drivers\ks.sys
2011-02-24 20:16:05 ----A---- C:\Windows\system32\wshirda.dll
2011-02-24 20:16:05 ----A---- C:\Windows\system32\nlsbres.dll
2011-02-24 20:16:05 ----A---- C:\Windows\system32\MuiUnattend.exe
2011-02-24 20:16:05 ----A---- C:\Windows\system32\msihnd.dll
2011-02-24 20:16:05 ----A---- C:\Windows\system32\msiexec.exe
2011-02-24 20:16:05 ----A---- C:\Windows\system32\msi.dll
2011-02-24 20:16:05 ----A---- C:\Windows\system32\isoburn.exe
2011-02-24 20:16:03 ----A---- C:\Windows\system32\imm32.dll
2011-02-24 20:16:03 ----A---- C:\Windows\system32\imapi2.dll
2011-02-24 20:16:02 ----A---- C:\Windows\system32\dbghelp.dll
2011-02-24 20:16:02 ----A---- C:\Windows\system32\dbgeng.dll
2011-02-24 20:16:00 ----A---- C:\Windows\system32\ieframe.dll
2011-02-24 20:15:59 ----A---- C:\Windows\system32\msrating.dll
2011-02-24 20:15:59 ----A---- C:\Windows\system32\inseng.dll
2011-02-24 20:15:59 ----A---- C:\Windows\system32\iesysprep.dll
2011-02-24 20:15:59 ----A---- C:\Windows\system32\iertutil.dll
2011-02-24 20:15:59 ----A---- C:\Windows\system32\ie4uinit.exe
2011-02-24 20:15:58 ----A---- C:\Windows\system32\webcheck.dll
2011-02-24 20:15:58 ----A---- C:\Windows\system32\occache.dll
2011-02-24 20:15:58 ----A---- C:\Windows\system32\imgutil.dll
2011-02-24 20:15:58 ----A---- C:\Windows\system32\ieUnatt.exe
2011-02-24 20:15:57 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-02-24 20:15:57 ----A---- C:\Windows\system32\mshtmled.dll
2011-02-24 20:15:57 ----A---- C:\Windows\system32\msfeedssync.exe
2011-02-24 20:15:57 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-02-24 20:15:57 ----A---- C:\Windows\system32\msfeeds.dll
2011-02-24 20:15:57 ----A---- C:\Windows\system32\licmgr10.dll
2011-02-24 20:15:56 ----A---- C:\Windows\system32\mscms.dll
2011-02-24 20:15:56 ----A---- C:\Windows\system32\iepeers.dll
2011-02-24 20:15:56 ----A---- C:\Windows\system32\iedkcs32.dll
2011-02-24 20:15:55 ----A---- C:\Windows\system32\wininet.dll
2011-02-24 20:15:54 ----A---- C:\Windows\system32\tzres.dll
2011-02-24 20:15:53 ----A---- C:\Windows\system32\kbdlk41a.dll
2011-02-24 20:15:51 ----A---- C:\Windows\system32\mstime.dll
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDUS.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDTURME.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDTUQ.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDTUF.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDSG.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDSF.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDPO.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDNEPR.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDMON.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDMAORI.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDLT1.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDINTEL.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDINTAM.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDINORI.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDINMAR.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDINKAN.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDINHIN.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDINBEN.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDGR1.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDGKL.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDGEO.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDCZ1.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDBULG.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDBLR.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\KBDBASH.DLL
2011-02-24 20:15:51 ----A---- C:\Windows\system32\iscsium.dll
2011-02-24 20:15:51 ----A---- C:\Windows\system32\iscsicli.exe
2011-02-24 20:15:51 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-02-24 20:15:51 ----A---- C:\Windows\system32\elsTrans.dll
2011-02-24 20:15:51 ----A---- C:\Windows\system32\C_ISCII.DLL
2011-02-24 20:15:41 ----A---- C:\Windows\system32\urlmon.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\provsvc.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\ListSvc.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\itircl.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\imapi2fs.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\httpapi.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\hgcpl.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\hbaapi.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\drivers\http.sys
2011-02-24 20:15:40 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2011-02-24 20:15:40 ----A---- C:\Windows\system32\ActionCenter.dll
2011-02-24 20:15:39 ----A---- C:\Windows\system32\halmacpi.dll
2011-02-24 20:15:39 ----A---- C:\Windows\system32\halacpi.dll
2011-02-24 20:15:39 ----A---- C:\Windows\system32\hal.dll
2011-02-24 20:15:39 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2011-02-24 20:15:30 ----A---- C:\Windows\system32\gpsvc.dll
2011-02-24 20:15:30 ----A---- C:\Windows\system32\gdi32.dll
2011-02-24 20:15:29 ----A---- C:\Windows\system32\gpprefcl.dll
2011-02-24 20:15:29 ----A---- C:\Windows\system32\gameux.dll
2011-02-24 20:15:28 ----A---- C:\Windows\system32\appmgr.dll
2011-02-24 20:15:27 ----A---- C:\Windows\system32\scrptadm.dll
2011-02-24 20:15:27 ----A---- C:\Windows\system32\ftp.exe
2011-02-24 20:15:27 ----A---- C:\Windows\system32\fontext.dll
2011-02-24 20:15:27 ----A---- C:\Windows\system32\AdmTmpl.dll
2011-02-24 20:15:25 ----A---- C:\Windows\system32\t2embed.dll
2011-02-24 20:15:25 ----A---- C:\Windows\system32\muifontsetup.dll
2011-02-24 20:15:25 ----A---- C:\Windows\system32\FXSSVC.exe
2011-02-24 20:15:25 ----A---- C:\Windows\system32\fms.dll
2011-02-24 20:15:25 ----A---- C:\Windows\system32\findstr.exe
2011-02-24 20:15:25 ----A---- C:\Windows\system32\fdeploy.dll
2011-02-24 20:15:25 ----A---- C:\Windows\system32\fde.dll
2011-02-24 20:15:24 ----A---- C:\Windows\system32\resutils.dll
2011-02-24 20:15:24 ----A---- C:\Windows\system32\ifsutil.dll
2011-02-24 20:15:24 ----A---- C:\Windows\system32\FXSTIFF.dll
2011-02-24 20:15:24 ----A---- C:\Windows\system32\FXSMON.dll
2011-02-24 20:15:24 ----A---- C:\Windows\system32\clusapi.dll
2011-02-24 20:15:23 ----A---- C:\Windows\system32\WFS.exe
2011-02-24 20:15:23 ----A---- C:\Windows\system32\untfs.dll
2011-02-24 20:15:22 ----A---- C:\Windows\system32\wevtsvc.dll
2011-02-24 20:15:22 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-02-24 20:15:22 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-02-24 20:15:22 ----A---- C:\Windows\system32\eudcedit.exe
2011-02-24 20:15:22 ----A---- C:\Windows\explorer.exe
2011-02-24 20:15:21 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-02-24 20:15:21 ----A---- C:\Windows\system32\werconcpl.dll
2011-02-24 20:15:21 ----A---- C:\Windows\system32\wer.dll
2011-02-24 20:15:21 ----A---- C:\Windows\system32\mspbda.dll
2011-02-24 20:15:21 ----A---- C:\Windows\system32\Faultrep.dll
2011-02-24 20:15:21 ----A---- C:\Windows\system32\evr.dll
2011-02-24 20:15:21 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-02-24 20:15:20 ----A---- C:\Windows\system32\msdri.dll
2011-02-24 20:15:19 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-02-24 20:15:19 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2011-02-24 20:15:19 ----A---- C:\Windows\system32\efscore.dll
2011-02-24 20:15:18 ----A---- C:\Windows\system32\esent.dll
2011-02-24 20:15:18 ----A---- C:\Windows\system32\eapphost.dll
2011-02-24 20:15:18 ----A---- C:\Windows\system32\eappgnui.dll
2011-02-24 20:15:18 ----A---- C:\Windows\system32\eapp3hst.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\DxpTaskSync.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\DXP.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\dskquoui.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\drvstore.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\dot3ui.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\dot3svc.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\dot3msm.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\dot3cfg.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\dot3api.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-02-24 20:15:17 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-02-24 20:15:17 ----A---- C:\Windows\system32\dnsapi.dll
2011-02-24 20:15:16 ----A---- C:\Windows\system32\dxgi.dll
2011-02-24 20:15:16 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-02-24 20:15:16 ----A---- C:\Windows\system32\dnscmmc.dll
2011-02-24 20:15:16 ----A---- C:\Windows\system32\Display.dll
2011-02-24 20:15:16 ----A---- C:\Windows\system32\diskraid.exe
2011-02-24 20:15:16 ----A---- C:\Windows\system32\diskpart.exe
2011-02-24 20:15:16 ----A---- C:\Windows\system32\d3d10warp.dll
2011-02-24 20:15:15 ----A---- C:\Windows\system32\dpnaddr.dll
2011-02-24 20:15:15 ----A---- C:\Windows\system32\d3d9.dll
2011-02-24 20:15:15 ----A---- C:\Windows\system32\d3d11.dll
2011-02-24 20:15:14 ----A---- C:\Windows\system32\d3d10level9.dll
2011-02-24 20:15:14 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-02-24 20:15:13 ----A---- C:\Windows\system32\DWrite.dll
2011-02-24 20:15:12 ----A---- C:\Windows\system32\vfwwdm32.dll
2011-02-24 20:15:12 ----A---- C:\Windows\system32\mciqtz32.dll
2011-02-24 20:15:12 ----A---- C:\Windows\system32\FntCache.dll
2011-02-24 20:15:12 ----A---- C:\Windows\system32\amstream.dll
2011-02-24 20:15:11 ----A---- C:\Windows\system32\quartz.dll
2011-02-24 20:15:11 ----A---- C:\Windows\system32\qdvd.dll
2011-02-24 20:15:11 ----A---- C:\Windows\system32\qdv.dll
2011-02-24 20:15:11 ----A---- C:\Windows\system32\qcap.dll
2011-02-24 20:15:11 ----A---- C:\Windows\system32\msdmo.dll
2011-02-24 20:15:10 ----A---- C:\Windows\system32\samsrv.dll
2011-02-24 20:15:10 ----A---- C:\Windows\system32\qasf.dll
2011-02-24 20:15:10 ----A---- C:\Windows\system32\dsauth.dll
2011-02-24 20:15:10 ----A---- C:\Windows\system32\DiagCpl.dll
2011-02-24 20:15:10 ----A---- C:\Windows\system32\dhcpcore.dll
2011-02-24 20:15:09 ----A---- C:\Windows\system32\setupugc.exe
2011-02-24 20:15:09 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-02-24 20:15:09 ----A---- C:\Windows\system32\dpx.dll
2011-02-24 20:15:09 ----A---- C:\Windows\system32\dfrgui.exe
2011-02-24 20:15:09 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2011-02-24 20:15:09 ----A---- C:\Windows\system32\DeviceCenter.dll
2011-02-24 20:15:08 ----A---- C:\Windows\system32\samcli.dll
2011-02-24 20:15:08 ----A---- C:\Windows\system32\dxdiagn.dll
2011-02-24 20:15:08 ----A---- C:\Windows\system32\d2d1.dll
2011-02-24 20:15:07 ----A---- C:\Windows\system32\dwmredir.dll
2011-02-24 20:15:05 ----A---- C:\Windows\system32\tsbyuv.dll
2011-02-24 20:15:05 ----A---- C:\Windows\system32\msyuv.dll
2011-02-24 20:15:05 ----A---- C:\Windows\system32\dwmcore.dll
2011-02-24 20:15:04 ----A---- C:\Windows\system32\iyuv_32.dll
2011-02-24 20:15:02 ----A---- C:\Windows\system32\WUDFx.dll
2011-02-24 20:15:02 ----A---- C:\Windows\system32\WUDFSvc.dll
2011-02-24 20:15:02 ----A---- C:\Windows\system32\WUDFPlatform.dll
2011-02-24 20:15:02 ----A---- C:\Windows\system32\WUDFHost.exe
2011-02-24 20:15:02 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2011-02-24 20:15:02 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2011-02-24 20:15:02 ----A---- C:\Windows\system32\dps.dll
2011-02-24 20:15:01 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2011-02-24 20:15:00 ----A---- C:\Windows\system32\localsec.dll
2011-02-24 20:14:59 ----A---- C:\Windows\system32\cryptui.dll
2011-02-24 20:14:59 ----A---- C:\Windows\system32\cryptsvc.dll
2011-02-24 20:14:59 ----A---- C:\Windows\system32\crypt32.dll
2011-02-24 20:14:58 ----A---- C:\Windows\system32\credui.dll
2011-02-24 20:14:57 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-02-24 20:14:57 ----A---- C:\Windows\system32\OpcServices.dll
2011-02-24 20:14:57 ----A---- C:\Windows\system32\netid.dll
2011-02-24 20:14:57 ----A---- C:\Windows\system32\mimefilt.dll
2011-02-24 20:14:57 ----A---- C:\Windows\system32\imagehlp.dll
2011-02-24 20:14:57 ----A---- C:\Windows\system32\conhost.exe
2011-02-24 20:14:57 ----A---- C:\Windows\system32\comdlg32.dll
2011-02-24 20:14:57 ----A---- C:\Windows\system32\cmd.exe
2011-02-24 20:14:57 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-02-24 20:14:57 ----A---- C:\Windows\system32\autoconv.exe
2011-02-24 20:14:56 ----A---- C:\Windows\system32\rpcss.dll
2011-02-24 20:14:56 ----A---- C:\Windows\system32\olethk32.dll
2011-02-24 20:14:56 ----A---- C:\Windows\system32\ole32.dll
2011-02-24 20:14:56 ----A---- C:\Windows\system32\msdtctm.dll
2011-02-24 20:14:56 ----A---- C:\Windows\system32\ci.dll
2011-02-24 20:14:55 ----A---- C:\Windows\system32\certcli.dll
2011-02-24 20:14:55 ----A---- C:\Windows\system32\cdosys.dll
2011-02-24 20:14:55 ----A---- C:\Windows\system32\calc.exe
2011-02-24 20:14:55 ----A---- C:\Windows\system32\cabview.dll
2011-02-24 20:14:55 ----A---- C:\Windows\system32\cabinet.dll
2011-02-24 20:14:54 ----A---- C:\Windows\system32\xpsservices.dll
2011-02-24 20:14:54 ----A---- C:\Windows\system32\diagperf.dll
2011-02-24 20:14:51 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-02-24 20:14:50 ----A---- C:\Windows\system32\Query.dll
2011-02-24 20:14:50 ----A---- C:\Windows\system32\mtxclu.dll
2011-02-24 20:14:50 ----A---- C:\Windows\system32\certmgr.dll
2011-02-24 20:14:49 ----A---- C:\Windows\system32\wshbth.dll
2011-02-24 20:14:49 ----A---- C:\Windows\system32\wbengine.exe
2011-02-24 20:14:49 ----A---- C:\Windows\system32\qmgr.dll
2011-02-24 20:14:49 ----A---- C:\Windows\system32\browseui.dll
2011-02-24 20:14:49 ----A---- C:\Windows\system32\browser.dll
2011-02-24 20:14:49 ----A---- C:\Windows\system32\browcli.dll
2011-02-24 20:14:49 ----A---- C:\Windows\system32\bootres.dll
2011-02-24 20:14:49 ----A---- C:\Windows\system32\BlbEvents.dll
2011-02-24 20:14:49 ----A---- C:\Windows\system32\bitsperf.dll
2011-02-24 20:14:49 ----A---- C:\Windows\system32\bitsadmin.exe
2011-02-24 20:14:47 ----A---- C:\Windows\system32\winresume.exe
2011-02-24 20:14:47 ----A---- C:\Windows\system32\winload.exe
2011-02-24 20:14:47 ----A---- C:\Windows\system32\sdcpl.dll
2011-02-24 20:14:47 ----A---- C:\Windows\system32\biocpl.dll
2011-02-24 20:14:47 ----A---- C:\Windows\system32\bcdsrv.dll
2011-02-24 20:14:47 ----A---- C:\Windows\system32\bcdboot.exe
2011-02-24 20:14:47 ----A---- C:\Windows\system32\batmeter.dll
2011-02-24 20:14:47 ----A---- C:\Windows\system32\basesrv.dll
2011-02-24 20:14:47 ----A---- C:\Windows\bfsvc.exe
2011-02-24 20:14:45 ----A---- C:\Windows\system32\bcdedit.exe
2011-02-24 20:14:44 ----A---- C:\Windows\system32\setbcdlocale.dll
2011-02-24 20:14:43 ----A---- C:\Windows\system32\AzSqlExt.dll
2011-02-24 20:14:43 ----A---- C:\Windows\system32\azroles.dll
2011-02-24 20:14:43 ----A---- C:\Windows\system32\AxInstSv.dll
2011-02-24 20:14:43 ----A---- C:\Windows\system32\autoplay.dll
2011-02-24 20:14:43 ----A---- C:\Windows\system32\autochk.exe
2011-02-24 20:14:43 ----A---- C:\Windows\system32\autofmt.exe
2011-02-24 20:14:42 ----A---- C:\Windows\system32\winmm.dll
2011-02-24 20:14:42 ----A---- C:\Windows\system32\SndVolSSO.dll
2011-02-24 20:14:42 ----A---- C:\Windows\system32\SndVol.exe
2011-02-24 20:14:42 ----A---- C:\Windows\system32\LogonUI.exe
2011-02-24 20:14:42 ----A---- C:\Windows\system32\drivers\appid.sys
2011-02-24 20:14:42 ----A---- C:\Windows\system32\azroleui.dll
2011-02-24 20:14:42 ----A---- C:\Windows\system32\authui.dll
2011-02-24 20:14:42 ----A---- C:\Windows\system32\audiosrv.dll
2011-02-24 20:14:42 ----A---- C:\Windows\system32\AudioSes.dll
2011-02-24 20:14:42 ----A---- C:\Windows\system32\audiodg.exe
2011-02-24 20:14:42 ----A---- C:\Windows\system32\advapi32.dll
2011-02-24 20:14:41 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2011-02-24 20:14:41 ----A---- C:\Windows\system32\actxprxy.dll
2011-02-24 20:14:41 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-02-24 20:14:40 ----A---- C:\Windows\system32\aepdu.dll
2011-02-24 20:14:40 ----A---- C:\Windows\system32\aeinv.dll
2011-02-24 20:14:39 ----A---- C:\Windows\system32\adsldp.dll
2011-02-24 20:14:39 ----A---- C:\Windows\system32\acppage.dll
2011-02-24 20:14:38 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2011-02-24 20:14:38 ----A---- C:\Windows\system32\aitagent.exe
2011-02-24 20:14:34 ----A---- C:\Windows\system32\activeds.dll
2011-02-24 20:14:29 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-02-24 20:14:29 ----A---- C:\Windows\system32\apphelp.dll
2011-02-24 20:14:27 ----A---- C:\Windows\system32\drivers\volmgr.sys
2011-02-24 20:14:27 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-02-24 20:14:26 ----A---- C:\Windows\system32\drivers\pci.sys
2011-02-24 20:14:26 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-02-24 20:14:25 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-02-24 20:14:25 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2011-02-24 20:14:24 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-02-24 20:14:24 ----A---- C:\Windows\system32\drivers\hidusb.sys
2011-02-24 20:14:24 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-02-24 20:14:24 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2011-02-24 20:14:24 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-02-24 20:14:23 ----A---- C:\Windows\system32\srchadmin.dll
2011-02-24 20:14:23 ----A---- C:\Windows\system32\OobeFldr.dll
2011-02-24 20:14:23 ----A---- C:\Windows\system32\dsuiext.dll
2011-02-24 20:14:22 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2011-02-24 20:14:22 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-02-24 20:14:22 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-02-24 20:14:22 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-02-24 20:14:21 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2011-02-24 20:14:21 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-02-24 20:14:21 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-02-24 19:23:44 ----A---- C:\Windows\system32\d3d10_1.dll
2011-02-24 18:14:15 ----A---- C:\Windows\system32\VNCpm.dll
2011-02-24 18:13:07 ----D---- C:\Program Files\RealVNC
2011-02-23 18:35:41 ----A---- C:\Windows\system32\XpsPrint.dll
2011-02-23 18:35:41 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-02-22 07:38:44 ----A---- C:\Windows\system32\frapsvid.dll

======List of files/folders modified in the last 1 months======

2011-03-21 16:29:21 ----D---- C:\Program Files\Trend Micro
2011-03-21 16:01:36 ----D---- C:\Users\Martin\AppData\Roaming\skypePM
2011-03-21 15:52:07 ----D---- C:\Windows\Temp
2011-03-21 15:51:32 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2011-03-21 15:49:01 ----D---- C:\Program Files\Mozilla Firefox
2011-03-21 15:46:04 ----D---- C:\Windows
2011-03-21 15:45:49 ----D---- C:\Windows\Prefetch
2011-03-21 15:36:13 ----D---- C:\Windows\system32\config
2011-03-21 15:17:07 ----D---- C:\Windows\pss
2011-03-21 15:16:35 ----SHD---- C:\Windows\Installer
2011-03-21 15:16:35 ----RD---- C:\Program Files
2011-03-21 15:16:30 ----D---- C:\Windows\system32\Tasks
2011-03-21 15:13:23 ----SHD---- C:\System Volume Information
2011-03-20 16:32:45 ----D---- C:\Windows\system32\catroot2
2011-03-20 11:45:26 ----D---- C:\Windows\System32
2011-03-20 11:45:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-03-20 11:45:25 ----D---- C:\Windows\inf
2011-03-19 14:39:12 ----D---- C:\Program Files\PhotoFiltre
2011-03-19 14:15:26 ----D---- C:\temp
2011-03-17 17:31:46 ----D---- C:\rsit
2011-03-16 13:12:16 ----D---- C:\Users\Martin\AppData\Roaming\Media Player Classic
2011-03-15 20:15:59 ----D---- C:\Users\Martin\AppData\Roaming\ICQ
2011-03-15 20:02:36 ----SD---- C:\Users\Martin\AppData\Roaming\Microsoft
2011-03-12 20:26:13 ----D---- C:\Windows\system32\drivers
2011-03-12 20:25:33 ----D---- C:\Program Files\Common Files
2011-03-12 20:25:05 ----D---- C:\ProgramData
2011-03-12 19:43:37 ----A---- C:\Windows\win.ini
2011-03-12 19:03:46 ----D---- C:\Windows\debug
2011-03-09 12:17:38 ----A---- C:\Windows\system32\MRT.exe
2011-03-09 12:17:31 ----D---- C:\ProgramData\Microsoft Help
2011-03-09 12:16:56 ----D---- C:\Windows\winsxs
2011-03-09 11:57:31 ----D---- C:\Windows\system32\catroot
2011-03-06 14:42:01 ----D---- C:\Windows\Downloaded Program Files
2011-03-05 19:41:15 ----D---- C:\Windows\Microsoft.NET
2011-03-05 19:41:14 ----RSD---- C:\Windows\assembly
2011-03-05 17:59:12 ----D---- C:\Program Files\Microsoft.NET
2011-03-05 17:48:12 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2011-03-05 17:44:52 ----D---- C:\Program Files\MSBuild
2011-03-05 17:43:47 ----D---- C:\Program Files\Common Files\microsoft shared
2011-03-05 17:39:20 ----SD---- C:\ProgramData\Microsoft
2011-03-04 17:08:22 ----RSD---- C:\Windows\Fonts
2011-02-26 19:46:22 ----D---- C:\Windows\rescache
2011-02-25 12:34:10 ----AD---- C:\ProgramData\TEMP
2011-02-25 12:10:09 ----D---- C:\ProgramData\Adobe
2011-02-25 11:42:44 ----D---- C:\Program Files\Common Files\Adobe
2011-02-25 11:20:18 ----D---- C:\Windows\system32\DriverStore
2011-02-25 00:29:00 ----D---- C:\Program Files\Windows Mail
2011-02-25 00:28:59 ----D---- C:\Program Files\Windows Sidebar
2011-02-25 00:28:59 ----D---- C:\Program Files\Internet Explorer
2011-02-25 00:28:59 ----D---- C:\Program Files\DVD Maker
2011-02-25 00:28:58 ----D---- C:\Program Files\Windows Portable Devices
2011-02-25 00:28:58 ----D---- C:\Program Files\Windows Photo Viewer
2011-02-25 00:28:58 ----D---- C:\Program Files\Windows Media Player
2011-02-25 00:28:57 ----D---- C:\Program Files\Windows Journal
2011-02-25 00:28:42 ----D---- C:\Program Files\Windows Defender
2011-02-25 00:28:41 ----D---- C:\Windows\servicing
2011-02-25 00:28:41 ----D---- C:\Windows\de-DE
2011-02-25 00:28:40 ----D---- C:\Windows\ehome
2011-02-25 00:28:11 ----SHD---- C:\Windows\BitLockerDiscoveryVolumeContents
2011-02-25 00:27:53 ----D---- C:\Windows\ko-KR
2011-02-25 00:27:52 ----D---- C:\Windows\PolicyDefinitions
2011-02-25 00:27:51 ----D---- C:\Windows\system32\da-DK
2011-02-25 00:27:49 ----D---- C:\Windows\system32\hr-HR
2011-02-25 00:27:47 ----D---- C:\Windows\system32\et-EE
2011-02-25 00:27:43 ----D---- C:\Windows\system32\sk-SK
2011-02-25 00:27:41 ----D---- C:\Windows\system32\ko-KR
2011-02-25 00:27:34 ----D---- C:\Windows\system32\en-US
2011-02-25 00:27:31 ----D---- C:\Windows\system32\de-DE
2011-02-25 00:27:23 ----D---- C:\Windows\system32\sysprep
2011-02-25 00:27:23 ----D---- C:\Windows\system32\oobe
2011-02-25 00:27:23 ----D---- C:\Windows\system32\migration
2011-02-25 00:27:22 ----D---- C:\Windows\system32\AdvancedInstallers
2011-02-25 00:27:21 ----D---- C:\Windows\system32\fr-FR
2011-02-25 00:27:19 ----D---- C:\Windows\system32\Setup
2011-02-25 00:27:19 ----D---- C:\Windows\system32\fi
2011-02-25 00:27:18 ----D---- C:\Windows\system32\fi-FI
2011-02-25 00:27:16 ----D---- C:\Windows\system32\cs
2011-02-25 00:27:15 ----D---- C:\Windows\system32\cs-CZ
2011-02-25 00:27:14 ----D---- C:\Windows\system32\zh-CHS
2011-02-25 00:27:14 ----D---- C:\Windows\system32\no
2011-02-25 00:27:13 ----D---- C:\Windows\system32\zh-CN
2011-02-25 00:27:12 ----D---- C:\Windows\system32\manifeststore
2011-02-25 00:27:12 ----D---- C:\Windows\system32\en
2011-02-25 00:27:11 ----D---- C:\Windows\system32\zh-TW
2011-02-25 00:27:11 ----D---- C:\Windows\system32\es-ES
2011-02-25 00:27:10 ----D---- C:\Windows\system32\sppui
2011-02-25 00:27:09 ----D---- C:\Windows\system32\drivers\ko-KR
2011-02-25 00:27:09 ----D---- C:\Windows\system32\drivers\fr-FR
2011-02-25 00:27:08 ----D---- C:\Windows\system32\drivers\zh-TW
2011-02-25 00:27:08 ----D---- C:\Windows\system32\drivers\zh-CN
2011-02-25 00:27:08 ----D---- C:\Windows\system32\drivers\fi-FI
2011-02-25 00:27:08 ----D---- C:\Windows\system32\drivers\de-DE
2011-02-25 00:27:08 ----D---- C:\Windows\system32\drivers\cs-CZ
2011-02-25 00:27:07 ----D---- C:\Windows\system32\ko
2011-02-25 00:27:07 ----D---- C:\Windows\system32\drivers\UMDF
2011-02-25 00:27:07 ----D---- C:\Windows\system32\drivers\nb-NO
2011-02-25 00:27:07 ----D---- C:\Windows\system32\drivers\en-US
2011-02-25 00:27:06 ----D---- C:\Windows\system32\zh-HK
2011-02-25 00:27:04 ----D---- C:\Windows\system32\wbem
2011-02-25 00:27:03 ----D---- C:\Windows\system32\nb-NO
2011-02-25 00:26:57 ----D---- C:\Windows\system32\migwiz
2011-02-25 00:26:57 ----D---- C:\Windows\system32\Dism
2011-02-25 00:26:26 ----D---- C:\Windows\AppPatch
2011-02-25 00:26:05 ----D---- C:\Windows\system32\Boot
2011-02-24 21:08:32 ----A---- C:\Windows\system32\msclmd.dll

[cappie]

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\Windows\system32\DRIVERS\PxHelp20.sys [2009-04-28 44944]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-12-26 691696]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2009-09-01 128016]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 MpKsl8a1a8a38;MpKsl8a1a8a38; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BCC093BB-9DE8-4A6B-BE57-D9E4D46E2E6E}\MpKsl8a1a8a38.sys [2011-03-21 28752]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 Angelnt;Angelnt; C:\Windows\System32\Drivers\ANGELNT.SYS [2010-01-27 51072]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-11-26 6650368]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-11-26 231936]
R3 bbcap;bbcap; C:\Windows\system32\DRIVERS\bbcap.sys [2010-01-19 4096]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-12-31 2771232]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32.sys [2010-07-21 40848]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIV.sys [2010-11-23 263464]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-11-11 324200]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-24 10064]
R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
R3 vncmirror;vncmirror; C:\Windows\system32\DRIVERS\vncmirror.sys [2010-06-14 4608]
S1 MpKsl01f56c40;MpKsl01f56c40; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E70F2148-9CC8-4D55-8EBD-078EAD3CE9F5}\MpKsl01f56c40.sys []
S1 MpKsl0f094d0b;MpKsl0f094d0b; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FC5C12DC-702A-4B49-85EA-29F21695D471}\MpKsl0f094d0b.sys []
S1 MpKsl18b7988b;MpKsl18b7988b; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{751A9989-01D2-4A82-9543-AEEFE7869731}\MpKsl18b7988b.sys []
S1 MpKsl1bd45e00;MpKsl1bd45e00; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AFBB9B20-C10F-48DB-805E-34E288BBDCD7}\MpKsl1bd45e00.sys []
S1 MpKsl2aa46860;MpKsl2aa46860; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AFBB9B20-C10F-48DB-805E-34E288BBDCD7}\MpKsl2aa46860.sys []
S1 MpKsl2eb43181;MpKsl2eb43181; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C867530C-387A-448A-BD4B-9CB966BC81E6}\MpKsl2eb43181.sys []
S1 MpKsl330bb1c0;MpKsl330bb1c0; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7D9BF283-2B41-41FD-A877-CFDBAB2D3C11}\MpKsl330bb1c0.sys []
S1 MpKsl3b1d13ca;MpKsl3b1d13ca; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{36902C43-C713-4E30-ACC8-3ABDBAA696AD}\MpKsl3b1d13ca.sys []
S1 MpKsl442493cb;MpKsl442493cb; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5159FA17-50CB-4B84-846A-9421605F7AA0}\MpKsl442493cb.sys []
S1 MpKsl6566b642;MpKsl6566b642; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{34E34933-C09A-4377-ACBC-01AB1823F2D9}\MpKsl6566b642.sys []
S1 MpKsl87ee520c;MpKsl87ee520c; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B9E85AF4-B86F-4009-B5BA-22B8C9D0AD69}\MpKsl87ee520c.sys []
S1 MpKsl8ab3ac13;MpKsl8ab3ac13; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FC5C12DC-702A-4B49-85EA-29F21695D471}\MpKsl8ab3ac13.sys []
S1 MpKsl971645c4;MpKsl971645c4; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E61A8FD3-8319-4C3F-A7F8-23A7FD54DA54}\MpKsl971645c4.sys []
S1 MpKslab13f5b3;MpKslab13f5b3; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A7BE5ADB-4870-40B4-B43B-CE87A25AF838}\MpKslab13f5b3.sys []
S1 MpKsld7ae8a26;MpKsld7ae8a26; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1ADBF4AD-60B6-4B0A-A767-876CD8E5240E}\MpKsld7ae8a26.sys []
S1 MpKslddaf94ea;MpKslddaf94ea; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1E8988FF-F36B-4346-A4C8-1DBA72C32C31}\MpKslddaf94ea.sys []
S1 MpKslde5f3f7a;MpKslde5f3f7a; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{11C32EAD-D18D-4BB9-A476-8573CDA23FF6}\MpKslde5f3f7a.sys []
S1 MpKsldfdf5a48;MpKsldfdf5a48; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B5C5A7E3-0F82-4C0D-A3DB-4C2F20A258DB}\MpKsldfdf5a48.sys []
S1 MpKsle5c75b86;MpKsle5c75b86; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9AA7079B-1FC6-4B9F-8120-583F52FCA9E9}\MpKsle5c75b86.sys []
S1 MpKslfad6d485;MpKslfad6d485; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{71A9E64F-7B5D-436D-B07C-BA0984269E91}\MpKslfad6d485.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-09 107024]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-11-26 6650368]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\Windows\system32\DRIVERS\mcdbus.sys []
S3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
S3 Nbdrv;NetBalancer Service; C:\Windows\system32\DRIVERS\nbdrv.sys []
S3 netr73;RT73 USB Wireless LAN Card Driver for Vista; C:\Windows\system32\DRIVERS\netr73.sys [2009-07-13 545792]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 VSPerfDrv100;Performance Tools Driver 10.0; \??\C:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys [2009-12-08 48128]
S3 vvftav211;vvftav211; C:\Windows\system32\drivers\vvftav211.sys [2007-12-10 480128]
S4 RsFx0103;RsFx0103 Driver; C:\Windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 239336]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-11-26 176128]
R2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-12-06 1238408]
R2 lxbk_device;lxbk_device; C:\Windows\system32\lxbkcoms.exe [2007-04-26 537520]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2009-03-30 43010392]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-12-26 75064]
R2 ScsiAccess;ScsiAccess; C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe [2010-12-18 186760]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 98840]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-08-27 1051968]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-20 136176]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-08-20 655624]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office 2007\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-09-07 435008]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-18 1343400]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-23 47128]
S4 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-05-04 503080]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 366936]
S4 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2009-03-30 254808]

-----------------EOF-----------------

[motji]

Dobrý večer

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

[cappie]

Už ide , tu je log:

ComboFix 11-03-21.02 - Martin . 03. 2011 16:15:41.2.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1051.18.2048.1174 [GMT 1:00]
Running from: c:\users\Martin\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Anna\ntuser.pol
c:\users\Ernest\ntuser.pol
c:\users\Julia\ntuser.pol
c:\users\Martin\AppData\Roaming\Microsoft\gclgaf40.dll
c:\users\Martin\AppData\Roaming\Microsoft\msxmin40.dll
c:\users\Martin\AppData\Roaming\Microsoft\wiches32.dll
c:\users\Martin\ntuser.pol
c:\windows\ST6UNST.000
.
.
((((((((((((((((((((((((( Files Created from 2011-02-22 to 2011-03-22 )))))))))))))))))))))))))))))))
.
.
2011-03-22 15:26 . 2011-03-22 15:27 -------- d-----w- c:\users\Martin\AppData\Local\temp
2011-03-22 15:26 . 2011-03-22 15:26 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-03-22 15:26 . 2011-03-22 15:26 -------- d-----w- c:\users\Julia\AppData\Local\temp
2011-03-22 15:26 . 2011-03-22 15:26 -------- d-----w- c:\users\Ernest\AppData\Local\temp
2011-03-22 15:26 . 2011-03-22 15:26 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-03-22 15:26 . 2011-03-22 15:26 -------- d-----w- c:\users\Anna\AppData\Local\temp
2011-03-22 14:38 . 2011-03-22 14:38 28752 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{40A38AE9-4FC1-4E37-9059-6F31AFD5637A}\MpKsldffa1d7a.sys
2011-03-22 14:38 . 2011-02-11 06:54 5943120 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{40A38AE9-4FC1-4E37-9059-6F31AFD5637A}\mpengine.dll
2011-03-12 19:27 . 2011-03-16 12:59 -------- d-----w- c:\users\Martin\AppData\Roaming\Blueberry
2011-03-12 19:25 . 2011-03-12 19:27 -------- d-----w- c:\users\Martin\AppData\Roaming\LogSys
2011-03-12 19:25 . 2011-03-12 19:25 -------- d-----w- c:\program files\Common Files\Blueberry Software
2011-03-12 19:25 . 2011-03-12 19:25 -------- d-----w- c:\program files\Blueberry Software
2011-03-12 19:25 . 2011-03-12 19:25 -------- dc-h--w- c:\programdata\{D82AC81F-4D4A-4B9D-9FE5-FF3930123446}
2011-03-12 18:38 . 2011-03-12 19:16 -------- d-----w- c:\program files\Fraps
2011-03-09 15:21 . 2011-03-09 15:21 313344 ----a-w- c:\temp\Downloads\Data\hjsplit.exe
2011-03-09 11:07 . 2010-12-23 05:54 642048 ----a-w- c:\windows\system32\CPFilters.dll
2011-03-09 11:07 . 2010-12-23 05:54 534528 ----a-w- c:\windows\system32\EncDec.dll
2011-03-09 11:07 . 2010-12-23 05:54 850944 ----a-w- c:\windows\system32\sbe.dll
2011-03-09 11:07 . 2010-12-23 05:50 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2011-03-06 14:09 . 2011-03-06 14:09 -------- d-----w- c:\program files\Autodesk
2011-03-06 14:07 . 2011-03-06 14:07 3081354 ----a-w- c:\temp\Downloads\Data\MGControl65.EXE
2011-03-05 17:02 . 2009-07-23 03:08 50200 ----a-w- c:\windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2011-03-05 17:02 . 2009-07-23 03:08 79896 ----a-w- c:\windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2011-03-05 17:01 . 2011-03-05 17:01 -------- d-----w- c:\windows\system32\RsFx
2011-03-05 16:48 . 2011-03-05 17:01 -------- d-----w- c:\program files\Microsoft SQL Server
2011-03-05 16:48 . 2011-03-05 16:48 -------- d-----w- c:\program files\Microsoft Sync Framework
2011-03-05 16:48 . 2011-03-05 16:48 -------- d-----w- c:\program files\Microsoft Synchronization Services
2011-03-05 16:46 . 2011-03-05 16:46 -------- d-----w- c:\programdata\PreEmptive Solutions
2011-03-05 16:40 . 2011-03-05 16:40 -------- d-----w- c:\program files\Microsoft ASP.NET
2011-03-05 16:40 . 2011-03-05 16:40 -------- d-----w- c:\program files\IIS
2011-03-05 16:39 . 2011-03-05 17:08 2478272 ----a-w- c:\programdata\Microsoft\VisualStudio\10.0\1033\ResourceCache.dll
2011-03-05 16:28 . 2011-03-05 16:59 -------- d-----w- c:\windows\system32\1033
2011-03-05 16:28 . 2011-03-05 16:28 -------- d-----w- c:\windows\symbols
2011-03-05 16:27 . 2011-03-05 16:33 -------- d-----w- c:\program files\Microsoft F#
2011-03-05 16:27 . 2011-03-05 16:30 -------- d-----w- c:\program files\HTML Help Workshop
2011-03-05 16:27 . 2011-03-05 16:48 -------- d-----w- c:\program files\Microsoft SDKs
2011-03-05 16:27 . 2011-03-05 16:46 -------- d-----w- c:\program files\Microsoft Visual Studio 10.0
2011-03-05 16:27 . 2011-03-05 16:32 -------- d-----w- c:\program files\Common Files\Merge Modules
2011-03-05 16:27 . 2011-03-05 16:27 -------- d-----w- c:\program files\Microsoft Help Viewer
2011-03-05 16:24 . 2011-03-05 16:24 -------- d-----w- c:\program files\Microsoft Visual Studio 9.0
2011-03-05 12:05 . 2011-03-05 12:05 -------- d-----w- c:\users\Martin\AppData\Roaming\Miranda
2011-03-05 12:05 . 2011-03-05 12:05 -------- d-----w- c:\program files\Miranda IM
2011-03-05 12:02 . 2011-03-05 12:02 3106828 ----a-w- c:\temp\Downloads\Data\miranda-im-v0.9.17-unicode.exe
2011-03-05 11:40 . 2011-03-05 11:40 4711248 ----a-w- c:\temp\Downloads\Data\vs_ultimateweb.exe
2011-03-04 16:08 . 2011-03-04 16:12 -------- d-----w- c:\program files\Total Video Converter
2011-03-04 15:47 . 2011-03-04 15:47 -------- d-----w- c:\users\Martin\AppData\Roaming\mkvtoolnix
2011-03-02 18:18 . 2011-03-19 22:31 -------- d-----w- c:\programdata\tmp
2011-02-26 13:36 . 2011-03-12 17:35 -------- d-----w- c:\users\Martin\AppData\Local\ElevatedDiagnostics
2011-02-25 10:47 . 2001-02-26 19:48 81920 ----a-w- c:\windows\_detmp.2
2011-02-25 10:43 . 2001-03-15 06:18 20584 ----a-w- c:\windows\system32\PdfPorts.dll
2011-02-25 10:43 . 2001-03-15 06:18 65536 ----a-w- c:\windows\system32\adistres.dll
2011-02-25 10:43 . 2001-01-30 12:56 225280 ----a-w- c:\program files\Internet Explorer\Plugins\NPDocBox.dll
2011-02-25 10:43 . 2001-03-15 05:55 101200 ----a-w- c:\windows\system32\pdfshell.dll
2011-02-25 10:42 . 2011-02-25 10:42 -------- d-----w- c:\windows\system32\Adobe
2011-02-25 10:37 . 2011-02-25 10:37 -------- d-----w- c:\users\Ernest\AppData\Roaming\InterTrust
2011-02-24 19:30 . 2011-02-24 19:30 -------- d-----w- c:\windows\system32\SPReview
2011-02-24 19:27 . 2011-02-24 19:27 -------- d-----w- c:\windows\system32\EventProviders
2011-02-24 19:20 . 2010-11-20 12:30 175360 ----a-w- c:\windows\system32\drivers\vmbus.sys
2011-02-24 19:20 . 2010-11-20 12:29 43392 ----a-w- c:\windows\system32\drivers\winhv.sys
2011-02-24 19:20 . 2010-11-20 12:03 53760 ----a-w- c:\windows\system32\vmicres.dll
2011-02-24 19:20 . 2010-11-20 12:03 44544 ----a-w- c:\windows\system32\vmbusres.dll
2011-02-24 19:20 . 2010-11-20 09:14 215552 ----a-w- c:\windows\system32\vmicsvc.exe
2011-02-24 19:20 . 2010-11-20 09:14 47616 ----a-w- c:\windows\system32\vmictimeprovider.dll
2011-02-24 19:20 . 2010-11-20 09:14 113664 ----a-w- c:\windows\system32\IcCoinstall.dll
2011-02-24 19:20 . 2010-11-20 09:14 17920 ----a-w- c:\windows\system32\drivers\VMBusHID.sys
2011-02-24 19:20 . 2010-11-20 09:14 116224 ----a-w- c:\windows\system32\VmbusCoinstaller.dll
2011-02-24 19:20 . 2010-11-20 09:14 14336 ----a-w- c:\windows\system32\vmbuspipe.dll
2011-02-24 19:18 . 2010-11-20 12:30 1290112 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-02-24 19:17 . 2010-11-20 12:20 90112 ----a-w- c:\windows\system32\olepro32.dll
2011-02-24 19:16 . 2010-11-20 10:07 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2011-02-24 19:15 . 2010-11-20 12:21 189952 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2011-02-24 19:14 . 2010-11-20 12:18 1003520 ----a-w- c:\windows\system32\cryptui.dll
2011-02-24 18:23 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2011-02-24 17:33 . 2011-02-24 17:33 -------- d-----w- c:\users\Martin\.vnc
2011-02-24 17:14 . 2010-12-01 21:05 26112 ----a-w- c:\windows\system32\VNCpm.dll
2011-02-24 17:13 . 2011-02-24 17:13 -------- d-----w- c:\program files\RealVNC
2011-02-24 16:10 . 2011-02-24 16:11 -------- d-----w- c:\users\Martin\My Virtual Machines
2011-02-23 17:35 . 2011-01-07 07:46 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-02-23 17:35 . 2011-01-07 07:46 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-02-22 06:38 . 2011-02-22 06:38 86016 ----a-w- c:\windows\system32\frapsvid.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-10 12:56 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-02-24 20:08 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-02-11 06:54 . 2011-02-05 18:41 5943120 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-02-03 05:54 . 2011-02-09 17:17 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-02-02 16:11 . 2009-12-16 20:10 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-01-27 16:57 . 2010-12-26 13:21 139128 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-01-27 16:57 . 2010-12-26 21:54 215128 ----a-w- c:\windows\system32\PnkBstrB.xtr
2011-01-27 16:57 . 2010-12-26 13:20 215128 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-01-13 09:41 . 2011-02-05 18:08 5890896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{47BA9B14-4F24-4EA3-BA63-2DE51DEAE014}\mpengine.dll
2011-01-07 07:45 . 2011-02-09 17:19 34304 ----a-w- c:\windows\system32\atmlib.dll
2011-01-07 06:01 . 2011-02-09 17:26 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-01-07 05:43 . 2011-02-09 17:19 294400 ----a-w- c:\windows\system32\atmfd.dll
2011-01-05 05:55 . 2011-02-09 17:26 428032 ----a-w- c:\windows\system32\vbscript.dll
2011-01-05 03:51 . 2011-02-09 17:26 2330624 ----a-w- c:\windows\system32\win32k.sys
2011-01-04 16:11 . 2010-12-15 16:56 466944 ------w- c:\windows\Setup1.exe
2011-01-04 16:11 . 2010-12-15 16:56 73216 ----a-w- c:\windows\ST6UNST.EXE
2010-12-30 23:30 . 2010-12-30 23:30 551456 ----a-w- c:\windows\system32\RTSndMgr.cpl
2010-12-30 23:30 . 2010-12-30 23:30 53280 ----a-w- c:\windows\system32\RtkCoInst.dll
2010-12-30 23:30 . 2010-12-30 23:30 338464 ----a-w- c:\windows\system32\RtkApoApi.dll
2010-12-30 23:30 . 2010-12-30 23:30 2968608 ----a-w- c:\windows\system32\RtkAPO.dll
2010-12-30 23:30 . 2010-12-30 23:30 2771232 ----a-w- c:\windows\system32\drivers\RTKVHDA.sys
2010-12-30 23:30 . 2010-12-30 23:30 1342496 ----a-w- c:\windows\system32\RtkPgExt.dll
2010-12-30 23:30 . 2010-12-30 23:30 278016 ----a-w- c:\windows\system32\FMAPO.dll
2010-12-30 23:30 . 2010-12-30 23:30 831488 ----a-w- c:\windows\RtlExUpd.dll
2010-12-26 21:43 . 2010-12-26 21:43 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-12-26 13:21 . 2010-12-26 13:21 138056 ----a-w- c:\users\Martin\AppData\Roaming\PnkBstrK.sys
2010-12-26 13:20 . 2010-12-26 13:20 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-12-26 13:20 . 2010-12-26 13:20 2434856 ----a-w- c:\windows\system32\pbsvc_bc2.exe
2011-03-18 18:05 . 2011-03-21 14:49 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SharingPrivate]
@="{08244EE6-92F0-47f2-9FC9-929BAA2E7235}"
[HKEY_CLASSES_ROOT\CLSID\{08244EE6-92F0-47f2-9FC9-929BAA2E7235}]
2010-11-20 12:20 442880 ----a-w- c:\windows\System32\ntshrui.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ZSSnp211"="c:\windows\ZSSnp211.exe" [2007-04-06 57344]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-25 98304]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-12-30 7739936]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 997408]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Canon LBP2900 Status Window.lnk - c:\windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE [2010-4-2 50848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"ConsentPromptBehaviorUser"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acrobat Assistant.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Acrobat Assistant.lnk
backup=c:\windows\pss\Acrobat Assistant.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-11-10 11:49 932288 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
2008-08-14 05:58 611712 ----a-w- c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Domino]
2006-08-18 14:58 49152 ----a-w- c:\windows\Domino.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office 2007\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
2010-10-27 12:20 133432 ----a-w- c:\program files\ICQ7.2\ICQ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelliPoint]
2010-07-21 15:52 1797008 ----a-w- c:\program files\Microsoft IntelliPoint\ipoint.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2010-12-06 07:31 1910152 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxbkbmgr.exe]
2007-04-26 10:02 74672 ----a-w- c:\program files\Lexmark X1100 Series\LXBKbmgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
2010-10-28 15:15 1406248 ----a-w- c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RocketDock]
2007-09-02 11:58 495616 ----a-w- c:\program files\RocketDock\RocketDock.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ScreenManager Pro for LCD]
2007-08-30 03:47 10937640 ----a-w- c:\program files\EIZO\ScreenManager Pro for LCD\Lcdctrl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2010-12-11 22:53 395640 ----a-w- c:\program files\uTorrent\uTorrent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2010-12-06 22:02 74752 ----a-w- c:\program files\Winamp\winampa.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"FileHippo.com"="c:\program files\FileHippo.com\UpdateChecker.exe" /background
"ISUSPM Startup"=c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"ISUSScheduler"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe" -start
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe"
.
R1 MpKsl01f56c40;MpKsl01f56c40;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E70F2148-9CC8-4D55-8EBD-078EAD3CE9F5}\MpKsl01f56c40.sys [x]
R1 MpKsl0f094d0b;MpKsl0f094d0b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FC5C12DC-702A-4B49-85EA-29F21695D471}\MpKsl0f094d0b.sys [x]
R1 MpKsl18b7988b;MpKsl18b7988b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{751A9989-01D2-4A82-9543-AEEFE7869731}\MpKsl18b7988b.sys [x]
R1 MpKsl1bd45e00;MpKsl1bd45e00;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AFBB9B20-C10F-48DB-805E-34E288BBDCD7}\MpKsl1bd45e00.sys [x]
R1 MpKsl2aa46860;MpKsl2aa46860;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AFBB9B20-C10F-48DB-805E-34E288BBDCD7}\MpKsl2aa46860.sys [x]
R1 MpKsl2eb43181;MpKsl2eb43181;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C867530C-387A-448A-BD4B-9CB966BC81E6}\MpKsl2eb43181.sys [x]
R1 MpKsl330bb1c0;MpKsl330bb1c0;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7D9BF283-2B41-41FD-A877-CFDBAB2D3C11}\MpKsl330bb1c0.sys [x]
R1 MpKsl3b1d13ca;MpKsl3b1d13ca;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{36902C43-C713-4E30-ACC8-3ABDBAA696AD}\MpKsl3b1d13ca.sys [x]
R1 MpKsl442493cb;MpKsl442493cb;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{5159FA17-50CB-4B84-846A-9421605F7AA0}\MpKsl442493cb.sys [x]
R1 MpKsl6566b642;MpKsl6566b642;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{34E34933-C09A-4377-ACBC-01AB1823F2D9}\MpKsl6566b642.sys [x]
R1 MpKsl87ee520c;MpKsl87ee520c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B9E85AF4-B86F-4009-B5BA-22B8C9D0AD69}\MpKsl87ee520c.sys [x]
R1 MpKsl8ab3ac13;MpKsl8ab3ac13;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FC5C12DC-702A-4B49-85EA-29F21695D471}\MpKsl8ab3ac13.sys [x]
R1 MpKsl971645c4;MpKsl971645c4;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E61A8FD3-8319-4C3F-A7F8-23A7FD54DA54}\MpKsl971645c4.sys [x]
R1 MpKslab13f5b3;MpKslab13f5b3;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A7BE5ADB-4870-40B4-B43B-CE87A25AF838}\MpKslab13f5b3.sys [x]
R1 MpKsld7ae8a26;MpKsld7ae8a26;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1ADBF4AD-60B6-4B0A-A767-876CD8E5240E}\MpKsld7ae8a26.sys [x]
R1 MpKslddaf94ea;MpKslddaf94ea;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1E8988FF-F36B-4346-A4C8-1DBA72C32C31}\MpKslddaf94ea.sys [x]
R1 MpKslde5f3f7a;MpKslde5f3f7a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{11C32EAD-D18D-4BB9-A476-8573CDA23FF6}\MpKslde5f3f7a.sys [x]
R1 MpKsldfdf5a48;MpKsldfdf5a48;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B5C5A7E3-0F82-4C0D-A3DB-4C2F20A258DB}\MpKsldfdf5a48.sys [x]
R1 MpKsle5c75b86;MpKsle5c75b86;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9AA7079B-1FC6-4B9F-8120-583F52FCA9E9}\MpKsle5c75b86.sys [x]
R1 MpKslfad6d485;MpKslfad6d485;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{71A9E64F-7B5D-436D-B07C-BA0984269E91}\MpKslfad6d485.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-05-20 136176]
R2 MMCSS;Multimedia Class Scheduler;c:\windows\system32\svchost.exe [2009-07-14 20992]
R2 sppsvc;Software Protection;c:\windows\system32\sppsvc.exe [2010-11-20 3179520]
R3 1394ohci;1394 OHCI Compliant Host Controller;c:\windows\system32\drivers\1394ohci.sys [2010-11-20 164864]
R3 AcpiPmi;ACPI Power Meter Driver;c:\windows\system32\drivers\acpipmi.sys [2010-11-20 10240]
R3 adp94xx;adp94xx;c:\windows\system32\DRIVERS\adp94xx.sys [2009-07-14 422976]
R3 adpahci;adpahci;c:\windows\system32\DRIVERS\adpahci.sys [2009-07-14 297552]
R3 amdsata;amdsata;c:\windows\system32\drivers\amdsata.sys [2010-11-20 80256]
R3 amdsbs;amdsbs;c:\windows\system32\DRIVERS\amdsbs.sys [2009-07-14 159312]
R3 AppID;AppID Driver;c:\windows\system32\drivers\appid.sys [2010-11-20 50176]
R3 AppIDSvc;Application Identity;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 arcsas;arcsas;c:\windows\system32\DRIVERS\arcsas.sys [2009-07-14 86608]
R3 b06bdrv;Broadcom NetXtreme II VBD;c:\windows\system32\DRIVERS\bxvbdx.sys [2009-07-13 430080]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
R3 BDESVC;BitLocker Drive Encryption Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver;c:\windows\system32\DRIVERS\BrFiltLo.sys [2009-07-13 13568]
R3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver;c:\windows\system32\DRIVERS\BrFiltUp.sys [2009-07-13 5248]
R3 Brserid;Brother MFC Serial Port Interface Driver (WDM);c:\windows\System32\Drivers\Brserid.sys [2009-07-14 272128]
R3 BrSerWdm;Brother WDM Serial driver;c:\windows\System32\Drivers\BrSerWdm.sys [2009-07-13 62336]
R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\System32\Drivers\BrUsbMdm.sys [2009-07-13 12160]
R3 circlass;Consumer IR Devices;c:\windows\system32\DRIVERS\circlass.sys [2009-07-13 37888]
R3 DEFRAGSVC;Defragmentácia disku;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;c:\windows\system32\DRIVERS\evbdx.sys [2009-07-13 3100160]
R3 elxstor;elxstor;c:\windows\system32\DRIVERS\elxstor.sys [2009-07-14 453712]
R3 Filetrace;Filetrace;c:\windows\system32\drivers\filetrace.sys [2009-07-13 28160]
R3 FsDepends;File System Dependency Minifilter;c:\windows\system32\drivers\FsDepends.sys [2009-07-14 46160]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
R3 hcw85cir;Hauppauge Consumer Infrared Receiver;c:\windows\system32\drivers\hcw85cir.sys [2009-07-13 26624]
R3 HpSAMD;HpSAMD;c:\windows\system32\drivers\HpSAMD.sys [2009-07-14 67152]
R3 iaStorV;Intel RAID Controller Windows 7;c:\windows\system32\drivers\iaStorV.sys [2010-11-20 332160]
R3 IPBusEnum;PnP-X IP Bus Enumerator;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 IPMIDRV;IPMIDRV;c:\windows\system32\drivers\IPMIDrv.sys [2010-11-20 65536]
R3 iScsiPrt;iScsiPort Driver;c:\windows\system32\drivers\msiscsi.sys [2010-11-20 233344]
R3 KtmRm;KtmRm for Distributed Transaction Coordinator;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 lltdsvc;Mapovač zisťovania topológie úrovne vrstvy prepojení;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 LSI_FC;LSI_FC;c:\windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 95824]
R3 LSI_SAS;LSI_SAS;c:\windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 89168]
R3 LSI_SAS2;LSI_SAS2;c:\windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 54864]
R3 LSI_SCSI;LSI_SCSI;c:\windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 96848]
R3 megasas;megasas;c:\windows\system32\DRIVERS\megasas.sys [2009-07-14 30800]
R3 mpio;Microsoft Multi-Path Bus Driver;c:\windows\system32\drivers\mpio.sys [2010-11-20 130432]
R3 msahci;msahci;c:\windows\system32\drivers\msahci.sys [2010-11-20 28032]
R3 msdsm;Microsoft Multi-Path Device Specific Module;c:\windows\system32\drivers\msdsm.sys [2010-11-20 116096]
R3 mshidkmdf;Pass-through HID to KMDF Filter Driver;c:\windows\System32\drivers\mshidkmdf.sys [2009-07-13 4096]
R3 MSiSCSI;Microsoft iSCSI Initiator Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 MsRPC;MsRPC; [x]
R3 MTConfig;Microsoft Input Configuration Driver;c:\windows\system32\DRIVERS\MTConfig.sys [2009-07-13 12288]
R3 Nbdrv;NetBalancer Service;c:\windows\system32\DRIVERS\nbdrv.sys [x]
R3 NdisCap;NDIS Capture LightWeight Filter;c:\windows\system32\DRIVERS\ndiscap.sys [2009-07-13 27136]
R3 netr73;RT73 USB Wireless LAN Card Driver for Vista;c:\windows\system32\DRIVERS\netr73.sys [2009-07-13 545792]
R3 nfrd960;nfrd960;c:\windows\system32\DRIVERS\nfrd960.sys [2009-07-14 44624]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
R3 NisSrv;Kontrola siete od spoločnosti Microsoft;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
R3 PeerDistSvc;BranchCache;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 pla;Performance Logs & Alerts;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 PNRPAutoReg;PNRP Machine Name Publication Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 ql2300;ql2300;c:\windows\system32\DRIVERS\ql2300.sys [2009-07-14 1383488]
R3 ql40xx;ql40xx;c:\windows\system32\DRIVERS\ql40xx.sys [2009-07-14 106064]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 s3cap;s3cap;c:\windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
R3 scfilter;Smart card PnP Class Filter Driver;c:\windows\system32\DRIVERS\scfilter.sys [2010-11-20 26624]
R3 SDRSVC;Windows Zálohovanie;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 SensrSvc;Adaptive Brightness;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 SessionEnv;Remote Desktop Configuration;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 sffp_mmc;SFF Storage Protocol Driver for MMC;c:\windows\system32\drivers\sffp_mmc.sys [2009-07-13 12288]
R3 SiSRaid4;SiSRaid4;c:\windows\system32\DRIVERS\sisraid4.sys [2009-07-14 77888]
R3 Smb;Protokol TCP/IP orientovaný na správy a protokol TCP/IPv6 (relácia SMB);c:\windows\system32\DRIVERS\smb.sys [2009-07-13 71168]
R3 sppuinotify;Oznamovacia služba SPP;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 stexstor;stexstor;c:\windows\system32\DRIVERS\stexstor.sys [2009-07-14 21072]
R3 storvsc;storvsc;c:\windows\system32\drivers\storvsc.sys [2010-11-20 28032]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TabletInputService;Tablet PC Input Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 TBS;TPM Base Services;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 THREADORDER;Thread Ordering Server;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 TrustedInstaller;Windows Modules Installer;c:\windows\servicing\TrustedInstaller.exe [2010-11-20 204800]
R3 tssecsrv;Remote Desktop Services Security Filter Driver;c:\windows\system32\DRIVERS\tssecsrv.sys [2010-11-20 31232]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 UI0Detect;Interactive Services Detection;c:\windows\system32\UI0Detect.exe [2009-07-14 35840]
R3 uliagpkx;Uli AGP Bus Filter;c:\windows\system32\drivers\uliagpkx.sys [2009-07-14 57424]
R3 UmRdpService;Presmerovávač portu používateľského režimu služieb vzdialenej pracovnej plochy;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 usbcir;eHome Infrared Receiver (USBCIR);c:\windows\system32\drivers\usbcir.sys [2009-07-13 86016]
R3 VaultSvc;Správca poverení;c:\windows\system32\lsass.exe [2009-07-14 22528]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 vhdmp;vhdmp;c:\windows\system32\drivers\vhdmp.sys [2010-11-20 160128]
R3 ViaC7;VIA C7 Processor Driver;c:\windows\system32\DRIVERS\viac7.sys [2009-07-13 52736]
R3 VMBusHID;VMBusHID;c:\windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
R3 vsmraid;vsmraid;c:\windows\system32\DRIVERS\vsmraid.sys [2009-07-14 141904]
R3 VSPerfDrv100;Performance Tools Driver 10.0;c:\program files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys [2009-12-08 48128]
R3 vvftav211;vvftav211;c:\windows\system32\drivers\vvftav211.sys [2007-12-10 480128]
R3 vwifibus;Virtual WiFi Bus Driver;c:\windows\system32\DRIVERS\vwifibus.sys [2009-07-13 19968]
R3 WacomPen;Wacom Serial Pen HID Driver;c:\windows\system32\DRIVERS\wacompen.sys [2009-07-13 21632]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-18 1343400]
R3 wbengine;Block Level Backup Engine Service;c:\windows\system32\wbengine.exe [2010-11-20 1203200]
R3 WbioSrvc;Windows Biometric Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 WcsPlugInService;Windows Color System;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 Wd;Wd;c:\windows\system32\DRIVERS\wd.sys [2009-07-14 19024]
R3 WdiSystemHost;Diagnostic System Host;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 Wecsvc;Windows Event Collector;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 wercplsupport;Problem Reports and Solutions Control Panel Support;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WIMMount;WIMMount;c:\windows\system32\drivers\wimmount.sys [2009-07-14 19008]
R3 WinDefend;Windows Defender;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WinRM;Windows Remote Management (WS-Management);c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WPCSvc;Parental Controls;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 WwanSvc;WWAN AutoConfig;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 ZSMC30x;USB PC Camera Service ZSMC30x;c:\windows\system32\Drivers\ZS211.sys [2007-12-05 1537024]
R4 CertPropSvc;Šírenie certifikátu;c:\windows\system32\svchost.exe [2009-07-14 20992]
R4 CscService;Offline Files;c:\windows\System32\svchost.exe [2009-07-14 20992]
R4 iphlpsvc;IP Helper;c:\windows\System32\svchost.exe [2009-07-14 20992]
R4 Mcx2Svc;Služba Media Center Extender;c:\windows\system32\svchost.exe [2009-07-14 20992]
R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-23 47128]
R4 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-05-04 503080]
R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 239336]
R4 SCPolicySvc;Politika vybratia karty Smart Card;c:\windows\system32\svchost.exe [2009-07-14 20992]
R4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 366936]
S0 amdxata;amdxata;c:\windows\system32\drivers\amdxata.sys [2010-11-20 22400]
S0 CLFS;Common Log (CLFS);c:\windows\System32\CLFS.sys [2009-07-14 249408]
S0 CNG;CNG;c:\windows\System32\Drivers\cng.sys [2009-07-14 369568]
S0 FileInfo;File Information FS MiniFilter;c:\windows\system32\drivers\fileinfo.sys [2009-07-14 58448]
S0 fvevol;Bitlocker Drive Encryption Filter Driver;c:\windows\System32\DRIVERS\fvevol.sys [2010-11-20 194800]
S0 hwpolicy;Hardware Policy Driver;c:\windows\System32\drivers\hwpolicy.sys [2010-11-20 14208]
S0 KSecPkg;KSecPkg;c:\windows\System32\Drivers\ksecpkg.sys [2009-07-14 133200]
S0 msisadrv;msisadrv;c:\windows\system32\drivers\msisadrv.sys [2009-07-14 13888]
S0 nvstor;nvstor;c:\windows\system32\drivers\nvstor.sys [2010-11-20 143744]
S0 pcw;Performance Counters for Windows Driver;c:\windows\System32\drivers\pcw.sys [2009-07-14 43088]
S0 rdyboost;ReadyBoost;c:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
S0 spldr;Security Processor Loader Driver; [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-12-26 691696]
S0 storflt;Disk Virtual Machine Bus Acceleration Filter Driver;c:\windows\system32\drivers\vmstorfl.sys [2010-11-20 40704]
S0 vdrvroot;Microsoft Virtual Drive Enumerator Driver;c:\windows\system32\drivers\vdrvroot.sys [2009-07-14 32832]
S0 vmbus;Virtual Machine Bus;c:\windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S0 volmgr;Volume Manager Driver;c:\windows\system32\drivers\volmgr.sys [2010-11-20 53120]
S0 volmgrx;Dynamic Volume Manager;c:\windows\System32\drivers\volmgrx.sys [2009-07-14 297040]
S1 blbdrive;blbdrive;c:\windows\system32\DRIVERS\blbdrive.sys [2009-07-13 35328]
S1 CSC;Offline Files Driver;c:\windows\system32\drivers\csc.sys [2010-11-20 388096]
S1 DfsC;DFS Namespace Client Driver;c:\windows\system32\Drivers\dfsc.sys [2010-11-20 78336]
S1 discache;System Attribute Cache;c:\windows\system32\drivers\discache.sys [2009-07-13 32256]
S1 MpKsldffa1d7a;MpKsldffa1d7a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{40A38AE9-4FC1-4E37-9059-6F31AFD5637A}\MpKsldffa1d7a.sys [2011-03-22 28752]
S1 nsiproxy;NSI proxy service driver.;c:\windows\system32\drivers\nsiproxy.sys [2009-07-13 16896]
S1 RDPENCDD;RDP Encoder Mirror Driver;c:\windows\system32\drivers\rdpencdd.sys [2009-07-14 6656]
S1 RDPREFMP;Reflector Display Driver used to gain access to graphics data;c:\windows\system32\drivers\rdprefmp.sys [2009-07-14 7168]
S1 tdx;Sieťový vstupno-výstupný ovládač staršej verzie na podporu zariadení TDI;c:\windows\system32\DRIVERS\tdx.sys [2010-11-20 74752]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S1 Wanarpv6;Remote Access IPv6 ARP Driver;c:\windows\system32\DRIVERS\wanarp.sys [2010-11-20 63488]
S1 WfpLwf;WFP Lightweight Filter;c:\windows\system32\DRIVERS\wfplwf.sys [2009-07-13 9728]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-11-26 176128]
S2 Angelnt;Angelnt;c:\windows\System32\Drivers\ANGELNT.SYS [2010-01-27 51072]
S2 AudioEndpointBuilder;Windows Audio Endpoint Builder;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 BFE;Base Filtering Engine;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 DPS;Diagnostic Policy Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 FDResPub;Function Discovery Resource Publication;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 gpsvc;Klient skupinovej politiky;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2010-12-06 1238408]
S2 IKEEXT;IKE and AuthIP IPsec Keying Modules;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver;c:\windows\system32\DRIVERS\lltdio.sys [2009-07-13 48128]
S2 luafv;UAC File Virtualization;c:\windows\system32\drivers\luafv.sys [2009-07-13 86528]
S2 lxbk_device;lxbk_device;c:\windows\system32\lxbkcoms.exe [2007-04-26 537520]
S2 MpsSvc;Brána Windows Firewall;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 NlaSvc;Network Location Awareness;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 nsi;Network Store Interface Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 PEAUTH;PEAUTH;c:\windows\system32\drivers\peauth.sys [2009-07-14 586752]
S2 Power;Power;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 ProfSvc;User Profile Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 RpcEptMapper;RPC Endpoint Mapper;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 SysMain;Rýchle načítanie;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 tcpipreg;TCP/IP Registry Compatibility;c:\windows\system32\drivers\tcpipreg.sys [2010-11-20 35328]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-08-27 1051968]
S2 UxSms;Správca relácie Správcu okien na pracovnej ploche;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 WerSvc;Windows Error Reporting Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 Wlansvc;WLAN AutoConfig;c:\windows\system32\svchost.exe [2009-07-14 20992]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-11-26 6650368]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-11-26 231936]
S3 Appinfo;Application Information;c:\windows\system32\svchost.exe [2009-07-14 20992]
S3 bbcap;bbcap;c:\windows\system32\DRIVERS\bbcap.sys [2010-01-19 4096]
S3 bowser;Browser Support Driver;c:\windows\system32\DRIVERS\bowser.sys [2009-07-13 69632]
S3 CompositeBus;Composite Bus Enumerator Driver;c:\windows\system32\drivers\CompositeBus.sys [2010-11-20 31232]
S3 DXGKrnl;LDDM Graphics Subsystem;c:\windows\System32\drivers\dxgkrnl.sys [2010-11-20 728448]
S3 fdPHost;Function Discovery Provider Host;c:\windows\system32\svchost.exe [2009-07-14 20992]
S3 HomeGroupListener;HomeGroup Listener;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 HomeGroupProvider;HomeGroup Provider;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 KeyIso;CNG Key Isolation;c:\windows\system32\lsass.exe [2009-07-14 22528]
S3 monitor;Microsoft Monitor Class Function Driver Service;c:\windows\system32\DRIVERS\monitor.sys [2009-07-13 23552]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
S3 mpsdrv;Ovládač overenia brány Windows Firewall;c:\windows\system32\drivers\mpsdrv.sys [2009-07-13 60416]
S3 mrxsmb10;SMB 1.x MiniRedirector;c:\windows\system32\DRIVERS\mrxsmb10.sys [2010-11-20 223232]
S3 mrxsmb20;SMB 2.0 MiniRedirector;c:\windows\system32\DRIVERS\mrxsmb20.sys [2010-11-20 96768]
S3 NativeWifiP;NativeWiFi Filter;c:\windows\system32\DRIVERS\nwifi.sys [2009-07-13 267264]
S3 netprofm;Network List Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 PcaSvc;Program Compatibility Assistant Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S3 RasAgileVpn;WAN Miniport (IKEv2);c:\windows\system32\DRIVERS\AgileVpn.sys [2009-07-13 49152]
S3 rdpbus;Remote Desktop Device Redirector Bus Driver;c:\windows\system32\DRIVERS\rdpbus.sys [2009-07-14 18944]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-11-11 324200]
S3 srv2;Server SMB 2.xxx Driver;c:\windows\system32\DRIVERS\srv2.sys [2010-11-20 309248]
S3 srvnet;srvnet;c:\windows\system32\DRIVERS\srvnet.sys [2010-11-20 114176]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-24 10064]
S3 tunnel;Microsoft Tunnel Miniport Adapter Driver;c:\windows\system32\DRIVERS\tunnel.sys [2010-11-20 108544]
S3 umbus;UMBus Enumerator Driver;c:\windows\system32\drivers\umbus.sys [2010-11-20 39936]
S3 wcncsvc;Windows Connect Now - Config Registrar;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 WdiServiceHost;Diagnostic Service Host;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 WPDBusEnum;Portable Device Enumerator Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSLDFFA1D7A
*Deregistered* - cmdGuard
*Deregistered* - cmdHlp
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
RPCSS REG_MULTI_SZ RpcEptMapper RpcSs
WerSvcGroup REG_MULTI_SZ wersvc
LocalServiceNoNetwork REG_MULTI_SZ DPS PLA BFE mpssvc WwanSvc
swprv REG_MULTI_SZ swprv
LocalServicePeerNet REG_MULTI_SZ PNRPSvc p2pimsvc p2psvc PnrpAutoReg
NetworkServiceAndNoImpersonation REG_MULTI_SZ KtmRm
regsvc REG_MULTI_SZ RemoteRegistry
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
DcomLaunch REG_MULTI_SZ Power PlugPlay DcomLaunch
NetworkServiceNetworkRestricted REG_MULTI_SZ PolicyAgent
WbioSvcGroup REG_MULTI_SZ WbioSrvc
wcssvc REG_MULTI_SZ WcsPlugInService
AxInstSVGroup REG_MULTI_SZ AxInstSV
secsvcs REG_MULTI_SZ WinDefend
PeerDist REG_MULTI_SZ PeerDistSvc
DEFRAGSVC REG_MULTI_SZ DEFRAGSVC
SDRSVC REG_MULTI_SZ SDRSVC
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
AeLookupSvc
CertPropSvc
SCPolicySvc
lanmanserver
gpsvc
IKEEXT
AudioSrv
FastUserSwitchingCompatibility
Nla
NWCWorkstation
SRService
Wmi
WmdmPmSp
TermService
wuauserv
BITS
ShellHWDetection
LogonHours
PCAudit
helpsvc
uploadmgr
iphlpsvc
seclogon
AppInfo
msiscsi
MMCSS
wercplsupport
EapHost
ProfSvc
schedule
hkmsvc
SessionEnv
winmgmt
browser
Themes
BDESVC
AppMgmt
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalSystemNetworkRestricted
homegrouplistener
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
WdiServiceHost
sppuinotify
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetworkService
lanmanworkstation
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalServiceNetworkRestricted
BthHFSrv
homegroupprovider
.
.
Contents of the 'Scheduled Tasks' folder
.
2011-03-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-20 13:18]
.
2011-03-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-20 13:18]
.
.
------- Supplementary Scan -------
.
uInternet Settings,ProxyServer = http=;ftp=;https=;
IE: YamicsoftDisabled
IE: YamicsoftDisabled\E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: YamicsoftDisabled\E&xportovať do programu Microsoft Excel - c:\progra~1\MI068C~1\Office12\EXCEL.EXE/3000
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\progra~1\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\progra~1\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\progra~1\PCTRAN~1\webie.dll
FF - ProfilePath - c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\3xh6axi7.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
ShellIconOverlayIdentifiers-{F185FFAB-0C09-441D-B147-06E6885A3A90} - c:\users\Martin\AppData\Roaming\Microsoft\msxmin40.dll
SafeBoot-WudfPf
SafeBoot-WudfRd
SafeBoot-sacsvr
SafeBoot-vmms
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 16:27
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files:
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Adobe\Premiere Pro\1.5\DefaultPreset]
@DACL=(02 0000)
@="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Settings\\DV - NTSC\\Standard 48kHz.prpreset"
.
[HKEY_LOCAL_MACHINE\software\Adobe\Premiere Pro\1.5\Help]
@DACL=(02 0000)
"AdobeMediaEncoder"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_0_0_0.html"
"Contents"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_0_0_0.html"
"ExportToDVD"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_19_2_0.html"
"HowToUse"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\0_0_0_0.html"
"Keyboard"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_21_0_0.html"
"Search"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\search.html"
"Support"="http://www.adobe.com/support/products/premiere.html"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10n_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10n_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-03-22 16:34:44
ComboFix-quarantined-files.txt 2011-03-22 15:34
.
Pre-Run: 8 021 884 928 bytes free
Post-Run: 10 713 239 552 bytes free
.
- - End Of File - - 730995115FE3465F5791F9A59FFF72F4

[motji]

Otestujte na www.virustotal.com
c:\users\Martin\.vnc


Měla jste někdy comodo nebo spyware terminátora?

[cappie]

1. Je to zložka, v nej je len 1 súbor:

Kód: Vybrat vše

http://www.virustotal.com/file-scan/report.html?id=1e85af20fc24fe6900be1b44e53f7b064c639731dd00b165c773d84be9e48cfc-1300816395

2. Nie

[motji]

Prověříme počítač ještě na rootkity, combofixu se něco nezdá.

Stáhněte Gmer http://www.viry.cz/forum/viewtopic.php?f=29&t=62878
- rozbalte a spusťte
-proběhne sken, po skončení se otevře okno s výsledky, klikněte na Save a tím si uložíte log,který sem vložíte

-Podle návodu v odkazu provedete druhý sken a log sem také vložíte.

[cappie]

Prvý log:

GMER 1.0.15.15570 - http://www.gmer.net
Rootkit quick scan 2011-03-22 22:12:06
Windows 6.1.7601 Service Pack 1 Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-3 ST3160813AS rev.CC2F
Running: gmer.exe; Driver: C:\Users\Martin\AppData\Local\Temp\uxrdapow.sys


---- Devices - GMER 1.0.15 ----

Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0 863401F8
Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-2 863401F8
Device \Driver\atapi \Device\Ide\IdePort0 863401F8
Device \Driver\atapi \Device\Ide\IdePort1 863401F8
Device \Driver\atapi \Device\Ide\IdePort2 863401F8
Device \Driver\atapi \Device\Ide\IdePort3 863401F8
Device \Driver\atapi \Device\Ide\IdeDeviceP3T0L0-3 863401F8
Device \Driver\a1q1ogek \Device\Scsi\a1q1ogek1 867F71F8
Device \Driver\a1q1ogek \Device\Scsi\a1q1ogek1Port4Path0Target0Lun0 867F71F8
Device \FileSystem\Ntfs \Ntfs 863431F8

---- EOF - GMER 1.0.15 ----


Počas druhého sa to nejako spomalilo v zložke c:\windows\winsxs (na vyše 12 hodín; pritom daná zložka má veľkosť 1,77 kB, tak som to musel zrušiť)

GMER 1.0.15.15570 - http://www.gmer.net
Rootkit scan 2011-03-23 18:05:48
Windows 6.1.7601 Service Pack 1 Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-3 ST3160813AS rev.CC2F
Running: gmer.exe; Driver: C:\Users\Martin\AppData\Local\Temp\uxrdapow.sys


---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwSaveKey + 13C1 8344C339 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 83485D52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
? System32\Drivers\spmn.sys Systém nemôže nájsť zadanú cestu. !
.text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x9083A000, 0x3617E0, 0xE8000020]
.text USBPORT.SYS!DllUnload 9029DD81 5 Bytes JMP 867F51D8
.text a1q1ogek.SYS 90301000 12 Bytes [44, 58, 82, 83, EE, 56, 82, ...]
.text a1q1ogek.SYS 9030100D 9 Bytes [37, 82, 83, 48, 5B, 82, 83, ...]
.text a1q1ogek.SYS 90301017 170 Bytes [00, DE, C7, 39, 89, E6, C5, ...]
.text a1q1ogek.SYS 903010C3 8 Bytes [00, 00, 00, 00, 00, 00, 00, ...] {ADD [EAX], AL; ADD [EAX], AL; ADD [EAX], AL; ADD [EAX], AL}
.text a1q1ogek.SYS 903010CE 4 Bytes [00, 00, 00, 00] {ADD [EAX], AL; ADD [EAX], AL}
.text ...
? C:\Windows\system32\Drivers\PROCEXP113.SYS Systém nemôže nájsť zadaný súbor. !
? C:\Users\Martin\AppData\Local\Temp\catchme.sys Systém nemôže nájsť zadaný súbor. !

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar] [892A0042] \SystemRoot\System32\Drivers\spmn.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar] [892A06D6] \SystemRoot\System32\Drivers\spmn.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort] [892A0800] \SystemRoot\System32\Drivers\spmn.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort] [892A013E] \SystemRoot\System32\Drivers\spmn.sys
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortNotification] 00147880
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortQuerySystemTime] 78800C75
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortReadPortUchar] 06750015
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortStallExecution] C25DC033
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortWritePortUchar] 458B0008
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortWritePortUlong] 6A006A08
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortGetPhysicalAddress] 50056A24
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortConvertPhysicalAddressToUlong] 005AB7E8
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortGetScatterGatherList] 0001B800
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortGetParentBusType] C25D0000
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortRequestCallback] CCCC0008
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortWritePortBufferUshort] CCCCCCCC
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortGetUnCachedExtension] CCCCCCCC
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortCompleteRequest] CCCCCCCC
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortCopyMemory] 53EC8B55
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortEtwTraceLog] 800C5D8B
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortCompleteAllActiveRequests] 7500117B
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortReleaseRequestSenseIrb] 127B806A
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortBuildRequestSenseIrb] 80647500
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortReadPortBufferUshort] 7500137B
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortInitialize] 157B805E
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortGetDeviceBase] 56587500
IAT \SystemRoot\System32\Drivers\a1q1ogek.SYS[ataport.SYS!AtaPortDeviceStateChange] 8008758B

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs 863431F8
Device \Driver\volmgr \Device\VolMgrControl 8633E1F8
Device \Driver\usbuhci \Device\USBPDO-0 867F61F8
Device \Driver\usbuhci \Device\USBPDO-1 867F61F8
Device \Driver\usbuhci \Device\USBPDO-2 867F61F8
Device \Driver\usbuhci \Device\USBPDO-3 867F61F8
Device \Driver\usbehci \Device\USBPDO-4 867F9500
Device \Driver\volmgr \Device\HarddiskVolume1 8633E1F8

AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\volmgr \Device\HarddiskVolume2 8633E1F8

AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\cdrom \Device\CdRom0 867191F8
Device \Driver\ACPI_HAL \Device\00000065 halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)
Device \Driver\volmgr \Device\HarddiskVolume3 8633E1F8

AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0 863401F8
Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-2 863401F8
Device \Driver\atapi \Device\Ide\IdePort0 863401F8
Device \Driver\atapi \Device\Ide\IdePort1 863401F8
Device \Driver\atapi \Device\Ide\IdePort2 863401F8
Device \Driver\atapi \Device\Ide\IdePort3 863401F8
Device \Driver\atapi \Device\Ide\IdeDeviceP3T0L0-3 863401F8
Device \Driver\cdrom \Device\CdRom1 867191F8
Device \Driver\volmgr \Device\HarddiskVolume4 8633E1F8

AttachedDevice \Driver\volmgr \Device\HarddiskVolume4 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\volmgr \Device\HarddiskVolume5 8633E1F8

AttachedDevice \Driver\volmgr \Device\HarddiskVolume5 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\volmgr \Device\HarddiskVolume6 8633E1F8

AttachedDevice \Driver\volmgr \Device\HarddiskVolume6 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\volmgr \Device\HarddiskVolume7 8633E1F8

AttachedDevice \Driver\volmgr \Device\HarddiskVolume7 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\NetBT \Device\NetBt_Wins_Export 867611F8
Device \Driver\NetBT \Device\NetBT_Tcpip_{693C639A-5640-4669-9FB5-2C4D8932F5C4} 867611F8
Device \Driver\volmgr \Device\HarddiskVolume8 8633E1F8

AttachedDevice \Driver\volmgr \Device\HarddiskVolume8 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\USBSTOR \Device\00000084 86C091F8
Device \Driver\USBSTOR \Device\00000085 86C091F8
Device \Driver\USBSTOR \Device\00000092 86C091F8
Device \Driver\USBSTOR \Device\00000086 86C091F8
Device \Driver\USBSTOR \Device\00000087 86C091F8
Device \Driver\NetBT \Device\NetBT_Tcpip_{214D983F-5049-40FD-9590-CAB9BEDDCA0D} 867611F8
Device \Driver\USBSTOR \Device\00000088 86C091F8
Device \Driver\USBSTOR \Device\00000095 86C091F8
Device \Driver\usbuhci \Device\USBFDO-0 867F61F8
Device \Driver\usbuhci \Device\USBFDO-1 867F61F8
Device \Driver\usbuhci \Device\USBFDO-2 867F61F8
Device \Driver\PCI_PNP3142 \Device\0000006e spmn.sys
Device \Driver\usbuhci \Device\USBFDO-3 867F61F8
Device \Driver\usbehci \Device\USBFDO-4 867F9500
Device \Driver\sptd \Device\1295268142 spmn.sys
Device \Driver\a1q1ogek \Device\Scsi\a1q1ogek1 867F71F8
Device \Driver\a1q1ogek \Device\Scsi\a1q1ogek1Port4Path0Target0Lun0 867F71F8
Device \FileSystem\cdfs \Cdfs 85B1D500

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xE5 0x84 0x44 0xC3 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x68 0xF6 0x49 0x23 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xBB 0x31 0xE6 0xFF ...
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@FrequencyCorrectRate 4
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@PollAdjustFactor 5
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@LargePhaseOffset 50000000
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@SpikeWatchPeriod 900
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@LocalClockDispersion 10
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@HoldPeriod 5
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@PhaseCorrectRate 1
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@UpdateInterval 360000
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@EventLogFlags 2
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@AnnounceFlags 10
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@TimeJumpAuditOffset 28800
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@MinPollInterval 10
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@MaxPollInterval 15
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@MaxNegPhaseCorrection 54000
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@MaxPosPhaseCorrection 54000
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\Config@MaxAllowedPhaseOffset 1
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@DllName %systemroot%\system32\w32time.dll
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@Enabled 1
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@InputProvider 1
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@AllowNonstandardModeCombinations 1
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@CrossSiteSyncFlags 2
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@ResolvePeerBackoffMinutes 15
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@ResolvePeerBackoffMaxTimes 7
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@CompatibilityFlags -2147483648
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@EventLogFlags 1
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@LargeSampleSkew 3
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@SpecialPollInterval 604800
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpClient@SpecialPollTimeRemaining time.windows.com,7b74775???????????
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@DllName %systemroot%\system32\w32time.dll
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@Enabled 0
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@InputProvider 0
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@AllowNonstandardModeCombinations 1
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@EventLogFlags 0
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@ChainEntryTimeout 16
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@ChainMaxEntries 128
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@ChainMaxHostEntries 4
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@ChainDisable 0
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\NtpServer@ChainLoggingRate 30
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\VMICTimeProvider
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\VMICTimeProvider@Enabled 1
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\VMICTimeProvider@InputProvider 1
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\VMICTimeProvider@DllName %SystemRoot%\System32\vmictimeprovider.dll
Reg HKLM\SYSTEM\CurrentControlSet\services\W32Time\TimeProviders\VMICTimeProvider\Parameters
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x06 0x1F 0x42 0xB2 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x68 0xF6 0x49 0x23 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xBB 0x31 0xE6 0xFF ...
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@FrequencyCorrectRate 4
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@PollAdjustFactor 5
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@LargePhaseOffset 50000000
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@SpikeWatchPeriod 900
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@LocalClockDispersion 10
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@HoldPeriod 5
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@PhaseCorrectRate 1
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@UpdateInterval 360000
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@EventLogFlags 2
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@AnnounceFlags 10
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@TimeJumpAuditOffset 28800
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@MinPollInterval 10
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@MaxPollInterval 15
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@MaxNegPhaseCorrection 54000
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@MaxPosPhaseCorrection 54000
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\Config@MaxAllowedPhaseOffset 1
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@DllName %systemroot%\system32\w32time.dll
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@Enabled 1
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@InputProvider 1
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@AllowNonstandardModeCombinations 1
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@CrossSiteSyncFlags 2
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@ResolvePeerBackoffMinutes 15
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@ResolvePeerBackoffMaxTimes 7
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@CompatibilityFlags -2147483648
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@EventLogFlags 1
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@LargeSampleSkew 3
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@SpecialPollInterval 604800
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpClient@SpecialPollTimeRemaining time.windows.com,7b74775???????????
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@DllName %systemroot%\system32\w32time.dll
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@Enabled 0
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@InputProvider 0
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@AllowNonstandardModeCombinations 1
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@EventLogFlags 0
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@ChainEntryTimeout 16
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@ChainMaxEntries 128
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@ChainMaxHostEntries 4
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@ChainDisable 0
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\NtpServer@ChainLoggingRate 30
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\VMICTimeProvider (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\VMICTimeProvider@Enabled 1
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\VMICTimeProvider@InputProvider 1
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\VMICTimeProvider@DllName %SystemRoot%\System32\vmictimeprovider.dll
Reg HKLM\SYSTEM\ControlSet002\services\W32Time\TimeProviders\VMICTimeProvider\Parameters (not active ControlSet)

[motji]

Jak to vypadá s počítačem?

[cappie]

Slušne, predtým som len registroval problém s firefoxom, ale ten teraz beží bezproblémovo

[motji]

Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:

ComboFix /Uninstall

-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.


***********


Stáhněte T-Cleaner
http://tharifas.sweb.cz/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir



***********


Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.


***********



Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech



***********

Vložte nový log ze RSIT a řekněte co počítač, jak se chová, už je vše v pořádku?

[cappie]

Vyčistené, ale počas robenia RSIT logu vyhodí tento error a pc ide nejako pomaly (proces explorer.exe sekne počas premiestňovania resp. kopírovania súborov )

[motji]

A dojede pak rsit do konce?
Pořád pc zlobí?

Stahněte z mého podpisu AVPTOOl http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

-Podle návodu nainstalujte a proveďte sken
-co najde nechejte léčit, mazat
-sken může trvat několik hodin
-vložte zde log z výsledky

[cappie]

Keď odkliknem Ok tak skončí ..skúsim ten AVPTOOl

[motji]

Zkuste