Pomalý notebook a proto prosím o preventívku

Zpráva

_-M3-_ · #1 Příspěvek od **_-M3-_** » 12 srp 2011 19:06

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:05:04, on 12.8.2011
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\okay\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O2 - BHO: QipLI - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TiMiniService - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10505 bytes

#2 Příspěvek od **vyosek** » 13 srp 2011 10:19

Zdravim a pekny den preji

Dejte prosim log z RSIT - viz muj podpis - je podrobnejsi nez HJT

Jsou s PC nejake problemy

_-M3-_ · #3 Příspěvek od **_-M3-_** » 13 srp 2011 14:12

Logfile of random's system information tool 1.09 (written by random/random)
Run by okay at 2011-08-13 15:10:07
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 39 GB (52%) free of 76 GB
Total RAM: 1790 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:10:30, on 13.8.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\okay.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: QipLI - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10453 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1448
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\System32\svchost.exe -k secsvcs
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
atieclxx
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"taskhost.exe"
taskeng.exe {BF1A0EF3-FEB8-4FE0-9679-83ECDE218606}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
ATKOSD.exe
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
taskeng.exe {17C19133-63FB-49F2-9E04-1170A4F423F6}
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe"
WDC.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip /h
"C:\Windows\AsScrPro.exe"
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=extension --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender1/ProxyConnectionImpact/proxy_connections_32/SSLFalseStart/FalseStart_enabled/SpdyImpact/npn_with_spdy/ --disable-client-side-phishing-detection --channel=3736.00615160.97399564 --ignored=" --type=renderer " /prefetch:3
C:\Windows\system32\rundll32.exe "C:\PROGRA~2\Google\Chrome\APPLIC~1\130782~1.112\gcswf32.dll",BrokerMain browser=chrome
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Program Files (x86)\Google\Chrome\Application\13.0.782.112\gcswf32.dll" --lang=cs --channel=3736.06BB81C0.385184828 --flash-broker=4048 /prefetch:4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Prefetch/ContentPrefetchPrerender1/ProxyConnectionImpact/proxy_connections_32/SSLFalseStart/FalseStart_enabled/SpdyImpact/npn_with_spdy/ --disable-client-side-phishing-detection --channel=3736.05340C60.288774444 /prefetch:3
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
"C:\Users\okay\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\okay\AppData\Roaming\Mozilla\Firefox\Profiles\os2ap7mg.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://search.qip.ru/search?from=FF&query="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\ZEON/PDF,version=2.0]
"Description"=
"Path"=C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\okay\AppData\Roaming\Mozilla\Firefox\Profiles\os2ap7mg.default\extensions\
{32a1fd71-835e-4b11-8e54-886fda0b4c89}

C:\Users\okay\AppData\Roaming\Mozilla\Firefox\Profiles\os2ap7mg.default\searchplugins\
qip-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-07-04 978496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll [2011-03-08 750064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-22 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6B5863A0-C43F-4C0A-982B-CC0E9125783F}]
QipLI Class - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2011-03-08 433648]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-22 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2010-12-13 141184]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-09-23 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-07-04 978496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-07-04 820864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ASUS WebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe []
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2010-06-10 649608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2011-03-08 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-03 103720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QIP Internet Guardian]
C:\Users\okay\AppData\Roaming\QipGuard\QipGuard.exe /p []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-13 10144288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
c:\programdata\SetWallpaper.cmd []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-09-22 98304]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-09-24 1601536]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-07-04 3493720]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2011-08-13 15:10:08 ----D---- C:\Program Files\trend micro
2011-08-13 15:10:07 ----D---- C:\rsit
2011-08-12 22:52:25 ----HD---- C:\ASUS.DAT
2011-08-12 22:51:46 ----A---- C:\Windows\system32\drivers\lullaby.sys
2011-08-12 22:50:07 ----A---- C:\Windows\SYSWOW64\LogonStart.dll
2011-08-12 20:27:44 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2011-08-12 20:27:43 ----A---- C:\Windows\system32\drivers\aswSP.sys
2011-08-12 20:27:37 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2011-08-12 20:27:36 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2011-08-12 20:27:35 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-08-12 20:27:28 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2011-08-12 20:27:28 ----A---- C:\Windows\system32\aswBoot.exe
2011-08-12 20:25:24 ----A---- C:\Windows\avastSS.scr
2011-08-12 20:25:23 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2011-08-12 20:25:18 ----D---- C:\ProgramData\AVAST Software
2011-08-12 20:25:18 ----D---- C:\Program Files\AVAST Software
2011-08-12 20:18:17 ----D---- C:\Users\okay\AppData\Roaming\Google
2011-08-12 17:36:27 ----D---- C:\Windows\system32\SPReview
2011-08-12 17:07:38 ----D---- C:\Windows\system32\EventProviders
2011-08-12 16:59:56 ----A---- C:\Windows\system32\netfxperf.dll
2011-08-12 16:59:56 ----A---- C:\Windows\system32\dfshim.dll
2011-08-12 16:59:46 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2011-08-12 16:59:41 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-08-12 16:59:41 ----A---- C:\Windows\system32\mstscax.dll
2011-08-12 16:59:41 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-08-12 16:59:40 ----A---- C:\Windows\system32\d3d10warp.dll
2011-08-12 16:59:37 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-08-12 16:59:32 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2011-08-12 16:59:32 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2011-08-12 16:59:32 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2011-08-12 16:59:31 ----A---- C:\Windows\system32\sysmain.dll
2011-08-12 16:59:30 ----A---- C:\Windows\system32\shell32.dll
2011-08-12 16:59:29 ----A---- C:\Windows\system32\XpsPrint.dll
2011-08-12 16:59:28 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-08-12 16:59:27 ----A---- C:\Windows\system32\tquery.dll
2011-08-12 16:59:26 ----A---- C:\Windows\system32\wmp.dll
2011-08-12 16:59:25 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2011-08-12 16:59:25 ----A---- C:\Windows\system32\ntdll.dll
2011-08-12 16:59:25 ----A---- C:\Windows\system32\mssrch.dll
2011-08-12 16:59:25 ----A---- C:\Windows\system32\mscoree.dll
2011-08-12 16:59:25 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-08-12 16:59:25 ----A---- C:\Windows\system32\d2d1.dll
2011-08-12 16:59:24 ----A---- C:\Windows\system32\secproc_isv.dll
2011-08-12 16:59:23 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2011-08-12 16:59:23 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-08-12 16:59:23 ----A---- C:\Windows\system32\secproc.dll
2011-08-12 16:59:23 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-08-12 16:59:23 ----A---- C:\Windows\system32\RMActivate.exe
2011-08-12 16:59:23 ----A---- C:\Windows\system32\mf.dll
2011-08-12 16:59:22 ----A---- C:\Windows\SYSWOW64\shell32.dll
2011-08-12 16:59:22 ----A---- C:\Windows\system32\xpsservices.dll
2011-08-12 16:59:21 ----A---- C:\Windows\SYSWOW64\secproc.dll
2011-08-12 16:59:21 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2011-08-12 16:59:20 ----A---- C:\Windows\system32\rpcrt4.dll
2011-08-12 16:59:19 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2011-08-12 16:59:19 ----A---- C:\Windows\system32\schedsvc.dll
2011-08-12 16:59:19 ----A---- C:\Windows\system32\ole32.dll
2011-08-12 16:59:18 ----A---- C:\Windows\system32\spwizui.dll
2011-08-12 16:59:17 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2011-08-12 16:59:17 ----A---- C:\Windows\system32\esent.dll
2011-08-12 16:59:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-08-12 16:59:16 ----A---- C:\Windows\system32\taskschd.dll
2011-08-12 16:59:16 ----A---- C:\Windows\system32\RacEngn.dll
2011-08-12 16:59:16 ----A---- C:\Windows\system32\diagperf.dll
2011-08-12 16:59:15 ----A---- C:\Windows\SYSWOW64\mf.dll
2011-08-12 16:59:15 ----A---- C:\Windows\system32\wevtsvc.dll
2011-08-12 16:59:15 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-08-12 16:59:13 ----A---- C:\Windows\system32\vssapi.dll
2011-08-12 16:59:12 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2011-08-12 16:59:12 ----A---- C:\Windows\system32\msxml3.dll
2011-08-12 16:59:12 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-08-12 16:59:11 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2011-08-12 16:59:11 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-08-12 16:59:10 ----A---- C:\Windows\system32\UIRibbon.dll
2011-08-12 16:59:10 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-08-12 16:59:08 ----A---- C:\Windows\explorer.exe
2011-08-12 16:59:06 ----A---- C:\Windows\SYSWOW64\wmp.dll
2011-08-12 16:59:04 ----A---- C:\Windows\SYSWOW64\esent.dll
2011-08-12 16:59:03 ----A---- C:\Windows\system32\WsmSvc.dll
2011-08-12 16:59:03 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-08-12 16:59:01 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2011-08-12 16:59:01 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2011-08-12 16:59:01 ----A---- C:\Windows\system32\rdpdd.dll
2011-08-12 16:59:01 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-08-12 16:59:01 ----A---- C:\Windows\system32\PresentationHost.exe
2011-08-12 16:59:01 ----A---- C:\Windows\system32\MPSSVC.dll
2011-08-12 16:59:01 ----A---- C:\Windows\system32\DWrite.dll
2011-08-12 16:59:00 ----A---- C:\Windows\system32\WinSAT.exe
2011-08-12 16:59:00 ----A---- C:\Windows\system32\spreview.exe
2011-08-12 16:59:00 ----A---- C:\Windows\system32\spinstall.exe
2011-08-12 16:59:00 ----A---- C:\Windows\system32\CertEnroll.dll
2011-08-12 16:58:59 ----A---- C:\Windows\SYSWOW64\tquery.dll
2011-08-12 16:58:59 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-08-12 16:58:58 ----A---- C:\Windows\system32\msxml6.dll
2011-08-12 16:58:58 ----A---- C:\Windows\system32\d3d9.dll
2011-08-12 16:58:57 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2011-08-12 16:58:57 ----A---- C:\Windows\system32\SearchFolder.dll
2011-08-12 16:58:57 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-08-12 16:58:56 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2011-08-12 16:58:55 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2011-08-12 16:58:55 ----A---- C:\Windows\system32\VSSVC.exe
2011-08-12 16:58:55 ----A---- C:\Windows\system32\gpsvc.dll
2011-08-12 16:58:55 ----A---- C:\Windows\system32\FntCache.dll
2011-08-12 16:58:54 ----A---- C:\Windows\system32\dwmcore.dll
2011-08-12 16:58:54 ----A---- C:\Windows\system32\dbgeng.dll
2011-08-12 16:58:53 ----A---- C:\Windows\system32\mstime.dll
2011-08-12 16:58:53 ----A---- C:\Windows\system32\drivers\http.sys
2011-08-12 16:58:52 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-08-12 16:58:51 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2011-08-12 16:58:51 ----A---- C:\Windows\system32\crypt32.dll
2011-08-12 16:58:50 ----A---- C:\Windows\SYSWOW64\ole32.dll
2011-08-12 16:58:50 ----A---- C:\Windows\system32\TSWorkspace.dll
2011-08-12 16:58:50 ----A---- C:\Windows\system32\schannel.dll
2011-08-12 16:58:50 ----A---- C:\Windows\system32\qmgr.dll
2011-08-12 16:58:50 ----A---- C:\Windows\system32\audiosrv.dll
2011-08-12 16:58:50 ----A---- C:\Windows\system32\actxprxy.dll
2011-08-12 16:58:49 ----A---- C:\Windows\system32\termsrv.dll
2011-08-12 16:58:49 ----A---- C:\Windows\system32\lsasrv.dll
2011-08-12 16:58:48 ----A---- C:\Windows\system32\mstsc.exe
2011-08-12 16:58:47 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2011-08-12 16:58:47 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-08-12 16:58:47 ----A---- C:\Windows\system32\netlogon.dll
2011-08-12 16:58:47 ----A---- C:\Windows\system32\imapi2fs.dll
2011-08-12 16:58:46 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2011-08-12 16:58:46 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-08-12 16:58:46 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2011-08-12 16:58:46 ----A---- C:\Windows\system32\winhttp.dll
2011-08-12 16:58:46 ----A---- C:\Windows\system32\d3d11.dll
2011-08-12 16:58:45 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2011-08-12 16:58:45 ----A---- C:\Windows\SYSWOW64\explorer.exe
2011-08-12 16:58:45 ----A---- C:\Windows\system32\setupapi.dll
2011-08-12 16:58:45 ----A---- C:\Windows\system32\rpcss.dll
2011-08-12 16:58:45 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-08-12 16:58:45 ----A---- C:\Windows\system32\propsys.dll
2011-08-12 16:58:45 ----A---- C:\Windows\system32\msv1_0.dll
2011-08-12 16:58:44 ----A---- C:\Windows\system32\wbengine.exe
2011-08-12 16:58:44 ----A---- C:\Windows\system32\authui.dll
2011-08-12 16:58:43 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2011-08-12 16:58:43 ----A---- C:\Windows\system32\werconcpl.dll
2011-08-12 16:58:43 ----A---- C:\Windows\system32\taskeng.exe
2011-08-12 16:58:43 ----A---- C:\Windows\system32\odbc32.dll
2011-08-12 16:58:42 ----A---- C:\Windows\system32\user32.dll
2011-08-12 16:58:42 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-08-12 16:58:41 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2011-08-12 16:58:41 ----A---- C:\Windows\system32\WSDApi.dll
2011-08-12 16:58:41 ----A---- C:\Windows\system32\drivers\netio.sys
2011-08-12 16:58:41 ----A---- C:\Windows\system32\dhcpcore.dll
2011-08-12 16:58:41 ----A---- C:\Windows\system32\certmgr.dll
2011-08-12 16:58:40 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-08-12 16:58:40 ----A---- C:\Windows\system32\scavengeui.dll
2011-08-12 16:58:40 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-08-12 16:58:40 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-08-12 16:58:39 ----A---- C:\Windows\SYSWOW64\wer.dll
2011-08-12 16:58:39 ----A---- C:\Windows\SYSWOW64\certcli.dll
2011-08-12 16:58:39 ----A---- C:\Windows\system32\webio.dll
2011-08-12 16:58:38 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-08-12 16:58:38 ----A---- C:\Windows\system32\localspl.dll
2011-08-12 16:58:37 ----A---- C:\Windows\system32\tsmf.dll
2011-08-12 16:58:37 ----A---- C:\Windows\system32\ncsi.dll
2011-08-12 16:58:36 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-08-12 16:58:36 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-08-12 16:58:35 ----A---- C:\Windows\system32\msdrm.dll
2011-08-12 16:58:34 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2011-08-12 16:58:33 ----A---- C:\Windows\system32\shlwapi.dll
2011-08-12 16:58:31 ----A---- C:\Windows\system32\msdtctm.dll
2011-08-12 16:58:31 ----A---- C:\Windows\system32\framedynos.dll
2011-08-12 16:58:30 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2011-08-12 16:58:30 ----A---- C:\Windows\system32\netshell.dll
2011-08-12 16:58:29 ----A---- C:\Windows\system32\drivers\cng.sys
2011-08-12 16:58:28 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2011-08-12 16:58:28 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-08-12 16:58:27 ----A---- C:\Windows\SYSWOW64\mstime.dll
2011-08-12 16:58:27 ----A---- C:\Windows\system32\netcfgx.dll
2011-08-12 16:58:26 ----A---- C:\Windows\system32\winlogon.exe
2011-08-12 16:58:25 ----A---- C:\Windows\system32\ws2_32.dll
2011-08-12 16:58:25 ----A---- C:\Windows\system32\usp10.dll
2011-08-12 16:58:25 ----A---- C:\Windows\system32\quartz.dll
2011-08-12 16:58:25 ----A---- C:\Windows\system32\nlasvc.dll
2011-08-12 16:58:24 ----A---- C:\Windows\SYSWOW64\quartz.dll
2011-08-12 16:58:24 ----A---- C:\Windows\system32\lsm.exe
2011-08-12 16:58:24 ----A---- C:\Windows\system32\dxgi.dll
2011-08-12 16:58:24 ----A---- C:\Windows\system32\comdlg32.dll
2011-08-12 16:58:23 ----A---- C:\Windows\system32\wmpps.dll
2011-08-12 16:58:23 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-08-12 16:58:22 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2011-08-12 16:58:22 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-08-12 16:58:22 ----A---- C:\Windows\system32\apphelp.dll
2011-08-12 16:58:21 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-08-12 16:58:20 ----A---- C:\Windows\system32\mswsock.dll
2011-08-12 16:58:19 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2011-08-12 16:58:19 ----A---- C:\Windows\system32\Query.dll
2011-08-12 16:58:19 ----A---- C:\Windows\system32\drvstore.dll
2011-08-12 16:58:18 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2011-08-12 16:58:18 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2011-08-12 16:58:18 ----A---- C:\Windows\system32\wpdshext.dll
2011-08-12 16:58:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-08-12 16:58:17 ----A---- C:\Windows\system32\azroles.dll
2011-08-12 16:58:15 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-08-12 16:58:15 ----A---- C:\Windows\system32\QAGENT.DLL
2011-08-12 16:58:15 ----A---- C:\Windows\system32\BFE.DLL
2011-08-12 16:58:14 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2011-08-12 16:58:14 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-08-12 16:58:13 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2011-08-12 16:58:13 ----A---- C:\Windows\system32\Vault.dll
2011-08-12 16:58:12 ----A---- C:\Windows\system32\samsrv.dll
2011-08-12 16:58:12 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2011-08-12 16:58:12 ----A---- C:\Windows\system32\cmd.exe
2011-08-12 16:58:11 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2011-08-12 16:58:10 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2011-08-12 16:58:10 ----A---- C:\Windows\system32\lpksetup.exe
2011-08-12 16:58:09 ----A---- C:\Windows\system32\win32spl.dll
2011-08-12 16:58:08 ----A---- C:\Windows\system32\mssvp.dll
2011-08-12 16:58:07 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2011-08-12 16:58:05 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2011-08-12 16:58:04 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2011-08-12 16:58:03 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2011-08-12 16:58:01 ----A---- C:\Windows\system32\WebClnt.dll
2011-08-12 16:58:00 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2011-08-12 16:57:57 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-08-12 16:57:56 ----A---- C:\Windows\SYSWOW64\webio.dll
2011-08-12 16:57:55 ----A---- C:\Windows\SYSWOW64\Query.dll
2011-08-12 16:57:55 ----A---- C:\Windows\system32\sxs.dll
2011-08-12 16:57:55 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2011-08-12 16:57:53 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2011-08-12 16:57:53 ----A---- C:\Windows\system32\Wldap32.dll
2011-08-12 16:57:53 ----A---- C:\Windows\system32\taskcomp.dll
2011-08-12 16:57:53 ----A---- C:\Windows\system32\mfds.dll
2011-08-12 16:57:53 ----A---- C:\Windows\system32\mcbuilder.exe
2011-08-12 16:57:52 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-08-12 16:57:52 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2011-08-12 16:57:52 ----A---- C:\Windows\system32\drivers\storport.sys
2011-08-12 16:57:51 ----A---- C:\Windows\system32\pnidui.dll
2011-08-12 16:57:51 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-08-12 16:57:50 ----A---- C:\Windows\SYSWOW64\schannel.dll
2011-08-12 16:57:50 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2011-08-12 16:57:50 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2011-08-12 16:57:50 ----A---- C:\Windows\system32\hgprint.dll
2011-08-12 16:57:49 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2011-08-12 16:57:49 ----A---- C:\Windows\system32\wuaueng.dll
2011-08-12 16:57:49 ----A---- C:\Windows\system32\webservices.dll
2011-08-12 16:57:48 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2011-08-12 16:57:48 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2011-08-12 16:57:48 ----A---- C:\Windows\system32\spoolsv.exe
2011-08-12 16:57:48 ----A---- C:\Windows\system32\SessEnv.dll
2011-08-12 16:57:47 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2011-08-12 16:57:47 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2011-08-12 16:57:47 ----A---- C:\Windows\SYSWOW64\authui.dll
2011-08-12 16:57:47 ----A---- C:\Windows\system32\winsta.dll
2011-08-12 16:57:47 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-08-12 16:57:46 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2011-08-12 16:57:46 ----A---- C:\Windows\system32\iepeers.dll
2011-08-12 16:57:46 ----A---- C:\Windows\system32\fveapi.dll
2011-08-12 16:57:46 ----A---- C:\Windows\system32\dot3api.dll
2011-08-12 16:57:45 ----A---- C:\Windows\SYSWOW64\usp10.dll
2011-08-12 16:57:45 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2011-08-12 16:57:45 ----A---- C:\Windows\system32\gdi32.dll
2011-08-12 16:57:45 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-08-12 16:57:45 ----A---- C:\Windows\system32\drivers\msrpc.sys
2011-08-12 16:57:44 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2011-08-12 16:57:44 ----A---- C:\Windows\system32\prncache.dll
2011-08-12 16:57:43 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2011-08-12 16:57:43 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-08-12 16:57:43 ----A---- C:\Windows\system32\wlanpref.dll
2011-08-12 16:57:43 ----A---- C:\Windows\system32\schtasks.exe
2011-08-12 16:57:43 ----A---- C:\Windows\system32\mcmde.dll
2011-08-12 16:57:42 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2011-08-12 16:57:42 ----A---- C:\Windows\SYSWOW64\userenv.dll
2011-08-12 16:57:42 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2011-08-12 16:57:42 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2011-08-12 16:57:42 ----A---- C:\Windows\system32\wuapi.dll
2011-08-12 16:57:42 ----A---- C:\Windows\system32\wintrust.dll
2011-08-12 16:57:42 ----A---- C:\Windows\system32\vpnike.dll
2011-08-12 16:57:42 ----A---- C:\Windows\system32\userenv.dll
2011-08-12 16:57:42 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-08-12 16:57:41 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-08-12 16:57:41 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2011-08-12 16:57:41 ----A---- C:\Windows\system32\photowiz.dll
2011-08-12 16:57:41 ----A---- C:\Windows\system32\evr.dll
2011-08-12 16:57:41 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-08-12 16:57:40 ----A---- C:\Windows\SYSWOW64\cmd.exe
2011-08-12 16:57:40 ----A---- C:\Windows\system32\wmpmde.dll
2011-08-12 16:57:40 ----A---- C:\Windows\system32\sppobjs.dll
2011-08-12 16:57:40 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-08-12 16:57:40 ----A---- C:\Windows\system32\FXSSVC.exe
2011-08-12 16:57:40 ----A---- C:\Windows\system32\framedyn.dll
2011-08-12 16:57:40 ----A---- C:\Windows\system32\AudioSes.dll
2011-08-12 16:57:40 ----A---- C:\Windows\system32\aepdu.dll
2011-08-12 16:57:39 ----A---- C:\Windows\system32\WMPEncEn.dll
2011-08-12 16:57:39 ----A---- C:\Windows\system32\wmpeffects.dll
2011-08-12 16:57:39 ----A---- C:\Windows\system32\SyncCenter.dll
2011-08-12 16:57:39 ----A---- C:\Windows\system32\srvsvc.dll
2011-08-12 16:57:39 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-08-12 16:57:38 ----A---- C:\Windows\system32\shsvcs.dll
2011-08-12 16:57:38 ----A---- C:\Windows\system32\aeinv.dll
2011-08-12 16:57:37 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2011-08-12 16:57:37 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2011-08-12 16:57:37 ----A---- C:\Windows\SYSWOW64\propsys.dll
2011-08-12 16:57:37 ----A---- C:\Windows\SYSWOW64\mfds.dll
2011-08-12 16:57:37 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2011-08-12 16:57:37 ----A---- C:\Windows\system32\WinSATAPI.dll
2011-08-12 16:57:37 ----A---- C:\Windows\system32\fde.dll
2011-08-12 16:57:36 ----A---- C:\Windows\system32\stobject.dll
2011-08-12 16:57:36 ----A---- C:\Windows\system32\netdiagfx.dll
2011-08-12 16:57:36 ----A---- C:\Windows\system32\localsec.dll
2011-08-12 16:57:36 ----A---- C:\Windows\system32\imapi2.dll
2011-08-12 16:57:36 ----A---- C:\Windows\system32\credui.dll
2011-08-12 16:57:36 ----A---- C:\Windows\system32\cdd.dll
2011-08-12 16:57:36 ----A---- C:\Windows\system32\bcryptprimitives.dll
2011-08-12 16:57:34 ----A---- C:\Windows\SYSWOW64\user32.dll
2011-08-12 16:57:34 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-08-12 16:57:34 ----A---- C:\Windows\system32\inetpp.dll
2011-08-12 16:57:34 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-08-12 16:57:34 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2011-08-12 16:57:33 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2011-08-12 16:57:33 ----A---- C:\Windows\SYSWOW64\azroles.dll
2011-08-12 16:57:33 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-08-12 16:57:33 ----A---- C:\Windows\system32\spp.dll
2011-08-12 16:57:33 ----A---- C:\Windows\system32\QSHVHOST.DLL
2011-08-12 16:57:33 ----A---- C:\Windows\system32\netid.dll
2011-08-12 16:57:33 ----A---- C:\Windows\system32\davclnt.dll
2011-08-12 16:57:33 ----A---- C:\Windows\system32\biocpl.dll
2011-08-12 16:57:32 ----A---- C:\Windows\system32\profsvc.dll
2011-08-12 16:57:32 ----A---- C:\Windows\system32\msinfo32.exe
2011-08-12 16:57:32 ----A---- C:\Windows\system32\gameux.dll
2011-08-12 16:57:31 ----A---- C:\Windows\system32\scansetting.dll
2011-08-12 16:57:31 ----A---- C:\Windows\system32\printui.dll
2011-08-12 16:57:31 ----A---- C:\Windows\system32\mspbda.dll
2011-08-12 16:57:30 ----A---- C:\Windows\SYSWOW64\themeui.dll
2011-08-12 16:57:30 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2011-08-12 16:57:30 ----A---- C:\Windows\SYSWOW64\credui.dll
2011-08-12 16:57:30 ----A---- C:\Windows\system32\pla.dll
2011-08-12 16:57:30 ----A---- C:\Windows\splwow64.exe
2011-08-12 16:57:29 ----A---- C:\Windows\SYSWOW64\spp.dll
2011-08-12 16:57:29 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2011-08-12 16:57:29 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2011-08-12 16:57:29 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2011-08-12 16:57:27 ----A---- C:\Windows\system32\wusa.exe
2011-08-12 16:57:27 ----A---- C:\Windows\system32\wiaservc.dll
2011-08-12 16:57:27 ----A---- C:\Windows\system32\vds.exe
2011-08-12 16:57:27 ----A---- C:\Windows\system32\msdri.dll
2011-08-12 16:57:27 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-08-12 16:57:27 ----A---- C:\Windows\system32\drivers\pci.sys
2011-08-12 16:57:27 ----A---- C:\Windows\system32\aitagent.exe
2011-08-12 16:57:26 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2011-08-12 16:57:26 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-08-12 16:57:26 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2011-08-12 16:57:26 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2011-08-12 16:57:26 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2011-08-12 16:57:26 ----A---- C:\Windows\system32\rpchttp.dll
2011-08-12 16:57:26 ----A---- C:\Windows\system32\mscms.dll
2011-08-12 16:57:26 ----A---- C:\Windows\system32\cryptsvc.dll
2011-08-12 16:57:25 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2011-08-12 16:57:25 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2011-08-12 16:57:25 ----A---- C:\Windows\system32\PkgMgr.exe
2011-08-12 16:57:25 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2011-08-12 16:57:24 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2011-08-12 16:57:24 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-08-12 16:57:24 ----A---- C:\Windows\system32\wisptis.exe
2011-08-12 16:57:24 ----A---- C:\Windows\system32\ocsetup.exe
2011-08-12 16:57:24 ----A---- C:\Windows\system32\msi.dll
2011-08-12 16:57:24 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2011-08-12 16:57:23 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2011-08-12 16:57:23 ----A---- C:\Windows\SYSWOW64\evr.dll
2011-08-12 16:57:23 ----A---- C:\Windows\system32\sppwinob.dll
2011-08-12 16:57:23 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-08-12 16:57:22 ----A---- C:\Windows\SYSWOW64\calc.exe
2011-08-12 16:57:22 ----A---- C:\Windows\system32\ocsetapi.dll
2011-08-12 16:57:22 ----A---- C:\Windows\system32\DXP.dll
2011-08-12 16:57:21 ----A---- C:\Windows\system32\rdpcore.dll
2011-08-12 16:57:21 ----A---- C:\Windows\system32\drivers\volmgr.sys
2011-08-12 16:57:09 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2011-08-12 16:57:09 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-08-12 16:57:09 ----A---- C:\Windows\system32\eapp3hst.dll
2011-08-12 16:57:09 ----A---- C:\Windows\system32\drivers\msdsm.sys
2011-08-12 16:57:09 ----A---- C:\Windows\system32\ci.dll
2011-08-12 16:57:08 ----A---- C:\Windows\system32\wcncsvc.dll
2011-08-12 16:57:08 ----A---- C:\Windows\system32\upnp.dll
2011-08-12 16:57:08 ----A---- C:\Windows\system32\ntshrui.dll
2011-08-12 16:57:08 ----A---- C:\Windows\system32\mprapi.dll
2011-08-12 16:57:07 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2011-08-12 16:57:07 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2011-08-12 16:57:07 ----A---- C:\Windows\system32\t2embed.dll
2011-08-12 16:57:07 ----A---- C:\Windows\system32\Robocopy.exe
2011-08-12 16:57:07 ----A---- C:\Windows\system32\eapphost.dll
2011-08-12 16:57:07 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2011-08-12 16:57:06 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2011-08-12 16:57:06 ----A---- C:\Windows\SYSWOW64\sxs.dll
2011-08-12 16:57:06 ----A---- C:\Windows\SYSWOW64\stobject.dll
2011-08-12 16:57:06 ----A---- C:\Windows\SYSWOW64\netshell.dll
2011-08-12 16:57:06 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-08-12 16:57:06 ----A---- C:\Windows\system32\thumbcache.dll
2011-08-12 16:57:06 ----A---- C:\Windows\system32\hal.dll
2011-08-12 16:57:06 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-08-12 16:57:05 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2011-08-12 16:57:05 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2011-08-12 16:57:05 ----A---- C:\Windows\system32\scecli.dll
2011-08-12 16:57:05 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-08-12 16:57:05 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2011-08-12 16:57:05 ----A---- C:\Windows\system32\msasn1.dll
2011-08-12 16:57:05 ----A---- C:\Windows\system32\DxpTaskSync.dll
2011-08-12 16:57:05 ----A---- C:\Windows\system32\dwmredir.dll
2011-08-12 16:57:05 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-08-12 16:57:05 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2011-08-12 16:57:04 ----A---- C:\Windows\SYSWOW64\prncache.dll
2011-08-12 16:57:04 ----A---- C:\Windows\system32\themeui.dll
2011-08-12 16:57:04 ----A---- C:\Windows\system32\sspicli.dll
2011-08-12 16:57:04 ----A---- C:\Windows\system32\puiobj.dll
2011-08-12 16:57:04 ----A---- C:\Windows\system32\onex.dll
2011-08-12 16:57:04 ----A---- C:\Windows\system32\nlaapi.dll
2011-08-12 16:57:04 ----A---- C:\Windows\system32\iasrad.dll
2011-08-12 16:57:04 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2011-08-12 16:57:04 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2011-08-12 16:57:04 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-08-12 16:57:03 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2011-08-12 16:57:03 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2011-08-12 16:57:03 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2011-08-12 16:57:03 ----A---- C:\Windows\SYSWOW64\printui.dll
2011-08-12 16:57:03 ----A---- C:\Windows\SYSWOW64\net1.exe
2011-08-12 16:57:03 ----A---- C:\Windows\SYSWOW64\msi.dll
2011-08-12 16:57:03 ----A---- C:\Windows\system32\iedkcs32.dll
2011-08-12 16:57:03 ----A---- C:\Windows\system32\aaclient.dll
2011-08-12 16:57:02 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2011-08-12 16:57:02 ----A---- C:\Windows\system32\wdc.dll
2011-08-12 16:57:01 ----A---- C:\Windows\system32\wlangpui.dll
2011-08-12 16:57:01 ----A---- C:\Windows\system32\scesrv.dll
2011-08-12 16:57:01 ----A---- C:\Windows\system32\rasmans.dll
2011-08-12 16:57:01 ----A---- C:\Windows\system32\msftedit.dll
2011-08-12 16:57:01 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-08-12 16:57:00 ----A---- C:\Windows\system32\wiadefui.dll
2011-08-12 16:57:00 ----A---- C:\Windows\system32\VAN.dll
2011-08-12 16:57:00 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-08-12 16:57:00 ----A---- C:\Windows\system32\sdengin2.dll
2011-08-12 16:57:00 ----A---- C:\Windows\system32\netcenter.dll
2011-08-12 16:57:00 ----A---- C:\Windows\system32\dskquoui.dll
2011-08-12 16:56:59 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2011-08-12 16:56:59 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2011-08-12 16:56:59 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2011-08-12 16:56:59 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2011-08-12 16:56:59 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-08-12 16:56:59 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2011-08-12 16:56:59 ----A---- C:\Windows\system32\wucltux.dll
2011-08-12 16:56:59 ----A---- C:\Windows\system32\wscapi.dll
2011-08-12 16:56:59 ----A---- C:\Windows\system32\SndVol.exe
2011-08-12 16:56:59 ----A---- C:\Windows\system32\samcli.dll
2011-08-12 16:56:59 ----A---- C:\Windows\system32\regapi.dll
2011-08-12 16:56:59 ----A---- C:\Windows\system32\QUTIL.DLL
2011-08-12 16:56:59 ----A---- C:\Windows\system32\iasacct.dll
2011-08-12 16:56:59 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-08-12 16:56:59 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-08-12 16:56:59 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-08-12 16:56:59 ----A---- C:\Windows\system32\consent.exe
2011-08-12 16:56:58 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2011-08-12 16:56:58 ----A---- C:\Windows\SYSWOW64\webservices.dll
2011-08-12 16:56:58 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2011-08-12 16:56:58 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2011-08-12 16:56:58 ----A---- C:\Windows\system32\TabSvc.dll
2011-08-12 16:56:58 ----A---- C:\Windows\system32\srchadmin.dll
2011-08-12 16:56:57 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2011-08-12 16:56:57 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2011-08-12 16:56:57 ----A---- C:\Windows\SYSWOW64\fde.dll
2011-08-12 16:56:57 ----A---- C:\Windows\system32\WUDFSvc.dll
2011-08-12 16:56:57 ----A---- C:\Windows\system32\wksprt.exe
2011-08-12 16:56:57 ----A---- C:\Windows\system32\taskhost.exe
2011-08-12 16:56:57 ----A---- C:\Windows\system32\setupcl.exe
2011-08-12 16:56:57 ----A---- C:\Windows\system32\rastls.dll
2011-08-12 16:56:57 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-08-12 16:56:57 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-08-12 16:56:56 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-08-12 16:56:55 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2011-08-12 16:56:55 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2011-08-12 16:56:55 ----A---- C:\Windows\SYSWOW64\pla.dll
2011-08-12 16:56:55 ----A---- C:\Windows\system32\tapisrv.dll
2011-08-12 16:56:55 ----A---- C:\Windows\system32\netiohlp.dll
2011-08-12 16:56:55 ----A---- C:\Windows\system32\msconfig.exe
2011-08-12 16:56:55 ----A---- C:\Windows\system32\mimefilt.dll
2011-08-12 16:56:55 ----A---- C:\Windows\system32\ListSvc.dll
2011-08-12 16:56:55 ----A---- C:\Windows\system32\hgcpl.dll
2011-08-12 16:56:55 ----A---- C:\Windows\system32\drivers\raspptp.sys
2011-08-12 16:56:55 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-08-12 16:56:54 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2011-08-12 16:56:54 ----A---- C:\Windows\system32\lsmproxy.dll
2011-08-12 16:56:54 ----A---- C:\Windows\system32\fdeploy.dll
2011-08-12 16:56:54 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-08-12 16:56:54 ----A---- C:\Windows\system32\drivers\ks.sys
2011-08-12 16:56:54 ----A---- C:\Windows\system32\clusapi.dll
2011-08-12 16:56:54 ----A---- C:\Windows\system32\basecsp.dll
2011-08-12 16:56:53 ----A---- C:\Windows\SYSWOW64\winsta.dll
2011-08-12 16:56:53 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2011-08-12 16:56:53 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2011-08-12 16:56:53 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-08-12 16:56:53 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2011-08-12 16:56:53 ----A---- C:\Windows\system32\mtxclu.dll
2011-08-12 16:56:53 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-08-12 16:56:53 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-08-12 16:56:53 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-08-12 16:56:52 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2011-08-12 16:56:52 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2011-08-12 16:56:52 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2011-08-12 16:56:52 ----A---- C:\Windows\system32\riched20.dll
2011-08-12 16:56:51 ----A---- C:\Windows\SYSWOW64\gameux.dll
2011-08-12 16:56:51 ----A---- C:\Windows\system32\RpcRtRemote.dll
2011-08-12 16:56:51 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2011-08-12 16:56:51 ----A---- C:\Windows\system32\dnscmmc.dll
2011-08-12 16:56:50 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2011-08-12 16:56:50 ----A---- C:\Windows\SYSWOW64\onex.dll
2011-08-12 16:56:50 ----A---- C:\Windows\system32\sharemediacpl.dll
2011-08-12 16:56:50 ----A---- C:\Windows\system32\powercpl.dll
2011-08-12 16:56:50 ----A---- C:\Windows\system32\logoncli.dll
2011-08-12 16:56:50 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-08-12 16:56:49 ----A---- C:\Windows\SYSWOW64\winmm.dll
2011-08-12 16:56:49 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2011-08-12 16:56:49 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2011-08-12 16:56:49 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2011-08-12 16:56:49 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2011-08-12 16:56:49 ----A---- C:\Windows\SYSWOW64\autochk.exe
2011-08-12 16:56:49 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2011-08-12 16:56:49 ----A---- C:\Windows\system32\themecpl.dll
2011-08-12 16:56:49 ----A---- C:\Windows\system32\SensorsCpl.dll
2011-08-12 16:56:49 ----A---- C:\Windows\system32\netjoin.dll
2011-08-12 16:56:49 ----A---- C:\Windows\system32\nci.dll
2011-08-12 16:56:49 ----A---- C:\Windows\system32\Narrator.exe
2011-08-12 16:56:49 ----A---- C:\Windows\system32\licmgr10.dll
2011-08-12 16:56:49 ----A---- C:\Windows\system32\Faultrep.dll
2011-08-12 16:56:49 ----A---- C:\Windows\system32\eudcedit.exe
2011-08-12 16:56:48 ----A---- C:\Windows\SYSWOW64\samcli.dll
2011-08-12 16:56:48 ----A---- C:\Windows\SYSWOW64\proquota.exe
2011-08-12 16:56:48 ----A---- C:\Windows\SYSWOW64\msutb.dll
2011-08-12 16:56:48 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2011-08-12 16:56:48 ----A---- C:\Windows\system32\wkssvc.dll
2011-08-12 16:56:48 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-08-12 16:56:48 ----A---- C:\Windows\system32\sppcomapi.dll
2011-08-12 16:56:48 ----A---- C:\Windows\system32\comctl32.dll
2011-08-12 16:56:48 ----A---- C:\Windows\system32\cabview.dll
2011-08-12 16:56:48 ----A---- C:\Windows\system32\autochk.exe
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\regapi.dll
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2011-08-12 16:56:47 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2011-08-12 16:56:47 ----A---- C:\Windows\system32\wpd_ci.dll
2011-08-12 16:56:47 ----A---- C:\Windows\system32\shsetup.dll
2011-08-12 16:56:47 ----A---- C:\Windows\system32\nshipsec.dll
2011-08-12 16:56:47 ----A---- C:\Windows\system32\fms.dll
2011-08-12 16:56:47 ----A---- C:\Windows\system32\autofmt.exe
2011-08-12 16:56:47 ----A---- C:\Windows\system32\autoconv.exe
2011-08-12 16:56:47 ----A---- C:\Windows\system32\audiodg.exe

_-M3-_ · #4 Příspěvek od **_-M3-_** » 13 srp 2011 14:13

2011-08-12 16:56:46 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2011-08-12 16:56:46 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2011-08-12 16:56:46 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2011-08-12 16:56:46 ----A---- C:\Windows\system32\wwanconn.dll
2011-08-12 16:56:46 ----A---- C:\Windows\system32\wlanui.dll
2011-08-12 16:56:46 ----A---- C:\Windows\system32\sdclt.exe
2011-08-12 16:56:46 ----A---- C:\Windows\system32\prntvpt.dll
2011-08-12 16:56:46 ----A---- C:\Windows\system32\drivers\wanarp.sys
2011-08-12 16:56:46 ----A---- C:\Windows\system32\bcdsrv.dll
2011-08-12 16:56:45 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2011-08-12 16:56:45 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2011-08-12 16:56:45 ----A---- C:\Windows\system32\SmiEngine.dll
2011-08-12 16:56:45 ----A---- C:\Windows\system32\mscorier.dll
2011-08-12 16:56:45 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2011-08-12 16:56:45 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2011-08-12 16:56:45 ----A---- C:\Windows\system32\drivers\scsiport.sys
2011-08-12 16:56:45 ----A---- C:\Windows\system32\dps.dll
2011-08-12 16:56:43 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2011-08-12 16:56:43 ----A---- C:\Windows\SYSWOW64\netid.dll
2011-08-12 16:56:43 ----A---- C:\Windows\system32\qedit.dll
2011-08-12 16:56:43 ----A---- C:\Windows\system32\mprddm.dll
2011-08-12 16:56:43 ----A---- C:\Windows\system32\fontext.dll
2011-08-12 16:56:43 ----A---- C:\Windows\system32\Display.dll
2011-08-12 16:56:43 ----A---- C:\Windows\system32\AxInstSv.dll
2011-08-12 16:56:42 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2011-08-12 16:56:42 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-08-12 16:56:42 ----A---- C:\Windows\system32\credssp.dll
2011-08-12 16:56:42 ----A---- C:\Windows\system32\batmeter.dll
2011-08-12 16:56:41 ----A---- C:\Windows\SYSWOW64\wdc.dll
2011-08-12 16:56:41 ----A---- C:\Windows\SYSWOW64\untfs.dll
2011-08-12 16:56:41 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2011-08-12 16:56:41 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2011-08-12 16:56:41 ----A---- C:\Windows\SYSWOW64\rastls.dll
2011-08-12 16:56:41 ----A---- C:\Windows\SYSWOW64\nci.dll
2011-08-12 16:56:41 ----A---- C:\Windows\system32\wmpsrcwp.dll
2011-08-12 16:56:41 ----A---- C:\Windows\system32\mblctr.exe
2011-08-12 16:56:40 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2011-08-12 16:56:40 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2011-08-12 16:56:40 ----A---- C:\Windows\SYSWOW64\Vault.dll
2011-08-12 16:56:40 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2011-08-12 16:56:40 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2011-08-12 16:56:40 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-08-12 16:56:40 ----A---- C:\Windows\system32\usercpl.dll
2011-08-12 16:56:40 ----A---- C:\Windows\system32\rtutils.dll
2011-08-12 16:56:40 ----A---- C:\Windows\system32\DiagCpl.dll
2011-08-12 16:56:40 ----A---- C:\Windows\system32\bootres.dll
2011-08-12 16:56:39 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2011-08-12 16:56:39 ----A---- C:\Windows\system32\wpccpl.dll
2011-08-12 16:56:39 ----A---- C:\Windows\system32\sppsvc.exe
2011-08-12 16:56:39 ----A---- C:\Windows\system32\rasppp.dll
2011-08-12 16:56:39 ----A---- C:\Windows\system32\provsvc.dll
2011-08-12 16:56:39 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2011-08-12 16:56:38 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2011-08-12 16:56:38 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2011-08-12 16:56:38 ----A---- C:\Windows\SYSWOW64\Display.dll
2011-08-12 16:56:38 ----A---- C:\Windows\system32\SndVolSSO.dll
2011-08-12 16:56:38 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2011-08-12 16:56:38 ----A---- C:\Windows\system32\dot3cfg.dll
2011-08-12 16:56:37 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2011-08-12 16:56:37 ----A---- C:\Windows\SYSWOW64\userinit.exe
2011-08-12 16:56:37 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2011-08-12 16:56:37 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2011-08-12 16:56:37 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2011-08-12 16:56:37 ----A---- C:\Windows\system32\taskmgr.exe
2011-08-12 16:56:37 ----A---- C:\Windows\system32\shdocvw.dll
2011-08-12 16:56:37 ----A---- C:\Windows\system32\prnfldr.dll
2011-08-12 16:56:37 ----A---- C:\Windows\system32\hbaapi.dll
2011-08-12 16:56:37 ----A---- C:\Windows\system32\dxdiagn.dll
2011-08-12 16:56:36 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2011-08-12 16:56:36 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-08-12 16:56:36 ----A---- C:\Windows\system32\proquota.exe
2011-08-12 16:56:36 ----A---- C:\Windows\system32\pdh.dll
2011-08-12 16:56:36 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2011-08-12 16:56:36 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2011-08-12 16:56:36 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-08-12 16:56:35 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2011-08-12 16:56:35 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2011-08-12 16:56:35 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2011-08-12 16:56:35 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2011-08-12 16:56:35 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2011-08-12 16:56:35 ----A---- C:\Windows\SYSWOW64\cabview.dll
2011-08-12 16:56:35 ----A---- C:\Windows\system32\userinit.exe
2011-08-12 16:56:35 ----A---- C:\Windows\system32\untfs.dll
2011-08-12 16:56:35 ----A---- C:\Windows\system32\rdpcorekmts.dll
2011-08-12 16:56:35 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2011-08-12 16:56:35 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-08-12 16:56:34 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2011-08-12 16:56:34 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2011-08-12 16:56:34 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2011-08-12 16:56:34 ----A---- C:\Windows\system32\webcheck.dll
2011-08-12 16:56:33 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2011-08-12 16:56:33 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2011-08-12 16:56:33 ----A---- C:\Windows\system32\zipfldr.dll
2011-08-12 16:56:33 ----A---- C:\Windows\system32\slui.exe
2011-08-12 16:56:32 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2011-08-12 16:56:32 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2011-08-12 16:56:32 ----A---- C:\Windows\system32\msieftp.dll
2011-08-12 16:56:32 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2011-08-12 16:56:31 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2011-08-12 16:56:31 ----A---- C:\Windows\SYSWOW64\scecli.dll
2011-08-12 16:56:31 ----A---- C:\Windows\SYSWOW64\mscories.dll
2011-08-12 16:56:31 ----A---- C:\Windows\SYSWOW64\fontext.dll
2011-08-12 16:56:31 ----A---- C:\Windows\system32\sud.dll
2011-08-12 16:56:31 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2011-08-12 16:56:30 ----A---- C:\Windows\SYSWOW64\mscms.dll
2011-08-12 16:56:30 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2011-08-12 16:56:30 ----A---- C:\Windows\SYSWOW64\localsec.dll
2011-08-12 16:56:30 ----A---- C:\Windows\system32\dot3svc.dll
2011-08-12 16:56:30 ----A---- C:\Windows\system32\DeviceCenter.dll
2011-08-12 16:56:29 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2011-08-12 16:56:29 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2011-08-12 16:56:29 ----A---- C:\Windows\system32\taskbarcpl.dll
2011-08-12 16:56:29 ----A---- C:\Windows\system32\qdvd.dll
2011-08-12 16:56:29 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2011-08-12 16:56:29 ----A---- C:\Windows\system32\networkmap.dll
2011-08-12 16:56:29 ----A---- C:\Windows\system32\cryptui.dll
2011-08-12 16:56:28 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2011-08-12 16:56:28 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2011-08-12 16:56:28 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2011-08-12 16:56:28 ----A---- C:\Windows\system32\twext.dll
2011-08-12 16:56:28 ----A---- C:\Windows\system32\srcore.dll
2011-08-12 16:56:28 ----A---- C:\Windows\system32\ActionCenter.dll
2011-08-12 16:56:27 ----A---- C:\Windows\SYSWOW64\VAN.dll
2011-08-12 16:56:27 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2011-08-12 16:56:27 ----A---- C:\Windows\SYSWOW64\qedit.dll
2011-08-12 16:56:27 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2011-08-12 16:56:27 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2011-08-12 16:56:27 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2011-08-12 16:56:27 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2011-08-12 16:56:27 ----A---- C:\Windows\system32\uxlib.dll
2011-08-12 16:56:27 ----A---- C:\Windows\system32\rdpwsx.dll
2011-08-12 16:56:27 ----A---- C:\Windows\system32\OobeFldr.dll
2011-08-12 16:56:27 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-08-12 16:56:27 ----A---- C:\Windows\system32\bcdedit.exe
2011-08-12 16:56:26 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2011-08-12 16:56:26 ----A---- C:\Windows\system32\recovery.dll
2011-08-12 16:56:26 ----A---- C:\Windows\system32\dsuiext.dll
2011-08-12 16:56:26 ----A---- C:\Windows\system32\azroleui.dll
2011-08-12 16:56:25 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2011-08-12 16:56:25 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2011-08-12 16:56:25 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2011-08-12 16:56:25 ----A---- C:\Windows\system32\tzutil.exe
2011-08-12 16:56:25 ----A---- C:\Windows\system32\sisbkup.dll
2011-08-12 16:56:25 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-08-12 16:56:25 ----A---- C:\Windows\system32\isoburn.exe
2011-08-12 16:56:25 ----A---- C:\Windows\system32\efscore.dll
2011-08-12 16:56:25 ----A---- C:\Windows\system32\cca.dll
2011-08-12 16:56:25 ----A---- C:\Windows\system32\asycfilt.dll
2011-08-12 16:56:24 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2011-08-12 16:56:24 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2011-08-12 16:56:24 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2011-08-12 16:56:24 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2011-08-12 16:56:24 ----A---- C:\Windows\system32\systemcpl.dll
2011-08-12 16:56:24 ----A---- C:\Windows\system32\syncui.dll
2011-08-12 16:56:24 ----A---- C:\Windows\system32\shwebsvc.dll
2011-08-12 16:56:24 ----A---- C:\Windows\system32\sdcpl.dll
2011-08-12 16:56:24 ----A---- C:\Windows\system32\recdisc.exe
2011-08-12 16:56:24 ----A---- C:\Windows\system32\netplwiz.dll
2011-08-12 16:56:24 ----A---- C:\Windows\system32\httpapi.dll
2011-08-12 16:56:24 ----A---- C:\Windows\system32\drivers\sdbus.sys
2011-08-12 16:56:24 ----A---- C:\Windows\system32\drivers\mpio.sys
2011-08-12 16:56:24 ----A---- C:\Windows\system32\autoplay.dll
2011-08-12 16:56:23 ----A---- C:\Windows\SYSWOW64\wusa.exe
2011-08-12 16:56:23 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2011-08-12 16:56:23 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2011-08-12 16:56:23 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2011-08-12 16:56:23 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2011-08-12 16:56:23 ----A---- C:\Windows\system32\wlanmsm.dll
2011-08-12 16:56:23 ----A---- C:\Windows\system32\sysclass.dll
2011-08-12 16:56:23 ----A---- C:\Windows\system32\sspisrv.dll
2011-08-12 16:56:23 ----A---- C:\Windows\system32\sdrsvc.dll
2011-08-12 16:56:23 ----A---- C:\Windows\system32\ncryptui.dll
2011-08-12 16:56:23 ----A---- C:\Windows\system32\certcli.dll
2011-08-12 16:56:23 ----A---- C:\Windows\system32\appinfo.dll
2011-08-12 16:56:23 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2011-08-12 16:56:22 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2011-08-12 16:56:22 ----A---- C:\Windows\system32\msvidc32.dll
2011-08-12 16:56:22 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-08-12 16:56:21 ----A---- C:\Windows\SYSWOW64\sud.dll
2011-08-12 16:56:21 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2011-08-12 16:56:21 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2011-08-12 16:56:21 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2011-08-12 16:56:21 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2011-08-12 16:56:21 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2011-08-12 16:56:21 ----A---- C:\Windows\SYSWOW64\credssp.dll
2011-08-12 16:56:21 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2011-08-12 16:56:21 ----A---- C:\Windows\system32\vdsutil.dll
2011-08-12 16:56:21 ----A---- C:\Windows\system32\termmgr.dll
2011-08-12 16:56:21 ----A---- C:\Windows\system32\spwizeng.dll
2011-08-12 16:56:21 ----A---- C:\Windows\system32\MFPlay.dll
2011-08-12 16:56:20 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2011-08-12 16:56:20 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2011-08-12 16:56:20 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2011-08-12 16:56:20 ----A---- C:\Windows\system32\sethc.exe
2011-08-12 16:56:20 ----A---- C:\Windows\system32\rstrui.exe
2011-08-12 16:56:20 ----A---- C:\Windows\system32\ntlanman.dll
2011-08-12 16:56:20 ----A---- C:\Windows\system32\msscp.dll
2011-08-12 16:56:20 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-08-12 16:56:19 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2011-08-12 16:56:19 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2011-08-12 16:56:19 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2011-08-12 16:56:19 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-08-12 16:56:19 ----A---- C:\Windows\SYSWOW64\ftp.exe
2011-08-12 16:56:19 ----A---- C:\Windows\SYSWOW64\efscore.dll
2011-08-12 16:56:19 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\wwanprotdim.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\tsgqec.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\sqlcese30.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\secur32.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\ReAgent.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\rdpd3d.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\iprtrmgr.dll
2011-08-12 16:56:19 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-08-12 16:56:18 ----A---- C:\Windows\SYSWOW64\syncui.dll
2011-08-12 16:56:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2011-08-12 16:56:18 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2011-08-12 16:56:18 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2011-08-12 16:56:18 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2011-08-12 16:56:18 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-08-12 16:56:18 ----A---- C:\Windows\system32\ssText3d.scr
2011-08-12 16:56:18 ----A---- C:\Windows\system32\srvcli.dll
2011-08-12 16:56:18 ----A---- C:\Windows\system32\slwga.dll
2011-08-12 16:56:18 ----A---- C:\Windows\system32\iyuv_32.dll
2011-08-12 16:56:18 ----A---- C:\Windows\system32\iTVData.dll
2011-08-12 16:56:18 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-08-12 16:56:17 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2011-08-12 16:56:17 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2011-08-12 16:56:17 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2011-08-12 16:56:17 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2011-08-12 16:56:17 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2011-08-12 16:56:17 ----A---- C:\Windows\system32\wavemsp.dll
2011-08-12 16:56:17 ----A---- C:\Windows\system32\nslookup.exe
2011-08-12 16:56:17 ----A---- C:\Windows\system32\NAPHLPR.DLL
2011-08-12 16:56:17 ----A---- C:\Windows\system32\msiexec.exe
2011-08-12 16:56:17 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2011-08-12 16:56:16 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2011-08-12 16:56:16 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2011-08-12 16:56:16 ----A---- C:\Windows\SYSWOW64\sethc.exe
2011-08-12 16:56:16 ----A---- C:\Windows\SYSWOW64\riched20.dll
2011-08-12 16:56:16 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2011-08-12 16:56:16 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2011-08-12 16:56:16 ----A---- C:\Windows\system32\ntprint.dll
2011-08-12 16:56:16 ----A---- C:\Windows\system32\bcdboot.exe
2011-08-12 16:56:16 ----A---- C:\Windows\system32\acppage.dll
2011-08-12 16:56:15 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2011-08-12 16:56:15 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2011-08-12 16:56:15 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2011-08-12 16:56:15 ----A---- C:\Windows\SYSWOW64\migisol.dll
2011-08-12 16:56:15 ----A---- C:\Windows\SYSWOW64\fms.dll
2011-08-12 16:56:15 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2011-08-12 16:56:15 ----A---- C:\Windows\SYSWOW64\activeds.dll
2011-08-12 16:56:15 ----A---- C:\Windows\system32\TSpkg.dll
2011-08-12 16:56:15 ----A---- C:\Windows\system32\srrstr.dll
2011-08-12 16:56:15 ----A---- C:\Windows\system32\sppnp.dll
2011-08-12 16:56:15 ----A---- C:\Windows\system32\certprop.dll
2011-08-12 16:56:14 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2011-08-12 16:56:14 ----A---- C:\Windows\SYSWOW64\dpx.dll
2011-08-12 16:56:14 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2011-08-12 16:56:14 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2011-08-12 16:56:14 ----A---- C:\Windows\system32\wkscli.dll
2011-08-12 16:56:14 ----A---- C:\Windows\system32\remotepg.dll
2011-08-12 16:56:14 ----A---- C:\Windows\system32\networkexplorer.dll
2011-08-12 16:56:14 ----A---- C:\Windows\system32\cabinet.dll
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2011-08-12 16:56:13 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2011-08-12 16:56:13 ----A---- C:\Windows\system32\wsnmp32.dll
2011-08-12 16:56:13 ----A---- C:\Windows\system32\wmpdxm.dll
2011-08-12 16:56:13 ----A---- C:\Windows\system32\WinSCard.dll
2011-08-12 16:56:13 ----A---- C:\Windows\system32\net1.exe
2011-08-12 16:56:13 ----A---- C:\Windows\system32\ftp.exe
2011-08-12 16:56:13 ----A---- C:\Windows\system32\dfrgui.exe
2011-08-12 16:56:13 ----A---- C:\Windows\system32\cdosys.dll
2011-08-12 16:56:12 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2011-08-12 16:56:12 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2011-08-12 16:56:12 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2011-08-12 16:56:12 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2011-08-12 16:56:12 ----A---- C:\Windows\system32\wvc.dll
2011-08-12 16:56:12 ----A---- C:\Windows\system32\wuwebv.dll
2011-08-12 16:56:12 ----A---- C:\Windows\system32\wsqmcons.exe
2011-08-12 16:56:12 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-08-12 16:56:12 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-08-12 16:56:12 ----A---- C:\Windows\system32\blackbox.dll
2011-08-12 16:56:11 ----A---- C:\Windows\SYSWOW64\wvc.dll
2011-08-12 16:56:11 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2011-08-12 16:56:11 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2011-08-12 16:56:11 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2011-08-12 16:56:11 ----A---- C:\Windows\SYSWOW64\twext.dll
2011-08-12 16:56:11 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2011-08-12 16:56:11 ----A---- C:\Windows\SYSWOW64\mstask.dll
2011-08-12 16:56:11 ----A---- C:\Windows\system32\msyuv.dll
2011-08-12 16:56:11 ----A---- C:\Windows\system32\mfps.dll
2011-08-12 16:56:11 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-08-12 16:56:10 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2011-08-12 16:56:10 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-08-12 16:56:10 ----A---- C:\Windows\system32\mapistub.dll
2011-08-12 16:56:10 ----A---- C:\Windows\system32\mapi32.dll
2011-08-12 16:56:09 ----A---- C:\Windows\twain_32.dll
2011-08-12 16:56:09 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2011-08-12 16:56:09 ----A---- C:\Windows\SYSWOW64\qcap.dll
2011-08-12 16:56:09 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-08-12 16:56:09 ----A---- C:\Windows\system32\WUDFPlatform.dll
2011-08-12 16:56:09 ----A---- C:\Windows\system32\unimdmat.dll
2011-08-12 16:56:09 ----A---- C:\Windows\system32\OpcServices.dll
2011-08-12 16:56:09 ----A---- C:\Windows\system32\msrle32.dll
2011-08-12 16:56:09 ----A---- C:\Windows\system32\Bubbles.scr
2011-08-12 16:56:08 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2011-08-12 16:56:08 ----A---- C:\Windows\SYSWOW64\qasf.dll
2011-08-12 16:56:08 ----A---- C:\Windows\SYSWOW64\msrating.dll
2011-08-12 16:56:08 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-08-12 16:56:08 ----A---- C:\Windows\system32\seclogon.dll
2011-08-12 16:56:08 ----A---- C:\Windows\system32\iscsium.dll
2011-08-12 16:56:08 ----A---- C:\Windows\system32\ifsutil.dll
2011-08-12 16:56:08 ----A---- C:\Windows\system32\diskraid.exe
2011-08-12 16:56:07 ----A---- C:\Windows\SYSWOW64\ssText3d.scr
2011-08-12 16:56:07 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-08-12 16:56:07 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2011-08-12 16:56:07 ----A---- C:\Windows\system32\tsbyuv.dll
2011-08-12 16:56:07 ----A---- C:\Windows\system32\Ribbons.scr
2011-08-12 16:56:07 ----A---- C:\Windows\system32\Mystify.scr
2011-08-12 16:56:07 ----A---- C:\Windows\system32\drivers\umbus.sys
2011-08-12 16:56:06 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2011-08-12 16:56:06 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2011-08-12 16:56:06 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2011-08-12 16:56:06 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2011-08-12 16:56:06 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2011-08-12 16:56:06 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2011-08-12 16:56:06 ----A---- C:\Windows\system32\wmpshell.dll
2011-08-12 16:56:06 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2011-08-12 16:56:06 ----A---- C:\Windows\system32\perfmon.exe
2011-08-12 16:56:06 ----A---- C:\Windows\system32\muifontsetup.dll
2011-08-12 16:56:06 ----A---- C:\Windows\system32\d3d10level9.dll
2011-08-12 16:56:05 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2011-08-12 16:56:05 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2011-08-12 16:56:05 ----A---- C:\Windows\SYSWOW64\msscp.dll
2011-08-12 16:56:05 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2011-08-12 16:56:05 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2011-08-12 16:56:05 ----A---- C:\Windows\system32\rdpencom.dll
2011-08-12 16:56:05 ----A---- C:\Windows\system32\AzSqlExt.dll
2011-08-12 16:56:04 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2011-08-12 16:56:04 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2011-08-12 16:56:04 ----A---- C:\Windows\SYSWOW64\acppage.dll
2011-08-12 16:56:04 ----A---- C:\Windows\system32\umb.dll
2011-08-12 16:56:04 ----A---- C:\Windows\system32\tlscsp.dll
2011-08-12 16:56:04 ----A---- C:\Windows\system32\qasf.dll
2011-08-12 16:56:04 ----A---- C:\Windows\system32\netutils.dll
2011-08-12 16:56:04 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2011-08-12 16:56:03 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2011-08-12 16:56:03 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2011-08-12 16:56:03 ----A---- C:\Windows\SYSWOW64\raschap.dll
2011-08-12 16:56:03 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2011-08-12 16:56:03 ----A---- C:\Windows\system32\runonce.exe
2011-08-12 16:56:03 ----A---- C:\Windows\system32\raschap.dll
2011-08-12 16:56:03 ----A---- C:\Windows\system32\inseng.dll
2011-08-12 16:56:03 ----A---- C:\Windows\system32\FXSAPI.dll
2011-08-12 16:56:03 ----A---- C:\Windows\system32\dbghelp.dll
2011-08-12 16:56:03 ----A---- C:\Windows\system32\browser.dll
2011-08-12 16:56:03 ----A---- C:\Windows\system32\ActionQueue.dll
2011-08-12 16:56:03 ----A---- C:\Windows\bfsvc.exe
2011-08-12 16:56:02 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2011-08-12 16:56:02 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2011-08-12 16:56:02 ----A---- C:\Windows\SYSWOW64\input.dll
2011-08-12 16:56:02 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2011-08-12 16:56:02 ----A---- C:\Windows\system32\wpdwcn.dll
2011-08-12 16:56:02 ----A---- C:\Windows\system32\wiavideo.dll
2011-08-12 16:56:01 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2011-08-12 16:56:01 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2011-08-12 16:56:01 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2011-08-12 16:56:01 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2011-08-12 16:56:01 ----A---- C:\Windows\system32\WMADMOD.DLL
2011-08-12 16:56:01 ----A---- C:\Windows\system32\syssetup.dll
2011-08-12 16:56:01 ----A---- C:\Windows\system32\MdSched.exe
2011-08-12 16:56:00 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2011-08-12 16:56:00 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2011-08-12 16:56:00 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2011-08-12 16:56:00 ----A---- C:\Windows\SYSWOW64\onexui.dll
2011-08-12 16:56:00 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2011-08-12 16:56:00 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-08-12 16:56:00 ----A---- C:\Windows\system32\vdsbas.dll
2011-08-12 16:56:00 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2011-08-12 16:56:00 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2011-08-12 16:55:59 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2011-08-12 16:55:59 ----A---- C:\Windows\SYSWOW64\runonce.exe
2011-08-12 16:55:59 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2011-08-12 16:55:59 ----A---- C:\Windows\SYSWOW64\logagent.exe
2011-08-12 16:55:59 ----A---- C:\Windows\SYSWOW64\inseng.dll
2011-08-12 16:55:59 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2011-08-12 16:55:59 ----A---- C:\Windows\system32\nltest.exe
2011-08-12 16:55:59 ----A---- C:\Windows\system32\mstask.dll
2011-08-12 16:55:59 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-08-12 16:55:59 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-08-12 16:55:58 ----A---- C:\Windows\system32\bitsadmin.exe
2011-08-12 16:55:57 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2011-08-12 16:55:57 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2011-08-12 16:55:57 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2011-08-12 16:55:56 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2011-08-12 16:55:56 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2011-08-12 16:55:56 ----A---- C:\Windows\SYSWOW64\shacct.dll
2011-08-12 16:55:56 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2011-08-12 16:55:56 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2011-08-12 16:55:56 ----A---- C:\Windows\system32\wmdrmnet.dll
2011-08-12 16:55:56 ----A---- C:\Windows\system32\vss_ps.dll
2011-08-12 16:55:56 ----A---- C:\Windows\system32\tabcal.exe
2011-08-12 16:55:56 ----A---- C:\Windows\system32\shacct.dll
2011-08-12 16:55:56 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2011-08-12 16:55:56 ----A---- C:\Windows\system32\logman.exe
2011-08-12 16:55:56 ----A---- C:\Windows\system32\cscapi.dll
2011-08-12 16:55:55 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2011-08-12 16:55:55 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2011-08-12 16:55:55 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2011-08-12 16:55:55 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2011-08-12 16:55:55 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2011-08-12 16:55:55 ----A---- C:\Windows\system32\wudriver.dll
2011-08-12 16:55:55 ----A---- C:\Windows\system32\WPDSp.dll
2011-08-12 16:55:55 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-08-12 16:55:55 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-08-12 16:55:55 ----A---- C:\Windows\system32\qcap.dll
2011-08-12 16:55:55 ----A---- C:\Windows\system32\mssphtb.dll
2011-08-12 16:55:55 ----A---- C:\Windows\system32\msnetobj.dll
2011-08-12 16:55:54 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2011-08-12 16:55:54 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2011-08-12 16:55:54 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2011-08-12 16:55:54 ----A---- C:\Windows\SYSWOW64\Bubbles.scr
2011-08-12 16:55:54 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-08-12 16:55:54 ----A---- C:\Windows\system32\qdv.dll
2011-08-12 16:55:54 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2011-08-12 16:55:53 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2011-08-12 16:55:53 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2011-08-12 16:55:53 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2011-08-12 16:55:53 ----A---- C:\Windows\SYSWOW64\pdh.dll
2011-08-12 16:55:53 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2011-08-12 16:55:53 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2011-08-12 16:55:53 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2011-08-12 16:55:53 ----A---- C:\Windows\SYSWOW64\logman.exe
2011-08-12 16:55:53 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2011-08-12 16:55:53 ----A---- C:\Windows\system32\spbcd.dll
2011-08-12 16:55:53 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-08-12 16:55:53 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2011-08-12 16:55:52 ----A---- C:\Windows\system32\fphc.dll
2011-08-12 16:55:52 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2011-08-12 16:55:51 ----A---- C:\Windows\system32\dot3ui.dll
2011-08-12 16:55:50 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2011-08-12 16:55:50 ----A---- C:\Windows\SYSWOW64\Ribbons.scr
2011-08-12 16:55:50 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2011-08-12 16:55:50 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2011-08-12 16:55:50 ----A---- C:\Windows\SYSWOW64\Mystify.scr
2011-08-12 16:55:50 ----A---- C:\Windows\system32\takeown.exe
2011-08-12 16:55:50 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-08-12 16:55:49 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2011-08-12 16:55:49 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2011-08-12 16:55:49 ----A---- C:\Windows\SYSWOW64\utildll.dll
2011-08-12 16:55:49 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2011-08-12 16:55:49 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2011-08-12 16:55:49 ----A---- C:\Windows\system32\WMPhoto.dll
2011-08-12 16:55:49 ----A---- C:\Windows\system32\amstream.dll
2011-08-12 16:55:48 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2011-08-12 16:55:48 ----A---- C:\Windows\SYSWOW64\takeown.exe
2011-08-12 16:55:48 ----A---- C:\Windows\SYSWOW64\fphc.dll
2011-08-12 16:55:48 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2011-08-12 16:55:48 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2011-08-12 16:55:47 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2011-08-12 16:55:47 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2011-08-12 16:55:47 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2011-08-12 16:55:47 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2011-08-12 16:55:47 ----A---- C:\Windows\system32\vfwwdm32.dll
2011-08-12 16:55:47 ----A---- C:\Windows\system32\shimgvw.dll
2011-08-12 16:55:47 ----A---- C:\Windows\system32\netapi32.dll
2011-08-12 16:55:47 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2011-08-12 16:55:47 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-08-12 16:55:46 ----A---- C:\Windows\SYSWOW64\qdv.dll
2011-08-12 16:55:46 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2011-08-12 16:55:46 ----A---- C:\Windows\system32\WUDFHost.exe
2011-08-12 16:55:46 ----A---- C:\Windows\system32\QCLIPROV.DLL
2011-08-12 16:55:46 ----A---- C:\Windows\system32\nrpsrv.dll
2011-08-12 16:55:46 ----A---- C:\Windows\system32\iasrecst.dll
2011-08-12 16:55:46 ----A---- C:\Windows\system32\djoin.exe
2011-08-12 16:55:46 ----A---- C:\Windows\system32\cmstp.exe
2011-08-12 16:55:46 ----A---- C:\Windows\system32\CertPolEng.dll
2011-08-12 16:55:45 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2011-08-12 16:55:45 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2011-08-12 16:55:45 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2011-08-12 16:55:45 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2011-08-12 16:55:45 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2011-08-12 16:55:45 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2011-08-12 16:55:45 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2011-08-12 16:55:45 ----A---- C:\Windows\SYSWOW64\cca.dll
2011-08-12 16:55:45 ----A---- C:\Windows\system32\WUDFx.dll
2011-08-12 16:55:45 ----A---- C:\Windows\system32\WavDest.dll
2011-08-12 16:55:45 ----A---- C:\Windows\system32\fdProxy.dll
2011-08-12 16:55:45 ----A---- C:\Windows\system32\drivers\pacer.sys
2011-08-12 16:55:44 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2011-08-12 16:55:44 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2011-08-12 16:55:44 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2011-08-12 16:55:44 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2011-08-12 16:55:44 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2011-08-12 16:55:44 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2011-08-12 16:55:44 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2011-08-12 16:55:44 ----A---- C:\Windows\system32\wuauclt.exe
2011-08-12 16:55:44 ----A---- C:\Windows\system32\sscore.dll
2011-08-12 16:55:44 ----A---- C:\Windows\system32\relog.exe
2011-08-12 16:55:44 ----A---- C:\Windows\system32\mydocs.dll
2011-08-12 16:55:44 ----A---- C:\Windows\system32\MultiDigiMon.exe
2011-08-12 16:55:44 ----A---- C:\Windows\system32\KMSVC.DLL
2011-08-12 16:55:44 ----A---- C:\Windows\system32\iscsicli.exe
2011-08-12 16:55:44 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\relog.exe
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2011-08-12 16:55:43 ----A---- C:\Windows\SYSWOW64\amstream.dll
2011-08-12 16:55:43 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-08-12 16:55:43 ----A---- C:\Windows\system32\msdmo.dll
2011-08-12 16:55:43 ----A---- C:\Windows\system32\mobsync.exe
2011-08-12 16:55:43 ----A---- C:\Windows\system32\itircl.dll
2011-08-12 16:55:43 ----A---- C:\Windows\system32\dot3msm.dll
2011-08-12 16:55:43 ----A---- C:\Windows\system32\diskpart.exe
2011-08-12 16:55:43 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2011-08-12 16:55:42 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2011-08-12 16:55:42 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2011-08-12 16:55:42 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2011-08-12 16:55:42 ----A---- C:\Windows\SYSWOW64\resutils.dll
2011-08-12 16:55:42 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2011-08-12 16:55:42 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2011-08-12 16:55:42 ----A---- C:\Windows\SYSWOW64\itircl.dll
2011-08-12 16:55:42 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2011-08-12 16:55:42 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2011-08-12 16:55:42 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-08-12 16:55:42 ----A---- C:\Windows\system32\browcli.dll
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\secur32.dll
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\netutils.dll
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\findstr.exe
2011-08-12 16:55:41 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2011-08-12 16:55:41 ----A---- C:\Windows\system32\wuapp.exe
2011-08-12 16:55:41 ----A---- C:\Windows\system32\sppc.dll
2011-08-12 16:55:41 ----A---- C:\Windows\system32\prevhost.exe
2011-08-12 16:55:41 ----A---- C:\Windows\system32\onexui.dll
2011-08-12 16:55:41 ----A---- C:\Windows\system32\mciqtz32.dll
2011-08-12 16:55:41 ----A---- C:\Windows\system32\luainstall.dll
2011-08-12 16:55:41 ----A---- C:\Windows\system32\imagehlp.dll
2011-08-12 16:55:41 ----A---- C:\Windows\system32\choice.exe
2011-08-12 16:55:41 ----A---- C:\Windows\system32\FXSTIFF.dll
2011-08-12 16:55:41 ----A---- C:\Windows\system32\findstr.exe
2011-08-12 16:55:41 ----A---- C:\Windows\system32\eappgnui.dll
2011-08-12 16:55:41 ----A---- C:\Windows\system32\drivers\tunnel.sys
2011-08-12 16:55:40 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2011-08-12 16:55:40 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2011-08-12 16:55:40 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2011-08-12 16:55:40 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2011-08-12 16:55:40 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2011-08-12 16:55:40 ----A---- C:\Windows\system32\schedcli.dll
2011-08-12 16:55:40 ----A---- C:\Windows\system32\manage-bde.exe
2011-08-12 16:55:40 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-08-12 16:55:39 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2011-08-12 16:55:39 ----A---- C:\Windows\SYSWOW64\sppc.dll
2011-08-12 16:55:39 ----A---- C:\Windows\SYSWOW64\spopk.dll
2011-08-12 16:55:39 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2011-08-12 16:55:39 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2011-08-12 16:55:39 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2011-08-12 16:55:39 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2011-08-12 16:55:39 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2011-08-12 16:55:39 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2011-08-12 16:55:39 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2011-08-12 16:55:39 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2011-08-12 16:55:39 ----A---- C:\Windows\system32\spopk.dll
2011-08-12 16:55:39 ----A---- C:\Windows\system32\repair-bde.exe
2011-08-12 16:55:39 ----A---- C:\Windows\system32\RDPENCDD.dll
2011-08-12 16:55:39 ----A---- C:\Windows\system32\profprov.dll
2011-08-12 16:55:39 ----A---- C:\Windows\system32\odbcconf.dll
2011-08-12 16:55:39 ----A---- C:\Windows\system32\inetmib1.dll
2011-08-12 16:55:39 ----A---- C:\Windows\system32\fixmapi.exe
2011-08-12 16:55:38 ----A---- C:\Windows\SYSWOW64\wups.dll
2011-08-12 16:55:38 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2011-08-12 16:55:38 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2011-08-12 16:55:38 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2011-08-12 16:55:38 ----A---- C:\Windows\SYSWOW64\browcli.dll
2011-08-12 16:55:38 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-08-12 16:55:38 ----A---- C:\Windows\system32\TRAPI.dll
2011-08-12 16:55:38 ----A---- C:\Windows\system32\msfeedssync.exe
2011-08-12 16:55:38 ----A---- C:\Windows\system32\FXSMON.dll
2011-08-12 16:55:38 ----A---- C:\Windows\system32\elsTrans.dll
2011-08-12 16:55:38 ----A---- C:\Windows\system32\drivers\tdi.sys
2011-08-12 16:55:37 ----A---- C:\Windows\SYSWOW64\perfts.dll
2011-08-12 16:55:37 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-08-12 16:55:37 ----A---- C:\Windows\SYSWOW64\imm32.dll
2011-08-12 16:55:37 ----A---- C:\Windows\system32\wshbth.dll
2011-08-12 16:55:37 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2011-08-12 16:55:37 ----A---- C:\Windows\system32\napdsnap.dll
2011-08-12 16:55:37 ----A---- C:\Windows\system32\LogonUI.exe
2011-08-12 16:55:37 ----A---- C:\Windows\system32\dsauth.dll
2011-08-12 16:55:36 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2011-08-12 16:55:36 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2011-08-12 16:55:36 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2011-08-12 16:55:36 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2011-08-12 16:55:36 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2011-08-12 16:55:36 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2011-08-12 16:55:36 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2011-08-12 16:55:36 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2011-08-12 16:55:36 ----A---- C:\Windows\system32\FXSUNATD.exe
2011-08-12 16:55:36 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2011-08-12 16:55:36 ----A---- C:\Windows\system32\cscdll.dll
2011-08-12 16:55:36 ----A---- C:\Windows\system32\bitsperf.dll
2011-08-12 16:55:35 ----A---- C:\Windows\SYSWOW64\sscore.dll
2011-08-12 16:55:35 ----A---- C:\Windows\system32\wups2.dll
2011-08-12 16:55:35 ----A---- C:\Windows\system32\wups.dll
2011-08-12 16:55:35 ----A---- C:\Windows\system32\wsdchngr.dll
2011-08-12 16:55:35 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2011-08-12 16:55:34 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2011-08-12 16:55:34 ----A---- C:\Windows\SYSWOW64\shgina.dll
2011-08-12 16:55:34 ----A---- C:\Windows\SYSWOW64\riched32.dll
2011-08-12 16:55:34 ----A---- C:\Windows\system32\shgina.dll
2011-08-12 16:55:30 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-08-12 16:55:30 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2011-08-12 16:55:29 ----A---- C:\Windows\system32\wshirda.dll
2011-08-12 16:55:28 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2011-08-12 16:55:28 ----A---- C:\Windows\system32\rdpcfgex.dll
2011-08-12 16:55:28 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-08-12 16:55:28 ----A---- C:\Windows\system32\drivers\hidusb.sys
2011-08-12 16:55:28 ----A---- C:\Windows\system32\drivers\appid.sys
2011-08-12 16:55:27 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2011-08-12 16:55:27 ----A---- C:\Windows\SYSWOW64\browseui.dll
2011-08-12 16:55:27 ----A---- C:\Windows\system32\spwmp.dll
2011-08-12 16:55:27 ----A---- C:\Windows\system32\riched32.dll
2011-08-12 16:55:27 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2011-08-12 16:55:27 ----A---- C:\Windows\system32\C_ISCII.DLL
2011-08-12 16:55:27 ----A---- C:\Windows\system32\browseui.dll
2011-08-12 16:55:26 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2011-08-12 16:55:26 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2011-08-12 16:55:26 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2011-08-12 16:55:26 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2011-08-12 16:55:26 ----A---- C:\Windows\system32\shunimpl.dll
2011-08-12 16:55:26 ----A---- C:\Windows\system32\dxmasf.dll
2011-08-12 16:55:26 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2011-08-12 16:55:26 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2011-08-12 16:55:26 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-08-12 16:55:26 ----A---- C:\Windows\system32\drivers\scfilter.sys
2011-08-12 16:55:26 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2011-08-12 16:55:26 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-08-12 16:55:26 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\wmploc.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDTUQ.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDTUF.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDSG.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDSF.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDPO.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDNEPR.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\kbdlk41a.dll
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDINTAM.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDINBEN.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDGR1.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDGKL.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDGEO.DLL
2011-08-12 16:55:25 ----A---- C:\Windows\system32\KBDCZ1.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2011-08-12 16:55:24 ----A---- C:\Windows\system32\tzres.dll
2011-08-12 16:55:24 ----A---- C:\Windows\system32\spwizres.dll
2011-08-12 16:55:24 ----A---- C:\Windows\system32\pifmgr.dll
2011-08-12 16:55:24 ----A---- C:\Windows\system32\nlsbres.dll
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDUS.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDTURME.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDMON.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDMAORI.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDLT1.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDINTEL.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDINORI.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDINMAR.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDINKAN.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDINHIN.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDBULG.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDBLR.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\KBDBASH.DLL
2011-08-12 16:55:24 ----A---- C:\Windows\system32\dpnaddr.dll
2011-08-12 16:55:23 ----A---- C:\Windows\system32\BlbEvents.dll
2011-08-12 16:55:08 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2011-08-12 16:55:08 ----A---- C:\Windows\system32\dpx.dll
2011-08-12 16:55:00 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2011-08-12 16:54:45 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2011-08-12 16:52:23 ----A---- C:\Windows\system32\wbemcomn.dll
2011-08-12 16:52:10 ----A---- C:\Windows\system32\sqmapi.dll
2011-08-12 16:17:54 ----A---- C:\Windows\system32\MRT.exe
2011-08-12 16:05:26 ----N---- C:\Windows\system32\MpSigStub.exe
2011-08-11 11:11:46 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2011-08-11 11:11:46 ----A---- C:\Windows\system32\odbctrac.dll
2011-08-11 11:11:46 ----A---- C:\Windows\system32\odbccu32.dll
2011-08-11 11:11:46 ----A---- C:\Windows\system32\odbccr32.dll
2011-08-11 11:11:46 ----A---- C:\Windows\system32\odbccp32.dll
2011-08-11 11:11:45 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2011-08-11 11:11:45 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2011-08-11 11:11:45 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2011-08-11 11:11:45 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2011-08-11 11:11:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-08-11 11:11:39 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-08-11 11:11:39 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-08-11 11:11:15 ----A---- C:\Windows\system32\conhost.exe
2011-08-11 11:11:14 ----A---- C:\Windows\system32\winsrv.dll
2011-08-11 11:11:12 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2011-08-11 11:11:12 ----A---- C:\Windows\system32\kernel32.dll
2011-08-11 11:11:11 ----A---- C:\Windows\system32\wow64.dll
2011-08-11 11:11:11 ----A---- C:\Windows\system32\KernelBase.dll
2011-08-11 11:11:10 ----A---- C:\Windows\SYSWOW64\setup16.exe
2011-08-11 11:11:10 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2011-08-11 11:11:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-08-11 11:11:09 ----A---- C:\Windows\SYSWOW64\wow32.dll
2011-08-11 11:11:09 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2011-08-11 11:11:09 ----A---- C:\Windows\SYSWOW64\instnm.exe
2011-08-11 11:11:09 ----A---- C:\Windows\system32\wow64win.dll
2011-08-11 11:11:09 ----A---- C:\Windows\system32\wow64cpu.dll
2011-08-11 11:11:09 ----A---- C:\Windows\system32\ntvdm64.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-08-11 11:11:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2011-08-11 11:11:08 ----A---- C:\Windows\SYSWOW64\user.exe
2011-08-11 11:11:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2011-08-11 11:11:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2011-08-11 11:11:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2011-08-11 11:11:07 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-08-11 11:11:06 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-08-11 11:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-08-11 11:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-08-11 11:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-08-11 11:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-08-11 11:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-08-11 11:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-08-11 11:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-08-11 11:11:05 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-08-11 11:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-08-11 11:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-08-11 11:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-08-11 11:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-08-11 11:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-08-11 11:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-08-11 11:11:04 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-08-11 11:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-08-11 11:11:02 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-08-11 11:10:39 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-08-11 11:10:23 ----A---- C:\Windows\system32\ieframe.dll
2011-08-11 11:10:16 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-08-11 11:10:13 ----A---- C:\Windows\system32\mshtml.dll
2011-08-11 11:10:06 ----A---- C:\Windows\system32\iertutil.dll
2011-08-11 11:10:05 ----A---- C:\Windows\system32\urlmon.dll
2011-08-11 11:10:04 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-08-11 11:10:01 ----A---- C:\Windows\system32\wininet.dll
2011-08-11 11:09:55 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-08-11 11:09:54 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-08-11 11:09:54 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-08-11 11:09:54 ----A---- C:\Windows\system32\msfeeds.dll
2011-08-11 11:09:53 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-08-11 11:09:52 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-08-11 11:09:52 ----A---- C:\Windows\system32\url.dll
2011-08-11 11:09:52 ----A---- C:\Windows\system32\mshtmled.dll
2011-08-11 11:09:51 ----A---- C:\Windows\SYSWOW64\url.dll
2011-08-11 11:09:51 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-08-11 11:09:51 ----A---- C:\Windows\system32\ieui.dll
2011-08-11 11:09:50 ----A---- C:\Windows\system32\jsproxy.dll
2011-08-11 11:09:49 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-08-11 11:09:41 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-08-11 11:09:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-08-11 11:09:40 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-08-10 16:52:13 ----D---- C:\Program Files\WinRAR
2011-08-10 16:46:26 ----D---- C:\Users\okay\AppData\Roaming\WinRAR
2011-08-10 13:35:42 ----D---- C:\Windows\SYSWOW64\Wat
2011-08-10 13:35:42 ----D---- C:\Windows\system32\Wat
2011-08-10 11:10:50 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2011-08-10 10:17:20 ----A---- C:\Windows\system32\browserchoice.exe
2011-08-09 17:28:57 ----D---- C:\Program Files (x86)\Microsoft Works
2011-08-09 17:27:40 ----D---- C:\Program Files (x86)\Microsoft.NET
2011-08-09 17:24:36 ----D---- C:\Program Files\Microsoft Office
2011-08-09 17:24:20 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2011-08-09 17:23:23 ----D---- C:\ProgramData\Microsoft Help
2011-08-09 17:21:01 ----RHD---- C:\MSOCache
2011-08-09 16:37:15 ----D---- C:\Users\okay\AppData\Roaming\QIP
2011-08-09 16:36:32 ----D---- C:\Program Files (x86)\QIP 2010
2011-08-09 16:18:12 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-08-09 16:09:56 ----D---- C:\Users\okay\AppData\Roaming\Macromedia
2011-08-09 16:07:20 ----D---- C:\Users\okay\AppData\Roaming\Mozilla
2011-08-09 16:06:58 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2011-08-09 16:06:58 ----A---- C:\Windows\system32\kerberos.dll
2011-08-09 16:06:47 ----A---- C:\Windows\system32\poqexec.exe
2011-08-09 16:06:46 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2011-08-09 16:06:44 ----A---- C:\Windows\system32\EncDec.dll
2011-08-09 16:06:43 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2011-08-09 16:06:43 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-08-09 16:06:43 ----A---- C:\Windows\system32\sbe.dll
2011-08-09 16:06:43 ----A---- C:\Windows\system32\CPFilters.dll
2011-08-09 16:06:42 ----A---- C:\Windows\SYSWOW64\sbe.dll
2011-08-09 16:06:40 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-08-09 16:06:40 ----A---- C:\Windows\system32\drivers\afd.sys
2011-08-09 16:05:38 ----A---- C:\Windows\system32\mfc42u.dll
2011-08-09 16:05:37 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2011-08-09 16:05:37 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2011-08-09 16:05:37 ----A---- C:\Windows\system32\mfc42.dll
2011-08-09 16:05:34 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-08-09 16:05:34 ----A---- C:\Windows\system32\vbscript.dll
2011-08-09 16:05:34 ----A---- C:\Windows\system32\jscript.dll
2011-08-09 16:05:33 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-08-09 16:05:29 ----D---- C:\Users\okay\AppData\Roaming\Adobe
2011-08-09 16:05:26 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2011-08-09 16:05:26 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-08-09 16:05:26 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-08-09 16:05:26 ----A---- C:\Windows\system32\fontsub.dll
2011-08-09 16:05:26 ----A---- C:\Windows\system32\atmlib.dll
2011-08-09 16:05:26 ----A---- C:\Windows\system32\atmfd.dll
2011-08-09 16:04:53 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2011-08-09 16:04:53 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2011-08-09 16:04:53 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-08-09 16:04:53 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-08-09 16:04:53 ----A---- C:\Windows\system32\dnsapi.dll
2011-08-09 16:04:38 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-08-09 16:04:38 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-08-09 16:04:38 ----A---- C:\Windows\system32\drivers\srv.sys
2011-08-09 16:04:02 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-08-09 16:04:02 ----A---- C:\Windows\system32\oleaut32.dll
2011-08-09 16:03:59 ----A---- C:\Windows\system32\winresume.exe
2011-08-09 16:03:59 ----A---- C:\Windows\system32\winload.exe
2011-08-09 16:03:58 ----A---- C:\Windows\system32\setbcdlocale.dll
2011-08-09 16:03:58 ----A---- C:\Windows\system32\kdusb.dll
2011-08-09 16:03:58 ----A---- C:\Windows\system32\kdcom.dll
2011-08-09 16:03:58 ----A---- C:\Windows\system32\kd1394.dll
2011-08-09 16:03:55 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2011-08-09 16:03:55 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2011-08-09 16:03:55 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-08-09 16:03:55 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-08-09 16:03:54 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2011-08-09 16:03:54 ----A---- C:\Windows\SYSWOW64\devobj.dll
2011-08-09 16:03:47 ----A---- C:\Windows\system32\win32k.sys
2011-08-09 16:03:44 ----A---- C:\Windows\system32\WFS.exe
2011-08-09 16:03:44 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-08-09 16:03:43 ----A---- C:\Windows\system32\inetcomm.dll
2011-08-09 16:03:42 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-08-09 16:01:55 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-08-09 15:58:03 ----D---- C:\Users\okay\AppData\Roaming\Nuance
2011-08-09 15:56:10 ----D---- C:\Users\okay\AppData\Roaming\Zeon
2011-07-23 23:41:15 ----A---- C:\Windows\ATKPF.ini
2011-07-19 05:26:05 ----SHD---- C:\System Volume Information
2011-07-19 05:26:05 ----ASH---- C:\pagefile.sys
2011-07-19 05:25:59 ----ASH---- C:\hiberfil.sys
2011-07-18 20:38:22 ----D---- C:\Users\okay\AppData\Roaming\Asus WebStorage
2011-07-18 20:38:13 ----D---- C:\Users\okay\AppData\Roaming\ATI
2011-07-18 20:36:11 ----D---- C:\Users\okay\AppData\Roaming\Identities
2011-07-18 20:34:37 ----SD---- C:\Users\okay\AppData\Roaming\Microsoft
2011-07-18 20:34:37 ----D---- C:\Users\okay\AppData\Roaming\Media Center Programs

======List of files/folders modified in the last 1 month======

2011-08-13 15:10:19 ----D---- C:\Windows\Prefetch
2011-08-13 15:10:08 ----RD---- C:\Program Files
2011-08-13 15:10:05 ----D---- C:\Windows\Temp
2011-08-13 12:56:19 ----D---- C:\Windows\system32\config
2011-08-13 12:40:32 ----D---- C:\Windows\rescache
2011-08-13 11:02:08 ----D---- C:\Windows\Microsoft.NET
2011-08-13 11:01:41 ----RSD---- C:\Windows\assembly
2011-08-13 08:08:57 ----RD---- C:\Users
2011-08-13 08:08:27 ----D---- C:\Windows\system32\Tasks
2011-08-13 08:04:57 ----SHD---- C:\$Recycle.Bin
2011-08-13 07:46:03 ----SHD---- C:\Windows\Installer
2011-08-13 07:45:37 ----D---- C:\Program Files (x86)\Google
2011-08-13 07:43:33 ----D---- C:\Windows\Tasks
2011-08-13 07:30:29 ----D---- C:\Windows\winsxs
2011-08-13 07:25:15 ----D---- C:\Windows\system32\catroot
2011-08-13 07:23:38 ----D---- C:\Windows\system32\catroot2
2011-08-13 00:06:15 ----D---- C:\Windows
2011-08-12 22:57:36 ----D---- C:\Program Files (x86)\ASUS
2011-08-12 22:54:07 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-08-12 22:54:07 ----D---- C:\Program Files\ASUS
2011-08-12 22:51:46 ----D---- C:\Windows\system32\drivers
2011-08-12 22:51:45 ----D---- C:\Program Files (x86)\Common Files
2011-08-12 22:50:07 ----D---- C:\Windows\SysWOW64
2011-08-12 21:58:26 ----D---- C:\Windows\System32
2011-08-12 21:58:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-08-12 21:58:25 ----D---- C:\Windows\inf
2011-08-12 21:53:59 ----A---- C:\Windows\system32\AutoRunFilter.ini
2011-08-12 21:53:56 ----A---- C:\Windows\system32\ServiceFilter.ini
2011-08-12 20:25:18 ----HD---- C:\ProgramData
2011-08-12 20:21:11 ----D---- C:\ProgramData\Trend Micro
2011-08-12 19:53:49 ----D---- C:\AsusVibeData
2011-08-12 18:22:09 ----SHD---- C:\Boot
2011-08-12 18:19:33 ----D---- C:\Windows\system32\DriverStore
2011-08-12 18:10:47 ----D---- C:\Program Files (x86)\Windows Sidebar
2011-08-12 18:10:47 ----D---- C:\Program Files (x86)\Windows Mail
2011-08-12 18:10:45 ----D---- C:\Program Files (x86)\Windows Portable Devices
2011-08-12 18:10:45 ----D---- C:\Program Files (x86)\Windows Media Player
2011-08-12 18:10:45 ----D---- C:\Program Files (x86)\Internet Explorer
2011-08-12 18:10:44 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2011-08-12 18:10:41 ----D---- C:\Program Files\Windows Sidebar
2011-08-12 18:10:41 ----D---- C:\Program Files\Windows Mail
2011-08-12 18:10:41 ----D---- C:\Program Files\DVD Maker
2011-08-12 18:10:38 ----D---- C:\Program Files\Windows Portable Devices
2011-08-12 18:10:38 ----D---- C:\Program Files\Internet Explorer
2011-08-12 18:10:37 ----D---- C:\Program Files\Windows Media Player
2011-08-12 18:10:36 ----D---- C:\Program Files\Windows Photo Viewer
2011-08-12 18:10:36 ----D---- C:\Program Files\Windows Journal
2011-08-12 18:10:30 ----D---- C:\Windows\servicing
2011-08-12 18:10:30 ----D---- C:\Windows\ehome
2011-08-12 18:10:30 ----D---- C:\Program Files\Windows Defender
2011-08-12 18:10:13 ----D---- C:\Windows\SYSWOW64\oobe
2011-08-12 18:10:13 ----D---- C:\Windows\SYSWOW64\da-DK
2011-08-12 18:10:12 ----D---- C:\Windows\SYSWOW64\migration
2011-08-12 18:10:12 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2011-08-12 18:10:11 ----D---- C:\Windows\SYSWOW64\Setup
2011-08-12 18:10:11 ----D---- C:\Windows\SYSWOW64\cs
2011-08-12 18:10:10 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-08-12 18:10:09 ----D---- C:\Windows\SYSWOW64\manifeststore
2011-08-12 18:10:08 ----D---- C:\Windows\SYSWOW64\sppui
2011-08-12 18:10:08 ----D---- C:\Windows\SYSWOW64\es-ES
2011-08-12 18:10:07 ----D---- C:\Windows\SYSWOW64\wbem
2011-08-12 18:10:06 ----D---- C:\Windows\SYSWOW64\migwiz
2011-08-12 18:10:05 ----D---- C:\Windows\SYSWOW64\Dism
2011-08-12 18:08:35 ----D---- C:\Windows\system32\oobe
2011-08-12 18:08:35 ----D---- C:\Windows\system32\migration
2011-08-12 18:08:35 ----D---- C:\Windows\system32\en-US
2011-08-12 18:08:35 ----D---- C:\Windows\system32\da-DK
2011-08-12 18:08:35 ----D---- C:\Windows\PolicyDefinitions
2011-08-12 18:08:33 ----D---- C:\Windows\system32\Setup
2011-08-12 18:08:33 ----D---- C:\Windows\system32\cs
2011-08-12 18:08:33 ----D---- C:\Windows\system32\AdvancedInstallers
2011-08-12 18:08:31 ----D---- C:\Windows\system32\cs-CZ
2011-08-12 18:08:30 ----D---- C:\Windows\system32\sppui
2011-08-12 18:08:30 ----D---- C:\Windows\system32\manifeststore
2011-08-12 18:08:30 ----D---- C:\Windows\system32\es-ES
2011-08-12 18:08:28 ----D---- C:\Windows\system32\drivers\cs-CZ
2011-08-12 18:08:26 ----D---- C:\Windows\system32\wbem
2011-08-12 18:08:25 ----D---- C:\Windows\system32\migwiz
2011-08-12 18:08:25 ----D---- C:\Windows\system32\Dism
2011-08-12 18:06:41 ----RSD---- C:\Windows\Fonts
2011-08-12 18:06:39 ----D---- C:\Windows\AppPatch
2011-08-12 18:05:53 ----D---- C:\Windows\system32\Boot
2011-08-12 17:54:44 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2011-08-12 17:54:39 ----A---- C:\Windows\system32\msclmd.dll
2011-08-12 17:21:51 ----D---- C:\Windows\system32\drivers\etc
2011-08-12 16:21:47 ----D---- C:\Windows\Logs
2011-08-12 16:17:59 ----D---- C:\Windows\debug
2011-08-12 16:16:48 ----RD---- C:\Program Files (x86)
2011-08-12 15:43:55 ----SD---- C:\ProgramData\Microsoft
2011-08-10 22:39:01 ----D---- C:\Windows\system32\wdi
2011-08-10 19:10:25 ----D---- C:\Windows\system32\LogFiles
2011-08-10 11:11:34 ----D---- C:\Program Files (x86)\MSBuild
2011-08-10 11:10:45 ----D---- C:\Windows\ShellNew
2011-08-10 11:05:16 ----A---- C:\Windows\win.ini
2011-08-10 10:13:53 ----D---- C:\Windows\SoftwareDistribution
2011-08-09 17:28:19 ----D---- C:\Program Files (x86)\Microsoft Office
2011-08-09 17:25:59 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-08-09 16:07:52 ----D---- C:\Program Files (x86)\Microsoft
2011-08-09 15:58:03 ----D---- C:\ProgramData\Nuance
2011-07-19 15:51:03 ----D---- C:\Program Files\Common Files\System
2011-07-19 15:51:00 ----D---- C:\Windows\SYSWOW64\winrm
2011-07-19 15:51:00 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2011-07-19 15:51:00 ----D---- C:\Windows\SYSWOW64\slmgr
2011-07-19 15:51:00 ----D---- C:\Windows\SYSWOW64\en
2011-07-19 15:51:00 ----D---- C:\Program Files (x86)\Windows Defender
2011-07-19 15:50:52 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2011-07-19 15:50:52 ----D---- C:\Windows\SYSWOW64\drivers
2011-07-19 15:50:51 ----D---- C:\Windows\SYSWOW64\en-US
2011-07-19 15:50:46 ----D---- C:\Windows\SYSWOW64\WCN
2011-07-19 15:50:46 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2011-07-19 15:50:46 ----D---- C:\Windows\SYSWOW64\DriverStore
2011-07-19 15:50:45 ----D---- C:\Windows\sr-Latn-CS
2011-07-19 15:50:45 ----D---- C:\Windows\en-US
2011-07-19 15:50:44 ----D---- C:\Windows\system32\winrm
2011-07-19 15:50:44 ----D---- C:\Windows\system32\sysprep
2011-07-19 15:50:44 ----D---- C:\Windows\system32\sr-Latn-CS
2011-07-19 15:50:44 ----D---- C:\Windows\system32\slmgr
2011-07-19 15:50:44 ----D---- C:\Windows\system32\en
2011-07-19 15:50:24 ----D---- C:\Windows\system32\WCN
2011-07-19 15:50:24 ----D---- C:\Windows\system32\drivers\en-US
2011-07-19 15:50:23 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2011-07-19 05:29:42 ----A---- C:\Windows\system32\Defrag.ini
2011-07-19 00:09:41 ----D---- C:\Windows\SYSWOW64\sl-SI
2011-07-19 00:09:20 ----D---- C:\Windows\system32\sl-SI
2011-07-19 00:07:14 ----D---- C:\Windows\SYSWOW64\sk-SK
2011-07-19 00:07:10 ----D---- C:\Windows\system32\sk-SK
2011-07-19 00:05:05 ----D---- C:\Windows\SYSWOW64\ro-RO
2011-07-19 00:04:40 ----D---- C:\Windows\system32\ro-RO
2011-07-19 00:01:58 ----D---- C:\Windows\SYSWOW64\XPSViewer
2011-07-19 00:01:58 ----D---- C:\Windows\SYSWOW64\pl-PL
2011-07-19 00:01:58 ----D---- C:\Windows\SYSWOW64\MUI
2011-07-19 00:01:42 ----D---- C:\Windows\SYSWOW64\com
2011-07-19 00:01:42 ----D---- C:\Windows\IME
2011-07-19 00:01:31 ----D---- C:\Windows\system32\MUI
2011-07-19 00:01:31 ----D---- C:\Windows\system32\drivers\UMDF
2011-07-19 00:01:28 ----D---- C:\Windows\system32\pl-PL
2011-07-19 00:01:00 ----D---- C:\Windows\system32\com
2011-07-18 23:58:14 ----D---- C:\Windows\SYSWOW64\hu-HU
2011-07-18 23:57:48 ----D---- C:\Windows\system32\hu-HU
2011-07-18 23:54:27 ----D---- C:\Windows\SYSWOW64\lv-LV
2011-07-18 23:54:21 ----D---- C:\Windows\system32\lv-LV
2011-07-18 23:51:41 ----D---- C:\Windows\SYSWOW64\lt-LT
2011-07-18 23:51:28 ----D---- C:\Windows\system32\lt-LT
2011-07-18 23:49:27 ----D---- C:\Windows\SYSWOW64\hr-HR
2011-07-18 23:49:25 ----D---- C:\Windows\system32\hr-HR
2011-07-18 23:47:03 ----D---- C:\Windows\SYSWOW64\et-EE
2011-07-18 23:46:52 ----D---- C:\Windows\system32\et-EE
2011-07-18 23:44:03 ----D---- C:\Windows\SYSWOW64\bg-BG
2011-07-18 23:43:49 ----D---- C:\Windows\system32\bg-BG
2011-07-18 20:37:10 ----A---- C:\dpi.txt
2011-07-18 20:32:33 ----SHD---- C:\Recovery
2011-07-18 20:32:33 ----D---- C:\Windows\system32\Recovery

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 lullaby;lullaby; C:\Windows\system32\DRIVERS\lullaby.sys [2009-06-18 15928]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-07-04 31064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-07-04 600920]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-07-04 288088]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-07-04 45400]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-07-04 22360]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-07-04 64856]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-09-22 7883264]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-09-22 285696]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-03-02 1594368]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-04-08 124944]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-09-08 129024]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-13 2345760]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-08-18 143472]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2010-10-12 131552]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-20 1800192]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2010-09-24 116752]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-23 154168]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2010-09-30 377264]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-09-22 203264]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-07-04 42184]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-22 2286976]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-13 136176]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-13 136176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-10 1255736]
S4 Partner Service;Partner Service; C:\ProgramData\Partner\Partner.exe [2011-03-08 332272]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------

#5 Příspěvek od **vyosek** » 13 srp 2011 14:43

Stahnete OTL (viz muj podpis) a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

_-M3-_ · #6 Příspěvek od **_-M3-_** » 13 srp 2011 16:22

OTL Extras logfile created on: 13.8.2011 16:46:14 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\okay\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,75 Gb Total Physical Memory | 0,86 Gb Available Physical Memory | 49,16% Memory free
3,50 Gb Paging File | 1,97 Gb Available in Paging File | 56,42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 74,52 Gb Total Space | 39,77 Gb Free Space | 53,37% Space Free | Partition Type: NTFS
Drive D: | 202,08 Gb Total Space | 193,99 Gb Free Space | 96,00% Space Free | Partition Type: NTFS

Computer Name: MARTINKA | User Name: okay | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0437C01E-70D6-489B-B504-952F59912A72}" = Windows Live Family Safety
"{13F4A7F3-EABC-4261-AF6B-1317777F0755}" = Fast Boot
"{1AAF3A3B-7B32-4DDF-8ABB-438DAEB46EEC}" = Windows Live Family Safety
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{22AB5CFD-B3DB-414E-9F99-4D024CCF1DA6}" = Windows Live Remote Client Resources
"{2304AF3E-F694-38CA-B0F9-E80D5CA390F4}" = ATI Catalyst Install Manager
"{2426E29F-9E8C-4C0B-97FC-0DB690C1ED98}" = Windows Live Remote Client Resources
"{27F3F8DE-AC95-4E10-90A6-EBA999DDBCAF}" = Windows Live Remote Service Resources
"{29CFD07F-4971-41B0-B14D-621ACCC264AC}" = Windows Live Remote Service Resources
"{2F304EF4-0C31-47F4-8557-0641AAE4197C}" = Windows Live Remote Client Resources
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{456FB9B5-AFBC-4761-BBDC-BA6BAFBB818F}" = Windows Live Remote Client Resources
"{46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}" = Windows Live Family Safety
"{480F28F0-8BCE-404A-A52E-0DBB7D1CE2EF}" = Windows Live Remote Service Resources
"{4827A9B4-FC4C-4BA9-9EFB-10CF703E7C3A}" = Windows Live Family Safety
"{4970B06C-7708-4AAB-9341-3FD1D9B1AA34}" = Windows Live Family Safety
"{5141AA6E-5FAC-4473-BFFB-BEE69DDC7F2B}" = Windows Live Remote Service Resources
"{5151E2DB-0748-4FD1-86A2-72E2F94F8BE7}" = Windows Live Remote Service Resources
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{5F44A3A1-5D24-4708-8776-66B42B174C64}" = Windows Live Remote Client Resources
"{61407251-7F7D-4303-810D-226A04D5CFF3}" = Windows Live Remote Service Resources
"{641B32DB-8226-4250-86C9-34671162F5D5}" = Windows Live Remote Client Resources
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{65EDA937-3C7B-4009-99A1-795FD3FBECF5}" = Windows Live Family Safety
"{6A2482BC-733A-404A-939A-2D5BC636E6F9}" = Windows Live Remote Service Resources
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{701D8EE6-6A5A-4509-9740-35F551193CE0}" = Windows Live Family Safety
"{76BB831E-D059-449A-AFDE-2A677E45DF18}" = Windows Live Family Safety
"{78654366-5889-4A70-90D9-04B00709EEE0}" = Windows Live Remote Client Resources
"{8068ACF9-B398-4C14-BEF6-817F12024707}" = Windows Live Family Safety
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97A295A7-8840-4B35-BB61-27A8F4512CA3}" = Windows Live Remote Service Resources
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear Hybrid
"{9E9C960F-7F47-46D5-A95D-950B354DE2B8}" = Windows Live Remote Service Resources
"{A6752BB4-C571-4F3B-9A47-97405068DE0B}" = Windows Live Family Safety
"{B680A663-1A15-47A5-A07C-7DF9A97558B7}" = Windows Live Remote Client Resources
"{B6D5A1D7-6E4B-7FE0-790E-864A77AFD773}" = ccc-utility64
"{BD864ECC-620D-4240-AB9A-B5F7340E337C}" = Windows Live Family Safety
"{C02C2C22-2EB1-47C8-B74F-8AB1A62FAE31}" = Windows Live Family Safety
"{C933FB4A-CFC0-4DDD-8FB1-A437B6C58B34}" = Windows Live Family Safety
"{CB5FBF73-7CE7-481C-8598-8D4C34705C23}" = Windows Live Family Safety
"{D157C6E7-5847-4FD1-BEDC-7389493874F6}" = Windows Live Remote Service Resources
"{D3E4F422-7E0F-49C7-8B00-F42490D7A385}" = Windows Live Remote Service Resources
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{E10CB758-D5FD-4A2D-A1C9-459D6BB0C035}" = Windows Live Remote Client Resources
"{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}" = SRS Premium Sound Control Panel
"{ED421F97-E1C3-4E78-9F54-A53888215D58}" = Windows Live Remote Client Resources
"{F0793412-6407-4870-9A8C-6FE198A4EB12}" = Windows Live Remote Client Resources
"Elantech" = ETDWare PS/2-x64 7.0.5.16_WHQL
"USB2.0 UVC VGA WebCam" = USB2.0 UVC VGA WebCam
"WinRAR archiver" = WinRAR archiver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01D3FD22-96E4-C77C-1F10-9D126EF51684}" = CCC Help Korean
"{02C0A02E-AB30-446C-B4C3-A03310D95F53}" = Windows Live UX Platform Language Pack
"{047377C9-C74B-4345-82E8-03BAE5DF2C32}" = Windows Live Writer
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}" = ASUS AI Recovery
"{073F306D-9851-4969-B828-7B6444D07D55}" = Windows Live Photo Common
"{0785A0B6-07DF-43CF-B147-E1EB4CEA0345}" = Windows Live Messenger
"{09142540-6D56-5E13-7EE2-6ED42503B02C}" = CCC Help Spanish
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{0A093C39-CBB3-4142-B93F-562F176B6305}" = Windows Live Mesh
"{0A455897-C606-4958-AD34-6DF0430D184B}" = Windows Live UX Platform Language Pack
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0B80A0FD-755A-4796-BFB0-A7B07366F33A}" = Windows Live Mail
"{1168ECF1-2932-4E86-BC83-560C256C8022}" = Windows Live Photo Common
"{11778DA1-0495-4ED9-972F-F9E0B0367CD5}" = Windows Live Writer
"{11F156AD-68DC-730D-6A5F-8EE81DD63F27}" = CCC Help Hungarian
"{168E1889-703A-EF39-2A18-43FF5C5E72AE}" = CCC Help Danish
"{17835B63-8308-427F-8CF5-D76E0D5FE457}" = Windows Live Essentials
"{19ADD3BF-C42B-47DC-81C6-5E9731B668C4}" = „Windows Live Essentials“
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{19CBDE24-2761-49A5-816B-D2BA65D0CA8D}" = Kontrola Windows Live Mesh ActiveX za daljinske veze
"{1BCF995D-78B8-4883-BC8E-D7A32BB463DA}" = Windows Live Messenger
"{1CFBB921-4E8F-47C1-81A0-1CB94454199E}" = Windows Live UX Platform Language Pack
"{1D6C2068-807F-4B76-A0C2-62ED05656593}" = Windows Live Writer
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}" = Windows Live Writer
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{216ACEC1-4556-4717-A8DE-3F7F5F9C6F63}" = Windows Live Mesh ActiveX-i juhtelement kaugühendustele
"{2374E066-207D-9C1D-1892-37D76B3F9295}" = CCC Help Greek
"{259E06E0-A541-133D-33A1-1F926DA14ED0}" = CCC Help French
"{260E3D78-94E6-47EC-8E29-46301572BB1E}" = Control ActiveX Windows Live Mesh pentru conexiuni la distanță
"{26513CE5-7A51-478D-93BD-AC1D38103463}" = Windows Live Messenger
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron Flash Media Controller Driver
"{269FAF4C-8237-49A4-8440-6560FF15B4B0}" = Windows Live UX Platform Language Pack
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{2719ED2A-F6F5-4CA4-B248-A48FFE75DB84}" = Windows Live UX Platform Language Pack
"{2720009D-9566-45A7-A370-0E6DAC313F3F}" = „Windows Live Mail“
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2B81872B-A054-48DA-BE3B-FA5C164C303A}" = ASUS FancyStart
"{2BA5FD10-653F-4CAF-9CCD-F685082A1DC1}" = Windows Live Writer
"{2C7E8AA1-9C03-4606-BF34-5D99D07964DA}" = Windows Live Messenger
"{2D3E034E-F76B-410A-A169-55755D2637BB}" = Windows Live Mesh
"{303143DD-1F6D-4BC5-9342-FFC2E19B2DBD}" = Windows Live Messenger
"{32E485F0-C156-3CBC-93F9-2A39B3C6F531}" = CCC Help Italian
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{341697D8-9923-445E-B42A-529E5A99CB7A}" = syncables desktop SE
"{34C4F5AF-D757-4E6A-ABCA-65AB5A50A1A8}" = Windows Live Messenger
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{38A50AB9-46E6-BA24-CA50-A70B73AD94CD}" = Catalyst Control Center Localization All
"{3A654621-7FAA-4904-558B-2FFE2CE0D4D6}" = CCC Help Portuguese
"{3FD1CB9F-807F-451B-926C-9D19C84CFC61}" = Messenger Suradnik
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{410DF0AA-882D-450D-9E1B-F5397ACFFA80}" = Windows Live Essentials
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{442032CB-900C-49C7-B4B4-2B76525DD403}" = Windows Live Photo Common
"{4444F27C-B1A8-464E-9486-4C37BAB39A09}" = Фотогалерия на Windows Live
"{458F399F-62AC-4747-99F5-499BBF073D29}" = Windows Live Writer Resources
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{50300123-F8FC-4B50-B449-E847D04F1BA2}" = Windows Live Messenger
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{517EAAB9-C35E-4949-B8C2-20C241162BBB}" = Windows Live Pošta
"{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}" = Windows Live Writer Resources
"{539A0CEA-17E4-4FE4-A5E8-EC5D40610A79}" = „Windows Live Messenger“
"{543E6ACA-51B7-4283-82F2-57C0582A53C5}" = Windows Live UX Platform Language Pack
"{5B65EF64-1DFA-414A-8C94-7BB726158E21}" = ControlDeck
"{5CF5B1A5-CBC3-42F0-8533-5A5090665862}" = Windows Live Mesh
"{5D163056-96B7-440F-A836-89BA5D3CFF2F}" = Windows Live Photo Common
"{5D2E7BD7-4B6F-4086-BA8A-E88484750624}" = Windows Live Writer Resources
"{60C3C026-DB53-4DAB-8B97-7C1241F9A847}" = Windows Live Movie Maker
"{62162058-C7F4-5FFE-3C4A-0203FA2B3ABE}" = CCC Help Dutch
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{67EC6B7D-C7CD-ADCF-E929-DF090304381E}" = CCC Help Polish
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69C9C672-400A-43A0-B2DE-9DB38C371282}" = Windows Live Writer
"{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}" = Windows Live UX Platform Language Pack
"{6A48A232-10DE-2C6C-CD8F-0907B603321B}" = CCC Help Chinese Traditional
"{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}" = Windows Live Mesh
"{6B0A2ECE-E4C6-4BA3-AE9D-8B827F03B992}" = Windows Live UX Platform Language Pack
"{6B318C80-7BE4-4D79-9F53-4290958EA984}" = Windows Live UX Platform Language Pack
"{6B3BAE39-4ED1-4EEB-9769-A3AA0AA58CB4}" = Windows Live Movie Maker
"{6B556C37-8919-4991-AC34-93D018B9EA49}" = Windows Live Photo Common
"{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}" = ASUS CopyProtect
"{6D2F0A26-ECEA-49CE-833C-9A6125F3D5E8}" = Doplnok programu Messenger
"{6D30E864-46AE-435B-8230-8B5D42B4AE37}" = Windows Live Messenger
"{6DCE9C3E-3DB7-4C3C-8B80-BC55781BB7B6}" = Windows Live Writer Resources
"{6DD3B54B-F0D0-4A69-8344-F52033225A02}" = Messenger Companion
"{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}" = Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz
"{6EE9F44A-B8C7-4CDB-B2A9-441AF2AE315A}" = Windows Live Messenger
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{71684DFF-CDED-450C-AF0C-4A1A6438A1A5}" = Windows Live Essentials
"{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}" = Windows Live Fotótár
"{7373E17D-18E0-44A7-AC3A-6A3BFB85D3B3}" = Windows Live Movie Maker
"{73F03B4E-578E-B858-F9B4-B7758AC73ECC}" = Catalyst Control Center Graphics Previews Vista
"{77BC9EAF-14C7-4338-9B1C-D5A3E142C0B8}" = Windows Live Photo Common
"{77DAF553-291A-4471-988C-5677D90DB57E}" = Windows Live Writer Resources
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7990CD74-DD24-060A-8016-FA0C78F98E87}" = CCC Help Turkish
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{7AF8E500-B349-4A77-8265-9854E9A47925}" = Windows Live Movie Maker
"{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}" = Pošta Windows Live
"{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}" = Windows Live Writer Resources
"{7D0DE76C-874E-4BDE-A204-F4240160693E}" = Windows Live Photo Common
"{7E274911-32ED-4489-9B04-4EF100D0E4D3}" = „Messenger“ pagalbinė priemonė
"{7E90B133-FF47-48BB-91B8-36FC5A548FE9}" = Windows Live Writer Resources
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{82803FF3-563F-414F-A403-8D4C167D4120}" = Windows Live Mail
"{829CDAAD-5AF1-482F-978B-591C16A34ACC}" = Windows Live Messenger
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84267681-BF16-40B6-9564-27BC57D7D71C}" = Windows Live Photo Common
"{86E6D3A7-3ADC-44C0-B94E-85D2A9DD36B0}" = Windows Live Writer
"{8985AE5E-622A-4980-8BF8-0A1830643220}" = Windows Live Mesh ActiveX kontrola za daljinske veze
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8D33ECF4-1A77-4674-ABAE-DFF978C5BC0A}" = Windows Live Movie Maker
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8EFCE1F8-8ADB-40F2-BED7-7728BED00EC0}" = Windows Live Essentials
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0017-0405-0000-0000000FF1CE}" = Microsoft Office SharePoint Designer MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{926CC8AE-8414-43DF-8EB4-CF26D9C3C663}" =
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0100-0405-0000-0000000FF1CE}" = Microsoft Office O MUI (Czech) 2007
"{90120000-0101-0405-0000-0000000FF1CE}" = Microsoft Office X MUI (Czech) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{9024FE65-46B8-4C8A-9D98-8DCB6BD5F598}" = „Windows Live Mesh ActiveX“ nuotolinių ryšių valdiklis
"{902585EB-8FA3-43A5-AD1C-5C9821A77114}" = Messenger Pratilac
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{9447F2A6-D7DC-CE76-048A-8516B609EB50}" = CCC Help Russian
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{96CED827-FA06-2D08-77EF-35F30E29BFB5}" = CCC Help Czech
"{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}" = JMicron Ethernet Adapter NDIS Driver
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{987B04C4-B5AC-4AD6-A7E9-8D681085B850}" = AMD USB Filter Driver
"{99BE7F5D-AB52-4404-9E03-4240FFAA7DE9}" = Windows Live Mesh
"{9A3BFAF0-DF21-5F6D-6E31-C546E6DA523B}" = CCC Help Chinese Standard
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9E771D5B-C429-4CBC-8730-3EBD9EC99E4C}" = Windows Live Movie Maker
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A0E4B02B-FB3A-4CB7-19CE-9CBE8CF1D804}" = Catalyst Control Center InstallProxy
"{A101F637-2E56-42C0-8E08-F1E9086BFAF3}" = Windows Live Movie Maker
"{A1668729-C4D2-49AE-877B-FB608362FFF1}" = Windows Live Essentials
"{A25C3D1A-F5F6-CED5-404D-F152B3A95A51}" = CCC Help Finnish
"{A3A775C9-5A63-4C55-8FDD-427A5B8F5D2B}" = Windows Live Mesh ActiveX vadīkla attālajiem savienojumiem
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}" = ATK Package
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{ABE2F2AA-7ADC-4717-9573-BF3F83C696AC}" = Windows Live Mail
"{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}" = Windows Live Mesh
"{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}" = Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych
"{B0AD205F-60D0-4084-AFB8-34D9A706D9A8}" = Windows Live Essentials
"{B3BA4D1C-23EF-4859-9C11-1B2CCB7FADBB}" = ActiveX контрола на Windows Live Mesh за отдалечени връзки
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B480904D-F73F-4673-B034-8A5F492C9184}" = Nuance PDF Reader
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B7B67AA5-12DA-4F01-918D-B1BF66779D8A}" = Windows Live Writer Resources
"{B81722D3-0A95-4BDE-AA1A-A2A5D12FCDB2}" = Windows Live Foto-galerija
"{B9B66F77-9D00-4CA4-BDF1-BBA8236B4DB6}" = Windows Live Writer
"{BC4CBCD1-4000-4F30-A642-3FA646E5CFF8}" = Windows Live UX Platform Language Pack
"{BCE569F8-0FD7-6D17-4AF0-0C1422C566F0}" = CCC Help German
"{BD4EBDB5-EB14-4120-BB04-BE0A26C7FB3E}" = Windows Live Photo Common
"{BD8DA595-F501-4ABE-85A0-5C23E82472A0}" = Pomocnik Messenger
"{BDB90415-B244-9050-F9FE-0255CE5571FD}" = ccc-core-static
"{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh
"{C011E1C5-86F7-4EEB-B7E6-0C367CED97B2}" = Windows Live UX Platform Language Pack
"{C01FCACE-CC3D-49A2-ADC2-583A49857C58}" = Windows Live Essentials
"{C08D5964-C42F-48EE-A893-2396F9562A7C}" = Windows Live Mesh
"{C1C9D199-B4DD-4895-92DD-9A726A2FE341}" = Windows Live Writer
"{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}" = Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C7DEE8F5-29D4-4A5E-823B-4A7850C5E53D}" = Windows Live'i fotogalerii
"{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}" = Windows Live Mail
"{C877E454-FA36-409A-A00E-1240CEC61BBD}" = „Windows Live“ fotogalerija
"{CA227A9D-09BE-4BFB-9764-48FED2DA5454}" = Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave
"{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live
"{CB66242D-12B1-4494-82D2-6F53A7E024A3}" = Galerie foto Windows Live
"{CBD4DE5E-7525-58CB-A844-7A69C7BF6DE0}" = CCC Help English
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF936193-C584-458C-B793-15FA945621AF}" = Windows Live fotoattēlu galerija
"{CF9DEFAA-12CD-4D04-AA45-F9F667D21E2E}" = Windows Live Movie Maker
"{D06F10C5-3EDD-4B29-A3B5-16BBB9A047F8}" = Windows Live Mesh
"{D07B1FDA-876B-4914-9E9A-309732B6D44F}" = Windows Live Mail
"{D08BDF7F-9464-353C-E4D0-6DAB543EEA99}" = CCC Help Thai
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D27DF849-C8C7-4892-A7F1-E0B381A1BD01}" = Windows Live Writer
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D4F81B27-4054-4AD6-A588-265508BAA17C}" = Messenger Companion
"{D5A4E5F3-9ACD-412E-B380-F838DF9787B9}" = Windows Live Writer Resources
"{D6450C59-1C04-3E48-0840-913D4D4BD273}" = CCC Help Japanese
"{D987098B-3AD4-4E88-B80E-CF27A32D1955}" = Windows Live Writer Resources
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE80FE1E-79B9-984E-5857-DCF1DBF5B774}" = CCC Help Swedish
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3839628-F67D-40E7-BEF9-C0FEBABABB52}" = Messengeri kaaslane
"{E5377D46-83C5-445A-A1F1-830336B42A10}" = Windows Live Galerija fotografija
"{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer
"{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}" = Fotogalerija Windows Live
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{E7101238-3463-6C3C-50C2-05A3D9C3F780}" = CCC Help Norwegian
"{E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1" = Game Park Console
"{EAB1BDF2-734A-4D44-9169-7615D185C974}" = Windows Live Mesh
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EC20FB81-9B5E-4B97-92A2-8DC52548EFCE}" = Windows Live Mesh
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{EE492B20-FB15-4A98-883C-3054354A11F8}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F14F9EE9-9B68-42B4-90F7-0924F7619281}" = Spremljevalec Messenger
"{F3ECEB0A-82A0-4DB9-BB44-393A66BA0871}" = Messenger kísérő
"{F66430D8-08E6-4C96-B9B7-90E66E27D58C}" = Windows Live Mail
"{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker
"{FA6CF94F-DACF-4FE7-959D-55C421B91B17}" = Windows Live Mail
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FEA0181F-3758-46DA-B7EC-F3CDFA7E0CE7}" = Помощник на Messenger
"{FEEF7F78-5876-438B-B554-C4CC426A4302}" = Windows Live Essentials
"{FF737490-5A2D-4269-9D82-97DB2F7C0B09}" = Windows Live Movie Maker
"{FFF8D436-0A41-4BB0-8E9B-6256B07AF66B}" = Windows Live UX Platform Language Pack
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Asus Vibe2.0" = AsusVibe2.0
"avast" = avast! Free Antivirus
"Bookworm Deluxe" = Bookworm Deluxe
"Cooking Dash" = Cooking Dash
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Google Chrome" = Google Chrome
"Governor of Poker" = Governor of Poker
"Hotel Dash Suite Success" = Hotel Dash Suite Success
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"Jewel Quest 3" = Jewel Quest 3
"K_Series_ScreenSaver_EN_2" = K_Series_ScreenSaver_EN_2
"Luxor 3" = Luxor 3
"Mahjongg dimensions" = Mahjongg dimensions
"Mozilla Firefox 5.0.1 (x86 cs)" = Mozilla Firefox 5.0.1 (x86 cs)
"OMUI.cs-cz" = Microsoft Office Language Pack 2007 - Czech/èeština
"Plants vs Zombies" = Plants vs Zombies
"WinLiveSuite" = Windows Live Essentials
"World of Goo" = World of Goo

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP 2010" = QIP 2010 3.1.5890

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 9.8.2011 10:54:15 | Computer Name = okay-PC | Source = Google Update | ID = 20
Description =

Error - 9.8.2011 11:15:36 | Computer Name = okay-PC | Source = Google Update | ID = 20
Description =

Error - 9.8.2011 11:54:15 | Computer Name = okay-PC | Source = Google Update | ID = 20
Description =

Error - 9.8.2011 12:15:36 | Computer Name = okay-PC | Source = Google Update | ID = 20
Description =

Error - 9.8.2011 12:54:15 | Computer Name = okay-PC | Source = Google Update | ID = 20
Description =

Error - 9.8.2011 14:59:50 | Computer Name = okay-PC | Source = Google Update | ID = 20
Description =

Error - 9.8.2011 15:02:16 | Computer Name = okay-PC | Source = Google Update | ID = 20
Description =

Error - 9.8.2011 16:34:22 | Computer Name = okay-PC | Source = Google Update | ID = 20
Description =

Error - 9.8.2011 10:07:02 | Computer Name = okay-PC | Source = Microsoft-Windows-RestartManager | ID = 10006
Description = Aplikaci nebo službu Panel nástrojů Bing nelze ukončit.

Error - 9.8.2011 10:07:02 | Computer Name = okay-PC | Source = Microsoft-Windows-RestartManager | ID = 10006
Description = Aplikaci nebo službu Internet Explorer nelze ukončit.

[ System Events ]
Error - 9.8.2011 10:07:21 | Computer Name = okay-PC | Source = Service Control Manager | ID = 7034
Description = Služba Trend Micro Solution Platform byla neočekávaně ukončena. Tento
stav nastal již 1krát.

Error - 9.8.2011 11:37:03 | Computer Name = okay-PC | Source = bowser | ID = 8003
Description =

Error - 9.8.2011 16:13:17 | Computer Name = Martinka | Source = bowser | ID = 8003
Description =

Error - 10.8.2011 7:17:50 | Computer Name = Martinka | Source = Service Control Manager | ID = 7043
Description = Služba Instalační služba modulů systému Windows se po přijetí pokynu
pro vypnutí neukončila správně.

Error - 10.8.2011 7:17:52 | Computer Name = Martinka | Source = Service Control Manager | ID = 7023
Description = Služba Instalační služba modulů systému Windows byla ukončena s následující
chybou: %%32

Error - 10.8.2011 7:38:35 | Computer Name = Martinka | Source = Service Control Manager | ID = 7023
Description = Služba Instalační služba modulů systému Windows byla ukončena s následující
chybou: %%16405

Error - 10.8.2011 7:38:51 | Computer Name = Martinka | Source = DCOM | ID = 10010
Description =

Error - 10.8.2011 7:38:51 | Computer Name = Martinka | Source = Microsoft-Windows-LanguagePackSetup | ID = 1000
Description = Nepodařilo se inicializovat klienta CBS. Poslední chyba: 0x80080005

Error - 10.8.2011 7:38:51 | Computer Name = Martinka | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description = Nepodařilo se spustit průvodce instalací jazykové sady. Restartujte
systém a zkuste znovu spustit průvodce.

Error - 10.8.2011 15:58:51 | Computer Name = Martinka | Source = bowser | ID = 8003
Description =

< End of report >

_-M3-_ · #7 Příspěvek od **_-M3-_** » 13 srp 2011 16:24

http://leteckaposta.cz/718846603 tady je soubor OTL.txt má to 190tis znaků tudíž bych to musel rozkouskovat

#8 Příspěvek od **vyosek** » 13 srp 2011 20:03

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
IE - HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
IE - HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
IE - HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages =  [binary data]
IE - HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
IE - HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-842715117-2458071352-2678682596-1000\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-842715117-2458071352-2678682596-1000\..\URLSearchHook: {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
FF - prefs.js..browser.search.defaultenginename: "QIP Search"
FF - prefs.js..browser.search.selectedEngine: "QIP Search"
FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query="
[2011.08.09 16:36:39 | 000,000,000 | ---D | M] (QipAuthorizer) -- C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
[2011.08.09 17:54:05 | 000,002,062 | ---- | M] () -- C:\Users\okay\AppData\Roaming\Mozilla\Firefox\Profiles\os2ap7mg.default\searchplugins\qip-search.xml
O2 - BHO: (QipLI Class) - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} -  File not found
O2 - BHO: (QIPBHO Class) - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [ASUS WebStorage]  File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin]  File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin]  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[8 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[20 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QIP Internet Guardian]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"=-
"UpdateP2GoShortCut"=-
"Nuance PDF Reader-reminder"=-

:services
gupdate
gupdatem
 
:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

_-M3-_ · #9 Příspěvek od **_-M3-_** » 13 srp 2011 20:26

Nestane se s PC nic? Dneska už to asi nechám .

#10 Příspěvek od **vyosek** » 13 srp 2011 20:39

OK, provedte tedy opravu jak bude cas...

_-M3-_ · #11 Příspěvek od **_-M3-_** » 13 srp 2011 21:17

All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Secondary Start Pages| /E : value set successfully!
HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-21-842715117-2458071352-2678682596-1000\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-842715117-2458071352-2678682596-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-842715117-2458071352-2678682596-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{95289393-33EA-4F8D-B952-483415B9C955} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95289393-33EA-4F8D-B952-483415B9C955}\ deleted successfully.
C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll moved successfully.
Prefs.js: "QIP Search" removed from browser.search.defaultenginename
Prefs.js: "QIP Search" removed from browser.search.selectedEngine
Prefs.js: "http://search.qip.ru/search?from=FF&query=" removed from keyword.URL
C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\defaults\preferences folder moved successfully.
C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\defaults folder moved successfully.
C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\components folder moved successfully.
C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\chrome\skin folder moved successfully.
C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\chrome\locale\en-US folder moved successfully.
C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\chrome\locale folder moved successfully.
C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\chrome\content folder moved successfully.
C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}\chrome folder moved successfully.
C:\Users\okay\AppData\Roaming\mozilla\Firefox\Profiles\os2ap7mg.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89} folder moved successfully.
C:\Users\okay\AppData\Roaming\Mozilla\Firefox\Profiles\os2ap7mg.default\searchplugins\qip-search.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6B5863A0-C43F-4C0A-982B-CC0E9125783F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6B5863A0-C43F-4C0A-982B-CC0E9125783F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95289393-33EA-4F8D-B952-483415B9C955}\ not found.
File C:\Users\okay\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet:/pagefile deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPAA42.tmp\System.Management.Automation.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPAA42.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2645.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP48B6.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7C71.tmp\System.Messaging.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7C71.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP83C.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPDC6F.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPECC1.tmp folder deleted successfully.
C:\Windows\Installer\MSIB60C.tmp deleted successfully.
C:\Windows\Temp\CR_88AF0.tmp\SETUP_PATCH.PACKED.7Z deleted successfully.
C:\Windows\Temp\CR_88AF0.tmp folder deleted successfully.
C:\Windows\Temp\DMI8D6.tmp deleted successfully.
C:\Windows\Temp\DMI9913.tmp deleted successfully.
C:\Windows\Temp\DMIA43A.tmp deleted successfully.
C:\Windows\Temp\DMIA83F.tmp deleted successfully.
C:\Windows\Temp\DMIE0BD.tmp deleted successfully.
C:\Windows\Temp\DMIFF35.tmp deleted successfully.
C:\Windows\Temp\IMTCBDC.tmp deleted successfully.
C:\Windows\Temp\IMTCD36.tmp deleted successfully.
C:\Windows\Temp\TS_45A7.tmp deleted successfully.
C:\Windows\Temp\TS_4EEC.tmp deleted successfully.
C:\Windows\Temp\TS_59D5.tmp deleted successfully.
C:\Windows\Temp\TS_5C75.tmp deleted successfully.
C:\Windows\Temp\TS_680A.tmp deleted successfully.
C:\Windows\Temp\TS_6A2D.tmp deleted successfully.
C:\Windows\Temp\TS_7E3A.tmp deleted successfully.
C:\Windows\Temp\TS_84B1.tmp deleted successfully.
C:\Windows\Temp\TS_EFCA.tmp deleted successfully.
C:\Windows\Temp\~FSCBDA.tmp deleted successfully.
C:\Windows\Temp\~IXCBD9.tmp deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QIP Internet Guardian\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\UpdateLBPShortCut deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\UpdateP2GoShortCut deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\Nuance PDF Reader-reminder deleted successfully.
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: okay
->Temp folder emptied: 7522493800 bytes
->Temporary Internet Files folder emptied: 39149974 bytes
->FireFox cache emptied: 108251382 bytes
->Google Chrome cache emptied: 348141460 bytes
->Flash cache emptied: 5088 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 31654537 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50507 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 7 677,00 mb

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: okay
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.26.1 log created on 08132011_221126

Files\Folders moved on Reboot...
C:\Users\okay\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

#12 Příspěvek od **vyosek** » 13 srp 2011 21:20

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Doporucuji provest defragmentaci disku

Nejjednodussi (ale nejmene ucinny) zpusob je pomoci utility ve windowsech
- Kliknete na Tento pocitac, dale na disk kliknete pravym tlacitkem, vyberte Vlastnosti
- prepnete se do zalozky Nastroje
- Nyni vidite pomucky Defragmentace - spustte ji kliknutim na Defragmentovat
- Toto provedte se vsemi disky
Dalsi moznosti (a mnou doporucenou) je pres programek Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
- Program stahnete, nainstalujte (dejte fajfku pryc u yahoo toolbaru) a spustte
- Kliknete na Analyzovat
- Pokud je ve sloupci Fragmentováno vice jak 5%, doporucuji provest defragmentaci (klik na Defragmentovat)
- Postup provedte se vsemi disky
Posledni moznost je pres jednoduchy programek JKDefrag http://www.stahuj.centrum.cz/utility_a_ ... /jkdefrag/
- Vyhodou programku je, ze se neinstaluje
- Staci tedy jen stahnout dle verze vaseho OS a rozbalit
- Nasledne spustit pomoci souboru JKDefrag pripadne JKDefrag64
- Probehne analyza disku a nasledne i defragmentace

Napiste jak se chova ntb

_-M3-_ · #13 Příspěvek od **_-M3-_** » 14 srp 2011 11:58

Tak jo je to už lepší reaguje rychleji díky.

#14 Příspěvek od **vyosek** » 14 srp 2011 14:06

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

A pokud nejsou problemy ci dotazy, je to z me strany vse

VIRY.CZ

Pomalý notebook a proto prosím o preventívku

Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku

Re: Pomalý notebook a proto prosím o preventívku