PC sa začal správať trochu "divne".....neviem, možno je to tým že to je W7...
log (1.časť):
Logfile of random's system information tool 1.08 (written by random/random)
Run by Admin at 2011-03-19 16:30:41
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 17 GB (34%) free of 50 GB
Total RAM: 2991 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:30:49, on 19. 3. 2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files\IDT\WDM\sttray.exe
D:\Program Files\Hercules\Audio\DJ Console Series\HDJSeriesCPL.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
C:\Windows\WindowsMobile\wmdc.exe
D:\Program Files\Alwil Software\Avast5\AvastUI.exe
D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Syncrosoft\POS\H2O\cledx.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
D:\Program Files\ICQ7.4\ICQ.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\windows\system32\SearchFilterHost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\windows\explorer.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
D:\RSIT.exe
C:\Program Files\trend micro\Admin.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [DTRun] c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Hercules DJ Series] D:\Program Files\Hercules\Audio\DJ Console Series\HDJSeriesCPL.exe /boot
O4 - HKLM\..\Run: [Creative SB Monitoring Utility] RunDll32 sbavmon.dll,SBAVMonitor
O4 - HKLM\..\Run: [HPPowerAssistant] C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [avast5] "D:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ZoneAlarm Client] "D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ICQ] "D:\Program Files\ICQ7.4\ICQ.exe" silent loginmode=4
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - D:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - D:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - D:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\system32\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Hercules DJ Control MP3 (HerculesDJControlMP3) - Unknown owner - D:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - D:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\system32\uArcCapture.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
--
End of file - 11854 bytes
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3863125621-3407463611-2706026323-1005Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3863125621-3407463611-2706026323-1005UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2009-12-12 117248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2009-12-03 1471752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-09-23 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2011-01-20 988480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-05 254520]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-08-25 186904]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2009-10-23 563736]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2009-12-16 8192]
"File Sanitizer"=C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2009-12-12 11265536]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-12-03 495711]
"DTRun"=c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2009-11-19 518656]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-06-25 98304]
"Hercules DJ Series"=D:\Program Files\Hercules\Audio\DJ Console Series\HDJSeriesCPL.exe [2009-07-09 505128]
"Creative SB Monitoring Utility"=RunDll32 sbavmon.dll,SBAVMonitor []
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2010-08-23 1691192]
"Windows Mobile Device Center"=C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"avast5"=D:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-01-13 3396624]
"ZoneAlarm Client"=D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2010-11-16 1043968]
"H2O"=C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe [2005-10-23 385024]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-09-23 4240760]
"AdobeBridge"= []
"ICQ"=D:\Program Files\ICQ7.4\ICQ.exe [2011-03-01 119608]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\windows\system32\DeviceNP.dll [2009-11-17 75320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\windows\system32\webcheck.dll [2010-11-20 229376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.reg - open - "regedit.exe" "%1"
======List of files/folders created in the last 1 months======
2011-03-19 11:45:33 ----HD---- C:\windows\AxInstSV
2011-03-14 09:48:22 ----A---- C:\windows\system32\drivers\dtsoftbus01.sys
2011-03-14 09:48:13 ----D---- C:\Program Files\DAEMON Tools Toolbar
2011-03-14 09:48:01 ----D---- C:\Program Files\DAEMON Tools Lite
2011-03-08 20:38:30 ----D---- C:\windows\system32\SPReview
2011-03-08 20:37:42 ----D---- C:\windows\system32\EventProviders
2011-03-08 20:35:02 ----A---- C:\windows\system32\dfshim.dll
2011-03-08 20:34:59 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-03-08 20:34:59 ----A---- C:\windows\system32\drivers\TsUsbFlt.sys
2011-03-08 20:34:58 ----A---- C:\windows\system32\mstscax.dll
2011-03-08 20:34:56 ----A---- C:\windows\system32\mfc40.dll
2011-03-08 20:34:56 ----A---- C:\windows\system32\d3d10warp.dll
2011-03-08 20:34:55 ----A---- C:\windows\system32\sysmain.dll
2011-03-08 20:34:55 ----A---- C:\windows\system32\mfc40u.dll
2011-03-08 20:34:54 ----A---- C:\windows\system32\shell32.dll
2011-03-08 20:34:54 ----A---- C:\windows\system32\secproc_isv.dll
2011-03-08 20:34:53 ----A---- C:\windows\system32\secproc.dll
2011-03-08 20:34:53 ----A---- C:\windows\system32\RMActivate_isv.exe
2011-03-08 20:34:52 ----A---- C:\windows\system32\RMActivate.exe
2011-03-08 20:34:52 ----A---- C:\windows\system32\ieframe.dll
2011-03-08 20:34:51 ----A---- C:\windows\system32\spwizui.dll
2011-03-08 20:34:51 ----A---- C:\windows\system32\mscoree.dll
2011-03-08 20:34:50 ----A---- C:\windows\system32\ntkrnlpa.exe
2011-03-08 20:34:50 ----A---- C:\windows\system32\mf.dll
2011-03-08 20:34:50 ----A---- C:\windows\system32\mcupdate_GenuineIntel.dll
2011-03-08 20:34:49 ----A---- C:\windows\system32\mssrch.dll
2011-03-08 20:34:49 ----A---- C:\windows\system32\iertutil.dll
2011-03-08 20:34:49 ----A---- C:\windows\system32\CertEnroll.dll
2011-03-08 20:34:48 ----A---- C:\windows\system32\wmp.dll
2011-03-08 20:34:48 ----A---- C:\windows\system32\PresentationHostProxy.dll
2011-03-08 20:34:48 ----A---- C:\windows\system32\PresentationHost.exe
2011-03-08 20:34:48 ----A---- C:\windows\system32\esent.dll
2011-03-08 20:34:48 ----A---- C:\windows\system32\drivers\msiscsi.sys
2011-03-08 20:34:48 ----A---- C:\windows\system32\drivers\hwpolicy.sys
2011-03-08 20:34:47 ----A---- C:\windows\system32\tquery.dll
2011-03-08 20:34:47 ----A---- C:\windows\system32\schedsvc.dll
2011-03-08 20:34:47 ----A---- C:\windows\system32\ntoskrnl.exe
2011-03-08 20:34:46 ----A---- C:\windows\system32\RacEngn.dll
2011-03-08 20:34:46 ----A---- C:\windows\system32\ntdll.dll
2011-03-08 20:34:46 ----A---- C:\windows\system32\AuthFWSnapin.dll
2011-03-08 20:34:45 ----A---- C:\windows\system32\wininet.dll
2011-03-08 20:34:45 ----A---- C:\windows\system32\rdpdd.dll
2011-03-08 20:34:45 ----A---- C:\windows\system32\qmgr.dll
2011-03-08 20:34:45 ----A---- C:\windows\system32\ExplorerFrame.dll
2011-03-08 20:34:44 ----A---- C:\windows\system32\wevtsvc.dll
2011-03-08 20:34:44 ----A---- C:\windows\system32\vssapi.dll
2011-03-08 20:34:44 ----A---- C:\windows\system32\urlmon.dll
2011-03-08 20:34:44 ----A---- C:\windows\system32\ole32.dll
2011-03-08 20:34:44 ----A---- C:\windows\system32\drivers\tcpip.sys
2011-03-08 20:34:43 ----A---- C:\windows\system32\taskschd.dll
2011-03-08 20:34:43 ----A---- C:\windows\system32\SearchFolder.dll
2011-03-08 20:34:43 ----A---- C:\windows\system32\IKEEXT.DLL
2011-03-08 20:34:43 ----A---- C:\windows\system32\d3d9.dll
2011-03-08 20:34:43 ----A---- C:\windows\explorer.exe
2011-03-08 20:34:42 ----A---- C:\windows\system32\termsrv.dll
2011-03-08 20:34:42 ----A---- C:\windows\system32\spreview.exe
2011-03-08 20:34:42 ----A---- C:\windows\system32\spinstall.exe
2011-03-08 20:34:42 ----A---- C:\windows\system32\mstsc.exe
2011-03-08 20:34:42 ----A---- C:\windows\system32\kernel32.dll
2011-03-08 20:34:42 ----A---- C:\windows\system32\drivers\ntfs.sys
2011-03-08 20:34:42 ----A---- C:\windows\system32\crypt32.dll
2011-03-08 20:34:41 ----A---- C:\windows\system32\wer.dll
2011-03-08 20:34:41 ----A---- C:\windows\system32\rpcrt4.dll
2011-03-08 20:34:41 ----A---- C:\windows\system32\msxml6.dll
2011-03-08 20:34:41 ----A---- C:\windows\system32\lsasrv.dll
2011-03-08 20:34:41 ----A---- C:\windows\system32\gpsvc.dll
2011-03-08 20:34:41 ----A---- C:\windows\system32\dwmcore.dll
2011-03-08 20:34:41 ----A---- C:\windows\system32\certcli.dll
2011-03-08 20:34:40 ----A---- C:\windows\system32\WinSAT.exe
2011-03-08 20:34:40 ----A---- C:\windows\system32\wbengine.exe
2011-03-08 20:34:40 ----A---- C:\windows\system32\scavengeui.dll
2011-03-08 20:34:40 ----A---- C:\windows\system32\odbc32.dll
2011-03-08 20:34:40 ----A---- C:\windows\system32\mstime.dll
2011-03-08 20:34:40 ----A---- C:\windows\system32\MPSSVC.dll
2011-03-08 20:34:40 ----A---- C:\windows\system32\diagperf.dll
2011-03-08 20:34:39 ----A---- C:\windows\system32\winhttp.dll
2011-03-08 20:34:39 ----A---- C:\windows\system32\TSWorkspace.dll
2011-03-08 20:34:39 ----A---- C:\windows\system32\tsmf.dll
2011-03-08 20:34:39 ----A---- C:\windows\system32\quartz.dll
2011-03-08 20:34:39 ----A---- C:\windows\system32\msfeeds.dll
2011-03-08 20:34:39 ----A---- C:\windows\system32\localspl.dll
2011-03-08 20:34:39 ----A---- C:\windows\system32\iedkcs32.dll
2011-03-08 20:34:39 ----A---- C:\windows\system32\dot3api.dll
2011-03-08 20:34:38 ----A---- C:\windows\system32\VSSVC.exe
2011-03-08 20:34:38 ----A---- C:\windows\system32\setupapi.dll
2011-03-08 20:34:38 ----A---- C:\windows\system32\netlogon.dll
2011-03-08 20:34:38 ----A---- C:\windows\system32\MSVidCtl.dll
2011-03-08 20:34:38 ----A---- C:\windows\system32\drivers\nvstor.sys
2011-03-08 20:34:38 ----A---- C:\windows\system32\dbgeng.dll
2011-03-08 20:34:38 ----A---- C:\windows\system32\apphelp.dll
2011-03-08 20:34:37 ----A---- C:\windows\system32\WindowsCodecs.dll
2011-03-08 20:34:37 ----A---- C:\windows\system32\netcfgx.dll
2011-03-08 20:34:37 ----A---- C:\windows\system32\d3d11.dll
2011-03-08 20:34:36 ----A---- C:\windows\system32\WsmSvc.dll
2011-03-08 20:34:36 ----A---- C:\windows\system32\WMVDECOD.DLL
2011-03-08 20:34:36 ----A---- C:\windows\system32\winlogon.exe
2011-03-08 20:34:36 ----A---- C:\windows\system32\webio.dll
2011-03-08 20:34:36 ----A---- C:\windows\system32\user32.dll
2011-03-08 20:34:36 ----A---- C:\windows\system32\Query.dll
2011-03-08 20:34:36 ----A---- C:\windows\system32\drivers\srv.sys
2011-03-08 20:34:36 ----A---- C:\windows\system32\drivers\rdpwd.sys
2011-03-08 20:34:36 ----A---- C:\windows\system32\advapi32.dll
2011-03-08 20:34:35 ----A---- C:\windows\system32\upnp.dll
2011-03-08 20:34:35 ----A---- C:\windows\system32\schannel.dll
2011-03-08 20:34:35 ----A---- C:\windows\system32\netfxperf.dll
2011-03-08 20:34:35 ----A---- C:\windows\system32\mmcndmgr.dll
2011-03-08 20:34:35 ----A---- C:\windows\system32\DShowRdpFilter.dll
2011-03-08 20:34:35 ----A---- C:\windows\system32\drivers\srv2.sys
2011-03-08 20:34:35 ----A---- C:\windows\system32\drivers\nvraid.sys
2011-03-08 20:34:34 ----A---- C:\windows\system32\sppobjs.dll
2011-03-08 20:34:34 ----A---- C:\windows\system32\SessEnv.dll
2011-03-08 20:34:34 ----A---- C:\windows\system32\PortableDeviceApi.dll
2011-03-08 20:34:34 ----A---- C:\windows\system32\msv1_0.dll
2011-03-08 20:34:34 ----A---- C:\windows\system32\msdrm.dll
2011-03-08 20:34:34 ----A---- C:\windows\system32\lsm.exe
2011-03-08 20:34:34 ----A---- C:\windows\system32\imapi2fs.dll
2011-03-08 20:34:34 ----A---- C:\windows\system32\authui.dll
2011-03-08 20:34:33 ----A---- C:\windows\system32\winload.exe
2011-03-08 20:34:33 ----A---- C:\windows\system32\usp10.dll
2011-03-08 20:34:33 ----A---- C:\windows\system32\userenv.dll
2011-03-08 20:34:33 ----A---- C:\windows\system32\shlwapi.dll
2011-03-08 20:34:33 ----A---- C:\windows\system32\mcbuilder.exe
2011-03-08 20:34:33 ----A---- C:\windows\system32\KernelBase.dll
2011-03-08 20:34:33 ----A---- C:\windows\system32\d3d10_1core.dll
2011-03-08 20:34:33 ----A---- C:\windows\system32\certmgr.dll
2011-03-08 20:34:32 ----A---- C:\windows\system32\xpsservices.dll
2011-03-08 20:34:32 ----A---- C:\windows\system32\WebClnt.dll
2011-03-08 20:34:32 ----A---- C:\windows\system32\umpnpmgr.dll
2011-03-08 20:34:32 ----A---- C:\windows\system32\sppwinob.dll
2011-03-08 20:34:32 ----A---- C:\windows\system32\rpcss.dll
2011-03-08 20:34:32 ----A---- C:\windows\system32\iphlpsvc.dll
2011-03-08 20:34:32 ----A---- C:\windows\system32\comdlg32.dll
2011-03-08 20:34:32 ----A---- C:\windows\system32\cmd.exe
2011-03-08 20:34:32 ----A---- C:\windows\system32\audiosrv.dll
2011-03-08 20:34:31 ----A---- C:\windows\system32\Wldap32.dll
2011-03-08 20:34:31 ----A---- C:\windows\system32\win32spl.dll
2011-03-08 20:34:31 ----A---- C:\windows\system32\propsys.dll
2011-03-08 20:34:31 ----A---- C:\windows\system32\nlasvc.dll
2011-03-08 20:34:31 ----A---- C:\windows\system32\mfds.dll
2011-03-08 20:34:31 ----A---- C:\windows\system32\framedynos.dll
2011-03-08 20:34:31 ----A---- C:\windows\system32\drivers\volsnap.sys
2011-03-08 20:34:31 ----A---- C:\windows\system32\dnsapi.dll
2011-03-08 20:34:31 ----A---- C:\windows\system32\BFE.DLL
2011-03-08 20:34:30 ----A---- C:\windows\system32\wucltux.dll
2011-03-08 20:34:30 ----A---- C:\windows\system32\wuaueng.dll
2011-03-08 20:34:30 ----A---- C:\windows\system32\winresume.exe
2011-03-08 20:34:30 ----A---- C:\windows\system32\samsrv.dll
2011-03-08 20:34:30 ----A---- C:\windows\system32\profsvc.dll
2011-03-08 20:34:30 ----A---- C:\windows\system32\ncsi.dll
2011-03-08 20:34:30 ----A---- C:\windows\system32\drivers\netio.sys
2011-03-08 20:34:30 ----A---- C:\windows\system32\drivers\ndis.sys
2011-03-08 20:34:30 ----A---- C:\windows\system32\azroles.dll
2011-03-08 20:34:29 ----A---- C:\windows\system32\werconcpl.dll
2011-03-08 20:34:29 ----A---- C:\windows\system32\themeui.dll
2011-03-08 20:34:29 ----A---- C:\windows\system32\taskeng.exe
2011-03-08 20:34:29 ----A---- C:\windows\system32\spp.dll
2011-03-08 20:34:29 ----A---- C:\windows\system32\mswsock.dll
2011-03-08 20:34:29 ----A---- C:\windows\system32\drivers\storport.sys
2011-03-08 20:34:29 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2011-03-08 20:34:29 ----A---- C:\windows\system32\dhcpcore.dll
2011-03-08 20:34:29 ----A---- C:\windows\system32\credui.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\wintrust.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\taskcomp.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\NaturalLanguage6.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\msxml3.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\mfreadwrite.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\inetcomm.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\evr.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\dxgi.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\drivers\mrxdav.sys
2011-03-08 20:34:28 ----A---- C:\windows\system32\drivers\http.sys
2011-03-08 20:34:28 ----A---- C:\windows\system32\dbghelp.dll
2011-03-08 20:34:28 ----A---- C:\windows\system32\basecsp.dll
2011-03-08 20:34:27 ----A---- C:\windows\system32\WinSATAPI.dll
2011-03-08 20:34:27 ----A---- C:\windows\system32\vpnike.dll
2011-03-08 20:34:27 ----A---- C:\windows\system32\sqlsrv32.dll
2011-03-08 20:34:27 ----A---- C:\windows\system32\spoolsv.exe
2011-03-08 20:34:27 ----A---- C:\windows\system32\QAGENTRT.DLL
2011-03-08 20:34:27 ----A---- C:\windows\system32\gdi32.dll
2011-03-08 20:34:27 ----A---- C:\windows\system32\drivers\amdsata.sys
2011-03-08 20:34:27 ----A---- C:\windows\system32\drivers\1394ohci.sys
2011-03-08 20:34:27 ----A---- C:\windows\system32\calc.exe
2011-03-08 20:34:26 ----A---- C:\windows\system32\UIRibbon.dll
2011-03-08 20:34:26 ----A---- C:\windows\system32\sxs.dll
2011-03-08 20:34:26 ----A---- C:\windows\system32\srvsvc.dll
2011-03-08 20:34:26 ----A---- C:\windows\system32\lpksetup.exe
2011-03-08 20:34:26 ----A---- C:\windows\system32\ie4uinit.exe
2011-03-08 20:34:26 ----A---- C:\windows\system32\fveapi.dll
2011-03-08 20:34:26 ----A---- C:\windows\system32\drivers\fvevol.sys
2011-03-08 20:34:26 ----A---- C:\windows\system32\cryptsvc.dll
2011-03-08 20:34:25 ----A---- C:\windows\system32\ws2_32.dll
2011-03-08 20:34:25 ----A---- C:\windows\system32\stobject.dll
2011-03-08 20:34:25 ----A---- C:\windows\system32\prncache.dll
2011-03-08 20:34:25 ----A---- C:\windows\system32\printui.dll
2011-03-08 20:34:25 ----A---- C:\windows\system32\netshell.dll
2011-03-08 20:34:25 ----A---- C:\windows\system32\inetpp.dll
2011-03-08 20:34:25 ----A---- C:\windows\system32\hgprint.dll
2011-03-08 20:34:25 ----A---- C:\windows\system32\drivers\rdbss.sys
2011-03-08 20:34:25 ----A---- C:\windows\system32\drivers\msdsm.sys
2011-03-08 20:34:25 ----A---- C:\windows\system32\comctl32.dll
2011-03-08 20:34:24 ----A---- C:\windows\system32\WSDApi.dll
2011-03-08 20:34:24 ----A---- C:\windows\system32\wmpeffects.dll
2011-03-08 20:34:24 ----A---- C:\windows\system32\rpchttp.dll
2011-03-08 20:34:24 ----A---- C:\windows\system32\net1.exe
2011-03-08 20:34:24 ----A---- C:\windows\system32\msi.dll
2011-03-08 20:34:24 ----A---- C:\windows\system32\dps.dll
2011-03-08 20:34:24 ----A---- C:\windows\system32\dnsrslvr.dll
2011-03-08 20:34:24 ----A---- C:\windows\system32\ci.dll
2011-03-08 20:34:24 ----A---- C:\windows\system32\aitagent.exe
2011-03-08 20:34:24 ----A---- C:\windows\system32\aepdu.dll
2011-03-08 20:34:23 ----A---- C:\windows\system32\vds.exe
2011-03-08 20:34:23 ----A---- C:\windows\system32\scansetting.dll
2011-03-08 20:34:23 ----A---- C:\windows\system32\mfc42u.dll
2011-03-08 20:34:23 ----A---- C:\windows\system32\FXSSVC.exe
2011-03-08 20:34:23 ----A---- C:\windows\system32\drivers\pci.sys
2011-03-08 20:34:23 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2011-03-08 20:34:22 ----A---- C:\windows\system32\WMVCORE.DLL
2011-03-08 20:34:22 ----A---- C:\windows\system32\wlangpui.dll
2011-03-08 20:34:22 ----A---- C:\windows\system32\QSHVHOST.DLL
2011-03-08 20:34:22 ----A---- C:\windows\system32\MMDevAPI.dll
2011-03-08 20:34:22 ----A---- C:\windows\system32\IPSECSVC.DLL
2011-03-08 20:34:22 ----A---- C:\windows\system32\drivers\usbport.sys
2011-03-08 20:34:22 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2011-03-08 20:34:22 ----A---- C:\windows\system32\davclnt.dll
2011-03-08 20:34:22 ----A---- C:\windows\system32\consent.exe
2011-03-08 20:34:22 ----A---- C:\windows\system32\aaclient.dll
2011-03-08 20:34:21 ----A---- C:\windows\system32\wpdshext.dll
2011-03-08 20:34:21 ----A---- C:\windows\system32\webservices.dll
2011-03-08 20:34:21 ----A---- C:\windows\system32\t2embed.dll
2011-03-08 20:34:21 ----A---- C:\windows\system32\pnidui.dll
2011-03-08 20:34:21 ----A---- C:\windows\system32\fde.dll
2011-03-08 20:34:21 ----A---- C:\windows\system32\drivers\termdd.sys
2011-03-08 20:34:20 ----A---- C:\windows\system32\wuapi.dll
2011-03-08 20:34:20 ----A---- C:\windows\system32\wscapi.dll
2011-03-08 20:34:20 ----A---- C:\windows\system32\TsUsbGDCoInstaller.dll
2011-03-08 20:34:20 ----A---- C:\windows\system32\SyncCenter.dll
2011-03-08 20:34:20 ----A---- C:\windows\system32\sdengin2.dll
2011-03-08 20:34:20 ----A---- C:\windows\system32\netdiagfx.dll
2011-03-08 20:34:20 ----A---- C:\windows\system32\drivers\sbp2port.sys
2011-03-08 20:34:20 ----A---- C:\windows\system32\drivers\amdxata.sys
2011-03-08 20:34:19 ----A---- C:\windows\system32\wisptis.exe
2011-03-08 20:34:19 ----A---- C:\windows\system32\WinSCard.dll
2011-03-08 20:34:19 ----A---- C:\windows\system32\WFS.exe
2011-03-08 20:34:19 ----A---- C:\windows\system32\pla.dll
2011-03-08 20:34:19 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2011-03-08 20:34:19 ----A---- C:\windows\system32\msasn1.dll
2011-03-08 20:34:19 ----A---- C:\windows\system32\mcmde.dll
2011-03-08 20:34:19 ----A---- C:\windows\system32\drivers\vhdmp.sys
2011-03-08 20:34:18 ----A---- C:\windows\system32\WUDFSvc.dll
2011-03-08 20:34:18 ----A---- C:\windows\system32\winsta.dll
2011-03-08 20:34:18 ----A---- C:\windows\system32\wiaservc.dll
2011-03-08 20:34:18 ----A---- C:\windows\system32\setupcl.exe
2011-03-08 20:34:18 ----A---- C:\windows\system32\rdpcore.dll
2011-03-08 20:34:18 ----A---- C:\windows\system32\ntshrui.dll
2011-03-08 20:34:18 ----A---- C:\windows\system32\imapi2.dll
2011-03-08 20:34:18 ----A---- C:\windows\system32\iepeers.dll
2011-03-08 20:34:18 ----A---- C:\windows\system32\DXPTaskRingtone.dll
2011-03-08 20:34:18 ----A---- C:\windows\system32\drivers\msahci.sys
2011-03-08 20:34:18 ----A---- C:\windows\system32\conhost.exe
2011-03-08 20:34:18 ----A---- C:\windows\system32\aeinv.dll
2011-03-08 20:34:17 ----A---- C:\windows\system32\gameux.dll
2011-03-08 20:34:17 ----A---- C:\windows\system32\dwmredir.dll
2011-03-08 20:34:17 ----A---- C:\windows\system32\drivers\Diskdump.sys
2011-03-08 20:34:16 ----A---- C:\windows\system32\WMPEncEn.dll
2011-03-08 20:34:16 ----A---- C:\windows\system32\winmm.dll
2011-03-08 20:34:16 ----A---- C:\windows\system32\vaultsvc.dll
2011-03-08 20:34:16 ----A---- C:\windows\system32\TabSvc.dll
2011-03-08 20:34:16 ----A---- C:\windows\system32\shsvcs.dll
2011-03-08 20:34:16 ----A---- C:\windows\system32\rasmans.dll
2011-03-08 20:34:16 ----A---- C:\windows\system32\onex.dll
2011-03-08 20:34:16 ----A---- C:\windows\system32\mssvp.dll
2011-03-08 20:34:16 ----A---- C:\windows\system32\hbaapi.dll
2011-03-08 20:34:16 ----A---- C:\windows\system32\drivers\udfs.sys
2011-03-08 20:34:16 ----A---- C:\windows\system32\drivers\acpi.sys
2011-03-08 20:34:16 ----A---- C:\windows\system32\autofmt.exe
2011-03-08 20:34:15 ----A---- C:\windows\system32\samcli.dll
2011-03-08 20:34:15 ----A---- C:\windows\system32\proquota.exe
2011-03-08 20:34:15 ----A---- C:\windows\system32\netiohlp.dll
2011-03-08 20:34:15 ----A---- C:\windows\system32\Narrator.exe
2011-03-08 20:34:15 ----A---- C:\windows\system32\msutb.dll
2011-03-08 20:34:15 ----A---- C:\windows\system32\IPHLPAPI.DLL
2011-03-08 20:34:15 ----A---- C:\windows\system32\halmacpi.dll
2011-03-08 20:34:15 ----A---- C:\windows\system32\hal.dll
2011-03-08 20:34:15 ----A---- C:\windows\system32\bootres.dll
2011-03-08 20:34:15 ----A---- C:\windows\system32\autochk.exe
2011-03-08 20:34:15 ----A---- C:\windows\system32\autoconv.exe
2011-03-08 20:34:15 ----A---- C:\windows\system32\AudioSes.dll
2011-03-08 20:34:15 ----A---- C:\windows\system32\audiodg.exe
2011-03-08 20:34:14 ----A---- C:\windows\system32\wcncsvc.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\thumbcache.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\tcpipcfg.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\srchadmin.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\schtasks.exe
2011-03-08 20:34:14 ----A---- C:\windows\system32\regapi.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\powercpl.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\msinfo32.exe
2011-03-08 20:34:14 ----A---- C:\windows\system32\msihnd.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\mimefilt.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\ipsmsnap.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\framedyn.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\eapphost.dll
2011-03-08 20:34:14 ----A---- C:\windows\system32\drivers\winusb.sys
2011-03-08 20:34:14 ----A---- C:\windows\system32\drivers\volmgr.sys
2011-03-08 20:34:14 ----A---- C:\windows\system32\drivers\srvnet.sys
2011-03-08 20:34:13 ----A---- C:\windows\system32\umpo.dll
2011-03-08 20:34:13 ----A---- C:\windows\system32\sspicli.dll
2011-03-08 20:34:13 ----A---- C:\windows\system32\QAGENT.DLL
2011-03-08 20:34:13 ----A---- C:\windows\system32\netid.dll
2011-03-08 20:34:13 ----A---- C:\windows\system32\mscorier.dll
2011-03-08 20:34:13 ----A---- C:\windows\system32\FXSCOVER.exe
2011-03-08 20:34:13 ----A---- C:\windows\system32\DXP.dll
2011-03-08 20:34:13 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2011-03-08 20:34:13 ----A---- C:\windows\system32\drivers\partmgr.sys
2011-03-08 20:34:13 ----A---- C:\windows\system32\drivers\netbt.sys
2011-03-08 20:34:13 ----A---- C:\windows\system32\AuxiliaryDisplayCpl.dll
2011-03-08 20:34:12 ----A---- C:\windows\system32\wdc.dll
2011-03-08 20:34:12 ----A---- C:\windows\system32\untfs.dll
2011-03-08 20:34:12 ----A---- C:\windows\system32\StructuredQuery.dll
2011-03-08 20:34:12 ----A---- C:\windows\system32\scesrv.dll
2011-03-08 20:34:12 ----A---- C:\windows\system32\rastls.dll
2011-03-08 20:34:12 ----A---- C:\windows\system32\oleaut32.dll
2011-03-08 20:34:12 ----A---- C:\windows\system32\drivers\ataport.sys
2011-03-08 20:34:12 ----A---- C:\windows\system32\actxprxy.dll
2011-03-08 20:34:11 ----A---- C:\windows\system32\WMNetMgr.dll
2011-03-08 20:34:11 ----A---- C:\windows\system32\wlanpref.dll
2011-03-08 20:34:11 ----A---- C:\windows\system32\Vault.dll
2011-03-08 20:34:11 ----A---- C:\windows\system32\sppsvc.exe
2011-03-08 20:34:11 ----A---- C:\windows\system32\sdclt.exe
2011-03-08 20:34:11 ----A---- C:\windows\system32\RpcRtRemote.dll
2011-03-08 20:34:11 ----A---- C:\windows\system32\Robocopy.exe
2011-03-08 20:34:11 ----A---- C:\windows\system32\nci.dll
2011-03-08 20:34:11 ----A---- C:\windows\system32\ListSvc.dll
2011-03-08 20:34:11 ----A---- C:\windows\system32\licmgr10.dll
2011-03-08 20:34:10 ----A---- C:\windows\system32\taskmgr.exe
2011-03-08 20:34:10 ----A---- C:\windows\system32\mtxclu.dll
2011-03-08 20:34:10 ----A---- C:\windows\system32\DxpTaskSync.dll
2011-03-08 20:34:10 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2011-03-08 20:34:10 ----A---- C:\windows\system32\Display.dll
2011-03-08 20:34:09 ----A---- C:\windows\system32\XpsRasterService.dll
2011-03-08 20:34:09 ----A---- C:\windows\system32\userinit.exe
2011-03-08 20:34:09 ----A---- C:\windows\system32\sharemediacpl.dll
2011-03-08 20:34:09 ----A---- C:\windows\system32\puiobj.dll
2011-03-08 20:34:09 ----A---- C:\windows\system32\mssphtb.dll
2011-03-08 20:34:09 ----A---- C:\windows\system32\msdri.dll
2011-03-08 20:34:09 ----A---- C:\windows\system32\drivers\usbvideo.sys
2011-03-08 20:34:09 ----A---- C:\windows\system32\drivers\mpio.sys
2011-03-08 20:34:09 ----A---- C:\windows\system32\drivers\mountmgr.sys
2011-03-08 20:34:09 ----A---- C:\windows\system32\drivers\iaStorV.sys
2011-03-08 20:34:08 ----A---- C:\windows\system32\termmgr.dll
2011-03-08 20:34:08 ----A---- C:\windows\system32\eudcedit.exe
2011-03-08 20:34:08 ----A---- C:\windows\system32\drivers\usbehci.sys
2011-03-08 20:34:08 ----A---- C:\windows\system32\drivers\scsiport.sys
2011-03-08 20:34:08 ----A---- C:\windows\system32\DiagCpl.dll
2011-03-08 20:34:07 ----A---- C:\windows\system32\wiadefui.dll
2011-03-08 20:34:07 ----A---- C:\windows\system32\sppcomapi.dll
2011-03-08 20:34:07 ----A---- C:\windows\system32\shsetup.dll
2011-03-08 20:34:07 ----A---- C:\windows\system32\rasppp.dll
2011-03-08 20:34:07 ----A---- C:\windows\system32\msdtctm.dll
2011-03-08 20:34:07 ----A---- C:\windows\system32\msconfig.exe
2011-03-08 20:34:07 ----A---- C:\windows\system32\logoncli.dll
2011-03-08 20:34:07 ----A---- C:\windows\system32\FirewallControlPanel.dll
2011-03-08 20:34:07 ----A---- C:\windows\system32\cabview.dll
2011-03-08 20:34:07 ----A---- C:\windows\system32\biocpl.dll
2011-03-08 20:34:06 ----A---- C:\windows\system32\wpccpl.dll
2011-03-08 20:34:06 ----A---- C:\windows\system32\themecpl.dll
2011-03-08 20:34:06 ----A---- C:\windows\system32\SensorsCpl.dll
2011-03-08 20:34:06 ----A---- C:\windows\system32\FWPUCLNT.DLL
2011-03-08 20:34:06 ----A---- C:\windows\system32\drivers\rdyboost.sys
2011-03-08 20:34:06 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2011-03-08 20:34:06 ----A---- C:\windows\system32\dnscmmc.dll
2011-03-08 20:34:05 ----A---- C:\windows\system32\winsrv.dll
2011-03-08 20:34:05 ----A---- C:\windows\system32\tapisrv.dll
2011-03-08 20:34:05 ----A---- C:\windows\system32\scecli.dll
2011-03-08 20:34:05 ----A---- C:\windows\system32\mscories.dll
2011-03-08 20:34:05 ----A---- C:\windows\system32\mscms.dll
2011-03-08 20:34:05 ----A---- C:\windows\system32\localsec.dll
2011-03-08 20:34:05 ----A---- C:\windows\system32\hgcpl.dll
2011-03-08 20:34:05 ----A---- C:\windows\system32\fontext.dll
2011-03-08 20:34:05 ----A---- C:\windows\system32\drivers\ksecdd.sys
2011-03-08 20:34:04 ----A---- C:\windows\system32\wlanui.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\wkssvc.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\VAN.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\usercpl.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\srcore.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\SndVolSSO.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\qedit.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\prntvpt.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\PerfCenterCPL.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\mprddm.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\KMSVC.DLL
2011-03-08 20:34:04 ----A---- C:\windows\system32\iasacct.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\drivers\usbhub.sys
2011-03-08 20:34:04 ----A---- C:\windows\system32\bcdsrv.dll
2011-03-08 20:34:04 ----A---- C:\windows\system32\batmeter.dll
2011-03-08 20:34:03 ----A---- C:\windows\system32\wpdbusenum.dll
2011-03-08 20:34:03 ----A---- C:\windows\system32\wksprt.exe
2011-03-08 20:34:03 ----A---- C:\windows\system32\w32tm.exe
2011-03-08 20:34:03 ----A---- C:\windows\system32\spwizeng.dll
2011-03-08 20:34:03 ----A---- C:\windows\system32\SndVol.exe
2011-03-08 20:34:03 ----A---- C:\windows\system32\qdvd.dll
2011-03-08 20:34:03 ----A---- C:\windows\system32\netcenter.dll
2011-03-08 20:34:03 ----A---- C:\windows\system32\mblctr.exe
2011-03-08 20:34:03 ----A---- C:\windows\system32\drivers\afd.sys
2011-03-08 20:34:03 ----A---- C:\windows\system32\azroleui.dll
2011-03-08 20:34:03 ----A---- C:\windows\system32\accessibilitycpl.dll
2011-03-08 20:34:02 ----A---- C:\windows\system32\zipfldr.dll
2011-03-08 20:34:02 ----A---- C:\windows\system32\networkmap.dll
2011-03-08 20:34:02 ----A---- C:\windows\system32\netjoin.dll
2011-03-08 20:34:02 ----A---- C:\windows\system32\MSAC3ENC.DLL
2011-03-08 20:34:02 ----A---- C:\windows\system32\fdeploy.dll
2011-03-08 20:34:02 ----A---- C:\windows\system32\drivers\ks.sys
2011-03-08 20:34:02 ----A---- C:\windows\system32\cryptui.dll
2011-03-08 20:34:02 ----A---- C:\windows\system32\adsldp.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\wusa.exe
2011-03-08 20:34:01 ----A---- C:\windows\system32\sud.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\prnfldr.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\photowiz.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\OnLineIDCpl.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\mspbda.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\msieftp.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\MCEWMDRMNDBootstrap.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\Faultrep.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\cfgmgr32.dll
2011-03-08 20:34:01 ----A---- C:\windows\system32\ActionCenter.dll
2011-03-08 20:34:00 ----A---- C:\windows\system32\taskhost.exe
2011-03-08 20:34:00 ----A---- C:\windows\system32\taskbarcpl.dll
2011-03-08 20:34:00 ----A---- C:\windows\system32\slui.exe
2011-03-08 20:34:00 ----A---- C:\windows\system32\rdpcorekmts.dll
2011-03-08 20:34:00 ----A---- C:\windows\system32\MediaMetadataHandler.dll
2011-03-08 20:34:00 ----A---- C:\windows\system32\iprtrmgr.dll
2011-03-08 20:34:00 ----A---- C:\windows\system32\iasrad.dll
2011-03-08 20:34:00 ----A---- C:\windows\system32\drivers\hidclass.sys
2011-03-08 20:34:00 ----A---- C:\windows\system32\dot3cfg.dll
2011-03-08 20:34:00 ----A---- C:\windows\system32\defaultlocationcpl.dll
2011-03-08 20:34:00 ----A---- C:\windows\system32\credssp.dll
2011-03-08 20:33:59 ----A---- C:\windows\system32\wpd_ci.dll
2011-03-08 20:33:59 ----A---- C:\windows\system32\sisbkup.dll
2011-03-08 20:33:59 ----A---- C:\windows\system32\shwebsvc.dll
2011-03-08 20:33:59 ----A---- C:\windows\system32\odbcjt32.dll
2011-03-08 20:33:59 ----A---- C:\windows\system32\ifsutil.dll
2011-03-08 20:33:59 ----A---- C:\windows\system32\ieUnatt.exe
2011-03-08 20:33:59 ----A---- C:\windows\system32\iesysprep.dll
2011-03-08 20:33:59 ----A---- C:\windows\system32\halacpi.dll
2011-03-08 20:33:59 ----A---- C:\windows\system32\ftp.exe
2011-03-08 20:33:59 ----A---- C:\windows\system32\efscore.dll
2011-03-08 20:33:58 ----A---- C:\windows\system32\syncui.dll
2011-03-08 20:33:58 ----A---- C:\windows\system32\sdcpl.dll
2011-03-08 20:33:58 ----A---- C:\windows\system32\recovery.dll
2011-03-08 20:33:58 ----A---- C:\windows\system32\rdpwsx.dll
2011-03-08 20:33:58 ----A---- C:\windows\system32\fsquirt.exe
2011-03-08 20:33:58 ----A---- C:\windows\system32\DeviceCenter.dll
2011-03-08 20:33:58 ----A---- C:\windows\system32\bcdedit.exe
2011-03-08 20:33:58 ----A---- C:\windows\system32\autoplay.dll
2011-03-08 20:33:58 ----A---- C:\windows\system32\ActionCenterCPL.dll
2011-03-08 20:33:57 ----A---- C:\windows\system32\wmpmde.dll
2011-03-08 20:33:57 ----A---- C:\windows\system32\vdsutil.dll
2011-03-08 20:33:57 ----A---- C:\windows\system32\systemcpl.dll
2011-03-08 20:33:57 ----A---- C:\windows\system32\sppnp.dll
2011-03-08 20:33:57 ----A---- C:\windows\system32\rtutils.dll
2011-03-08 20:33:57 ----A---- C:\windows\system32\recdisc.exe
2011-03-08 20:33:57 ----A---- C:\windows\system32\OobeFldr.dll
2011-03-08 20:33:57 ----A---- C:\windows\system32\ntprint.dll
2011-03-08 20:33:57 ----A---- C:\windows\system32\ntlanman.dll
2011-03-08 20:33:57 ----A---- C:\windows\system32\dskquoui.dll
2011-03-08 20:33:56 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2011-03-08 20:33:56 ----A---- C:\windows\system32\sethc.exe
2011-03-08 20:33:56 ----A---- C:\windows\system32\rstrui.exe
2011-03-08 20:33:56 ----A---- C:\windows\system32\riched20.dll
2011-03-08 20:33:56 ----A---- C:\windows\system32\nshwfp.dll
2011-03-08 20:33:56 ----A---- C:\windows\system32\drivers\tdx.sys
2011-03-08 20:33:56 ----A---- C:\windows\system32\blackbox.dll
2011-03-08 20:33:56 ----A---- C:\windows\system32\bcdboot.exe
2011-03-08 20:33:56 ----A---- C:\windows\system32\AxInstSv.dll
2011-03-08 20:33:55 ----A---- C:\windows\system32\wmpsrcwp.dll
2011-03-08 20:33:55 ----A---- C:\windows\system32\netplwiz.dll
2011-03-08 20:33:55 ----A---- C:\windows\system32\NAPHLPR.DLL
2011-03-08 20:33:55 ----A---- C:\windows\system32\migisol.dll
2011-03-08 20:33:55 ----A---- C:\windows\system32\httpapi.dll
2011-03-08 20:33:55 ----A---- C:\windows\system32\fms.dll
2011-03-08 20:33:55 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2011-03-08 20:33:55 ----A---- C:\windows\system32\dot3svc.dll
2011-03-08 20:33:55 ----A---- C:\windows\system32\cdosys.dll
2011-03-08 20:33:55 ----A---- C:\windows\system32\AuxiliaryDisplayServices.dll
2011-03-08 20:33:55 ----A---- C:\windows\system32\activeds.dll
2011-03-08 20:33:54 ----A---- C:\windows\system32\wsqmcons.exe
2011-03-08 20:33:54 ----A---- C:\windows\system32\wlanmsm.dll
2011-03-08 20:33:54 ----A---- C:\windows\system32\wavemsp.dll
2011-03-08 20:33:54 ----A---- C:\windows\system32\ReAgent.dll
2011-03-08 20:33:54 ----A---- C:\windows\system32\nshipsec.dll
2011-03-08 20:33:54 ----A---- C:\windows\system32\nlaapi.dll
2011-03-08 20:33:54 ----A---- C:\windows\system32\msftedit.dll
2011-03-08 20:33:54 ----A---- C:\windows\system32\isoburn.exe
2011-03-08 20:33:54 ----A---- C:\windows\system32\asycfilt.dll
2011-03-08 20:33:53 ----A---- C:\windows\system32\wvc.dll
2011-03-08 20:33:53 ----A---- C:\windows\system32\wuwebv.dll
2011-03-08 20:33:53 ----A---- C:\windows\system32\wtsapi32.dll
2011-03-08 20:33:53 ----A---- C:\windows\system32\tzutil.exe
2011-03-08 20:33:53 ----A---- C:\windows\system32\sysclass.dll
2011-03-08 20:33:53 ----A---- C:\windows\system32\provsvc.dll
2011-03-08 20:33:53 ----A---- C:\windows\system32\ocsetup.exe
2011-03-08 20:33:53 ----A---- C:\windows\system32\dsuiext.dll
2011-03-08 20:33:53 ----A---- C:\windows\system32\drivers\ndproxy.sys
2011-03-08 20:33:53 ----A---- C:\windows\system32\dot3ui.dll
2011-03-08 20:33:53 ----A---- C:\windows\system32\dfrgui.exe
2011-03-08 20:33:53 ----A---- C:\windows\system32\appinfo.dll
2011-03-08 20:33:52 ----A---- C:\windows\system32\wimgapi.dll
2011-03-08 20:33:52 ----A---- C:\windows\system32\webcheck.dll
2011-03-08 20:33:52 ----A---- C:\windows\system32\twext.dll
2011-03-08 20:33:52 ----A---- C:\windows\system32\shdocvw.dll
2011-03-08 20:33:52 ----A---- C:\windows\system32\mstask.dll
2011-03-08 20:33:52 ----A---- C:\windows\system32\certprop.dll
2011-03-08 20:33:51 ----A---- C:\windows\twain_32.dll
2011-03-08 20:33:51 ----A---- C:\windows\system32\uxlib.dll
2011-03-08 20:33:51 ----A---- C:\windows\system32\slwga.dll
2011-03-08 20:33:51 ----A---- C:\windows\system32\setupugc.exe
2011-03-08 20:33:51 ----A---- C:\windows\system32\qcap.dll
2011-03-08 20:33:51 ----A---- C:\windows\system32\qasf.dll
2011-03-08 20:33:51 ----A---- C:\windows\system32\occache.dll
2011-03-08 20:33:51 ----A---- C:\windows\system32\msrating.dll
2011-03-08 20:33:51 ----A---- C:\windows\system32\msfeedsbs.dll
2011-03-08 20:33:51 ----A---- C:\windows\system32\imm32.dll
2011-03-08 20:33:50 ----A---- C:\windows\system32\wwanconn.dll
2011-03-08 20:33:50 ----A---- C:\windows\system32\wmdrmsdk.dll
2011-03-08 20:33:50 ----A---- C:\windows\system32\srrstr.dll
2011-03-08 20:33:50 ----A---- C:\windows\system32\nslookup.exe
2011-03-08 20:33:50 ----A---- C:\windows\system32\msvfw32.dll
2011-03-08 20:33:50 ----A---- C:\windows\system32\mciavi32.dll
2011-03-08 20:33:50 ----A---- C:\windows\system32\imgutil.dll
2011-03-08 20:33:50 ----A---- C:\windows\system32\clusapi.dll
2011-03-08 20:33:50 ----A---- C:\windows\system32\audiodev.dll
2011-03-08 20:33:49 ----A---- C:\windows\system32\WPDShServiceObj.dll
2011-03-08 20:33:49 ----A---- C:\windows\system32\wimserv.exe
2011-03-08 20:33:49 ----A---- C:\windows\system32\TSpkg.dll
2011-03-08 20:33:49 ----A---- C:\windows\system32\msscp.dll
2011-03-08 20:33:49 ----A---- C:\windows\system32\diskraid.exe
2011-03-08 20:33:49 ----A---- C:\windows\system32\DevicePairingFolder.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\WindowsAnytimeUpgradeResults.exe
2011-03-08 20:33:48 ----A---- C:\windows\system32\sdrsvc.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\remotepg.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\rdpencom.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\raschap.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\QUTIL.DLL
2011-03-08 20:33:48 ----A---- C:\windows\system32\perfmon.exe
2011-03-08 20:33:48 ----A---- C:\windows\system32\odbccp32.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\networkexplorer.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\NAPCRYPT.DLL
2011-03-08 20:33:48 ----A---- C:\windows\system32\input.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\drmmgrtn.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\browser.dll
2011-03-08 20:33:48 ----A---- C:\windows\system32\acppage.dll
2011-03-08 20:33:47 ----A---- C:\windows\system32\wpdwcn.dll
2011-03-08 20:33:47 ----A---- C:\windows\system32\wmpdxm.dll
2011-03-08 20:33:47 ----A---- C:\windows\system32\vpnikeapi.dll
2011-03-08 20:33:47 ----A---- C:\windows\system32\vdsbas.dll
2011-03-08 20:33:47 ----A---- C:\windows\system32\UserAccountControlSettings.dll
2011-03-08 20:33:47 ----A---- C:\windows\system32\onexui.dll
2011-03-08 20:33:47 ----A---- C:\windows\system32\olepro32.dll
2011-03-08 20:33:47 ----A---- C:\windows\system32\ocsetapi.dll
2011-03-08 20:33:47 ----A---- C:\windows\system32\nltest.exe
2011-03-08 20:33:47 ----A---- C:\windows\system32\iTVData.dll
2011-03-08 20:33:47 ----A---- C:\windows\bfsvc.exe
2011-03-08 20:33:46 ----A---- C:\windows\system32\sspisrv.dll
2011-03-08 20:33:46 ----A---- C:\windows\system32\runonce.exe
2011-03-08 20:33:46 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2011-03-08 20:33:46 ----A---- C:\windows\system32\Mcx2Svc.dll
2011-03-08 20:33:46 ----A---- C:\windows\system32\logagent.exe
2011-03-08 20:33:46 ----A---- C:\windows\system32\inseng.dll
2011-03-08 20:33:46 ----A---- C:\windows\system32\dxdiagn.dll
2011-03-08 20:33:45 ----A---- C:\windows\system32\PnPUnattend.exe
2011-03-08 20:33:45 ----A---- C:\windows\system32\msvidc32.dll
2011-03-08 20:33:45 ----A---- C:\windows\system32\msiexec.exe
2011-03-08 20:33:45 ----A---- C:\windows\system32\MFPlay.dll
2011-03-08 20:33:45 ----A---- C:\windows\system32\eapp3hst.dll
2011-03-08 20:33:45 ----A---- C:\windows\system32\drivers\rmcast.sys
2011-03-08 20:33:45 ----A---- C:\windows\system32\d3d10level9.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\wudriver.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\wmpshell.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\wmdrmdev.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\unimdmat.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\tabcal.exe
2011-03-08 20:33:44 ----A---- C:\windows\system32\sqlcese30.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\shacct.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\rdpd3d.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\lsmproxy.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\iscsium.dll
2011-03-08 20:33:44 ----A---- C:\windows\system32\bitsadmin.exe
2011-03-08 20:33:43 ----A---- C:\windows\system32\WUDFPlatform.dll
2011-03-08 20:33:43 ----A---- C:\windows\system32\WPDSp.dll
2011-03-08 20:33:43 ----A---- C:\windows\system32\srvcli.dll
2011-03-08 20:33:43 ----A---- C:\windows\system32\PortableDeviceSyncProvider.dll
2011-03-08 20:33:43 ----A---- C:\windows\system32\pdh.dll
2011-03-08 20:33:43 ----A---- C:\windows\system32\OpcServices.dll
2011-03-08 20:33:43 ----A---- C:\windows\system32\olethk32.dll
2011-03-08 20:33:43 ----A---- C:\windows\system32\ncryptui.dll
2011-03-08 20:33:43 ----A---- C:\windows\system32\mprapi.dll
2011-03-08 20:33:43 ----A---- C:\windows\system32\MdSched.exe
2011-03-08 20:33:43 ----A---- C:\windows\system32\logman.exe
2011-03-08 20:33:43 ----A---- C:\windows\system32\djoin.exe
2011-03-08 20:33:43 ----A---- C:\windows\system32\cscapi.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\wwanprotdim.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\WMPhoto.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\utildll.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\tsgqec.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\QSVRMGMT.DLL
2011-03-08 20:33:42 ----A---- C:\windows\system32\PortableDeviceStatus.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\odbctrac.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\mshtmled.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\mapistub.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\mapi32.dll
2011-03-08 20:33:42 ----A---- C:\windows\system32\lpremove.exe
2011-03-08 20:33:42 ----A---- C:\windows\system32\ActionQueue.dll
2011-03-08 20:33:41 ----A---- C:\windows\system32\WMVSDECD.DLL
2011-03-08 20:33:41 ----A---- C:\windows\system32\wmdrmnet.dll
2011-03-08 20:33:41 ----A---- C:\windows\system32\WMADMOD.DLL
2011-03-08 20:33:41 ----A---- C:\windows\system32\WindowsAnytimeUpgrade.exe
2011-03-08 20:33:41 ----A---- C:\windows\system32\wiavideo.dll
2011-03-08 20:33:41 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-03-08 20:33:41 ----A---- C:\windows\system32\takeown.exe
2011-03-08 20:33:41 ----A---- C:\windows\system32\sqmapi.dll
2011-03-08 20:33:41 ----A---- C:\windows\system32\iyuv_32.dll
2011-03-08 20:33:41 ----A---- C:\windows\system32\imagehlp.dll
2011-03-08 20:33:41 ----A---- C:\windows\system32\fphc.dll
2011-03-08 20:33:41 ----A---- C:\windows\system32\dot3msm.dll
2011-03-08 20:33:41 ----A---- C:\windows\system32\avifil32.dll
2011-03-08 20:33:40 ----A---- C:\windows\system32\unattend.dll
2011-03-08 20:33:40 ----A---- C:\windows\system32\sppinst.dll
2011-03-08 20:33:40 ----A---- C:\windows\system32\qdv.dll
2011-03-08 20:33:40 ----A---- C:\windows\system32\QCLIPROV.DLL
2011-03-08 20:33:40 ----A---- C:\windows\system32\msyuv.dll
2011-03-08 20:33:40 ----A---- C:\windows\system32\msrle32.dll
2011-03-08 20:33:40 ----A---- C:\windows\system32\msnetobj.dll
2011-03-08 20:33:40 ----A---- C:\windows\system32\EhStorAPI.dll
2011-03-08 20:33:40 ----A---- C:\windows\system32\cca.dll
2011-03-08 20:33:39 ----A---- C:\windows\system32\WUDFx.dll
2011-03-08 20:33:39 ----A---- C:\windows\system32\WUDFHost.exe
2011-03-08 20:33:39 ----A---- C:\windows\system32\wsnmp32.dll
2011-03-08 20:33:39 ----A---- C:\windows\system32\WMSPDMOD.DLL
2011-03-08 20:33:39 ----A---- C:\windows\system32\vfwwdm32.dll
2011-03-08 20:33:39 ----A---- C:\windows\system32\setupcln.dll
2011-03-08 20:33:39 ----A---- C:\windows\system32\RelPost.exe
2011-03-08 20:33:39 ----A---- C:\windows\system32\pdhui.dll
2011-03-08 20:33:39 ----A---- C:\windows\system32\MuiUnattend.exe
2011-03-08 20:33:39 ----A---- C:\windows\system32\drivers\bthport.sys
2011-03-08 20:33:39 ----A---- C:\windows\system32\cmstp.exe
2011-03-08 20:33:39 ----A---- C:\windows\system32\basesrv.dll
2011-03-08 20:33:38 ----A---- C:\windows\system32\wuauclt.exe
2011-03-08 20:33:38 ----A---- C:\windows\system32\umb.dll
2011-03-08 20:33:38 ----A---- C:\windows\system32\tsbyuv.dll
2011-03-08 20:33:38 ----A---- C:\windows\system32\relog.exe
2011-03-08 20:33:38 ----A---- C:\windows\system32\PrintIsolationProxy.dll
2011-03-08 20:33:38 ----A---- C:\windows\system32\msorcl32.dll
2011-03-08 20:33:38 ----A---- C:\windows\system32\iasrecst.dll
2011-03-08 20:33:38 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2011-03-08 20:33:38 ----A---- C:\windows\system32\drivers\ndisuio.sys
2011-03-08 20:33:38 ----A---- C:\windows\system32\AzSqlExt.dll
2011-03-08 20:33:37 ----A---- C:\windows\system32\wkscli.dll
2011-03-08 20:33:37 ----A---- C:\windows\system32\WavDest.dll
2011-03-08 20:33:37 ----A---- C:\windows\system32\sppuinotify.dll
2011-03-08 20:33:37 ----A---- C:\windows\system32\spbcd.dll
2011-03-08 20:33:37 ----A---- C:\windows\system32\rastapi.dll
2011-03-08 20:33:37 ----A---- C:\windows\system32\netiougc.exe
2011-03-08 20:33:37 ----A---- C:\windows\system32\mydocs.dll
2011-03-08 20:33:37 ----A---- C:\windows\system32\iscsicli.exe
2011-03-08 20:33:37 ----A---- C:\windows\system32\diskpart.exe
2011-03-08 20:33:37 ----A---- C:\windows\system32\amstream.dll
2011-03-08 20:33:36 ----A---- C:\windows\system32\wmpps.dll
2011-03-08 20:33:36 ----A---- C:\windows\system32\syssetup.dll
2011-03-08 20:33:36 ----A---- C:\windows\system32\setbcdlocale.dll
2011-03-08 20:33:36 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2011-03-08 20:33:36 ----A---- C:\windows\system32\secproc_ssp.dll
2011-03-08 20:33:36 ----A---- C:\windows\system32\resutils.dll
2011-03-08 20:33:36 ----A---- C:\windows\system32\nrpsrv.dll
2011-03-08 20:33:36 ----A---- C:\windows\system32\netbtugc.exe
2011-03-08 20:33:36 ----A---- C:\windows\system32\MultiDigiMon.exe
2011-03-08 20:33:36 ----A---- C:\windows\system32\itircl.dll
2011-03-08 20:33:36 ----A---- C:\windows\system32\CertPolEng.dll
2011-03-08 20:33:35 ----A---- C:\windows\system32\wuapp.exe
2011-03-08 20:33:35 ----A---- C:\windows\system32\WerFaultSecure.exe
2011-03-08 20:33:35 ----A---- C:\windows\system32\tlscsp.dll
2011-03-08 20:33:35 ----A---- C:\windows\system32\secur32.dll
2011-03-08 20:33:35 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2011-03-08 20:33:35 ----A---- C:\windows\system32\ReAgentc.exe
2011-03-08 20:33:35 ----A---- C:\windows\system32\FXSTIFF.dll
2011-03-08 20:33:35 ----A---- C:\windows\system32\findstr.exe
2011-03-08 20:33:35 ----A---- C:\windows\system32\eappgnui.dll
2011-03-08 20:33:35 ----A---- C:\windows\system32\drivers\usbccgp.sys
2011-03-08 20:33:34 ----A---- C:\windows\system32\wiarpc.dll
2011-03-08 20:33:34 ----A---- C:\windows\system32\RMActivate_ssp.exe
2011-03-08 20:33:34 ----A---- C:\windows\system32\netutils.dll
2011-03-08 20:33:34 ----A---- C:\windows\system32\netapi32.dll
2011-03-08 20:33:34 ----A---- C:\windows\system32\muifontsetup.dll
2011-03-08 20:33:34 ----A---- C:\windows\system32\mobsync.exe
2011-03-08 20:33:34 ----A---- C:\windows\system32\mciqtz32.dll
2011-03-08 20:33:34 ----A---- C:\windows\system32\dnscacheugc.exe
2011-03-08 20:33:34 ----A---- C:\windows\system32\cabinet.dll
2011-03-08 20:33:33 ----A---- C:\windows\system32\sppc.dll
2011-03-08 20:33:33 ----A---- C:\windows\system32\spopk.dll
2011-03-08 20:33:33 ----A---- C:\windows\system32\shimgvw.dll
2011-03-08 20:33:33 ----A---- C:\windows\system32\prevhost.exe
2011-03-08 20:33:33 ----A---- C:\windows\system32\luainstall.dll
2011-03-08 20:33:33 ----A---- C:\windows\system32\iccvid.dll
2011-03-08 20:33:33 ----A---- C:\windows\system32\HotStartUserAgent.dll
2011-03-08 20:33:33 ----A---- C:\windows\system32\drivers\usbrpm.sys
2011-03-08 20:33:33 ----A---- C:\windows\system32\drivers\tdi.sys
2011-03-08 20:33:33 ----A---- C:\windows\system32\dosx.exe
2011-03-08 20:33:32 ----A---- C:\windows\system32\wdiasqmmodule.dll
2011-03-08 20:33:32 ----A---- C:\windows\system32\unlodctr.exe
2011-03-08 20:33:32 ----A---- C:\windows\system32\repair-bde.exe
2011-03-08 20:33:32 ----A---- C:\windows\system32\rdprefdrvapi.dll
2011-03-08 20:33:32 ----A---- C:\windows\system32\netcfg.exe
2011-03-08 20:33:32 ----A---- C:\windows\system32\msdmo.dll
2011-03-08 20:33:32 ----A---- C:\windows\system32\manage-bde.exe
2011-03-08 20:33:32 ----A---- C:\windows\system32\inetmib1.dll
2011-03-08 20:33:32 ----A---- C:\windows\system32\drivers\CompositeBus.sys
2011-03-08 20:33:31 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2011-03-08 20:33:31 ----A---- C:\windows\system32\odbcconf.dll
2011-03-08 20:33:31 ----A---- C:\windows\system32\drivers\cdrom.sys
2011-03-08 20:33:30 ----A---- C:\windows\system32\wups.dll
2011-03-08 20:33:30 ----A---- C:\windows\system32\UIRibbonRes.dll
2011-03-08 20:33:30 ----A---- C:\windows\system32\profprov.dll
2011-03-08 20:33:30 ----A---- C:\windows\system32\perfts.dll
2011-03-08 20:33:30 ----A---- C:\windows\system32\browcli.dll
2011-03-08 20:33:29 ----A---- C:\windows\system32\TRAPI.dll
2011-03-08 20:33:29 ----A---- C:\windows\system32\RDPENCDD.dll
2011-03-08 20:33:29 ----A---- C:\windows\system32\msfeedssync.exe
2011-03-08 20:33:29 ----A---- C:\windows\system32\icaapi.dll
2011-03-08 20:33:29 ----A---- C:\windows\system32\FXSMON.dll
2011-03-08 20:33:29 ----A---- C:\windows\system32\elsTrans.dll
2011-03-08 20:33:29 ----A---- C:\windows\system32\drivers\tunnel.sys
2011-03-08 20:33:29 ----A---- C:\windows\system32\drivers\dfsc.sys
2011-03-08 20:33:28 ----A---- C:\windows\system32\wshbth.dll
2011-03-08 20:33:28 ----A---- C:\windows\system32\schedcli.dll
2011-03-08 20:33:28 ----A---- C:\windows\system32\napdsnap.dll
2011-03-08 20:33:28 ----A---- C:\windows\system32\LogonUI.exe
2011-03-08 20:33:28 ----A---- C:\windows\system32\dsauth.dll
2011-03-08 20:33:28 ----A---- C:\windows\system32\cscdll.dll
2011-03-08 20:33:28 ----A---- C:\windows\system32\bitsperf.dll
2011-03-08 20:33:27 ----A---- C:\windows\system32\sscore.dll
2011-03-08 20:33:27 ----A---- C:\windows\system32\drivers\acpipmi.sys
2011-03-08 20:33:26 ----A---- C:\windows\system32\wups2.dll
2011-03-08 20:33:26 ----A---- C:\windows\system32\wsdchngr.dll
2011-03-08 20:33:26 ----A---- C:\windows\system32\shgina.dll
2011-03-08 20:33:26 ----A---- C:\windows\system32\riched32.dll
2011-03-08 20:33:26 ----A---- C:\windows\system32\drivers\ndiswan.sys
2011-03-08 20:33:25 ----A---- C:\windows\system32\rdpcfgex.dll
2011-03-08 20:33:25 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2011-03-08 20:33:25 ----A---- C:\windows\system32\drivers\hidusb.sys
2011-03-08 20:33:25 ----A---- C:\windows\system32\drivers\appid.sys
2011-03-08 20:33:24 ----A---- C:\windows\system32\wshirda.dll
2011-03-08 20:33:24 ----A---- C:\windows\system32\drivers\IPMIDrv.sys
2011-03-08 20:33:23 ----A---- C:\windows\system32\drivers\USBCAMD2.sys
2011-03-08 20:33:23 ----A---- C:\windows\system32\drivers\USBCAMD.sys
2011-03-08 20:33:23 ----A---- C:\windows\system32\drivers\kbdhid.sys
2011-03-08 20:33:22 ----A---- C:\windows\system32\spwmp.dll
2011-03-08 20:33:22 ----A---- C:\windows\system32\drivers\tdtcp.sys
2011-03-08 20:33:22 ----A---- C:\windows\system32\browseui.dll
2011-03-08 20:33:21 ----A---- C:\windows\system32\RDPREFDD.dll
2011-03-08 20:33:21 ----A---- C:\windows\system32\dxmasf.dll
2011-03-08 20:33:21 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2011-03-08 20:33:21 ----A---- C:\windows\system32\drivers\wanarp.sys
2011-03-08 20:33:21 ----A---- C:\windows\system32\drivers\umbus.sys
2011-03-08 20:33:21 ----A---- C:\windows\system32\drivers\tdpipe.sys
2011-03-08 20:33:21 ----A---- C:\windows\system32\drivers\sffp_sd.sys
2011-03-08 20:33:21 ----A---- C:\windows\system32\drivers\scfilter.sys
2011-03-08 20:33:21 ----A---- C:\windows\system32\drivers\RDPCDD.sys
2011-03-08 20:33:21 ----A---- C:\windows\system32\drivers\HdAudio.sys
2011-03-08 20:33:21 ----A---- C:\windows\system32\drivers\hdaudbus.sys
2011-03-08 20:33:21 ----A---- C:\windows\system32\C_ISCII.DLL
2011-03-08 20:33:20 ----A---- C:\windows\system32\shunimpl.dll
2011-03-08 20:33:19 ----A---- C:\windows\system32\wmploc.DLL
2011-03-08 20:33:19 ----A---- C:\windows\system32\KBDUS.DLL
2011-03-08 20:33:19 ----A---- C:\windows\system32\KBDUGHR1.DLL
2011-03-08 20:33:19 ----A---- C:\windows\system32\KBDTURME.DLL
2011-03-08 20:33:19 ----A---- C:\windows\system32\KBDTAJIK.DLL
2011-03-08 20:33:19 ----A---- C:\windows\system32\KBDINTEL.DLL
2011-03-08 20:33:19 ----A---- C:\windows\system32\KBDINKAN.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDSF.DLL
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventívka..... -pre motji
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
-
Narfyk
- Vzorný návštěvník
- Příspěvky: 208
- Registrován: 07 čer 2010 17:54
- Bydliště: SK
- Kontaktovat uživatele:
Re: Preventívka..... -pre motji
(2.časť)
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDNEPR.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDMON.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDMAORI.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDLT1.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\kbdlk41a.dll
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDINTAM.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDINORI.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDINMAR.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDINHIN.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDGEO.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDBULG.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDBLR.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDBASH.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\tzres.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\spwizres.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\pifmgr.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\nlsbres.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDTUQ.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDTUF.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDSG.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDPO.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDINBEN.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDGR1.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDGKL.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDCZ1.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\dpnaddr.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\BlbEvents.dll
2011-03-08 20:32:58 ----A---- C:\windows\system32\wmicmiplugin.dll
2011-03-08 20:32:58 ----A---- C:\windows\system32\wbemcomn.dll
2011-03-08 20:32:52 ----A---- C:\windows\system32\SmiEngine.dll
2011-03-08 20:32:48 ----A---- C:\windows\system32\wdscore.dll
2011-03-08 20:32:48 ----A---- C:\windows\system32\PkgMgr.exe
2011-03-08 20:32:30 ----A---- C:\windows\system32\drvstore.dll
2011-03-08 20:32:30 ----A---- C:\windows\system32\dpx.dll
2011-03-08 20:17:20 ----A---- C:\windows\system32\sbe.dll
2011-03-08 20:17:20 ----A---- C:\windows\system32\EncDec.dll
2011-03-08 20:17:20 ----A---- C:\windows\system32\CPFilters.dll
2011-03-08 20:17:19 ----A---- C:\windows\system32\DWrite.dll
2011-03-08 20:17:18 ----A---- C:\windows\system32\FntCache.dll
2011-03-08 20:17:18 ----A---- C:\windows\system32\d2d1.dll
2011-03-08 20:17:16 ----A---- C:\windows\system32\d3d10_1.dll
2011-02-27 19:47:00 ----A---- C:\windows\system32\ra3228_8.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\rmbe3260.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\ra32sipr.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\ra32dnet.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\ra3214_4.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\pngu3263.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\pneng50.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\pncrt.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\pnc3250.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\msvcp70.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\encdnet.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\decdnet.dll
2011-02-27 19:44:56 ----A---- C:\windows\system32\drivers\cledx.sys
2011-02-27 19:36:19 ----A---- C:\windows\system32\drivers\synasUSB.sys
2011-02-27 19:36:18 ----A---- C:\windows\system32\Synsopos.exe
2011-02-27 19:36:17 ----D---- C:\Program Files\Syncrosoft
2011-02-27 19:36:17 ----A---- C:\windows\system32\SynsoLChk.dll
2011-02-27 19:36:17 ----A---- C:\windows\system32\SYNSOACC.dll
2011-02-27 19:04:09 ----D---- C:\Users\Admin\AppData\Roaming\Steinberg
2011-02-24 09:36:15 ----D---- C:\ProgramData\FLEXnet
2011-02-24 09:32:36 ----D---- C:\Program Files\Adobe Media Player
2011-02-24 09:31:36 ----D---- C:\Program Files\Common Files\Adobe AIR
2011-02-24 09:30:48 ----D---- C:\Program Files\Adobe
2011-02-24 09:30:07 ----D---- C:\Program Files\Common Files\Macrovision Shared
2011-02-23 21:01:13 ----D---- C:\rsit
2011-02-23 10:24:30 ----A---- C:\windows\system32\XpsPrint.dll
2011-02-23 10:24:30 ----A---- C:\windows\system32\XpsGdiConverter.dll
======List of files/folders modified in the last 1 months======
2011-03-19 16:30:48 ----D---- C:\windows\Internet Logs
2011-03-19 16:30:44 ----D---- C:\Program Files\trend micro
2011-03-19 16:30:02 ----D---- C:\windows\temp
2011-03-19 16:27:48 ----D---- C:\windows\system32\config
2011-03-19 16:27:48 ----D---- C:\ProgramData\HPQLOG
2011-03-19 16:27:42 ----A---- C:\windows\system32\log.txt
2011-03-19 16:20:53 ----D---- C:\windows\System32
2011-03-19 16:20:53 ----D---- C:\windows\inf
2011-03-19 16:20:53 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-03-19 13:21:07 ----D---- C:\Users\Admin\AppData\Roaming\uTorrent
2011-03-19 12:10:48 ----D---- C:\Users\Admin\AppData\Roaming\ICQ
2011-03-19 11:45:33 ----D---- C:\Windows
2011-03-18 21:08:27 ----AD---- C:\ProgramData\TEMP
2011-03-17 13:23:06 ----D---- C:\windows\Prefetch
2011-03-16 21:23:12 ----SHD---- C:\windows\Installer
2011-03-16 21:22:51 ----SHD---- C:\System Volume Information
2011-03-15 17:11:45 ----D---- C:\Users\Admin\AppData\Roaming\Skype
2011-03-15 16:12:44 ----D---- C:\Users\Admin\AppData\Roaming\skypePM
2011-03-14 09:48:36 ----D---- C:\windows\system32\drivers
2011-03-14 09:48:35 ----D---- C:\windows\system32\catroot2
2011-03-14 09:48:35 ----D---- C:\windows\system32\catroot
2011-03-14 09:48:34 ----D---- C:\windows\system32\DriverStore
2011-03-14 09:48:13 ----RD---- C:\Program Files
2011-03-14 09:42:12 ----D---- C:\windows\Tasks
2011-03-14 09:42:12 ----D---- C:\windows\system32\Tasks
2011-03-14 09:38:37 ----D---- C:\Temp
2011-03-14 08:10:05 ----SHD---- C:\$RECYCLE.BIN
2011-03-14 08:09:59 ----RD---- C:\Users
2011-03-10 13:09:37 ----D---- C:\windows\debug
2011-03-08 21:06:59 ----D---- C:\windows\Microsoft.NET
2011-03-08 21:06:50 ----RSD---- C:\windows\assembly
2011-03-08 20:56:18 ----D---- C:\windows\winsxs
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Sidebar
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Portable Devices
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Photo Viewer
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Media Player
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Mail
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Journal
2011-03-08 20:48:58 ----D---- C:\Program Files\Internet Explorer
2011-03-08 20:48:58 ----D---- C:\Program Files\DVD Maker
2011-03-08 20:48:56 ----D---- C:\windows\servicing
2011-03-08 20:48:56 ----D---- C:\windows\ehome
2011-03-08 20:48:56 ----D---- C:\Program Files\Windows Defender
2011-03-08 20:48:53 ----D---- C:\windows\system32\sk-SK
2011-03-08 20:48:53 ----D---- C:\windows\system32\da-DK
2011-03-08 20:48:53 ----D---- C:\windows\PolicyDefinitions
2011-03-08 20:48:52 ----D---- C:\windows\system32\en-US
2011-03-08 20:48:50 ----D---- C:\windows\system32\oobe
2011-03-08 20:48:49 ----D---- C:\windows\system32\sysprep
2011-03-08 20:48:49 ----D---- C:\windows\system32\sppui
2011-03-08 20:48:49 ----D---- C:\windows\system32\Setup
2011-03-08 20:48:49 ----D---- C:\windows\system32\migration
2011-03-08 20:48:49 ----D---- C:\windows\system32\manifeststore
2011-03-08 20:48:49 ----D---- C:\windows\system32\es-ES
2011-03-08 20:48:49 ----D---- C:\windows\system32\en
2011-03-08 20:48:49 ----D---- C:\windows\system32\cs-CZ
2011-03-08 20:48:49 ----D---- C:\windows\system32\AdvancedInstallers
2011-03-08 20:48:48 ----D---- C:\windows\system32\wbem
2011-03-08 20:48:48 ----D---- C:\windows\system32\drivers\en-US
2011-03-08 20:48:47 ----D---- C:\windows\system32\migwiz
2011-03-08 20:48:47 ----D---- C:\windows\system32\Dism
2011-03-08 20:48:32 ----RSD---- C:\windows\Fonts
2011-03-08 20:48:31 ----D---- C:\windows\AppPatch
2011-03-08 20:48:24 ----D---- C:\windows\system32\Boot
2011-03-08 20:44:45 ----A---- C:\windows\system32\MRT.exe
2011-03-08 20:42:51 ----A---- C:\windows\system32\msclmd.dll
2011-03-06 10:03:49 ----D---- C:\windows\Minidump
2011-02-28 20:47:40 ----D---- C:\Program Files\ICQ6Toolbar
2011-02-28 20:47:35 ----HD---- C:\Program Files\InstallShield Installation Information
2011-02-28 20:47:34 ----D---- C:\ProgramData\ICQ
2011-02-24 09:41:12 ----D---- C:\Users\Admin\AppData\Roaming\Adobe
2011-02-24 09:39:14 ----D---- C:\ProgramData\Adobe
2011-02-24 09:36:15 ----D---- C:\ProgramData
2011-02-24 09:33:48 ----D---- C:\Program Files\Common Files\Adobe
2011-02-24 09:31:36 ----D---- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 25656]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-08-07 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2009-12-16 110520]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-12-16 51800]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2009-12-16 13256]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2011-03-14 431672]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-03-14 218688]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2009-05-16 214024]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-05-16 55336]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2009-12-16 40088]
R1 vmm;Virtual Machine Monitor; \??\C:\windows\system32\Drivers\vmm.sys [2010-11-26 229208]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\windows\system32\DRIVERS\vsdatant.sys [2010-05-15 461400]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2011-01-13 51280]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 33848]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-10 18688]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-06-18 5586944]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-06-18 210432]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 29824]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2009-10-05 1221632]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2010-05-06 108560]
R3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2010-11-20 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
R3 CLEDX;Team H2O CLEDX service; C:\windows\system32\DRIVERS\cledx.sys [2005-05-09 33792]
R3 HECI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-12-19 1763968]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2009-12-03 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-09-28 1303728]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\windows\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-07-13 1035776]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-06-18 5586944]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2010-11-20 393216]
S3 Bulk;HDJBulk; C:\windows\System32\Drivers\HDJBulk.sys [2009-07-08 126464]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 HDJMidi;DJ Control MP3 e2 MIDI; C:\windows\system32\DRIVERS\HDJMidi.sys [2009-07-08 124416]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 ksaud;Creative USB Audio Driver; C:\windows\system32\drivers\ksaud.sys [2009-08-05 886912]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2009-05-16 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2009-05-16 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2009-05-16 34248]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2010-03-04 277536]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb Driver; C:\windows\system32\drivers\WinUSB.SYS [2010-11-20 35968]
S4 Ipprgp;Ipprgp; C:\windows\system32\drivers\btwl2cap.sys [2009-09-17 29472]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe [2009-03-03 81920]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-06-18 176128]
R2 avast! Antivirus;avast! Antivirus; D:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2009-11-25 300808]
R2 HerculesDJControlMP3;Hercules DJ Control MP3; D:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE [2007-11-21 17408]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-11-15 126520]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-08-23 103992]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2009-11-19 36864]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-01-08 81920]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-10-14 92216]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-16 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-05 264248]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2009-10-23 635416]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe [2009-12-03 229461]
R2 TeamViewer5;TeamViewer 5; D:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
R2 uArcCapture;ArcCapture; C:\windows\system32\uArcCapture.exe [2009-12-04 506472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 vsmon;TrueVector Internet Monitor; C:\Windows\System32\ZoneLabs\vsmon.exe [2010-11-16 2435592]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2010-10-14 751672]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 1639728]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-09-28 109056]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-09-28 68096]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\system32\flcdlock.exe [2009-11-17 362040]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-02-24 655624]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-07-29 1343400]
-----------------EOF-----------------
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDNEPR.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDMON.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDMAORI.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDLT1.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\kbdlk41a.dll
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDINTAM.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDINORI.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDINMAR.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDINHIN.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDGEO.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDBULG.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDBLR.DLL
2011-03-08 20:33:18 ----A---- C:\windows\system32\KBDBASH.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\tzres.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\spwizres.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\pifmgr.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\nlsbres.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDTUQ.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDTUF.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDSG.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDPO.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDINBEN.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDGR1.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDGKL.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\KBDCZ1.DLL
2011-03-08 20:33:17 ----A---- C:\windows\system32\dpnaddr.dll
2011-03-08 20:33:17 ----A---- C:\windows\system32\BlbEvents.dll
2011-03-08 20:32:58 ----A---- C:\windows\system32\wmicmiplugin.dll
2011-03-08 20:32:58 ----A---- C:\windows\system32\wbemcomn.dll
2011-03-08 20:32:52 ----A---- C:\windows\system32\SmiEngine.dll
2011-03-08 20:32:48 ----A---- C:\windows\system32\wdscore.dll
2011-03-08 20:32:48 ----A---- C:\windows\system32\PkgMgr.exe
2011-03-08 20:32:30 ----A---- C:\windows\system32\drvstore.dll
2011-03-08 20:32:30 ----A---- C:\windows\system32\dpx.dll
2011-03-08 20:17:20 ----A---- C:\windows\system32\sbe.dll
2011-03-08 20:17:20 ----A---- C:\windows\system32\EncDec.dll
2011-03-08 20:17:20 ----A---- C:\windows\system32\CPFilters.dll
2011-03-08 20:17:19 ----A---- C:\windows\system32\DWrite.dll
2011-03-08 20:17:18 ----A---- C:\windows\system32\FntCache.dll
2011-03-08 20:17:18 ----A---- C:\windows\system32\d2d1.dll
2011-03-08 20:17:16 ----A---- C:\windows\system32\d3d10_1.dll
2011-02-27 19:47:00 ----A---- C:\windows\system32\ra3228_8.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\rmbe3260.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\ra32sipr.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\ra32dnet.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\ra3214_4.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\pngu3263.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\pneng50.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\pncrt.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\pnc3250.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\msvcp70.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\encdnet.dll
2011-02-27 19:46:59 ----A---- C:\windows\system32\decdnet.dll
2011-02-27 19:44:56 ----A---- C:\windows\system32\drivers\cledx.sys
2011-02-27 19:36:19 ----A---- C:\windows\system32\drivers\synasUSB.sys
2011-02-27 19:36:18 ----A---- C:\windows\system32\Synsopos.exe
2011-02-27 19:36:17 ----D---- C:\Program Files\Syncrosoft
2011-02-27 19:36:17 ----A---- C:\windows\system32\SynsoLChk.dll
2011-02-27 19:36:17 ----A---- C:\windows\system32\SYNSOACC.dll
2011-02-27 19:04:09 ----D---- C:\Users\Admin\AppData\Roaming\Steinberg
2011-02-24 09:36:15 ----D---- C:\ProgramData\FLEXnet
2011-02-24 09:32:36 ----D---- C:\Program Files\Adobe Media Player
2011-02-24 09:31:36 ----D---- C:\Program Files\Common Files\Adobe AIR
2011-02-24 09:30:48 ----D---- C:\Program Files\Adobe
2011-02-24 09:30:07 ----D---- C:\Program Files\Common Files\Macrovision Shared
2011-02-23 21:01:13 ----D---- C:\rsit
2011-02-23 10:24:30 ----A---- C:\windows\system32\XpsPrint.dll
2011-02-23 10:24:30 ----A---- C:\windows\system32\XpsGdiConverter.dll
======List of files/folders modified in the last 1 months======
2011-03-19 16:30:48 ----D---- C:\windows\Internet Logs
2011-03-19 16:30:44 ----D---- C:\Program Files\trend micro
2011-03-19 16:30:02 ----D---- C:\windows\temp
2011-03-19 16:27:48 ----D---- C:\windows\system32\config
2011-03-19 16:27:48 ----D---- C:\ProgramData\HPQLOG
2011-03-19 16:27:42 ----A---- C:\windows\system32\log.txt
2011-03-19 16:20:53 ----D---- C:\windows\System32
2011-03-19 16:20:53 ----D---- C:\windows\inf
2011-03-19 16:20:53 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-03-19 13:21:07 ----D---- C:\Users\Admin\AppData\Roaming\uTorrent
2011-03-19 12:10:48 ----D---- C:\Users\Admin\AppData\Roaming\ICQ
2011-03-19 11:45:33 ----D---- C:\Windows
2011-03-18 21:08:27 ----AD---- C:\ProgramData\TEMP
2011-03-17 13:23:06 ----D---- C:\windows\Prefetch
2011-03-16 21:23:12 ----SHD---- C:\windows\Installer
2011-03-16 21:22:51 ----SHD---- C:\System Volume Information
2011-03-15 17:11:45 ----D---- C:\Users\Admin\AppData\Roaming\Skype
2011-03-15 16:12:44 ----D---- C:\Users\Admin\AppData\Roaming\skypePM
2011-03-14 09:48:36 ----D---- C:\windows\system32\drivers
2011-03-14 09:48:35 ----D---- C:\windows\system32\catroot2
2011-03-14 09:48:35 ----D---- C:\windows\system32\catroot
2011-03-14 09:48:34 ----D---- C:\windows\system32\DriverStore
2011-03-14 09:48:13 ----RD---- C:\Program Files
2011-03-14 09:42:12 ----D---- C:\windows\Tasks
2011-03-14 09:42:12 ----D---- C:\windows\system32\Tasks
2011-03-14 09:38:37 ----D---- C:\Temp
2011-03-14 08:10:05 ----SHD---- C:\$RECYCLE.BIN
2011-03-14 08:09:59 ----RD---- C:\Users
2011-03-10 13:09:37 ----D---- C:\windows\debug
2011-03-08 21:06:59 ----D---- C:\windows\Microsoft.NET
2011-03-08 21:06:50 ----RSD---- C:\windows\assembly
2011-03-08 20:56:18 ----D---- C:\windows\winsxs
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Sidebar
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Portable Devices
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Photo Viewer
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Media Player
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Mail
2011-03-08 20:48:58 ----D---- C:\Program Files\Windows Journal
2011-03-08 20:48:58 ----D---- C:\Program Files\Internet Explorer
2011-03-08 20:48:58 ----D---- C:\Program Files\DVD Maker
2011-03-08 20:48:56 ----D---- C:\windows\servicing
2011-03-08 20:48:56 ----D---- C:\windows\ehome
2011-03-08 20:48:56 ----D---- C:\Program Files\Windows Defender
2011-03-08 20:48:53 ----D---- C:\windows\system32\sk-SK
2011-03-08 20:48:53 ----D---- C:\windows\system32\da-DK
2011-03-08 20:48:53 ----D---- C:\windows\PolicyDefinitions
2011-03-08 20:48:52 ----D---- C:\windows\system32\en-US
2011-03-08 20:48:50 ----D---- C:\windows\system32\oobe
2011-03-08 20:48:49 ----D---- C:\windows\system32\sysprep
2011-03-08 20:48:49 ----D---- C:\windows\system32\sppui
2011-03-08 20:48:49 ----D---- C:\windows\system32\Setup
2011-03-08 20:48:49 ----D---- C:\windows\system32\migration
2011-03-08 20:48:49 ----D---- C:\windows\system32\manifeststore
2011-03-08 20:48:49 ----D---- C:\windows\system32\es-ES
2011-03-08 20:48:49 ----D---- C:\windows\system32\en
2011-03-08 20:48:49 ----D---- C:\windows\system32\cs-CZ
2011-03-08 20:48:49 ----D---- C:\windows\system32\AdvancedInstallers
2011-03-08 20:48:48 ----D---- C:\windows\system32\wbem
2011-03-08 20:48:48 ----D---- C:\windows\system32\drivers\en-US
2011-03-08 20:48:47 ----D---- C:\windows\system32\migwiz
2011-03-08 20:48:47 ----D---- C:\windows\system32\Dism
2011-03-08 20:48:32 ----RSD---- C:\windows\Fonts
2011-03-08 20:48:31 ----D---- C:\windows\AppPatch
2011-03-08 20:48:24 ----D---- C:\windows\system32\Boot
2011-03-08 20:44:45 ----A---- C:\windows\system32\MRT.exe
2011-03-08 20:42:51 ----A---- C:\windows\system32\msclmd.dll
2011-03-06 10:03:49 ----D---- C:\windows\Minidump
2011-02-28 20:47:40 ----D---- C:\Program Files\ICQ6Toolbar
2011-02-28 20:47:35 ----HD---- C:\Program Files\InstallShield Installation Information
2011-02-28 20:47:34 ----D---- C:\ProgramData\ICQ
2011-02-24 09:41:12 ----D---- C:\Users\Admin\AppData\Roaming\Adobe
2011-02-24 09:39:14 ----D---- C:\ProgramData\Adobe
2011-02-24 09:36:15 ----D---- C:\ProgramData
2011-02-24 09:33:48 ----D---- C:\Program Files\Common Files\Adobe
2011-02-24 09:31:36 ----D---- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 25656]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-08-07 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2009-12-16 110520]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-12-16 51800]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2009-12-16 13256]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2011-03-14 431672]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-03-14 218688]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2009-05-16 214024]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-05-16 55336]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2009-12-16 40088]
R1 vmm;Virtual Machine Monitor; \??\C:\windows\system32\Drivers\vmm.sys [2010-11-26 229208]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\windows\system32\DRIVERS\vsdatant.sys [2010-05-15 461400]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2011-01-13 51280]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 33848]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-10 18688]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-06-18 5586944]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-06-18 210432]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 29824]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2009-10-05 1221632]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2010-05-06 108560]
R3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2010-11-20 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
R3 CLEDX;Team H2O CLEDX service; C:\windows\system32\DRIVERS\cledx.sys [2005-05-09 33792]
R3 HECI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-12-19 1763968]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2009-12-03 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-09-28 1303728]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\windows\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-07-13 1035776]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-06-18 5586944]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2010-11-20 393216]
S3 Bulk;HDJBulk; C:\windows\System32\Drivers\HDJBulk.sys [2009-07-08 126464]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2010-02-03 26176]
S3 HDJMidi;DJ Control MP3 e2 MIDI; C:\windows\system32\DRIVERS\HDJMidi.sys [2009-07-08 124416]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 ksaud;Creative USB Audio Driver; C:\windows\system32\drivers\ksaud.sys [2009-08-05 886912]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2009-05-16 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2009-05-16 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2009-05-16 34248]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2010-03-04 277536]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb Driver; C:\windows\system32\drivers\WinUSB.SYS [2010-11-20 35968]
S4 Ipprgp;Ipprgp; C:\windows\system32\drivers\btwl2cap.sys [2009-09-17 29472]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe [2009-03-03 81920]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-06-18 176128]
R2 avast! Antivirus;avast! Antivirus; D:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2009-11-25 300808]
R2 HerculesDJControlMP3;Hercules DJ Control MP3; D:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE [2007-11-21 17408]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-11-15 126520]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-08-23 103992]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2009-11-19 36864]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-01-08 81920]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-10-14 92216]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-16 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-05 264248]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2009-10-23 635416]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe [2009-12-03 229461]
R2 TeamViewer5;TeamViewer 5; D:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
R2 uArcCapture;ArcCapture; C:\windows\system32\uArcCapture.exe [2009-12-04 506472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 vsmon;TrueVector Internet Monitor; C:\Windows\System32\ZoneLabs\vsmon.exe [2010-11-16 2435592]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2010-10-14 751672]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 1639728]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-09-28 109056]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-09-28 68096]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\system32\flcdlock.exe [2009-11-17 362040]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-02-24 655624]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-07-29 1343400]
-----------------EOF-----------------
Re: Preventívka..... -pre motji
Ahoj,
odinstaluj DAEMON Tools Toolbar
Trochu divně znamená co?
odinstaluj DAEMON Tools Toolbar
Trochu divně znamená co?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
Narfyk
- Vzorný návštěvník
- Příspěvky: 208
- Registrován: 07 čer 2010 17:54
- Bydliště: SK
- Kontaktovat uživatele:
Re: Preventívka..... -pre motji
Tak niektoré ikony na ploche už niesú ikony, len odkazy (zmizol obrázok), keď ich chcem dať tak ako vyzerali predtým, tak mi napíše že potrebujem povolenie správcu a pritom som správca.....a pri podobných činnostiach (kde je treba povolenie správcu) mi tiež vypíše že som neni správca.
To je asi všetko
To je asi všetko
Re: Preventívka..... -pre motji
Zkoušel jsi obnovu systému?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
Narfyk
- Vzorný návštěvník
- Příspěvky: 208
- Registrován: 07 čer 2010 17:54
- Bydliště: SK
- Kontaktovat uživatele:
Re: Preventívka..... -pre motji
Nie, ale ani nechcem skúšať, lebo keď by som musel zase šetko preinštalovávať, atď. (včera som doinštaloval). Veď to sa ešte prežiť dá, že neni vidieť obrázok ikony...
Re: Preventívka..... -pre motji
To se Ti stalo hned po reinstalu, nebo jsi instaloval nějaké nelegální programy (snažím se přijít na to, čim to je, od špatné instalace po viry)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
Narfyk
- Vzorný návštěvník
- Příspěvky: 208
- Registrován: 07 čer 2010 17:54
- Bydliště: SK
- Kontaktovat uživatele:
Re: Preventívka..... -pre motji
Ako nepreinštalovával som Win, ale len niektoré programy, lebo mi blbli. A ešte som inštaloval FL Studio 9.8 (cracknuté 
) ale crack bol na VT.com čistý....
) ale crack bol na VT.com čistý....Re: Preventívka..... -pre motji
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
Narfyk
- Vzorný návštěvník
- Příspěvky: 208
- Registrován: 07 čer 2010 17:54
- Bydliště: SK
- Kontaktovat uživatele:
Re: Preventívka..... -pre motji
ComboFix 11-03-22.01 - Admin . 03. 2011 20:24:20.5.4 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.2991.1782 [GMT 1:00]
Running from: c:\users\Admin\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
FW: ZoneAlarm Firewall *Disabled* {D17DF357-CFF5-F001-D1C1-FCD21DFE3D5E}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\drivers\etc\lmhosts . . . . Failed to delete
.
.
((((((((((((((((((((((((( Files Created from 2011-02-22 to 2011-03-22 )))))))))))))))))))))))))))))))
.
.
2011-03-22 19:30 . 2011-03-22 19:33 -------- d-----w- c:\users\Admin\AppData\Local\temp
2011-03-22 19:30 . 2011-03-22 19:30 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-03-22 19:30 . 2011-03-22 19:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-03-22 19:22 . 2011-03-22 19:22 -------- d-----w- C:\32788R22FWJFW
2011-03-22 12:28 . 2011-02-11 06:54 5943120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{375EE256-229C-4C77-B41C-914B03B3D6FB}\mpengine.dll
2011-03-14 08:48 . 2011-03-14 08:48 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-03-14 08:48 . 2011-03-19 19:21 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2011-03-14 08:48 . 2011-03-14 08:48 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-03-14 07:09 . 2011-03-14 07:10 -------- d-----w- c:\users\Martin
2011-03-08 19:38 . 2011-03-08 19:38 -------- d-----w- c:\windows\system32\SPReview
2011-03-08 19:37 . 2011-03-08 19:37 -------- d-----w- c:\windows\system32\EventProviders
2011-03-08 19:35 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\system32\dfshim.dll
2011-03-08 19:33 . 2010-11-20 12:29 137088 ----a-w- c:\windows\system32\halacpi.dll
2011-03-08 19:32 . 2010-11-20 12:21 351232 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-03-08 19:32 . 2010-11-20 12:21 780288 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2011-03-08 19:32 . 2010-11-20 12:21 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2011-03-08 19:32 . 2010-11-20 12:19 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2011-03-08 19:32 . 2010-11-20 12:21 697344 ----a-w- c:\windows\system32\SmiEngine.dll
2011-03-08 19:32 . 2010-11-20 12:21 189952 ----a-w- c:\windows\system32\wdscore.dll
2011-03-08 19:32 . 2010-11-20 12:17 209920 ----a-w- c:\windows\system32\PkgMgr.exe
2011-03-08 19:32 . 2010-11-20 12:18 323072 ----a-w- c:\windows\system32\drvstore.dll
2011-03-08 19:32 . 2010-11-20 12:18 257024 ----a-w- c:\windows\system32\dpx.dll
2011-03-08 19:17 . 2010-12-23 05:54 850944 ----a-w- c:\windows\system32\sbe.dll
2011-03-08 19:17 . 2010-12-23 05:54 642048 ----a-w- c:\windows\system32\CPFilters.dll
2011-03-08 19:17 . 2010-12-23 05:54 534528 ----a-w- c:\windows\system32\EncDec.dll
2011-03-08 19:17 . 2010-12-23 05:50 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2011-03-08 19:17 . 2011-02-19 06:30 1076736 ----a-w- c:\windows\system32\DWrite.dll
2011-03-08 19:17 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2011-03-08 19:17 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2011-03-08 19:17 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2011-03-04 11:46 . 2011-03-04 11:46 -------- d-----w- c:\users\Admin\AppData\Local\Electronic Arts
2011-02-27 18:47 . 2005-06-04 08:09 72704 ----a-w- c:\windows\system32\ra3228_8.dll
2011-02-27 18:46 . 2005-06-04 08:11 85504 ----a-w- c:\windows\system32\encdnet.dll
2011-02-27 18:46 . 2005-06-04 08:09 61952 ----a-w- c:\windows\system32\decdnet.dll
2011-02-27 18:46 . 2005-06-04 08:09 130560 ----a-w- c:\windows\system32\pnc3250.dll
2011-02-27 18:46 . 2005-06-04 08:09 131072 ----a-w- c:\windows\system32\pneng50.dll
2011-02-27 18:46 . 2005-06-04 08:09 352768 ----a-w- c:\windows\system32\pngu3263.dll
2011-02-27 18:46 . 2005-06-04 08:09 81920 ----a-w- c:\windows\system32\ra3214_4.dll
2011-02-27 18:46 . 2005-06-04 08:09 21504 ----a-w- c:\windows\system32\ra32dnet.dll
2011-02-27 18:46 . 2005-06-04 08:08 87040 ----a-w- c:\windows\system32\ra32sipr.dll
2011-02-27 18:46 . 2005-06-04 08:08 487936 ----a-w- c:\windows\system32\rmbe3260.dll
2011-02-27 18:46 . 2005-06-04 08:08 487424 ----a-w- c:\windows\system32\msvcp70.dll
2011-02-27 18:44 . 2005-05-09 19:08 33792 ----a-w- c:\windows\system32\drivers\cledx.sys
2011-02-27 18:36 . 2002-11-25 04:46 16896 ----a-w- c:\windows\system32\drivers\synasUSB.sys
2011-02-27 18:36 . 2002-11-25 07:36 45056 ----a-w- c:\windows\system32\Synsopos.exe
2011-02-27 18:36 . 2011-02-27 18:36 -------- d-----w- c:\program files\Syncrosoft
2011-02-27 18:36 . 2005-10-17 08:35 704512 ----a-w- c:\windows\system32\SYNSOACC.dll
2011-02-27 18:36 . 2004-05-10 14:58 147456 ----a-w- c:\windows\system32\SynsoLChk.dll
2011-02-27 18:36 . 1999-12-01 00:40 401462 ----a-w- c:\windows\system32\temp.004
2011-02-27 18:04 . 2011-02-27 18:47 -------- d-----w- c:\users\Admin\AppData\Roaming\Steinberg
2011-02-24 08:36 . 2011-02-24 08:36 -------- d-----w- c:\programdata\FLEXnet
2011-02-24 08:32 . 2011-02-24 08:32 -------- d-----w- c:\program files\Adobe Media Player
2011-02-24 08:31 . 2011-02-24 08:31 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-02-24 08:30 . 2011-02-24 08:41 -------- d-----w- c:\users\Admin\AppData\Local\Adobe
2011-02-24 08:30 . 2011-02-24 08:30 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2011-02-23 20:01 . 2011-02-23 20:01 -------- d-----w- C:\rsit
2011-02-23 09:24 . 2011-01-07 07:46 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-02-23 09:24 . 2011-01-07 07:46 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-14 08:52 . 2010-08-08 12:58 431672 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-03-10 16:36 . 2010-10-26 18:48 165232 ---ha-w- c:\users\Admin\AppData\Roaming\Microsoft\Virtual PC\VPCKeyboard.dll
2011-03-10 11:51 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-08 19:42 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-02-17 13:00 . 2011-02-17 13:00 181608 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10137.bin
2011-02-03 05:54 . 2011-02-09 12:31 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-02-02 16:11 . 2010-07-28 14:03 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-01-13 08:47 . 2011-02-11 21:33 38848 ----a-w- c:\windows\avastSS.scr
2011-01-13 08:47 . 2011-02-11 21:33 188216 ----a-w- c:\windows\system32\aswBoot.exe
2011-01-13 08:41 . 2011-02-11 21:33 294608 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-01-13 08:40 . 2011-02-11 21:33 47440 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-01-13 08:37 . 2011-02-11 21:33 23632 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-01-13 08:37 . 2011-02-11 21:33 51280 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-01-13 08:37 . 2011-02-11 21:33 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-01-07 07:45 . 2011-02-09 12:31 34304 ----a-w- c:\windows\system32\atmlib.dll
2011-01-07 06:01 . 2011-02-09 12:31 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-01-07 05:43 . 2011-02-09 12:31 294400 ----a-w- c:\windows\system32\atmfd.dll
2011-01-05 05:55 . 2011-02-09 12:31 428032 ----a-w- c:\windows\system32\vbscript.dll
2011-01-05 03:51 . 2011-02-09 12:31 2330624 ----a-w- c:\windows\system32\win32k.sys
2010-12-25 14:38 . 2010-12-25 14:38 6475776 ----a-w- c:\windows\system32\PSP VintageWarmer2.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SharingPrivate]
@="{08244EE6-92F0-47f2-9FC9-929BAA2E7235}"
[HKEY_CLASSES_ROOT\CLSID\{08244EE6-92F0-47f2-9FC9-929BAA2E7235}]
2010-11-20 12:20 442880 ----a-w- c:\windows\System32\ntshrui.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-06-17 2363392]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-09-22 4240760]
"ICQ"="d:\program files\ICQ7.4\ICQ.exe" [2011-03-01 119608]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-01-05 254520]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-25 186904]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2009-10-23 563736]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"File Sanitizer"="c:\program files\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [2009-12-12 11265536]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2009-12-03 495711]
"DTRun"="c:\program files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe" [2009-11-19 518656]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-06-25 98304]
"Hercules DJ Series"="d:\program files\Hercules\Audio\DJ Console Series\HDJSeriesCPL.exe" [2009-07-09 505128]
"Creative SB Monitoring Utility"="sbavmon.dll" [2008-12-01 94720]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" [2010-08-23 1691192]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"avast5"="d:\program files\Alwil Software\Avast5\avastUI.exe" [2011-01-13 3396624]
"ZoneAlarm Client"="d:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2010-11-16 1043968]
"H2O"="c:\program files\SyncroSoft\Pos\H2O\cledx.exe" [2005-10-22 385024]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2010-9-28 113664]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-9-4 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2009-11-17 22:39 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"
.
R2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2009-12-14 1639728]
R3 1394ohci;1394 OHCI Compliant Host Controller;c:\windows\system32\drivers\1394ohci.sys [2010-11-20 164864]
R3 AcpiPmi;ACPI Power Meter Driver;c:\windows\system32\drivers\acpipmi.sys [2010-11-20 10240]
R3 adp94xx;adp94xx;c:\windows\system32\DRIVERS\adp94xx.sys [2009-07-14 422976]
R3 adpahci;adpahci;c:\windows\system32\DRIVERS\adpahci.sys [2009-07-14 297552]
R3 amdsata;amdsata;c:\windows\system32\drivers\amdsata.sys [2010-11-20 80256]
R3 amdsbs;amdsbs;c:\windows\system32\DRIVERS\amdsbs.sys [2009-07-14 159312]
R3 AppID;AppID Driver;c:\windows\system32\drivers\appid.sys [2010-11-20 50176]
R3 AppIDSvc;Application Identity;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 arcsas;arcsas;c:\windows\system32\DRIVERS\arcsas.sys [2009-07-14 86608]
R3 b06bdrv;Broadcom NetXtreme II VBD;c:\windows\system32\DRIVERS\bxvbdx.sys [2009-07-13 430080]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
R3 BDESVC;BitLocker Drive Encryption Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver;c:\windows\system32\DRIVERS\BrFiltLo.sys [2009-07-13 13568]
R3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver;c:\windows\system32\DRIVERS\BrFiltUp.sys [2009-07-13 5248]
R3 Brserid;Brother MFC Serial Port Interface Driver (WDM);c:\windows\System32\Drivers\Brserid.sys [2009-07-14 272128]
R3 BrSerWdm;Brother WDM Serial driver;c:\windows\System32\Drivers\BrSerWdm.sys [2009-07-13 62336]
R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\System32\Drivers\BrUsbMdm.sys [2009-07-13 12160]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 Bulk;HDJBulk;c:\windows\system32\Drivers\HDJBulk.sys [2009-07-08 126464]
R3 CertPropSvc;Šírenie certifikátu;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 circlass;Consumer IR Devices;c:\windows\system32\DRIVERS\circlass.sys [2009-07-13 37888]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
R3 defragsvc;Defragmentácia disku;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;c:\windows\system32\DRIVERS\evbdx.sys [2009-07-13 3100160]
R3 elxstor;elxstor;c:\windows\system32\DRIVERS\elxstor.sys [2009-07-14 453712]
R3 fdPHost;Function Discovery Provider Host;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 Filetrace;Filetrace;c:\windows\system32\drivers\filetrace.sys [2009-07-13 28160]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\system32\flcdlock.exe [2009-11-17 362040]
R3 FsDepends;File System Dependency Minifilter;c:\windows\system32\drivers\FsDepends.sys [2009-07-14 46160]
R3 hcw85cir;Hauppauge Consumer Infrared Receiver;c:\windows\system32\drivers\hcw85cir.sys [2009-07-13 26624]
R3 HDJMidi;DJ Control MP3 e2 MIDI;c:\windows\system32\DRIVERS\HDJMidi.sys [2009-07-08 124416]
R3 HomeGroupListener;HomeGroup Listener;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 HomeGroupProvider;HomeGroup Provider;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 HpSAMD;HpSAMD;c:\windows\system32\drivers\HpSAMD.sys [2009-07-14 67152]
R3 iaStorV;Intel RAID Controller Windows 7;c:\windows\system32\drivers\iaStorV.sys [2010-11-20 332160]
R3 IPBusEnum;PnP-X IP Bus Enumerator;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 IPMIDRV;IPMIDRV;c:\windows\system32\drivers\IPMIDrv.sys [2010-11-20 65536]
R3 iScsiPrt;iScsiPort Driver;c:\windows\system32\drivers\msiscsi.sys [2010-11-20 233344]
R3 ksaud;Creative USB Audio Driver;c:\windows\system32\drivers\ksaud.sys [2009-08-05 886912]
R3 KtmRm;KtmRm for Distributed Transaction Coordinator;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 lltdsvc;Mapovač zisťovania topológie úrovne vrstvy prepojení;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 LSI_FC;LSI_FC;c:\windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 95824]
R3 LSI_SAS;LSI_SAS;c:\windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 89168]
R3 LSI_SAS2;LSI_SAS2;c:\windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 54864]
R3 LSI_SCSI;LSI_SCSI;c:\windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 96848]
R3 megasas;megasas;c:\windows\system32\DRIVERS\megasas.sys [2009-07-14 30800]
R3 mpio;Microsoft Multi-Path Bus Driver;c:\windows\system32\drivers\mpio.sys [2010-11-20 130432]
R3 msahci;msahci;c:\windows\system32\drivers\msahci.sys [2010-11-20 28032]
R3 msdsm;Microsoft Multi-Path Device Specific Module;c:\windows\system32\drivers\msdsm.sys [2010-11-20 116096]
R3 mshidkmdf;Pass-through HID to KMDF Filter Driver;c:\windows\System32\drivers\mshidkmdf.sys [2009-07-13 4096]
R3 MSiSCSI;Microsoft iSCSI Initiator Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 MsRPC;MsRPC; [x]
R3 MTConfig;Microsoft Input Configuration Driver;c:\windows\system32\DRIVERS\MTConfig.sys [2009-07-13 12288]
R3 NdisCap;NDIS Capture LightWeight Filter;c:\windows\system32\DRIVERS\ndiscap.sys [2009-07-13 27136]
R3 nfrd960;nfrd960;c:\windows\system32\DRIVERS\nfrd960.sys [2009-07-14 44624]
R3 nvstor;nvstor;c:\windows\system32\drivers\nvstor.sys [2010-11-20 143744]
R3 PcaSvc;Program Compatibility Assistant Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 pla;Performance Logs & Alerts;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 PNRPAutoReg;PNRP Machine Name Publication Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 ql2300;ql2300;c:\windows\system32\DRIVERS\ql2300.sys [2009-07-14 1383488]
R3 ql40xx;ql40xx;c:\windows\system32\DRIVERS\ql40xx.sys [2009-07-14 106064]
R3 rdpbus;Remote Desktop Device Redirector Bus Driver;c:\windows\system32\DRIVERS\rdpbus.sys [2009-07-14 18944]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-11-11 181792]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-03-04 277536]
R3 scfilter;Smart card PnP Class Filter Driver;c:\windows\system32\DRIVERS\scfilter.sys [2010-11-20 26624]
R3 SCPolicySvc;Politika vybratia karty Smart Card;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 SDRSVC;Windows Zálohovanie;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 SensrSvc;Adaptive Brightness;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 SessionEnv;Remote Desktop Configuration;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 sffp_mmc;SFF Storage Protocol Driver for MMC;c:\windows\system32\drivers\sffp_mmc.sys [2009-07-13 12288]
R3 SiSRaid4;SiSRaid4;c:\windows\system32\DRIVERS\sisraid4.sys [2009-07-14 77888]
R3 Smb;Protokol TCP/IP orientovaný na správy a protokol TCP/IPv6 (relácia SMB);c:\windows\system32\DRIVERS\smb.sys [2009-07-13 71168]
R3 sppuinotify;Oznamovacia služba SPP;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 stexstor;stexstor;c:\windows\system32\DRIVERS\stexstor.sys [2009-07-14 21072]
R3 TabletInputService;Tablet PC Input Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 TBS;TPM Base Services;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 THREADORDER;Thread Ordering Server;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 tssecsrv;Remote Desktop Services Security Filter Driver;c:\windows\system32\DRIVERS\tssecsrv.sys [2010-11-20 31232]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 UI0Detect;Interactive Services Detection;c:\windows\system32\UI0Detect.exe [2009-07-14 35840]
R3 uliagpkx;Uli AGP Bus Filter;c:\windows\system32\drivers\uliagpkx.sys [2009-07-14 57424]
R3 usbcir;eHome Infrared Receiver (USBCIR);c:\windows\system32\drivers\usbcir.sys [2009-07-13 86016]
R3 VaultSvc;Správca poverení;c:\windows\system32\lsass.exe [2009-07-14 22528]
R3 vhdmp;vhdmp;c:\windows\system32\drivers\vhdmp.sys [2010-11-20 160128]
R3 ViaC7;VIA C7 Processor Driver;c:\windows\system32\DRIVERS\viac7.sys [2009-07-13 52736]
R3 vsmraid;vsmraid;c:\windows\system32\DRIVERS\vsmraid.sys [2009-07-14 141904]
R3 WacomPen;Wacom Serial Pen HID Driver;c:\windows\system32\DRIVERS\wacompen.sys [2009-07-13 21632]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-07-29 1343400]
R3 wbengine;Block Level Backup Engine Service;c:\windows\system32\wbengine.exe [2010-11-20 1203200]
R3 WbioSrvc;Windows Biometric Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 wcncsvc;Windows Connect Now - Config Registrar;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WcsPlugInService;Windows Color System;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 Wd;Wd;c:\windows\system32\DRIVERS\wd.sys [2009-07-14 19024]
R3 Wecsvc;Windows Event Collector;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 wercplsupport;Problem Reports and Solutions Control Panel Support;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WerSvc;Windows Error Reporting Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WIMMount;WIMMount;c:\windows\system32\drivers\wimmount.sys [2009-07-14 19008]
R3 WinRM;Windows Remote Management (WS-Management);c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WPCSvc;Parental Controls;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 WPDBusEnum;Portable Device Enumerator Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 WwanSvc;WWAN AutoConfig;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 YMIDUSBW;Yamaha USB-MIDI Driver (WDM);c:\windows\system32\drivers\ymidusbw.sys [2009-08-04 33736]
R4 Ipprgp;Ipprgp;c:\windows\system32\drivers\btwl2cap.sys [2009-09-17 29472]
R4 Mcx2Svc;Služba Media Center Extender;c:\windows\system32\svchost.exe [2009-07-14 20992]
S0 amdxata;amdxata;c:\windows\system32\drivers\amdxata.sys [2010-11-20 22400]
S0 CLFS;Common Log (CLFS);c:\windows\System32\CLFS.sys [2009-07-14 249408]
S0 CNG;CNG;c:\windows\System32\Drivers\cng.sys [2009-07-14 369568]
S0 FileInfo;File Information FS MiniFilter;c:\windows\system32\drivers\fileinfo.sys [2009-07-14 58448]
S0 fvevol;Bitlocker Drive Encryption Filter Driver;c:\windows\System32\DRIVERS\fvevol.sys [2010-11-20 194800]
S0 hwpolicy;Hardware Policy Driver;c:\windows\System32\drivers\hwpolicy.sys [2010-11-20 14208]
S0 KSecPkg;KSecPkg;c:\windows\System32\Drivers\ksecpkg.sys [2009-07-14 133200]
S0 msisadrv;msisadrv;c:\windows\system32\drivers\msisadrv.sys [2009-07-14 13888]
S0 pcw;Performance Counters for Windows Driver;c:\windows\System32\drivers\pcw.sys [2009-07-14 43088]
S0 rdyboost;ReadyBoost;c:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S0 spldr;Security Processor Loader Driver; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 vdrvroot;Microsoft Virtual Drive Enumerator Driver;c:\windows\system32\drivers\vdrvroot.sys [2009-07-14 32832]
S0 volmgr;Volume Manager Driver;c:\windows\system32\drivers\volmgr.sys [2010-11-20 53120]
S0 volmgrx;Dynamic Volume Manager;c:\windows\System32\drivers\volmgrx.sys [2009-07-14 297040]
S1 aswSP;aswSP; [x]
S1 blbdrive;blbdrive;c:\windows\system32\DRIVERS\blbdrive.sys [2009-07-13 35328]
S1 DfsC;DFS Namespace Client Driver;c:\windows\system32\Drivers\dfsc.sys [2010-11-20 78336]
S1 discache;System Attribute Cache;c:\windows\system32\drivers\discache.sys [2009-07-13 32256]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-03-14 218688]
S1 nsiproxy;NSI proxy service driver.;c:\windows\system32\drivers\nsiproxy.sys [2009-07-13 16896]
S1 RDPENCDD;RDP Encoder Mirror Driver;c:\windows\system32\drivers\rdpencdd.sys [2009-07-14 6656]
S1 RDPREFMP;Reflector Display Driver used to gain access to graphics data;c:\windows\system32\drivers\rdprefmp.sys [2009-07-14 7168]
S1 RsvLock;RsvLock; [x]
S1 tdx;Sieťový vstupno-výstupný ovládač staršej verzie na podporu zariadení TDI;c:\windows\system32\DRIVERS\tdx.sys [2010-11-20 74752]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S1 Wanarpv6;Remote Access IPv6 ARP Driver;c:\windows\system32\DRIVERS\wanarp.sys [2010-11-20 63488]
S1 WfpLwf;WFP Lightweight Filter;c:\windows\system32\DRIVERS\wfplwf.sys [2009-07-13 9728]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe [2009-03-03 81920]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-06-18 176128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-01-13 51280]
S2 AudioEndpointBuilder;Windows Audio Endpoint Builder;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 BFE;Base Filtering Engine;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 DPS;Diagnostic Policy Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 FDResPub;Function Discovery Resource Publication;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 gpsvc;Klient skupinovej politiky;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 HerculesDJControlMP3;Hercules DJ Control MP3;d:\program files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE [2007-11-21 17408]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-08-23 103992]
S2 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2009-11-18 36864]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-01-08 81920]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-10-14 92216]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-16 281192]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-05 264248]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 26168]
S2 IKEEXT;IKE and AuthIP IPsec Keying Modules;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 iphlpsvc;IP Helper;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver;c:\windows\system32\DRIVERS\lltdio.sys [2009-07-13 48128]
S2 luafv;UAC File Virtualization;c:\windows\system32\drivers\luafv.sys [2009-07-13 86528]
S2 MMCSS;Multimedia Class Scheduler;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 MpsSvc;Brána Windows Firewall;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 NlaSvc;Network Location Awareness;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 nsi;Network Store Interface Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2009-10-23 635416]
S2 PEAUTH;PEAUTH;c:\windows\system32\drivers\peauth.sys [2009-07-14 586752]
S2 Power;Power;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 ProfSvc;User Profile Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 RpcEptMapper;RPC Endpoint Mapper;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 sppsvc;Software Protection;c:\windows\system32\sppsvc.exe [2010-11-20 3179520]
S2 SysMain;Rýchle načítanie;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 tcpipreg;TCP/IP Registry Compatibility;c:\windows\system32\drivers\tcpipreg.sys [2010-11-20 35328]
S2 TeamViewer5;TeamViewer 5;d:\program files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
S2 uArcCapture;ArcCapture;c:\windows\system32\uArcCapture.exe [2009-12-04 506472]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S2 UxSms;Správca relácie Správcu okien na pracovnej ploche;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 WinDefend;Windows Defender;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 Wlansvc;WLAN AutoConfig;c:\windows\system32\svchost.exe [2009-07-14 20992]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-06-18 5586944]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-06-18 210432]
S3 Appinfo;Application Information;c:\windows\system32\svchost.exe [2009-07-14 20992]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 29824]
S3 bowser;Browser Support Driver;c:\windows\system32\DRIVERS\bowser.sys [2009-07-13 69632]
S3 CLEDX;Team H2O CLEDX service;c:\windows\system32\DRIVERS\cledx.sys [2005-05-09 33792]
S3 CompositeBus;Composite Bus Enumerator Driver;c:\windows\system32\drivers\CompositeBus.sys [2010-11-20 31232]
S3 DXGKrnl;LDDM Graphics Subsystem;c:\windows\System32\drivers\dxgkrnl.sys [2010-11-20 728448]
S3 KeyIso;CNG Key Isolation;c:\windows\system32\lsass.exe [2009-07-14 22528]
S3 monitor;Microsoft Monitor Class Function Driver Service;c:\windows\system32\DRIVERS\monitor.sys [2009-07-13 23552]
S3 mpsdrv;Ovládač overenia brány Windows Firewall;c:\windows\system32\drivers\mpsdrv.sys [2009-07-13 60416]
S3 mrxsmb10;SMB 1.x MiniRedirector;c:\windows\system32\DRIVERS\mrxsmb10.sys [2010-11-20 223232]
S3 mrxsmb20;SMB 2.0 MiniRedirector;c:\windows\system32\DRIVERS\mrxsmb20.sys [2010-11-20 96768]
S3 NativeWifiP;NativeWiFi Filter;c:\windows\system32\DRIVERS\nwifi.sys [2009-07-13 267264]
S3 netprofm;Network List Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 RasAgileVpn;WAN Miniport (IKEv2);c:\windows\system32\DRIVERS\AgileVpn.sys [2009-07-13 49152]
S3 srv2;Server SMB 2.xxx Driver;c:\windows\system32\DRIVERS\srv2.sys [2010-11-20 309248]
S3 srvnet;srvnet;c:\windows\system32\DRIVERS\srvnet.sys [2010-11-20 114176]
S3 TrustedInstaller;Windows Modules Installer;c:\windows\servicing\TrustedInstaller.exe [2010-11-20 204800]
S3 tunnel;Microsoft Tunnel Miniport Adapter Driver;c:\windows\system32\DRIVERS\tunnel.sys [2010-11-20 108544]
S3 umbus;UMBus Enumerator Driver;c:\windows\system32\drivers\umbus.sys [2010-11-20 39936]
S3 vwifibus;Virtual WiFi Bus Driver;c:\windows\system32\DRIVERS\vwifibus.sys [2009-07-13 19968]
S3 WdiServiceHost;Diagnostic Service Host;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 WdiSystemHost;Diagnostic System Host;c:\windows\System32\svchost.exe [2009-07-14 20992]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
RPCSS REG_MULTI_SZ RpcEptMapper RpcSs
defragsvc REG_MULTI_SZ defragsvc
WerSvcGroup REG_MULTI_SZ wersvc
LocalServiceNoNetwork REG_MULTI_SZ DPS PLA BFE mpssvc WwanSvc
swprv REG_MULTI_SZ swprv
LocalServicePeerNet REG_MULTI_SZ PNRPSvc p2pimsvc p2psvc PnrpAutoReg
NetworkServiceAndNoImpersonation REG_MULTI_SZ KtmRm
regsvc REG_MULTI_SZ RemoteRegistry
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
DcomLaunch REG_MULTI_SZ Power PlugPlay DcomLaunch
NetworkServiceNetworkRestricted REG_MULTI_SZ PolicyAgent
sdrsvc REG_MULTI_SZ sdrsvc
WbioSvcGroup REG_MULTI_SZ WbioSrvc
wcssvc REG_MULTI_SZ WcsPlugInService
AxInstSVGroup REG_MULTI_SZ AxInstSV
secsvcs REG_MULTI_SZ WinDefend
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
AeLookupSvc
CertPropSvc
SCPolicySvc
lanmanserver
gpsvc
IKEEXT
AudioSrv
FastUserSwitchingCompatibility
Nla
NWCWorkstation
SRService
Wmi
WmdmPmSp
TermService
wuauserv
BITS
ShellHWDetection
LogonHours
PCAudit
helpsvc
uploadmgr
iphlpsvc
seclogon
AppInfo
msiscsi
MMCSS
wercplsupport
EapHost
ProfSvc
schedule
hkmsvc
SessionEnv
winmgmt
browser
Themes
BDESVC
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalSystemNetworkRestricted
homegrouplistener
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
WdiServiceHost
sppuinotify
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetworkService
lanmanworkstation
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalServiceNetworkRestricted
BthHFSrv
homegroupprovider
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 20:11 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2011-03-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3863125621-3407463611-2706026323-1005Core.job
- c:\users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-14 08:41]
.
2011-03-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3863125621-3407463611-2706026323-1005UA.job
- c:\users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-14 08:41]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://start.icq.com/
mStart Page =
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - d:\program files\ICQ7.4\ICQ.exe
FF - ProfilePath - c:\users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\h3sxwii9.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - d:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-AdobeBridge - (no file)
SafeBoot-WudfPf
SafeBoot-WudfRd
SafeBoot-sacsvr
SafeBoot-vmms
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files:
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(5732)
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
d:\virtualpc\VPCShExH.DLL
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe
c:\windows\system32\atieclxx.exe
d:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\windows\System32\rundll32.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
c:\program files\Hewlett-Packard\Shared\hpCaslNotification.exe
c:\program files\Windows Media Player\wmpnetwk.exe
d:\program files\Mozilla Firefox\firefox.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Completion time: 2011-03-22 20:37:09 - machine was rebooted
ComboFix-quarantined-files.txt 2011-03-22 19:37
.
Pre-Run: 18 649 178 112 bytes free
Post-Run: 18 470 551 552 bytes free
.
- - End Of File - - 0C286057C3C46226BAC09533685C7F34
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.2991.1782 [GMT 1:00]
Running from: c:\users\Admin\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
FW: ZoneAlarm Firewall *Disabled* {D17DF357-CFF5-F001-D1C1-FCD21DFE3D5E}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\drivers\etc\lmhosts . . . . Failed to delete
.
.
((((((((((((((((((((((((( Files Created from 2011-02-22 to 2011-03-22 )))))))))))))))))))))))))))))))
.
.
2011-03-22 19:30 . 2011-03-22 19:33 -------- d-----w- c:\users\Admin\AppData\Local\temp
2011-03-22 19:30 . 2011-03-22 19:30 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-03-22 19:30 . 2011-03-22 19:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-03-22 19:22 . 2011-03-22 19:22 -------- d-----w- C:\32788R22FWJFW
2011-03-22 12:28 . 2011-02-11 06:54 5943120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{375EE256-229C-4C77-B41C-914B03B3D6FB}\mpengine.dll
2011-03-14 08:48 . 2011-03-14 08:48 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-03-14 08:48 . 2011-03-19 19:21 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2011-03-14 08:48 . 2011-03-14 08:48 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-03-14 07:09 . 2011-03-14 07:10 -------- d-----w- c:\users\Martin
2011-03-08 19:38 . 2011-03-08 19:38 -------- d-----w- c:\windows\system32\SPReview
2011-03-08 19:37 . 2011-03-08 19:37 -------- d-----w- c:\windows\system32\EventProviders
2011-03-08 19:35 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\system32\dfshim.dll
2011-03-08 19:33 . 2010-11-20 12:29 137088 ----a-w- c:\windows\system32\halacpi.dll
2011-03-08 19:32 . 2010-11-20 12:21 351232 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-03-08 19:32 . 2010-11-20 12:21 780288 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2011-03-08 19:32 . 2010-11-20 12:21 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2011-03-08 19:32 . 2010-11-20 12:19 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2011-03-08 19:32 . 2010-11-20 12:21 697344 ----a-w- c:\windows\system32\SmiEngine.dll
2011-03-08 19:32 . 2010-11-20 12:21 189952 ----a-w- c:\windows\system32\wdscore.dll
2011-03-08 19:32 . 2010-11-20 12:17 209920 ----a-w- c:\windows\system32\PkgMgr.exe
2011-03-08 19:32 . 2010-11-20 12:18 323072 ----a-w- c:\windows\system32\drvstore.dll
2011-03-08 19:32 . 2010-11-20 12:18 257024 ----a-w- c:\windows\system32\dpx.dll
2011-03-08 19:17 . 2010-12-23 05:54 850944 ----a-w- c:\windows\system32\sbe.dll
2011-03-08 19:17 . 2010-12-23 05:54 642048 ----a-w- c:\windows\system32\CPFilters.dll
2011-03-08 19:17 . 2010-12-23 05:54 534528 ----a-w- c:\windows\system32\EncDec.dll
2011-03-08 19:17 . 2010-12-23 05:50 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2011-03-08 19:17 . 2011-02-19 06:30 1076736 ----a-w- c:\windows\system32\DWrite.dll
2011-03-08 19:17 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2011-03-08 19:17 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2011-03-08 19:17 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2011-03-04 11:46 . 2011-03-04 11:46 -------- d-----w- c:\users\Admin\AppData\Local\Electronic Arts
2011-02-27 18:47 . 2005-06-04 08:09 72704 ----a-w- c:\windows\system32\ra3228_8.dll
2011-02-27 18:46 . 2005-06-04 08:11 85504 ----a-w- c:\windows\system32\encdnet.dll
2011-02-27 18:46 . 2005-06-04 08:09 61952 ----a-w- c:\windows\system32\decdnet.dll
2011-02-27 18:46 . 2005-06-04 08:09 130560 ----a-w- c:\windows\system32\pnc3250.dll
2011-02-27 18:46 . 2005-06-04 08:09 131072 ----a-w- c:\windows\system32\pneng50.dll
2011-02-27 18:46 . 2005-06-04 08:09 352768 ----a-w- c:\windows\system32\pngu3263.dll
2011-02-27 18:46 . 2005-06-04 08:09 81920 ----a-w- c:\windows\system32\ra3214_4.dll
2011-02-27 18:46 . 2005-06-04 08:09 21504 ----a-w- c:\windows\system32\ra32dnet.dll
2011-02-27 18:46 . 2005-06-04 08:08 87040 ----a-w- c:\windows\system32\ra32sipr.dll
2011-02-27 18:46 . 2005-06-04 08:08 487936 ----a-w- c:\windows\system32\rmbe3260.dll
2011-02-27 18:46 . 2005-06-04 08:08 487424 ----a-w- c:\windows\system32\msvcp70.dll
2011-02-27 18:44 . 2005-05-09 19:08 33792 ----a-w- c:\windows\system32\drivers\cledx.sys
2011-02-27 18:36 . 2002-11-25 04:46 16896 ----a-w- c:\windows\system32\drivers\synasUSB.sys
2011-02-27 18:36 . 2002-11-25 07:36 45056 ----a-w- c:\windows\system32\Synsopos.exe
2011-02-27 18:36 . 2011-02-27 18:36 -------- d-----w- c:\program files\Syncrosoft
2011-02-27 18:36 . 2005-10-17 08:35 704512 ----a-w- c:\windows\system32\SYNSOACC.dll
2011-02-27 18:36 . 2004-05-10 14:58 147456 ----a-w- c:\windows\system32\SynsoLChk.dll
2011-02-27 18:36 . 1999-12-01 00:40 401462 ----a-w- c:\windows\system32\temp.004
2011-02-27 18:04 . 2011-02-27 18:47 -------- d-----w- c:\users\Admin\AppData\Roaming\Steinberg
2011-02-24 08:36 . 2011-02-24 08:36 -------- d-----w- c:\programdata\FLEXnet
2011-02-24 08:32 . 2011-02-24 08:32 -------- d-----w- c:\program files\Adobe Media Player
2011-02-24 08:31 . 2011-02-24 08:31 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-02-24 08:30 . 2011-02-24 08:41 -------- d-----w- c:\users\Admin\AppData\Local\Adobe
2011-02-24 08:30 . 2011-02-24 08:30 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2011-02-23 20:01 . 2011-02-23 20:01 -------- d-----w- C:\rsit
2011-02-23 09:24 . 2011-01-07 07:46 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-02-23 09:24 . 2011-01-07 07:46 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-14 08:52 . 2010-08-08 12:58 431672 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-03-10 16:36 . 2010-10-26 18:48 165232 ---ha-w- c:\users\Admin\AppData\Roaming\Microsoft\Virtual PC\VPCKeyboard.dll
2011-03-10 11:51 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-08 19:42 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-02-17 13:00 . 2011-02-17 13:00 181608 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10137.bin
2011-02-03 05:54 . 2011-02-09 12:31 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-02-02 16:11 . 2010-07-28 14:03 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-01-13 08:47 . 2011-02-11 21:33 38848 ----a-w- c:\windows\avastSS.scr
2011-01-13 08:47 . 2011-02-11 21:33 188216 ----a-w- c:\windows\system32\aswBoot.exe
2011-01-13 08:41 . 2011-02-11 21:33 294608 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-01-13 08:40 . 2011-02-11 21:33 47440 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-01-13 08:37 . 2011-02-11 21:33 23632 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-01-13 08:37 . 2011-02-11 21:33 51280 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-01-13 08:37 . 2011-02-11 21:33 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-01-07 07:45 . 2011-02-09 12:31 34304 ----a-w- c:\windows\system32\atmlib.dll
2011-01-07 06:01 . 2011-02-09 12:31 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-01-07 05:43 . 2011-02-09 12:31 294400 ----a-w- c:\windows\system32\atmfd.dll
2011-01-05 05:55 . 2011-02-09 12:31 428032 ----a-w- c:\windows\system32\vbscript.dll
2011-01-05 03:51 . 2011-02-09 12:31 2330624 ----a-w- c:\windows\system32\win32k.sys
2010-12-25 14:38 . 2010-12-25 14:38 6475776 ----a-w- c:\windows\system32\PSP VintageWarmer2.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SharingPrivate]
@="{08244EE6-92F0-47f2-9FC9-929BAA2E7235}"
[HKEY_CLASSES_ROOT\CLSID\{08244EE6-92F0-47f2-9FC9-929BAA2E7235}]
2010-11-20 12:20 442880 ----a-w- c:\windows\System32\ntshrui.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-06-17 2363392]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-09-22 4240760]
"ICQ"="d:\program files\ICQ7.4\ICQ.exe" [2011-03-01 119608]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-01-05 254520]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-25 186904]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2009-10-23 563736]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"File Sanitizer"="c:\program files\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [2009-12-12 11265536]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2009-12-03 495711]
"DTRun"="c:\program files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe" [2009-11-19 518656]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-06-25 98304]
"Hercules DJ Series"="d:\program files\Hercules\Audio\DJ Console Series\HDJSeriesCPL.exe" [2009-07-09 505128]
"Creative SB Monitoring Utility"="sbavmon.dll" [2008-12-01 94720]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" [2010-08-23 1691192]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"avast5"="d:\program files\Alwil Software\Avast5\avastUI.exe" [2011-01-13 3396624]
"ZoneAlarm Client"="d:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2010-11-16 1043968]
"H2O"="c:\program files\SyncroSoft\Pos\H2O\cledx.exe" [2005-10-22 385024]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2010-9-28 113664]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-9-4 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2009-11-17 22:39 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"
.
R2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2009-12-14 1639728]
R3 1394ohci;1394 OHCI Compliant Host Controller;c:\windows\system32\drivers\1394ohci.sys [2010-11-20 164864]
R3 AcpiPmi;ACPI Power Meter Driver;c:\windows\system32\drivers\acpipmi.sys [2010-11-20 10240]
R3 adp94xx;adp94xx;c:\windows\system32\DRIVERS\adp94xx.sys [2009-07-14 422976]
R3 adpahci;adpahci;c:\windows\system32\DRIVERS\adpahci.sys [2009-07-14 297552]
R3 amdsata;amdsata;c:\windows\system32\drivers\amdsata.sys [2010-11-20 80256]
R3 amdsbs;amdsbs;c:\windows\system32\DRIVERS\amdsbs.sys [2009-07-14 159312]
R3 AppID;AppID Driver;c:\windows\system32\drivers\appid.sys [2010-11-20 50176]
R3 AppIDSvc;Application Identity;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 arcsas;arcsas;c:\windows\system32\DRIVERS\arcsas.sys [2009-07-14 86608]
R3 b06bdrv;Broadcom NetXtreme II VBD;c:\windows\system32\DRIVERS\bxvbdx.sys [2009-07-13 430080]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
R3 BDESVC;BitLocker Drive Encryption Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver;c:\windows\system32\DRIVERS\BrFiltLo.sys [2009-07-13 13568]
R3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver;c:\windows\system32\DRIVERS\BrFiltUp.sys [2009-07-13 5248]
R3 Brserid;Brother MFC Serial Port Interface Driver (WDM);c:\windows\System32\Drivers\Brserid.sys [2009-07-14 272128]
R3 BrSerWdm;Brother WDM Serial driver;c:\windows\System32\Drivers\BrSerWdm.sys [2009-07-13 62336]
R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\System32\Drivers\BrUsbMdm.sys [2009-07-13 12160]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 Bulk;HDJBulk;c:\windows\system32\Drivers\HDJBulk.sys [2009-07-08 126464]
R3 CertPropSvc;Šírenie certifikátu;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 circlass;Consumer IR Devices;c:\windows\system32\DRIVERS\circlass.sys [2009-07-13 37888]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
R3 defragsvc;Defragmentácia disku;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;c:\windows\system32\DRIVERS\evbdx.sys [2009-07-13 3100160]
R3 elxstor;elxstor;c:\windows\system32\DRIVERS\elxstor.sys [2009-07-14 453712]
R3 fdPHost;Function Discovery Provider Host;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 Filetrace;Filetrace;c:\windows\system32\drivers\filetrace.sys [2009-07-13 28160]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\system32\flcdlock.exe [2009-11-17 362040]
R3 FsDepends;File System Dependency Minifilter;c:\windows\system32\drivers\FsDepends.sys [2009-07-14 46160]
R3 hcw85cir;Hauppauge Consumer Infrared Receiver;c:\windows\system32\drivers\hcw85cir.sys [2009-07-13 26624]
R3 HDJMidi;DJ Control MP3 e2 MIDI;c:\windows\system32\DRIVERS\HDJMidi.sys [2009-07-08 124416]
R3 HomeGroupListener;HomeGroup Listener;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 HomeGroupProvider;HomeGroup Provider;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 HpSAMD;HpSAMD;c:\windows\system32\drivers\HpSAMD.sys [2009-07-14 67152]
R3 iaStorV;Intel RAID Controller Windows 7;c:\windows\system32\drivers\iaStorV.sys [2010-11-20 332160]
R3 IPBusEnum;PnP-X IP Bus Enumerator;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 IPMIDRV;IPMIDRV;c:\windows\system32\drivers\IPMIDrv.sys [2010-11-20 65536]
R3 iScsiPrt;iScsiPort Driver;c:\windows\system32\drivers\msiscsi.sys [2010-11-20 233344]
R3 ksaud;Creative USB Audio Driver;c:\windows\system32\drivers\ksaud.sys [2009-08-05 886912]
R3 KtmRm;KtmRm for Distributed Transaction Coordinator;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 lltdsvc;Mapovač zisťovania topológie úrovne vrstvy prepojení;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 LSI_FC;LSI_FC;c:\windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 95824]
R3 LSI_SAS;LSI_SAS;c:\windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 89168]
R3 LSI_SAS2;LSI_SAS2;c:\windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 54864]
R3 LSI_SCSI;LSI_SCSI;c:\windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 96848]
R3 megasas;megasas;c:\windows\system32\DRIVERS\megasas.sys [2009-07-14 30800]
R3 mpio;Microsoft Multi-Path Bus Driver;c:\windows\system32\drivers\mpio.sys [2010-11-20 130432]
R3 msahci;msahci;c:\windows\system32\drivers\msahci.sys [2010-11-20 28032]
R3 msdsm;Microsoft Multi-Path Device Specific Module;c:\windows\system32\drivers\msdsm.sys [2010-11-20 116096]
R3 mshidkmdf;Pass-through HID to KMDF Filter Driver;c:\windows\System32\drivers\mshidkmdf.sys [2009-07-13 4096]
R3 MSiSCSI;Microsoft iSCSI Initiator Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 MsRPC;MsRPC; [x]
R3 MTConfig;Microsoft Input Configuration Driver;c:\windows\system32\DRIVERS\MTConfig.sys [2009-07-13 12288]
R3 NdisCap;NDIS Capture LightWeight Filter;c:\windows\system32\DRIVERS\ndiscap.sys [2009-07-13 27136]
R3 nfrd960;nfrd960;c:\windows\system32\DRIVERS\nfrd960.sys [2009-07-14 44624]
R3 nvstor;nvstor;c:\windows\system32\drivers\nvstor.sys [2010-11-20 143744]
R3 PcaSvc;Program Compatibility Assistant Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 pla;Performance Logs & Alerts;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 PNRPAutoReg;PNRP Machine Name Publication Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 ql2300;ql2300;c:\windows\system32\DRIVERS\ql2300.sys [2009-07-14 1383488]
R3 ql40xx;ql40xx;c:\windows\system32\DRIVERS\ql40xx.sys [2009-07-14 106064]
R3 rdpbus;Remote Desktop Device Redirector Bus Driver;c:\windows\system32\DRIVERS\rdpbus.sys [2009-07-14 18944]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-11-11 181792]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-03-04 277536]
R3 scfilter;Smart card PnP Class Filter Driver;c:\windows\system32\DRIVERS\scfilter.sys [2010-11-20 26624]
R3 SCPolicySvc;Politika vybratia karty Smart Card;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 SDRSVC;Windows Zálohovanie;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 SensrSvc;Adaptive Brightness;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 SessionEnv;Remote Desktop Configuration;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 sffp_mmc;SFF Storage Protocol Driver for MMC;c:\windows\system32\drivers\sffp_mmc.sys [2009-07-13 12288]
R3 SiSRaid4;SiSRaid4;c:\windows\system32\DRIVERS\sisraid4.sys [2009-07-14 77888]
R3 Smb;Protokol TCP/IP orientovaný na správy a protokol TCP/IPv6 (relácia SMB);c:\windows\system32\DRIVERS\smb.sys [2009-07-13 71168]
R3 sppuinotify;Oznamovacia služba SPP;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 stexstor;stexstor;c:\windows\system32\DRIVERS\stexstor.sys [2009-07-14 21072]
R3 TabletInputService;Tablet PC Input Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 TBS;TPM Base Services;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 THREADORDER;Thread Ordering Server;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 tssecsrv;Remote Desktop Services Security Filter Driver;c:\windows\system32\DRIVERS\tssecsrv.sys [2010-11-20 31232]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 UI0Detect;Interactive Services Detection;c:\windows\system32\UI0Detect.exe [2009-07-14 35840]
R3 uliagpkx;Uli AGP Bus Filter;c:\windows\system32\drivers\uliagpkx.sys [2009-07-14 57424]
R3 usbcir;eHome Infrared Receiver (USBCIR);c:\windows\system32\drivers\usbcir.sys [2009-07-13 86016]
R3 VaultSvc;Správca poverení;c:\windows\system32\lsass.exe [2009-07-14 22528]
R3 vhdmp;vhdmp;c:\windows\system32\drivers\vhdmp.sys [2010-11-20 160128]
R3 ViaC7;VIA C7 Processor Driver;c:\windows\system32\DRIVERS\viac7.sys [2009-07-13 52736]
R3 vsmraid;vsmraid;c:\windows\system32\DRIVERS\vsmraid.sys [2009-07-14 141904]
R3 WacomPen;Wacom Serial Pen HID Driver;c:\windows\system32\DRIVERS\wacompen.sys [2009-07-13 21632]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-07-29 1343400]
R3 wbengine;Block Level Backup Engine Service;c:\windows\system32\wbengine.exe [2010-11-20 1203200]
R3 WbioSrvc;Windows Biometric Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 wcncsvc;Windows Connect Now - Config Registrar;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WcsPlugInService;Windows Color System;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 Wd;Wd;c:\windows\system32\DRIVERS\wd.sys [2009-07-14 19024]
R3 Wecsvc;Windows Event Collector;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 wercplsupport;Problem Reports and Solutions Control Panel Support;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WerSvc;Windows Error Reporting Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WIMMount;WIMMount;c:\windows\system32\drivers\wimmount.sys [2009-07-14 19008]
R3 WinRM;Windows Remote Management (WS-Management);c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 WPCSvc;Parental Controls;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 WPDBusEnum;Portable Device Enumerator Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 WwanSvc;WWAN AutoConfig;c:\windows\system32\svchost.exe [2009-07-14 20992]
R3 YMIDUSBW;Yamaha USB-MIDI Driver (WDM);c:\windows\system32\drivers\ymidusbw.sys [2009-08-04 33736]
R4 Ipprgp;Ipprgp;c:\windows\system32\drivers\btwl2cap.sys [2009-09-17 29472]
R4 Mcx2Svc;Služba Media Center Extender;c:\windows\system32\svchost.exe [2009-07-14 20992]
S0 amdxata;amdxata;c:\windows\system32\drivers\amdxata.sys [2010-11-20 22400]
S0 CLFS;Common Log (CLFS);c:\windows\System32\CLFS.sys [2009-07-14 249408]
S0 CNG;CNG;c:\windows\System32\Drivers\cng.sys [2009-07-14 369568]
S0 FileInfo;File Information FS MiniFilter;c:\windows\system32\drivers\fileinfo.sys [2009-07-14 58448]
S0 fvevol;Bitlocker Drive Encryption Filter Driver;c:\windows\System32\DRIVERS\fvevol.sys [2010-11-20 194800]
S0 hwpolicy;Hardware Policy Driver;c:\windows\System32\drivers\hwpolicy.sys [2010-11-20 14208]
S0 KSecPkg;KSecPkg;c:\windows\System32\Drivers\ksecpkg.sys [2009-07-14 133200]
S0 msisadrv;msisadrv;c:\windows\system32\drivers\msisadrv.sys [2009-07-14 13888]
S0 pcw;Performance Counters for Windows Driver;c:\windows\System32\drivers\pcw.sys [2009-07-14 43088]
S0 rdyboost;ReadyBoost;c:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S0 spldr;Security Processor Loader Driver; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 vdrvroot;Microsoft Virtual Drive Enumerator Driver;c:\windows\system32\drivers\vdrvroot.sys [2009-07-14 32832]
S0 volmgr;Volume Manager Driver;c:\windows\system32\drivers\volmgr.sys [2010-11-20 53120]
S0 volmgrx;Dynamic Volume Manager;c:\windows\System32\drivers\volmgrx.sys [2009-07-14 297040]
S1 aswSP;aswSP; [x]
S1 blbdrive;blbdrive;c:\windows\system32\DRIVERS\blbdrive.sys [2009-07-13 35328]
S1 DfsC;DFS Namespace Client Driver;c:\windows\system32\Drivers\dfsc.sys [2010-11-20 78336]
S1 discache;System Attribute Cache;c:\windows\system32\drivers\discache.sys [2009-07-13 32256]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-03-14 218688]
S1 nsiproxy;NSI proxy service driver.;c:\windows\system32\drivers\nsiproxy.sys [2009-07-13 16896]
S1 RDPENCDD;RDP Encoder Mirror Driver;c:\windows\system32\drivers\rdpencdd.sys [2009-07-14 6656]
S1 RDPREFMP;Reflector Display Driver used to gain access to graphics data;c:\windows\system32\drivers\rdprefmp.sys [2009-07-14 7168]
S1 RsvLock;RsvLock; [x]
S1 tdx;Sieťový vstupno-výstupný ovládač staršej verzie na podporu zariadení TDI;c:\windows\system32\DRIVERS\tdx.sys [2010-11-20 74752]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S1 Wanarpv6;Remote Access IPv6 ARP Driver;c:\windows\system32\DRIVERS\wanarp.sys [2010-11-20 63488]
S1 WfpLwf;WFP Lightweight Filter;c:\windows\system32\DRIVERS\wfplwf.sys [2009-07-13 9728]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe [2009-03-03 81920]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-06-18 176128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-01-13 51280]
S2 AudioEndpointBuilder;Windows Audio Endpoint Builder;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 BFE;Base Filtering Engine;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 DPS;Diagnostic Policy Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 FDResPub;Function Discovery Resource Publication;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 gpsvc;Klient skupinovej politiky;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 HerculesDJControlMP3;Hercules DJ Control MP3;d:\program files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE [2007-11-21 17408]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-08-23 103992]
S2 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2009-11-18 36864]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-01-08 81920]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-10-14 92216]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-16 281192]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-05 264248]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 26168]
S2 IKEEXT;IKE and AuthIP IPsec Keying Modules;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 iphlpsvc;IP Helper;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver;c:\windows\system32\DRIVERS\lltdio.sys [2009-07-13 48128]
S2 luafv;UAC File Virtualization;c:\windows\system32\drivers\luafv.sys [2009-07-13 86528]
S2 MMCSS;Multimedia Class Scheduler;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 MpsSvc;Brána Windows Firewall;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 NlaSvc;Network Location Awareness;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 nsi;Network Store Interface Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2009-10-23 635416]
S2 PEAUTH;PEAUTH;c:\windows\system32\drivers\peauth.sys [2009-07-14 586752]
S2 Power;Power;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 ProfSvc;User Profile Service;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 RpcEptMapper;RPC Endpoint Mapper;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 sppsvc;Software Protection;c:\windows\system32\sppsvc.exe [2010-11-20 3179520]
S2 SysMain;Rýchle načítanie;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 tcpipreg;TCP/IP Registry Compatibility;c:\windows\system32\drivers\tcpipreg.sys [2010-11-20 35328]
S2 TeamViewer5;TeamViewer 5;d:\program files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
S2 uArcCapture;ArcCapture;c:\windows\system32\uArcCapture.exe [2009-12-04 506472]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S2 UxSms;Správca relácie Správcu okien na pracovnej ploche;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 WinDefend;Windows Defender;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 Wlansvc;WLAN AutoConfig;c:\windows\system32\svchost.exe [2009-07-14 20992]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-06-18 5586944]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-06-18 210432]
S3 Appinfo;Application Information;c:\windows\system32\svchost.exe [2009-07-14 20992]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 29824]
S3 bowser;Browser Support Driver;c:\windows\system32\DRIVERS\bowser.sys [2009-07-13 69632]
S3 CLEDX;Team H2O CLEDX service;c:\windows\system32\DRIVERS\cledx.sys [2005-05-09 33792]
S3 CompositeBus;Composite Bus Enumerator Driver;c:\windows\system32\drivers\CompositeBus.sys [2010-11-20 31232]
S3 DXGKrnl;LDDM Graphics Subsystem;c:\windows\System32\drivers\dxgkrnl.sys [2010-11-20 728448]
S3 KeyIso;CNG Key Isolation;c:\windows\system32\lsass.exe [2009-07-14 22528]
S3 monitor;Microsoft Monitor Class Function Driver Service;c:\windows\system32\DRIVERS\monitor.sys [2009-07-13 23552]
S3 mpsdrv;Ovládač overenia brány Windows Firewall;c:\windows\system32\drivers\mpsdrv.sys [2009-07-13 60416]
S3 mrxsmb10;SMB 1.x MiniRedirector;c:\windows\system32\DRIVERS\mrxsmb10.sys [2010-11-20 223232]
S3 mrxsmb20;SMB 2.0 MiniRedirector;c:\windows\system32\DRIVERS\mrxsmb20.sys [2010-11-20 96768]
S3 NativeWifiP;NativeWiFi Filter;c:\windows\system32\DRIVERS\nwifi.sys [2009-07-13 267264]
S3 netprofm;Network List Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 RasAgileVpn;WAN Miniport (IKEv2);c:\windows\system32\DRIVERS\AgileVpn.sys [2009-07-13 49152]
S3 srv2;Server SMB 2.xxx Driver;c:\windows\system32\DRIVERS\srv2.sys [2010-11-20 309248]
S3 srvnet;srvnet;c:\windows\system32\DRIVERS\srvnet.sys [2010-11-20 114176]
S3 TrustedInstaller;Windows Modules Installer;c:\windows\servicing\TrustedInstaller.exe [2010-11-20 204800]
S3 tunnel;Microsoft Tunnel Miniport Adapter Driver;c:\windows\system32\DRIVERS\tunnel.sys [2010-11-20 108544]
S3 umbus;UMBus Enumerator Driver;c:\windows\system32\drivers\umbus.sys [2010-11-20 39936]
S3 vwifibus;Virtual WiFi Bus Driver;c:\windows\system32\DRIVERS\vwifibus.sys [2009-07-13 19968]
S3 WdiServiceHost;Diagnostic Service Host;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 WdiSystemHost;Diagnostic System Host;c:\windows\System32\svchost.exe [2009-07-14 20992]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
RPCSS REG_MULTI_SZ RpcEptMapper RpcSs
defragsvc REG_MULTI_SZ defragsvc
WerSvcGroup REG_MULTI_SZ wersvc
LocalServiceNoNetwork REG_MULTI_SZ DPS PLA BFE mpssvc WwanSvc
swprv REG_MULTI_SZ swprv
LocalServicePeerNet REG_MULTI_SZ PNRPSvc p2pimsvc p2psvc PnrpAutoReg
NetworkServiceAndNoImpersonation REG_MULTI_SZ KtmRm
regsvc REG_MULTI_SZ RemoteRegistry
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
DcomLaunch REG_MULTI_SZ Power PlugPlay DcomLaunch
NetworkServiceNetworkRestricted REG_MULTI_SZ PolicyAgent
sdrsvc REG_MULTI_SZ sdrsvc
WbioSvcGroup REG_MULTI_SZ WbioSrvc
wcssvc REG_MULTI_SZ WcsPlugInService
AxInstSVGroup REG_MULTI_SZ AxInstSV
secsvcs REG_MULTI_SZ WinDefend
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
AeLookupSvc
CertPropSvc
SCPolicySvc
lanmanserver
gpsvc
IKEEXT
AudioSrv
FastUserSwitchingCompatibility
Nla
NWCWorkstation
SRService
Wmi
WmdmPmSp
TermService
wuauserv
BITS
ShellHWDetection
LogonHours
PCAudit
helpsvc
uploadmgr
iphlpsvc
seclogon
AppInfo
msiscsi
MMCSS
wercplsupport
EapHost
ProfSvc
schedule
hkmsvc
SessionEnv
winmgmt
browser
Themes
BDESVC
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalSystemNetworkRestricted
homegrouplistener
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
WdiServiceHost
sppuinotify
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetworkService
lanmanworkstation
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalServiceNetworkRestricted
BthHFSrv
homegroupprovider
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 20:11 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2011-03-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3863125621-3407463611-2706026323-1005Core.job
- c:\users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-14 08:41]
.
2011-03-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3863125621-3407463611-2706026323-1005UA.job
- c:\users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-14 08:41]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://start.icq.com/
mStart Page =
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - d:\program files\ICQ7.4\ICQ.exe
FF - ProfilePath - c:\users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\h3sxwii9.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - d:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-AdobeBridge - (no file)
SafeBoot-WudfPf
SafeBoot-WudfRd
SafeBoot-sacsvr
SafeBoot-vmms
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-22 20:33
Windows 6.1.7601 Service Pack 1 NTFS
.
detected NTDLL code modification:
ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files:
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(5732)
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
d:\virtualpc\VPCShExH.DLL
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe
c:\windows\system32\atieclxx.exe
d:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\windows\System32\rundll32.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
c:\program files\Hewlett-Packard\Shared\hpCaslNotification.exe
c:\program files\Windows Media Player\wmpnetwk.exe
d:\program files\Mozilla Firefox\firefox.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Completion time: 2011-03-22 20:37:09 - machine was rebooted
ComboFix-quarantined-files.txt 2011-03-22 19:37
.
Pre-Run: 18 649 178 112 bytes free
Post-Run: 18 470 551 552 bytes free
.
- - End Of File - - 0C286057C3C46226BAC09533685C7F34
Re: Preventívka..... -pre motji
Jak to vypadá s počítačem? Něco si ověřím v gmeru
odinstalujte všechny virtuální jednotky (Daemon nebo alcohol)
Stáhněte SPTD http://www.duplexsecure.com/en/downloads
-vyberte verzi podle svého operačního systému. SPTD for Windows (32 bit) nebo (64b)
-uložte na plochu a spusťte
- zvolte možnost Uninstall
- restart PC
Stahněte http://www.jpshortstuff.247fixes.com/Defogger.exe
- spustte,
- potvrdte disabled
-log vložte zde
Stáhněte Gmer http://www.viry.cz/forum/viewtopic.php?f=29&t=62878
- rozbalte a spusťte
-proběhne sken, po skončení se otevře okno s výsledky, kliknete na Save a tím si uložíte log,který sem vložíte
-Podle návodu v odkazu proveďte druhý sken a log sem také vložte.
stáhněte MBR
http://www2.gmer.net/mbr/mbr.exe
-uložte ho na plochu
start-spustit
do okénka zkopírujte
ok
vytvoří se log s názvem mbr.log, vložte ho zde
odinstalujte všechny virtuální jednotky (Daemon nebo alcohol) Stáhněte SPTD http://www.duplexsecure.com/en/downloads-vyberte verzi podle svého operačního systému. SPTD for Windows (32 bit) nebo (64b)
-uložte na plochu a spusťte
- zvolte možnost Uninstall
- restart PC
Stahněte http://www.jpshortstuff.247fixes.com/Defogger.exe - spustte,
- potvrdte disabled
-log vložte zde
Stáhněte Gmer http://www.viry.cz/forum/viewtopic.php?f=29&t=62878- rozbalte a spusťte
-proběhne sken, po skončení se otevře okno s výsledky, kliknete na Save a tím si uložíte log,který sem vložíte
-Podle návodu v odkazu proveďte druhý sken a log sem také vložte.
stáhněte MBR http://www2.gmer.net/mbr/mbr.exe
-uložte ho na plochu
start-spustit do okénka zkopírujte
Kód: Vybrat vše
"%userprofile%\plocha\mbr" -tNepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
Narfyk
- Vzorný návštěvník
- Příspěvky: 208
- Registrován: 07 čer 2010 17:54
- Bydliště: SK
- Kontaktovat uživatele:
Re: Preventívka..... -pre motji
Len taká otázka.....pri týchto procesoch nehrozí žeby sa niečo stalo s PC ? 
Re: Preventívka..... -pre motji
Nemělo by. Ale s pc se Vám může stát kdykoliv cokoliv, data by jste měl mít zazálohované pořád
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
Narfyk
- Vzorný návštěvník
- Příspěvky: 208
- Registrován: 07 čer 2010 17:54
- Bydliště: SK
- Kontaktovat uživatele:
Re: Preventívka..... -pre motji
Takže pri odinštalácii DAEMON Tools prišla BSoD. Moc toho neviem, ale bolo to niečo s Wdf01000.sys
Pri prihladení sa objavilo také okno, že sa systém Windows obnovil po nečakanom vypnutí, atď.
Dole bolo napísané toto:
Popis problému:
Názov problémovej udalosti: BlueScreen
Verzia OS: 6.1.7601.2.1.0.768.3
Identifikácia miestneho nastavenia: 1051
Ďalšie informácie o probléme:
BCCode: 50
BCP1: FFFFFFE8
BCP2: 00000000
BCP3: 8B0419CB
BCP4: 00000000
OS Version: 6_1_7601
Service Pack: 1_0
Product: 768_1
Súbory, ktoré pomáhajú popísať problém:
C:\Windows\Minidump\032211-18564-01.dmp
C:\Users\Admin\AppData\Local\temp\WER-52603-0.sysdata.xml
Prečítajte si prehlásenie o používaní osobných údajov online:
http://go.microsoft.com/fwlink/?linkid= ... cid=0x041b
Ak prehlásenie o používaní osobných údajov nie je dostupné v režime online, prečítajte si ho v režime offline:
C:\windows\system32\sk-SK\erofflps.txt
Pri prihladení sa objavilo také okno, že sa systém Windows obnovil po nečakanom vypnutí, atď.
Dole bolo napísané toto:
Popis problému:
Názov problémovej udalosti: BlueScreen
Verzia OS: 6.1.7601.2.1.0.768.3
Identifikácia miestneho nastavenia: 1051
Ďalšie informácie o probléme:
BCCode: 50
BCP1: FFFFFFE8
BCP2: 00000000
BCP3: 8B0419CB
BCP4: 00000000
OS Version: 6_1_7601
Service Pack: 1_0
Product: 768_1
Súbory, ktoré pomáhajú popísať problém:
C:\Windows\Minidump\032211-18564-01.dmp
C:\Users\Admin\AppData\Local\temp\WER-52603-0.sysdata.xml
Prečítajte si prehlásenie o používaní osobných údajov online:
http://go.microsoft.com/fwlink/?linkid= ... cid=0x041b
Ak prehlásenie o používaní osobných údajov nie je dostupné v režime online, prečítajte si ho v režime offline:
C:\windows\system32\sk-SK\erofflps.txt
Re: Preventívka..... -pre motji
Daemon je hodně provázaný se systémem, takže může dělat problémy...ale do systému se dostanete, ne? Pokračujte dál.
Kdyby pc spadl do BSOD znovu, napište.
Kdyby pc spadl do BSOD znovu, napište.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Přispějete na provoz fóra?