Vetší spoptřeba RAM

[honzikuh]

Dobrý den,všem přítomným. Mám Win 7 64b verze profesionál. Přijde mi, že mám nějakou větší spotřebu, vytížení ram pamětí. Zdá se mi to ??? Děkuji za všechny názory ,přikládám log

Logfile of random's system information tool 1.08 (written by random/random)
Run by Honza at 2011-04-09 12:39:46
Microsoft Windows 7 Professional
System drive C: has 135 GB (66%) free of 205 GB
Total RAM: 3584 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:39:52, on 9.4.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Honza.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{1056045E-C017-49CB-AEEC-7815862E1FC5}: NameServer = 10.145.100.25,85.92.54.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{1056045E-C017-49CB-AEEC-7815862E1FC5}: NameServer = 10.145.100.25,85.92.54.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{1056045E-C017-49CB-AEEC-7815862E1FC5}: NameServer = 10.145.100.25,85.92.54.1
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll (file missing)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY.Licensing.FineReader.ScreenshotReader.9.0 - ABBYY (BIT Software) - C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7988 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe" -service
C:\Windows\system32\svchost.exe -k imgsvc
"c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe" -expressboot
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=1412.4fb4740.2062912731 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" 1412 plugin \\.\pipe\gecko-crash-server-pipe.1412
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512
"C:\Users\Honza\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG10\avgssie.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-11-22 1242504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-10-05 11474024]
"WinPatrol"=C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe [2010-11-13 329096]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 1436224]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WinPatrol"=C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe [2010-11-13 329096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-04-09 12:39:46 ----D---- C:\rsit
2011-04-09 12:39:46 ----D---- C:\Program Files\trend micro
2011-03-17 17:12:05 ----D---- C:\Windows\system32\SPReview
2011-03-17 17:11:49 ----D---- C:\Windows\system32\EventProviders
2011-03-17 16:51:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2011-03-17 16:51:38 ----D---- C:\Program Files (x86)\Microsoft Security Client
2011-03-17 16:50:54 ----D---- C:\Program Files\Microsoft Security Client
2011-03-17 16:50:30 ----A---- C:\Windows\system32\drivers\netio.sys
2011-03-17 16:50:07 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-03-17 16:50:07 ----A---- C:\Windows\system32\EncDec.dll
2011-03-17 16:50:07 ----A---- C:\Windows\system32\CPFilters.dll
2011-03-17 16:50:06 ----A---- C:\Windows\SYSWOW64\sbe.dll
2011-03-17 16:50:06 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2011-03-17 16:50:06 ----A---- C:\Windows\system32\sbe.dll
2011-03-17 16:49:45 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-03-17 16:49:45 ----A---- C:\Windows\system32\mstscax.dll
2011-03-17 16:49:44 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2011-03-17 16:49:44 ----A---- C:\Windows\system32\mstsc.exe
2011-03-17 16:28:20 ----D---- C:\05939165a1e47bd40d2bb044f650

======List of files/folders modified in the last 1 months======

2011-04-09 12:39:52 ----D---- C:\Windows\Prefetch
2011-04-09 12:39:46 ----RD---- C:\Program Files
2011-04-09 12:35:09 ----D---- C:\Windows\Temp
2011-04-09 12:34:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-04-09 12:17:57 ----D---- C:\Windows\system32\config
2011-04-09 11:46:34 ----SHD---- C:\System Volume Information
2011-04-09 11:40:22 ----D---- C:\Windows\System32
2011-04-09 11:40:22 ----D---- C:\Windows\inf
2011-04-09 11:40:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-03-30 17:47:02 ----D---- C:\Windows\system32\catroot
2011-03-17 17:30:15 ----D---- C:\Windows\system32\Tasks
2011-03-17 17:17:34 ----SHD---- C:\Windows\Installer
2011-03-17 17:17:26 ----D---- C:\ProgramData\Microsoft Help
2011-03-17 17:17:17 ----D---- C:\Windows\SysWOW64
2011-03-17 17:17:16 ----D---- C:\Windows\winsxs
2011-03-17 17:12:17 ----D---- C:\Windows\debug
2011-03-17 17:12:15 ----A---- C:\Windows\system32\MRT.exe
2011-03-17 16:52:18 ----D---- C:\Windows\system32\drivers
2011-03-17 16:52:12 ----D---- C:\Windows
2011-03-17 16:51:38 ----SD---- C:\ProgramData\Microsoft
2011-03-17 16:51:38 ----RD---- C:\Program Files (x86)
2011-03-17 16:49:56 ----D---- C:\Windows\system32\catroot2
2011-03-17 16:37:56 ----HD---- C:\ProgramData
2011-03-17 16:37:56 ----D---- C:\Program Files (x86)\AVG
2011-03-17 16:34:43 ----D---- C:\Windows\SYSWOW64\drivers
2011-03-17 16:34:22 ----D---- C:\Windows\system32\DriverStore
2011-03-17 16:28:21 ----D---- C:\Windows\SoftwareDistribution

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 188928]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-10-05 2511464]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 40832]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 72064]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2010-07-30 19456]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-07-30 26624]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-07-30 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-07-30 9216]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.ScreenshotReader.9.0;ABBYY.Licensing.FineReader.ScreenshotReader.9.0; C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe [2008-10-27 759072]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 12784]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-10-16 989800]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2010-10-20 630272]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-28 1255736]

-----------------EOF-----------------

[honzikuh]

Asi jsem to špatně popsal, .Mám celkovou velikost paměti ram 3,5 Gb a aplikace,která na ploše ukazuje vytížení Cpu a ram, tak ukazuje vytížení 38% ram, když nic nedělám . Pc je takové spomalenější .

[motji]

Dobré ranko

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[honzikuh]

Dobré ránko . Log spřikládám, bohužel to trvalo. Win začal zálohovat a instalovat aktualizace, a všechno špatně
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 6322

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

10.4.2011 10:39:02
mbam-log-2011-04-10 (10-39-02).txt

Typ kontroly: Rychlý test
Testované objekty: 163323
Uplynulý čas: 21 minut, 41 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[honzikuh]

A teď po nainstalování aktualizace IE9 a Servis pack 1 mně vytížení procesoru vystupuje k 60% . Procesor mám dvoj jádro Athlon 5600

[motji]

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

[honzikuh]

Přihlásím se ve středu, jsem služebně mimo

[motji]

Ok

[honzikuh]

Dobrý den , přikládám slíbený log . Prosím ještě o radu, jak se dá udělat ve Win 7 , aby to zálohovalo tehdy, kdy to chci já ??


ComboFix 11-04-12.02 - Honza 13.04.2011 15:42:44.1.2 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.3584.2332 [GMT 2:00]
Spuštěný z: c:\users\Honza\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-03-13 do 2011-04-13 )))))))))))))))))))))))))))))))
.
.
2011-04-13 13:51 . 2011-04-13 13:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-04-13 13:22 . 2011-03-15 05:17 8424784 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{16941B3C-AFD3-419D-A8EF-5547E3261D1A}\mpengine.dll
2011-04-10 14:14 . 2006-11-29 11:06 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll
2011-04-10 14:14 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\SysWow64\d3dx9_32.dll
2011-04-10 14:11 . 2011-01-17 11:09 197120 ----a-w- c:\windows\system32\d3d10_1.dll
2011-04-10 14:11 . 2011-01-17 05:47 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2011-04-10 14:09 . 2011-04-10 14:09 -------- d-----w- c:\users\Honza\AppData\Local\Windows Live
2011-04-10 14:09 . 2011-04-10 14:09 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2011-04-10 13:01 . 2011-04-10 13:02 -------- d-----w- c:\users\Honza\AppData\Local\ElevatedDiagnostics
2011-04-10 12:10 . 2009-03-11 16:44 561664 ----a-w- c:\windows\SysWow64\plplacesystemdll.dll
2011-04-10 12:10 . 2011-04-10 12:10 -------- d-----w- c:\program files (x86)\PLANstudio
2011-04-10 09:49 . 2011-04-10 09:49 -------- d-----w- c:\program files (x86)\CCleaner
2011-04-10 09:44 . 2011-04-10 09:44 -------- d-----w- c:\windows\system32\SPReview
2011-04-10 09:43 . 2010-11-05 01:57 48976 ----a-w- c:\windows\system32\netfxperf.dll
2011-04-10 09:43 . 2010-11-05 01:57 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-04-10 09:43 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-04-10 09:41 . 2010-11-20 13:27 2420736 ----a-w- c:\windows\system32\wuaueng.dll
2011-04-10 09:40 . 2010-11-20 13:27 24064 ----a-w- c:\windows\system32\sisbkup.dll
2011-04-10 09:39 . 2010-11-20 13:32 4608 ----a-w- c:\windows\system32\drivers\cs-CZ\kbdclass.sys.mui
2011-04-10 09:39 . 2010-11-20 13:31 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\GAGP30KX.SYS.mui
2011-04-10 09:39 . 2010-11-20 12:21 189952 ----a-w- c:\windows\SysWow64\wdscore.dll
2011-04-10 09:39 . 2010-11-20 12:17 209920 ----a-w- c:\windows\SysWow64\PkgMgr.exe
2011-04-10 09:39 . 2010-11-20 12:18 323072 ----a-w- c:\windows\SysWow64\drvstore.dll
2011-04-10 09:39 . 2010-11-20 12:18 257024 ----a-w- c:\windows\SysWow64\dpx.dll
2011-04-10 09:39 . 2010-11-20 12:21 363008 ----a-w- c:\windows\SysWow64\wbemcomn.dll
2011-04-10 09:39 . 2010-11-20 12:19 606208 ----a-w- c:\windows\SysWow64\wbem\fastprox.dll
2011-04-10 09:37 . 2010-11-20 13:27 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-04-10 09:37 . 2010-11-20 13:27 529408 ----a-w- c:\windows\system32\wbemcomn.dll
2011-04-10 09:37 . 2010-11-20 13:27 1225216 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2011-04-10 09:37 . 2010-11-20 13:27 933376 ----a-w- c:\windows\system32\SmiEngine.dll
2011-04-10 09:36 . 2010-11-20 13:25 199168 ----a-w- c:\windows\system32\PkgMgr.exe
2011-04-10 09:36 . 2010-11-20 13:26 422912 ----a-w- c:\windows\system32\drvstore.dll
2011-04-10 09:36 . 2010-11-20 13:26 399872 ----a-w- c:\windows\system32\dpx.dll
2011-04-10 08:24 . 2011-02-19 12:05 1139200 ----a-w- c:\windows\system32\FntCache.dll
2011-04-10 08:24 . 2011-02-19 12:04 1544192 ----a-w- c:\windows\system32\DWrite.dll
2011-04-10 08:24 . 2011-02-19 06:30 1076736 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-04-10 08:24 . 2011-02-19 12:04 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-04-10 08:24 . 2011-02-19 06:30 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-04-10 08:16 . 2011-04-10 08:16 -------- d-----w- c:\users\Honza\AppData\Roaming\Malwarebytes
2011-04-10 08:16 . 2010-12-20 16:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-04-10 08:16 . 2011-04-10 08:16 -------- d-----w- c:\programdata\Malwarebytes
2011-04-10 08:16 . 2011-04-10 08:16 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-04-10 08:16 . 2010-12-20 16:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-10 07:36 . 2011-04-10 07:36 -------- d-----w- c:\users\Honza\AppData\Local\Opera
2011-04-10 07:36 . 2011-04-10 07:36 -------- d-----w- c:\program files (x86)\Opera
2011-04-09 10:39 . 2011-04-09 10:39 -------- d-----w- C:\rsit
2011-04-09 10:39 . 2011-04-09 10:39 -------- d-----w- c:\program files\trend micro
2011-04-09 09:46 . 2011-03-17 14:58 601424 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{CDD703C7-486C-427A-99B5-47EC4726721B}\gapaengine.dll
2011-03-30 15:34 . 2011-03-17 14:58 601424 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2011-03-17 15:11 . 2011-03-17 15:11 -------- d-----w- c:\windows\system32\EventProviders
2011-03-17 14:59 . 2011-03-15 05:17 8424784 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-03-17 14:51 . 2011-03-17 14:51 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2011-03-17 14:50 . 2011-03-17 14:52 -------- d-----w- c:\program files\Microsoft Security Client
2011-03-17 14:50 . 2010-12-23 10:42 961024 ----a-w- c:\windows\system32\CPFilters.dll
2011-03-17 14:50 . 2010-12-23 10:42 723968 ----a-w- c:\windows\system32\EncDec.dll
2011-03-17 14:50 . 2010-12-23 05:54 642048 ----a-w- c:\windows\SysWow64\CPFilters.dll
2011-03-17 14:50 . 2010-12-23 10:42 1118720 ----a-w- c:\windows\system32\sbe.dll
2011-03-17 14:50 . 2010-12-23 10:36 259072 ----a-w- c:\windows\system32\mpg2splt.ax
2011-03-17 14:50 . 2010-12-23 05:54 850944 ----a-w- c:\windows\SysWow64\sbe.dll
2011-03-17 14:50 . 2010-12-23 05:54 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2011-03-17 14:50 . 2010-12-23 05:50 199680 ----a-w- c:\windows\SysWow64\mpg2splt.ax
2011-03-17 14:28 . 2011-03-17 14:28 -------- d-----w- C:\05939165a1e47bd40d2bb044f650
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-10 09:51 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-04-10 09:51 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2011-04-10 09:01 . 2011-04-10 09:01 203776 ----a-w- c:\windows\SysWow64\webcheck.dll
2011-04-10 09:01 . 2011-04-10 09:01 249344 ----a-w- c:\windows\system32\webcheck.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S2 ABBYY.Licensing.FineReader.ScreenshotReader.9.0;ABBYY.Licensing.FineReader.ScreenshotReader.9.0;c:\program files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe [2008-10-27 759072]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
S3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-10-05 11474024]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 1436224]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: {1056045E-C017-49CB-AEEC-7815862E1FC5} = 10.145.100.25,85.92.54.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
FF - ProfilePath - c:\users\Honza\AppData\Roaming\Mozilla\Firefox\Profiles\ubf4o3e4.default\
FF - prefs.js: browser.search.selectedEngine - WebHledani
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.webhledani.cz/results.aspx?i=42&tp=ab&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Firefox Synchronisation Extension: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70} - c:\program files (x86)\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension
FF - Ext: PC Sync 2 Synchronisation Extension: bkmrksync@nokia.com - c:\program files (x86)\Nokia\Nokia PC Suite 7\bkmrksync
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-04-13 15:53:16
ComboFix-quarantined-files.txt 2011-04-13 13:53
.
Před spuštěním: Volných bajtů: 135 974 121 472
Po spuštění: Volných bajtů: 136 026 607 616
.
- - End Of File - - 12A926FBDF43E324AC71D6CC533748F8

[motji]

Jak to vypadá s počítačem?
http://extrawindows.cnews.cz/jak-zaloho ... -windows-7

[honzikuh]

Dobrý,den. Myslím si, že spotřeba CPU klesla, ale spotřeba na Ram je stejná .

[motji]

A není to tím, že máte spuštěno moc programů?

Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:

ComboFix /Uninstall

-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.


***********


Stáhněte T-Cleaner
http://tharifas.sweb.cz/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir



***********


Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.


***********



Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech



***********

Vložte nový log ze RSIT a řekněte co počítač, jak se chová, už je vše v pořádku?

[honzikuh]

Možná to zní hloupě, ale nemůžu najít řádek Start, a spustit . V menu ho nemám . To ostatní teď provedu.T cleaner mi nejde nainstalovat
Když dám správce úloh, tak aktuální spotřeba je 1.18G
info.txt logfile of random's system information tool 1.08 2011-04-18 15:04:59

======Uninstall list======

ABBYY Screenshot Reader-->MsiExec.exe /X{F9000000-0015-0000-0000-074957833700}
Adobe Flash Player 10 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10p_Plugin.exe -maintain plugin
Adobe Reader X - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AA0000000001}
Aktualizace pro Microsoft Outlook Social Connector (KB2441641)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-001A-0405-0000-0000000FF1CE}" "{06C62E6B-B559-416A-9954-07C67F50F84A}" "1029" "0"
Balíček ovladače systému Windows - Nokia Modem (06/09/2010 4.5)-->C:\PROGRA~1\DIFX\0169CE3A95F06636\dpinst.exe /u C:\Windows\System32\DriverStore\FileRepository\nokia_bluetooth.inf_amd64_neutral_4afe3236e50779fa\nokia_bluetooth.inf
Balíček ovladače systému Windows - Nokia Modem (06/09/2010 7.01.0.7)-->C:\PROGRA~1\DIFX\0169CE3A95F06636\dpinst.exe /u C:\Windows\System32\DriverStore\FileRepository\nokbtmdm.inf_amd64_neutral_fe4babbc84a3ec95\nokbtmdm.inf
Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\F4092DA208C2C970\dpinst.exe /u C:\Windows\system32\DRVSTORE\pccsmcfdx6_8A3BAB842294F8D9255C3CF2A3B1CECAEEB8EA7E\pccsmcfdx64.inf
CCleaner-->"C:\Program Files (x86)\CCleaner\uninst.exe"
Codec Pack - All In 1 6.0.3.0-->C:\Windows\iun6002.exe "C:\Program Files (x86)\Codec Pack - All In 1\irunin.ini"
Definition update for Microsoft Office 2010 (KB982726)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{2FD3FD50-4D6B-433B-9AB8-83F04675DA44}" "1029" "0"
Epson Easy Photo Print 2-->C:\Program Files (x86)\InstallShield Installation Information\{39F58DDB-B2B8-4B86-AF20-4706A80EB30D}\Setup.exe -runfromtemp -l0x0009 UNINST -removeonly
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)-->C:\Program Files (x86)\InstallShield Installation Information\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}\setup.exe -runfromtemp -l0x0009 -removeonly
Java(TM) 6 Update 24-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216024FF}
Malwarebytes' Anti-Malware-->"C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /x64 /lcid 1029 /parameterfolder ClientLP
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{790E02A1-145A-3843-8C13-A4F41C9B48B7}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /x64 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
Microsoft Antimalware Service CS-CZ Language Pack-->MsiExec.exe /X{F6197679-051D-4E3E-9757-4D5CDA6D658B}
Microsoft Antimalware-->MsiExec.exe /X{774088D4-0777-4D78-904D-E435B318F5D2}
Microsoft Office Access MUI (Czech) 2010-->MsiExec.exe /X{90140000-0015-0405-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2010-->MsiExec.exe /X{90140000-0016-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2010-->MsiExec.exe /X{90140000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2010-->MsiExec.exe /X{90140000-0044-0405-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2010-->MsiExec.exe /X{90140000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2010-->MsiExec.exe /X{90140000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2010-->MsiExec.exe /X{90140000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2010-->MsiExec.exe /X{90140000-0018-0405-0000-0000000FF1CE}
Microsoft Office Professional Plus 2010-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2010-->MsiExec.exe /X{90140000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2010-->MsiExec.exe /X{90140000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2010-->MsiExec.exe /X{90140000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2010-->MsiExec.exe /X{90140000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2010-->MsiExec.exe /X{90140000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2010-->MsiExec.exe /X{90140000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2010-->MsiExec.exe /X{90140000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (Czech) 2010-->MsiExec.exe /X{90140000-002A-0405-1000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2010-->MsiExec.exe /X{90140000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2010-->MsiExec.exe /X{90140000-001B-0405-0000-0000000FF1CE}
Microsoft Primary Interoperability Assemblies 2005-->MsiExec.exe /X{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}
Microsoft Security Client CS-CZ Language Pack-->MsiExec.exe /I{FCAB9F73-BF5D-4E3D-92E7-B0F35C568F20}
Microsoft Security Client-->MsiExec.exe /I{E77543EE-6FB5-4FF6-AB70-635392C8C756}
Microsoft Security Essentials-->C:\Program Files\Microsoft Security Client\Setup.exe /x
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable - KB2467175-->MsiExec.exe /X{a0fe116e-9a8a-466f-aee0-625cb7c207e3}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Mozilla Firefox (3.6.16)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
MSVC80_x64_v2-->MsiExec.exe /I{4D668D4F-FAA2-4726-834C-31F4614F312E}
MSVC80_x86_v2-->MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
MSVC90_x64-->MsiExec.exe /I{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}
MSVC90_x86-->MsiExec.exe /I{AF111648-99A1-453E-81DD-80DBBF6DAD0D}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Nokia Connectivity Cable Driver-->MsiExec.exe /I{D22AFEDF-6A5B-459D-A9EA-D16E422E4C18}
Nokia Ovi Suite Software Updater-->MsiExec.exe /X{EE5B5B24-EEFC-4C8B-BF8B-256D705BAD89}
Nokia Ovi Suite-->C:\ProgramData\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer.exe
Nokia Ovi Suite-->MsiExec.exe /X{B8B4446F-87E1-4423-A47A-16832C24A199}
Nokia PC Suite-->C:\ProgramData\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_cze.exe
Nokia PC Suite-->MsiExec.exe /I{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}
Nokia Software Updater-->MsiExec.exe /X{4D568C38-0552-4CDD-A643-01FAFA2957EF}
NVIDIA Ovladače grafiky 260.99-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Driver
Opera 11.10-->"C:\Program Files (x86)\Opera\Opera.exe" /uninstall
Ovi Desktop Sync Engine-->MsiExec.exe /X{8112C6B3-91E1-4560-8AB9-876DADFA37C5}
OviMPlatform-->MsiExec.exe /I{749A1EDD-16C2-4C63-B013-D38F0F953973}
PC Connectivity Solution-->MsiExec.exe /I{A5A70E61-FEAB-4CEC-977C-BE0EF8DC05AB}
PVSonyDll-->MsiExec.exe /I{3D3E663D-4E7E-4577-A560-7ECDDD45548A}
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)-->c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD8D7C9A-E56A-3E7B-BA6D-FE68F13296E3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {F66C3466-1FDB-347C-B3AE-FB6C50627B10} /parameterfolder Client
Security Update for Microsoft Excel 2010 (KB2466146)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{4D3B2D30-46D3-4DC0-BA73-85306B10E0AE}" "1029" "0"
Security Update for Microsoft Office 2010 (KB2289078)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{1D1A4F08-2F17-475B-BA72-476CE5992FEE}" "1029" "0"
Security Update for Microsoft Office 2010 (KB2289161)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{F134C2C6-30B3-4169-A325-58482B4CE6FC}" "1029" "0"
Security Update for Microsoft PowerPoint 2010 (KB2519975)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{45D7C5CD-B967-44AF-9DAB-E5C8545558AD}" "1029" "0"
Security Update for Microsoft Publisher 2010 (KB2409055)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{C3C277D5-36E3-4B1A-926A-175B2BC019CF}" "1029" "0"
Security Update for Microsoft Word 2010 (KB2345000)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{A6D422EE-1196-45EE-B9AE-6B5B64975E8B}" "1029" "0"
Skype Toolbars-->MsiExec.exe /I{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Skype™ 5.1-->MsiExec.exe /X{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}
SmartMaps Router - Cyklomapa ČR 1.6.4.7-->"C:\Program Files (x86)\PLANstudio\Cyklopruvodce\unins000.exe"
Software tiskárny EPSON-->C:\Windows\system32\spool\DRIVERS\x64\3\EPUPDATE.EXE /R
Update for Microsoft Office 2010 (KB2202188)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{86B7A074-265D-420C-9E1E-7A920EF0ECA7}" "1029" "0"
Update for Microsoft Office 2010 (KB2413186)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{556146F7-74AE-4E0A-B64F-5B8B93469F61}" "1029" "0"
Update for Microsoft Office 2010 (KB2413186)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{B5516874-E926-4BFD-B412-D0E70112F244}" "1029" "0"
Update for Microsoft Office 2010 (KB2413186)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{D6CE7280-6EE3-419A-8F47-DB111C040B1B}" "1029" "0"
Update for Microsoft Office 2010 (KB2494150)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}" "1029" "0"
Update for Microsoft OneNote 2010 (KB2493983)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{309EEC22-83CE-4109-B019-BA9392FAA322}" "1029" "0"
Update for Microsoft Outlook Social Connector (KB2441641)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-0011-0000-0000-0000000FF1CE}" "{A10DC2B7-6FDA-4C17-9DF0-6A834CAC4306}" "1029" "0"
Visual C++ 8.0 Runtime Setup Package (x64)-->MsiExec.exe /I{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}
WinPatrol-->C:\PROGRA~3\INSTAL~2\{00781~1\Setup.exe /remove /q0
WinRAR-->C:\Program Files (x86)\WinRAR\uninstall.exe

======System event log======

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Cryptographic Services byl změněn na: stopped
Record Number: 5
Source Name: Service Control Manager
Time Written: 20090714051424.262212-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Windows Modules Installer byl změněn na: stopped
Record Number: 4
Source Name: Service Control Manager
Time Written: 20090714051424.168612-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Software Protection byl změněn na: stopped
Record Number: 3
Source Name: Service Control Manager
Time Written: 20090714051424.059412-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Windows Event Log byl změněn na: stopped
Record Number: 2
Source Name: Service Control Manager
Time Written: 20090714051424.012612-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Volume Shadow Copy byl změněn na: stopped
Record Number: 1
Source Name: Service Control Manager
Time Written: 20090714051423.934612-000
Event Type: Informace
User:

=====Application event log=====

Computer Name: 37L4247E29-32
Event Code: 1001
Message: Chybný blok , typ 0
Název události: PnPDriverNotFound
Reakce: Není k dispozici
ID souboru CAB: 0

Podpis problému:
P1: x64
P2: PCI\VEN_14F1&DEV_8800&SUBSYS_665E107D&REV_05
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:

Připojené soubory:
C:\Windows\Temp\DMI117A.tmp.log.xml

Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_x64_4de79dfb393fdceb51bb147913f8f4138652a_cab_064a11e8

Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: 225ad124-fa70-11df-b372-e3c01af4f768
Stav hlášení: 6
Record Number: 5
Source Name: Windows Error Reporting
Time Written: 20101127214857.000000-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 5617
Message: Windows Management Instrumentation Service subsystems initialized successfully
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20101127214746.000000-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 5615
Message: Windows Management Instrumentation Service started sucessfully
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20101127214742.000000-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.


Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20101127214736.421875-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: 37L4247E29-32
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20101127214736.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: 37L4247E29-32
Event Code: 4735
Message: Byla změněna zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247E29-32$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Změněné atributy:
Název účtu SAM: -
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101127214713.843750-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247E29-32
Event Code: 4731
Message: Byla vytvořena zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247E29-32$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Nová skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Atributy:
Název účtu SAM: Backup Operators
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101127214713.843750-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247E29-32
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.

Počet prvků: 0
ID zásady: 0x304ee
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101127214713.265625-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247E29-32
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0

Typ přihlášení: 0

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x4
Název procesu:

Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101127214709.937500-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247E29-32
Event Code: 4608
Message: Spouští se systém Windows.

Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101127214709.765625-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files (x86)\PC Connectivity Solution;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=AMD64 Family 15 Model 67 Stepping 3, AuthenticAMD
"PROCESSOR_REVISION"=4303

-----------------EOF-----------------

[honzikuh]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Honza at 2011-04-18 15:04:49
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 132 GB (65%) free of 205 GB
Total RAM: 3584 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:04:54, on 18.4.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Honza.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{1056045E-C017-49CB-AEEC-7815862E1FC5}: NameServer = 10.145.100.25,85.92.54.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{1056045E-C017-49CB-AEEC-7815862E1FC5}: NameServer = 10.145.100.25,85.92.54.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{1056045E-C017-49CB-AEEC-7815862E1FC5}: NameServer = 10.145.100.25,85.92.54.1
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - (no file)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY.Licensing.FineReader.ScreenshotReader.9.0 - ABBYY (BIT Software) - C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7298 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe" -service
"taskhost.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
taskeng.exe {930B13B3-6392-4FA8-BFC2-C47FC4AB6EFD}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-4032493769-2605325388-1694172860-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-4032493769-2605325388-1694172860-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3008.8beb400.100260631 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" 3008 plugin \\.\pipe\gecko-crash-server-pipe.3008
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Honza\Downloads\RSITx64(2).exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-11-22 1242504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-04-13 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-10-05 11474024]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 1436224]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinPatrol]
C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe [2010-11-13 329096]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-04-10 249344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2011-04-18 15:04:49 ----D---- C:\rsit
2011-04-13 16:49:31 ----SHD---- C:\Config.Msi
2011-04-13 16:43:35 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2011-04-13 16:43:35 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-04-13 16:43:34 ----A---- C:\Windows\system32\win32k.sys
2011-04-13 16:43:33 ----A---- C:\Windows\system32\mfc42u.dll
2011-04-13 16:43:33 ----A---- C:\Windows\system32\mfc42.dll
2011-04-13 16:43:32 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2011-04-13 16:43:32 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2011-04-13 16:43:31 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-04-13 16:43:31 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-04-13 16:43:31 ----A---- C:\Windows\system32\drivers\srv.sys
2011-04-13 16:43:30 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-04-13 16:43:30 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-04-13 16:43:30 ----A---- C:\Windows\system32\atmlib.dll
2011-04-13 16:43:30 ----A---- C:\Windows\system32\atmfd.dll
2011-04-13 16:43:29 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2011-04-13 16:43:29 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2011-04-13 16:43:29 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-04-13 16:43:29 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-04-13 16:43:29 ----A---- C:\Windows\system32\dnsapi.dll
2011-04-13 16:43:28 ----A---- C:\Windows\system32\inetcomm.dll
2011-04-13 16:43:27 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-04-13 16:43:25 ----A---- C:\Windows\system32\winresume.exe
2011-04-13 16:43:25 ----A---- C:\Windows\system32\winload.exe
2011-04-13 16:43:24 ----A---- C:\Windows\system32\kdusb.dll
2011-04-13 16:43:24 ----A---- C:\Windows\system32\kdcom.dll
2011-04-13 16:43:24 ----A---- C:\Windows\system32\kd1394.dll
2011-04-13 16:43:21 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-04-13 16:43:15 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-04-13 16:43:15 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-04-13 16:43:15 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-04-13 16:43:14 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-04-13 16:21:57 ----SHD---- C:\$RECYCLE.BIN
2011-04-13 16:13:36 ----D---- C:\ProgramData\Sun
2011-04-13 16:13:12 ----A---- C:\Windows\SYSWOW64\javaws.exe
2011-04-13 16:13:12 ----A---- C:\Windows\SYSWOW64\javaw.exe
2011-04-13 16:13:12 ----A---- C:\Windows\SYSWOW64\java.exe
2011-04-13 16:13:12 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2011-04-13 16:13:02 ----D---- C:\Program Files (x86)\Java
2011-04-13 16:00:44 ----D---- C:\KBcertifikat
2011-04-13 15:53:18 ----D---- C:\Windows\temp
2011-04-13 15:40:21 ----D---- C:\Windows\ERDNT
2011-04-13 15:38:29 ----D---- C:\Qoobox
2011-04-10 16:14:39 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2011-04-10 16:14:39 ----A---- C:\Windows\system32\d3dx9_32.dll
2011-04-10 16:11:16 ----A---- C:\Windows\system32\d3d10_1.dll
2011-04-10 16:11:15 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2011-04-10 14:10:29 ----A---- C:\Windows\SYSWOW64\plplacesystemdll.dll
2011-04-10 14:10:28 ----D---- C:\Program Files (x86)\PLANstudio
2011-04-10 11:49:48 ----D---- C:\Program Files (x86)\CCleaner
2011-04-10 11:44:55 ----D---- C:\Windows\system32\SPReview
2011-04-10 11:43:12 ----A---- C:\Windows\system32\netfxperf.dll
2011-04-10 11:43:12 ----A---- C:\Windows\system32\dfshim.dll
2011-04-10 11:43:03 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2011-04-10 11:42:59 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-04-10 11:42:58 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-04-10 11:42:58 ----A---- C:\Windows\system32\mstscax.dll
2011-04-10 11:42:58 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-04-10 11:42:58 ----A---- C:\Windows\system32\d3d10warp.dll
2011-04-10 11:42:55 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-04-10 11:42:52 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2011-04-10 11:42:51 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2011-04-10 11:42:51 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2011-04-10 11:42:51 ----A---- C:\Windows\system32\sysmain.dll
2011-04-10 11:42:50 ----A---- C:\Windows\system32\shell32.dll
2011-04-10 11:42:50 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-04-10 11:42:49 ----A---- C:\Windows\SYSWOW64\pmcsnap.dll
2011-04-10 11:42:48 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-04-10 11:42:47 ----A---- C:\Windows\system32\wmp.dll
2011-04-10 11:42:47 ----A---- C:\Windows\system32\tquery.dll
2011-04-10 11:42:46 ----A---- C:\Windows\system32\mssrch.dll
2011-04-10 11:42:46 ----A---- C:\Windows\system32\mscoree.dll
2011-04-10 11:42:45 ----A---- C:\Windows\system32\ntdll.dll
2011-04-10 11:42:45 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-04-10 11:42:44 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2011-04-10 11:42:44 ----A---- C:\Windows\system32\secproc_isv.dll
2011-04-10 11:42:44 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-04-10 11:42:44 ----A---- C:\Windows\system32\mf.dll
2011-04-10 11:42:43 ----A---- C:\Windows\SYSWOW64\shell32.dll
2011-04-10 11:42:43 ----A---- C:\Windows\system32\xpsservices.dll
2011-04-10 11:42:43 ----A---- C:\Windows\system32\secproc.dll
2011-04-10 11:42:43 ----A---- C:\Windows\system32\RMActivate.exe
2011-04-10 11:42:42 ----A---- C:\Windows\SYSWOW64\secproc.dll
2011-04-10 11:42:42 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2011-04-10 11:42:42 ----A---- C:\Windows\system32\rpcrt4.dll
2011-04-10 11:42:41 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2011-04-10 11:42:40 ----A---- C:\Windows\SYSWOW64\PushPrinterConnections.exe
2011-04-10 11:42:40 ----A---- C:\Windows\SYSWOW64\ppcsnap.dll
2011-04-10 11:42:40 ----A---- C:\Windows\system32\schedsvc.dll
2011-04-10 11:42:40 ----A---- C:\Windows\system32\ole32.dll
2011-04-10 11:42:39 ----A---- C:\Windows\system32\spwizui.dll
2011-04-10 11:42:38 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2011-04-10 11:42:38 ----A---- C:\Windows\system32\taskschd.dll
2011-04-10 11:42:38 ----A---- C:\Windows\system32\RacEngn.dll
2011-04-10 11:42:38 ----A---- C:\Windows\system32\esent.dll
2011-04-10 11:42:38 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-04-10 11:42:37 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-04-10 11:42:37 ----A---- C:\Windows\SYSWOW64\mf.dll
2011-04-10 11:42:37 ----A---- C:\Windows\system32\wevtsvc.dll
2011-04-10 11:42:37 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-04-10 11:42:37 ----A---- C:\Windows\system32\diagperf.dll
2011-04-10 11:42:36 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2011-04-10 11:42:36 ----A---- C:\Windows\system32\vssapi.dll
2011-04-10 11:42:36 ----A---- C:\Windows\system32\msxml3.dll
2011-04-10 11:42:36 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-04-10 11:42:35 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2011-04-10 11:42:35 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-04-10 11:42:34 ----A---- C:\Windows\system32\UIRibbon.dll
2011-04-10 11:42:34 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-04-10 11:42:34 ----A---- C:\Windows\explorer.exe
2011-04-10 11:42:33 ----A---- C:\Windows\SYSWOW64\wmp.dll
2011-04-10 11:42:32 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2011-04-10 11:42:32 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2011-04-10 11:42:32 ----A---- C:\Windows\SYSWOW64\esent.dll
2011-04-10 11:42:32 ----A---- C:\Windows\system32\WsmSvc.dll
2011-04-10 11:42:32 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-04-10 11:42:31 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-04-10 11:42:31 ----A---- C:\Windows\system32\rdpdd.dll
2011-04-10 11:42:31 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-04-10 11:42:31 ----A---- C:\Windows\system32\PresentationHost.exe
2011-04-10 11:42:30 ----A---- C:\Windows\system32\WinSAT.exe
2011-04-10 11:42:30 ----A---- C:\Windows\system32\spreview.exe
2011-04-10 11:42:30 ----A---- C:\Windows\system32\spinstall.exe
2011-04-10 11:42:30 ----A---- C:\Windows\system32\MPSSVC.dll
2011-04-10 11:42:30 ----A---- C:\Windows\system32\CertEnroll.dll
2011-04-10 11:42:29 ----A---- C:\Windows\SYSWOW64\tquery.dll
2011-04-10 11:42:29 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-04-10 11:42:28 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2011-04-10 11:42:28 ----A---- C:\Windows\system32\msxml6.dll
2011-04-10 11:42:28 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-04-10 11:42:28 ----A---- C:\Windows\system32\d3d9.dll
2011-04-10 11:42:27 ----A---- C:\Windows\system32\SearchFolder.dll
2011-04-10 11:42:26 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2011-04-10 11:42:26 ----A---- C:\Windows\system32\VSSVC.exe
2011-04-10 11:42:26 ----A---- C:\Windows\system32\kernel32.dll
2011-04-10 11:42:26 ----A---- C:\Windows\system32\gpsvc.dll
2011-04-10 11:42:26 ----A---- C:\Windows\system32\dwmcore.dll
2011-04-10 11:42:26 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2011-04-10 11:42:25 ----A---- C:\Windows\system32\drivers\http.sys
2011-04-10 11:42:25 ----A---- C:\Windows\system32\dbgeng.dll
2011-04-10 11:42:24 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-04-10 11:42:24 ----A---- C:\Windows\system32\crypt32.dll
2011-04-10 11:42:23 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2011-04-10 11:42:22 ----A---- C:\Windows\SYSWOW64\ole32.dll
2011-04-10 11:42:22 ----A---- C:\Windows\system32\TSWorkspace.dll
2011-04-10 11:42:22 ----A---- C:\Windows\system32\schannel.dll
2011-04-10 11:42:22 ----A---- C:\Windows\system32\KernelBase.dll
2011-04-10 11:42:22 ----A---- C:\Windows\system32\drivers\afd.sys
2011-04-10 11:42:22 ----A---- C:\Windows\system32\audiosrv.dll
2011-04-10 11:42:22 ----A---- C:\Windows\system32\actxprxy.dll
2011-04-10 11:42:21 ----A---- C:\Windows\system32\termsrv.dll
2011-04-10 11:42:21 ----A---- C:\Windows\system32\qmgr.dll
2011-04-10 11:42:21 ----A---- C:\Windows\system32\lsasrv.dll
2011-04-10 11:42:21 ----A---- C:\Windows\system32\gpprefcl.dll
2011-04-10 11:42:20 ----A---- C:\Windows\system32\sqmapi.dll
2011-04-10 11:42:20 ----A---- C:\Windows\system32\mstsc.exe
2011-04-10 11:42:19 ----A---- C:\Windows\system32\netlogon.dll
2011-04-10 11:42:19 ----A---- C:\Windows\system32\imapi2fs.dll
2011-04-10 11:42:18 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2011-04-10 11:42:17 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2011-04-10 11:42:17 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2011-04-10 11:42:17 ----A---- C:\Windows\system32\winhttp.dll
2011-04-10 11:42:17 ----A---- C:\Windows\system32\d3d11.dll
2011-04-10 11:42:16 ----A---- C:\Windows\SYSWOW64\explorer.exe
2011-04-10 11:42:16 ----A---- C:\Windows\system32\setupapi.dll
2011-04-10 11:42:16 ----A---- C:\Windows\system32\rpcss.dll
2011-04-10 11:42:16 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-04-10 11:42:16 ----A---- C:\Windows\system32\propsys.dll
2011-04-10 11:42:16 ----A---- C:\Windows\system32\msv1_0.dll
2011-04-10 11:42:15 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2011-04-10 11:42:15 ----A---- C:\Windows\system32\werconcpl.dll
2011-04-10 11:42:15 ----A---- C:\Windows\system32\wbengine.exe
2011-04-10 11:42:15 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2011-04-10 11:42:15 ----A---- C:\Windows\system32\authui.dll
2011-04-10 11:42:14 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2011-04-10 11:42:14 ----A---- C:\Windows\system32\taskeng.exe
2011-04-10 11:42:14 ----A---- C:\Windows\system32\odbc32.dll
2011-04-10 11:42:13 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2011-04-10 11:42:13 ----A---- C:\Windows\system32\WSDApi.dll
2011-04-10 11:42:13 ----A---- C:\Windows\system32\user32.dll
2011-04-10 11:42:13 ----A---- C:\Windows\system32\oleaut32.dll
2011-04-10 11:42:13 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-04-10 11:42:13 ----A---- C:\Windows\system32\drivers\netio.sys
2011-04-10 11:42:13 ----A---- C:\Windows\system32\dhcpcore.dll
2011-04-10 11:42:13 ----A---- C:\Windows\system32\certmgr.dll
2011-04-10 11:42:12 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-04-10 11:42:12 ----A---- C:\Windows\system32\umrdp.dll
2011-04-10 11:42:12 ----A---- C:\Windows\system32\scavengeui.dll
2011-04-10 11:42:12 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-04-10 11:42:12 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-04-10 11:42:11 ----A---- C:\Windows\SYSWOW64\wer.dll
2011-04-10 11:42:11 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-04-10 11:42:11 ----A---- C:\Windows\SYSWOW64\certcli.dll
2011-04-10 11:42:11 ----A---- C:\Windows\system32\webio.dll
2011-04-10 11:42:11 ----A---- C:\Windows\system32\tsmf.dll
2011-04-10 11:42:11 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-04-10 11:42:11 ----A---- C:\Windows\system32\ncsi.dll
2011-04-10 11:42:11 ----A---- C:\Windows\system32\localspl.dll
2011-04-10 11:42:10 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2011-04-10 11:42:10 ----A---- C:\Windows\system32\shlwapi.dll
2011-04-10 11:42:10 ----A---- C:\Windows\system32\msdrm.dll
2011-04-10 11:42:10 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-04-10 11:42:09 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2011-04-10 11:42:09 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-04-10 11:42:09 ----A---- C:\Windows\system32\netshell.dll
2011-04-10 11:42:09 ----A---- C:\Windows\system32\msdtctm.dll
2011-04-10 11:42:09 ----A---- C:\Windows\system32\framedynos.dll
2011-04-10 11:42:09 ----A---- C:\Windows\system32\drivers\cng.sys
2011-04-10 11:42:08 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2011-04-10 11:42:08 ----A---- C:\Windows\system32\ws2_32.dll
2011-04-10 11:42:08 ----A---- C:\Windows\system32\winlogon.exe
2011-04-10 11:42:08 ----A---- C:\Windows\system32\usp10.dll
2011-04-10 11:42:08 ----A---- C:\Windows\system32\nlasvc.dll
2011-04-10 11:42:08 ----A---- C:\Windows\system32\netcfgx.dll
2011-04-10 11:42:08 ----A---- C:\Windows\system32\appmgr.dll
2011-04-10 11:42:07 ----A---- C:\Windows\SYSWOW64\quartz.dll
2011-04-10 11:42:07 ----A---- C:\Windows\system32\wmpps.dll
2011-04-10 11:42:07 ----A---- C:\Windows\system32\quartz.dll
2011-04-10 11:42:07 ----A---- C:\Windows\system32\lsm.exe
2011-04-10 11:42:07 ----A---- C:\Windows\system32\dxgi.dll
2011-04-10 11:42:07 ----A---- C:\Windows\system32\drivers\csc.sys
2011-04-10 11:42:07 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-04-10 11:42:07 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-04-10 11:42:07 ----A---- C:\Windows\system32\comdlg32.dll
2011-04-10 11:42:07 ----A---- C:\Windows\system32\apphelp.dll
2011-04-10 11:42:06 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2011-04-10 11:42:06 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2011-04-10 11:42:06 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2011-04-10 11:42:06 ----A---- C:\Windows\system32\wpdshext.dll
2011-04-10 11:42:06 ----A---- C:\Windows\system32\Query.dll
2011-04-10 11:42:06 ----A---- C:\Windows\system32\mswsock.dll
2011-04-10 11:42:06 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-04-10 11:42:05 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-04-10 11:42:05 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2011-04-10 11:42:05 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2011-04-10 11:42:05 ----A---- C:\Windows\system32\QAGENT.DLL
2011-04-10 11:42:05 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-04-10 11:42:05 ----A---- C:\Windows\system32\BFE.DLL
2011-04-10 11:42:05 ----A---- C:\Windows\system32\azroles.dll
2011-04-10 11:42:04 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2011-04-10 11:42:04 ----A---- C:\Windows\system32\Vault.dll
2011-04-10 11:42:04 ----A---- C:\Windows\system32\samsrv.dll
2011-04-10 11:42:04 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2011-04-10 11:42:04 ----A---- C:\Windows\system32\cmd.exe
2011-04-10 11:42:03 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2011-04-10 11:42:03 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2011-04-10 11:42:03 ----A---- C:\Windows\system32\win32spl.dll
2011-04-10 11:42:03 ----A---- C:\Windows\system32\mssvp.dll
2011-04-10 11:42:03 ----A---- C:\Windows\system32\lpksetup.exe
2011-04-10 11:42:03 ----A---- C:\Windows\system32\cscsvc.dll
2011-04-10 11:42:02 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2011-04-10 11:42:02 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2011-04-10 11:42:02 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2011-04-10 11:42:02 ----A---- C:\Windows\system32\WebClnt.dll
2011-04-10 11:42:02 ----A---- C:\Windows\system32\rdpclip.exe
2011-04-10 11:42:01 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2011-04-10 11:42:01 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2011-04-10 11:42:01 ----A---- C:\Windows\SYSWOW64\webio.dll
2011-04-10 11:42:01 ----A---- C:\Windows\SYSWOW64\Query.dll
2011-04-10 11:42:01 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll
2011-04-10 11:42:01 ----A---- C:\Windows\system32\Wldap32.dll
2011-04-10 11:42:01 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-04-10 11:42:01 ----A---- C:\Windows\system32\sxs.dll
2011-04-10 11:42:01 ----A---- C:\Windows\system32\mcbuilder.exe
2011-04-10 11:42:01 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2011-04-10 11:42:01 ----A---- C:\Windows\system32\cscobj.dll
2011-04-10 11:42:00 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-04-10 11:42:00 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2011-04-10 11:42:00 ----A---- C:\Windows\system32\taskcomp.dll
2011-04-10 11:42:00 ----A---- C:\Windows\system32\pnidui.dll
2011-04-10 11:42:00 ----A---- C:\Windows\system32\mfds.dll
2011-04-10 11:42:00 ----A---- C:\Windows\system32\drivers\storport.sys
2011-04-10 11:41:59 ----A---- C:\Windows\SYSWOW64\schannel.dll
2011-04-10 11:41:59 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2011-04-10 11:41:59 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2011-04-10 11:41:59 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2011-04-10 11:41:59 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2011-04-10 11:41:59 ----A---- C:\Windows\system32\wuaueng.dll
2011-04-10 11:41:59 ----A---- C:\Windows\system32\webservices.dll
2011-04-10 11:41:59 ----A---- C:\Windows\system32\SessEnv.dll
2011-04-10 11:41:59 ----A---- C:\Windows\system32\rdpendp.dll
2011-04-10 11:41:59 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-04-10 11:41:59 ----A---- C:\Windows\system32\hgprint.dll
2011-04-10 11:41:58 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2011-04-10 11:41:58 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2011-04-10 11:41:58 ----A---- C:\Windows\SYSWOW64\authui.dll
2011-04-10 11:41:58 ----A---- C:\Windows\system32\winsta.dll
2011-04-10 11:41:58 ----A---- C:\Windows\system32\spoolsv.exe
2011-04-10 11:41:57 ----A---- C:\Windows\SYSWOW64\usp10.dll
2011-04-10 11:41:57 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2011-04-10 11:41:57 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2011-04-10 11:41:57 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2011-04-10 11:41:57 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2011-04-10 11:41:57 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-04-10 11:41:57 ----A---- C:\Windows\system32\prncache.dll
2011-04-10 11:41:57 ----A---- C:\Windows\system32\gdi32.dll
2011-04-10 11:41:57 ----A---- C:\Windows\system32\fveapi.dll
2011-04-10 11:41:57 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-04-10 11:41:57 ----A---- C:\Windows\system32\drivers\msrpc.sys
2011-04-10 11:41:57 ----A---- C:\Windows\system32\dot3api.dll
2011-04-10 11:41:56 ----A---- C:\Windows\system32\schtasks.exe
2011-04-10 11:41:56 ----A---- C:\Windows\system32\mcmde.dll
2011-04-10 11:41:55 ----A---- C:\Windows\SYSWOW64\userenv.dll
2011-04-10 11:41:55 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2011-04-10 11:41:55 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2011-04-10 11:41:55 ----A---- C:\Windows\system32\wuapi.dll
2011-04-10 11:41:55 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-04-10 11:41:55 ----A---- C:\Windows\system32\wlanpref.dll
2011-04-10 11:41:55 ----A---- C:\Windows\system32\vpnike.dll
2011-04-10 11:41:55 ----A---- C:\Windows\system32\userenv.dll
2011-04-10 11:41:55 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-04-10 11:41:54 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2011-04-10 11:41:54 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-04-10 11:41:54 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2011-04-10 11:41:54 ----A---- C:\Windows\system32\wintrust.dll
2011-04-10 11:41:54 ----A---- C:\Windows\system32\photowiz.dll
2011-04-10 11:41:54 ----A---- C:\Windows\system32\evr.dll
2011-04-10 11:41:54 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-04-10 11:41:53 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2011-04-10 11:41:53 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-04-10 11:41:53 ----A---- C:\Windows\system32\framedyn.dll
2011-04-10 11:41:53 ----A---- C:\Windows\system32\AudioSes.dll
2011-04-10 11:41:52 ----A---- C:\Windows\SYSWOW64\cmd.exe
2011-04-10 11:41:52 ----A---- C:\Windows\system32\wmpmde.dll
2011-04-10 11:41:52 ----A---- C:\Windows\system32\SyncCenter.dll
2011-04-10 11:41:52 ----A---- C:\Windows\system32\sppobjs.dll
2011-04-10 11:41:52 ----A---- C:\Windows\system32\FXSSVC.exe
2011-04-10 11:41:52 ----A---- C:\Windows\system32\aepdu.dll
2011-04-10 11:41:51 ----A---- C:\Windows\system32\WMPEncEn.dll
2011-04-10 11:41:51 ----A---- C:\Windows\system32\wmpeffects.dll
2011-04-10 11:41:51 ----A---- C:\Windows\system32\tscfgwmi.dll
2011-04-10 11:41:51 ----A---- C:\Windows\system32\srvsvc.dll
2011-04-10 11:41:51 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-04-10 11:41:50 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2011-04-10 11:41:50 ----A---- C:\Windows\SYSWOW64\propsys.dll
2011-04-10 11:41:50 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2011-04-10 11:41:50 ----A---- C:\Windows\system32\vmicsvc.exe
2011-04-10 11:41:50 ----A---- C:\Windows\system32\shsvcs.dll
2011-04-10 11:41:50 ----A---- C:\Windows\system32\fde.dll
2011-04-10 11:41:50 ----A---- C:\Windows\system32\aeinv.dll
2011-04-10 11:41:49 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2011-04-10 11:41:49 ----A---- C:\Windows\SYSWOW64\mfds.dll
2011-04-10 11:41:49 ----A---- C:\Windows\system32\WinSATAPI.dll
2011-04-10 11:41:49 ----A---- C:\Windows\system32\stobject.dll
2011-04-10 11:41:49 ----A---- C:\Windows\system32\localsec.dll
2011-04-10 11:41:49 ----A---- C:\Windows\system32\imapi2.dll
2011-04-10 11:41:48 ----A---- C:\Windows\SYSWOW64\user32.dll
2011-04-10 11:41:48 ----A---- C:\Windows\SYSWOW64\rdpendp.dll
2011-04-10 11:41:48 ----A---- C:\Windows\system32\netid.dll
2011-04-10 11:41:48 ----A---- C:\Windows\system32\netdiagfx.dll
2011-04-10 11:41:48 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-04-10 11:41:48 ----A---- C:\Windows\system32\inetpp.dll
2011-04-10 11:41:48 ----A---- C:\Windows\system32\drivers\vmbus.sys
2011-04-10 11:41:48 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-04-10 11:41:48 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2011-04-10 11:41:48 ----A---- C:\Windows\system32\credui.dll
2011-04-10 11:41:48 ----A---- C:\Windows\system32\cdd.dll
2011-04-10 11:41:48 ----A---- C:\Windows\system32\bcryptprimitives.dll
2011-04-10 11:41:47 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2011-04-10 11:41:47 ----A---- C:\Windows\SYSWOW64\azroles.dll
2011-04-10 11:41:47 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-04-10 11:41:47 ----A---- C:\Windows\system32\spp.dll
2011-04-10 11:41:47 ----A---- C:\Windows\system32\QSHVHOST.DLL
2011-04-10 11:41:47 ----A---- C:\Windows\system32\davclnt.dll
2011-04-10 11:41:47 ----A---- C:\Windows\system32\cscui.dll
2011-04-10 11:41:47 ----A---- C:\Windows\system32\biocpl.dll
2011-04-10 11:41:46 ----A---- C:\Windows\SYSWOW64\appmgr.dll
2011-04-10 11:41:46 ----A---- C:\Windows\system32\profsvc.dll
2011-04-10 11:41:46 ----A---- C:\Windows\system32\printui.dll
2011-04-10 11:41:46 ----A---- C:\Windows\system32\msinfo32.exe
2011-04-10 11:41:46 ----A---- C:\Windows\system32\gameux.dll
2011-04-10 11:41:45 ----A---- C:\Windows\SYSWOW64\themeui.dll
2011-04-10 11:41:45 ----A---- C:\Windows\SYSWOW64\credui.dll
2011-04-10 11:41:45 ----A---- C:\Windows\system32\scansetting.dll
2011-04-10 11:41:45 ----A---- C:\Windows\system32\pla.dll
2011-04-10 11:41:45 ----A---- C:\Windows\system32\mspbda.dll
2011-04-10 11:41:45 ----A---- C:\Windows\splwow64.exe
2011-04-10 11:41:44 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2011-04-10 11:41:44 ----A---- C:\Windows\SYSWOW64\spp.dll
2011-04-10 11:41:44 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2011-04-10 11:41:44 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2011-04-10 11:41:44 ----A---- C:\Windows\system32\wusa.exe
2011-04-10 11:41:44 ----A---- C:\Windows\system32\vds.exe
2011-04-10 11:41:44 ----A---- C:\Windows\system32\msdri.dll
2011-04-10 11:41:44 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-04-10 11:41:44 ----A---- C:\Windows\system32\conhost.exe
2011-04-10 11:41:44 ----A---- C:\Windows\system32\aitagent.exe
2011-04-10 11:41:43 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2011-04-10 11:41:43 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2011-04-10 11:41:43 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2011-04-10 11:41:43 ----A---- C:\Windows\system32\wiaservc.dll
2011-04-10 11:41:43 ----A---- C:\Windows\system32\rpchttp.dll
2011-04-10 11:41:43 ----A---- C:\Windows\system32\mscms.dll
2011-04-10 11:41:43 ----A---- C:\Windows\system32\drivers\pci.sys
2011-04-10 11:41:43 ----A---- C:\Windows\system32\cryptsvc.dll
2011-04-10 11:41:43 ----A---- C:\Windows\system32\AdmTmpl.dll
2011-04-10 11:41:42 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2011-04-10 11:41:42 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-04-10 11:41:42 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2011-04-10 11:41:42 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2011-04-10 11:41:42 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-04-10 11:41:42 ----A---- C:\Windows\system32\wisptis.exe
2011-04-10 11:41:42 ----A---- C:\Windows\system32\ocsetup.exe
2011-04-10 11:41:42 ----A---- C:\Windows\system32\msi.dll
2011-04-10 11:41:42 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2011-04-10 11:41:42 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2011-04-10 11:41:41 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2011-04-10 11:41:41 ----A---- C:\Windows\SYSWOW64\evr.dll
2011-04-10 11:41:41 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-04-10 11:41:40 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2011-04-10 11:41:40 ----A---- C:\Windows\SYSWOW64\calc.exe
2011-04-10 11:41:40 ----A---- C:\Windows\system32\sppwinob.dll
2011-04-10 11:41:40 ----A---- C:\Windows\system32\rdpcore.dll
2011-04-10 11:41:40 ----A---- C:\Windows\system32\ocsetapi.dll
2011-04-10 11:41:40 ----A---- C:\Windows\system32\DXP.dll
2011-04-10 11:41:40 ----A---- C:\Windows\system32\drivers\volmgr.sys
2011-04-10 11:41:40 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-04-10 11:41:39 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2011-04-10 11:41:39 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-04-10 11:41:39 ----A---- C:\Windows\system32\eapp3hst.dll
2011-04-10 11:41:39 ----A---- C:\Windows\system32\drivers\msdsm.sys
2011-04-10 11:41:39 ----A---- C:\Windows\system32\ci.dll
2011-04-10 11:41:38 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2011-04-10 11:41:38 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2011-04-10 11:41:38 ----A---- C:\Windows\system32\wcncsvc.dll
2011-04-10 11:41:38 ----A---- C:\Windows\system32\upnp.dll
2011-04-10 11:41:38 ----A---- C:\Windows\system32\t2embed.dll
2011-04-10 11:41:38 ----A---- C:\Windows\system32\Robocopy.exe
2011-04-10 11:41:38 ----A---- C:\Windows\system32\ntshrui.dll
2011-04-10 11:41:38 ----A---- C:\Windows\system32\mprapi.dll
2011-04-10 11:41:38 ----A---- C:\Windows\system32\eapphost.dll
2011-04-10 11:41:38 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2011-04-10 11:41:37 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2011-04-10 11:41:37 ----A---- C:\Windows\SYSWOW64\sxs.dll
2011-04-10 11:41:37 ----A---- C:\Windows\SYSWOW64\stobject.dll
2011-04-10 11:41:37 ----A---- C:\Windows\SYSWOW64\netshell.dll
2011-04-10 11:41:37 ----A---- C:\Windows\system32\thumbcache.dll
2011-04-10 11:41:37 ----A---- C:\Windows\system32\hal.dll
2011-04-10 11:41:37 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-04-10 11:41:36 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2011-04-10 11:41:36 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2011-04-10 11:41:36 ----A---- C:\Windows\system32\scecli.dll
2011-04-10 11:41:36 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-04-10 11:41:36 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2011-04-10 11:41:36 ----A---- C:\Windows\system32\DxpTaskSync.dll
2011-04-10 11:41:36 ----A---- C:\Windows\system32\dwmredir.dll
2011-04-10 11:41:36 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-04-10 11:41:35 ----A---- C:\Windows\SYSWOW64\prncache.dll
2011-04-10 11:41:35 ----A---- C:\Windows\system32\themeui.dll
2011-04-10 11:41:35 ----A---- C:\Windows\system32\sspicli.dll
2011-04-10 11:41:35 ----A---- C:\Windows\system32\scrptadm.dll
2011-04-10 11:41:35 ----A---- C:\Windows\system32\puiobj.dll
2011-04-10 11:41:35 ----A---- C:\Windows\system32\nlaapi.dll
2011-04-10 11:41:35 ----A---- C:\Windows\system32\msasn1.dll
2011-04-10 11:41:35 ----A---- C:\Windows\system32\iasrad.dll
2011-04-10 11:41:35 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2011-04-10 11:41:35 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2011-04-10 11:41:35 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-04-10 11:41:34 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2011-04-10 11:41:34 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2011-04-10 11:41:34 ----A---- C:\Windows\SYSWOW64\printui.dll
2011-04-10 11:41:34 ----A---- C:\Windows\SYSWOW64\net1.exe
2011-04-10 11:41:34 ----A---- C:\Windows\SYSWOW64\msi.dll
2011-04-10 11:41:34 ----A---- C:\Windows\system32\onex.dll
2011-04-10 11:41:34 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2011-04-10 11:41:34 ----A---- C:\Windows\system32\aaclient.dll
2011-04-10 11:41:33 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2011-04-10 11:41:33 ----A---- C:\Windows\system32\wow64.dll
2011-04-10 11:41:32 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2011-04-10 11:41:32 ----A---- C:\Windows\system32\wlangpui.dll
2011-04-10 11:41:32 ----A---- C:\Windows\system32\wdc.dll
2011-04-10 11:41:32 ----A---- C:\Windows\system32\scesrv.dll
2011-04-10 11:41:32 ----A---- C:\Windows\system32\rasmans.dll
2011-04-10 11:41:32 ----A---- C:\Windows\system32\msftedit.dll
2011-04-10 11:41:31 ----A---- C:\Windows\system32\VAN.dll
2011-04-10 11:41:31 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-04-10 11:41:31 ----A---- C:\Windows\system32\sdengin2.dll
2011-04-10 11:41:30 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2011-04-10 11:41:30 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2011-04-10 11:41:30 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2011-04-10 11:41:30 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-04-10 11:41:30 ----A---- C:\Windows\system32\wscapi.dll
2011-04-10 11:41:30 ----A---- C:\Windows\system32\wiadefui.dll
2011-04-10 11:41:30 ----A---- C:\Windows\system32\SndVol.exe
2011-04-10 11:41:30 ----A---- C:\Windows\system32\samcli.dll
2011-04-10 11:41:30 ----A---- C:\Windows\system32\regapi.dll
2011-04-10 11:41:30 ----A---- C:\Windows\system32\netcenter.dll
2011-04-10 11:41:30 ----A---- C:\Windows\system32\iasacct.dll
2011-04-10 11:41:30 ----A---- C:\Windows\system32\dskquoui.dll
2011-04-10 11:41:30 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-04-10 11:41:30 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-04-10 11:41:30 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-04-10 11:41:29 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2011-04-10 11:41:29 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2011-04-10 11:41:29 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2011-04-10 11:41:29 ----A---- C:\Windows\system32\wucltux.dll
2011-04-10 11:41:29 ----A---- C:\Windows\system32\TabSvc.dll
2011-04-10 11:41:29 ----A---- C:\Windows\system32\srchadmin.dll
2011-04-10 11:41:29 ----A---- C:\Windows\system32\QUTIL.DLL
2011-04-10 11:41:29 ----A---- C:\Windows\system32\consent.exe
2011-04-10 11:41:28 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2011-04-10 11:41:28 ----A---- C:\Windows\SYSWOW64\webservices.dll
2011-04-10 11:41:28 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2011-04-10 11:41:28 ----A---- C:\Windows\SYSWOW64\scrptadm.dll
2011-04-10 11:41:28 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2011-04-10 11:41:28 ----A---- C:\Windows\SYSWOW64\fde.dll
2011-04-10 11:41:28 ----A---- C:\Windows\system32\WUDFSvc.dll
2011-04-10 11:41:28 ----A---- C:\Windows\system32\wksprt.exe
2011-04-10 11:41:28 ----A---- C:\Windows\system32\setupcl.exe
2011-04-10 11:41:28 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-04-10 11:41:28 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-04-10 11:41:27 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-04-10 11:41:27 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2011-04-10 11:41:27 ----A---- C:\Windows\system32\taskhost.exe
2011-04-10 11:41:27 ----A---- C:\Windows\system32\rastls.dll
2011-04-10 11:41:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2011-04-10 11:41:26 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2011-04-10 11:41:26 ----A---- C:\Windows\SYSWOW64\cscobj.dll
2011-04-10 11:41:26 ----A---- C:\Windows\system32\tapisrv.dll
2011-04-10 11:41:26 ----A---- C:\Windows\system32\netiohlp.dll
2011-04-10 11:41:26 ----A---- C:\Windows\system32\msconfig.exe
2011-04-10 11:41:26 ----A---- C:\Windows\system32\mimefilt.dll
2011-04-10 11:41:26 ----A---- C:\Windows\system32\ListSvc.dll
2011-04-10 11:41:26 ----A---- C:\Windows\system32\drivers\raspptp.sys
2011-04-10 11:41:26 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-04-10 11:41:25 ----A---- C:\Windows\SYSWOW64\pla.dll
2011-04-10 11:41:25 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2011-04-10 11:41:25 ----A---- C:\Windows\system32\hgcpl.dll
2011-04-10 11:41:24 ----A---- C:\Windows\SYSWOW64\winsta.dll
2011-04-10 11:41:24 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2011-04-10 11:41:24 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2011-04-10 11:41:24 ----A---- C:\Windows\system32\lsmproxy.dll
2011-04-10 11:41:24 ----A---- C:\Windows\system32\fdeploy.dll
2011-04-10 11:41:24 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-04-10 11:41:24 ----A---- C:\Windows\system32\drivers\ks.sys
2011-04-10 11:41:24 ----A---- C:\Windows\system32\clusapi.dll
2011-04-10 11:41:24 ----A---- C:\Windows\system32\basecsp.dll
2011-04-10 11:41:24 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-04-10 11:41:23 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2011-04-10 11:41:23 ----A---- C:\Windows\system32\WFS.exe
2011-04-10 11:41:23 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2011-04-10 11:41:23 ----A---- C:\Windows\system32\mtxclu.dll
2011-04-10 11:41:23 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-04-10 11:41:23 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-04-10 11:41:22 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2011-04-10 11:41:22 ----A---- C:\Windows\SYSWOW64\gameux.dll
2011-04-10 11:41:22 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2011-04-10 11:41:22 ----A---- C:\Windows\system32\RpcRtRemote.dll
2011-04-10 11:41:22 ----A---- C:\Windows\system32\riched20.dll
2011-04-10 11:41:22 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2011-04-10 11:41:22 ----A---- C:\Windows\system32\dnscmmc.dll
2011-04-10 11:41:21 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2011-04-10 11:41:21 ----A---- C:\Windows\SYSWOW64\onex.dll
2011-04-10 11:41:21 ----A---- C:\Windows\system32\sharemediacpl.dll
2011-04-10 11:41:21 ----A---- C:\Windows\system32\powercpl.dll
2011-04-10 11:41:21 ----A---- C:\Windows\system32\logoncli.dll
2011-04-10 11:41:20 ----A---- C:\Windows\SYSWOW64\winmm.dll
2011-04-10 11:41:20 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2011-04-10 11:41:20 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2011-04-10 11:41:20 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2011-04-10 11:41:20 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2011-04-10 11:41:20 ----A---- C:\Windows\system32\themecpl.dll
2011-04-10 11:41:20 ----A---- C:\Windows\system32\SensorsCpl.dll
2011-04-10 11:41:20 ----A---- C:\Windows\system32\netjoin.dll
2011-04-10 11:41:20 ----A---- C:\Windows\system32\nci.dll
2011-04-10 11:41:20 ----A---- C:\Windows\system32\Narrator.exe
2011-04-10 11:41:20 ----A---- C:\Windows\system32\Faultrep.dll
2011-04-10 11:41:20 ----A---- C:\Windows\system32\eudcedit.exe
2011-04-10 11:41:19 ----A---- C:\Windows\SYSWOW64\samcli.dll
2011-04-10 11:41:19 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2011-04-10 11:41:19 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2011-04-10 11:41:19 ----A---- C:\Windows\SYSWOW64\autochk.exe
2011-04-10 11:41:19 ----A---- C:\Windows\system32\wkssvc.dll
2011-04-10 11:41:19 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-04-10 11:41:19 ----A---- C:\Windows\system32\comctl32.dll
2011-04-10 11:41:18 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2011-04-10 11:41:18 ----A---- C:\Windows\SYSWOW64\regapi.dll
2011-04-10 11:41:18 ----A---- C:\Windows\SYSWOW64\proquota.exe
2011-04-10 11:41:18 ----A---- C:\Windows\SYSWOW64\msutb.dll
2011-04-10 11:41:18 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2011-04-10 11:41:18 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2011-04-10 11:41:18 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2011-04-10 11:41:18 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2011-04-10 11:41:18 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2011-04-10 11:41:18 ----A---- C:\Windows\system32\sppcomapi.dll
2011-04-10 11:41:18 ----A---- C:\Windows\system32\cabview.dll
2011-04-10 11:41:18 ----A---- C:\Windows\system32\autochk.exe
2011-04-10 11:41:18 ----A---- C:\Windows\system32\autofmt.exe
2011-04-10 11:41:17 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2011-04-10 11:41:17 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2011-04-10 11:41:17 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2011-04-10 11:41:17 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2011-04-10 11:41:17 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2011-04-10 11:41:17 ----A---- C:\Windows\system32\wpd_ci.dll
2011-04-10 11:41:17 ----A---- C:\Windows\system32\shsetup.dll
2011-04-10 11:41:17 ----A---- C:\Windows\system32\nshipsec.dll
2011-04-10 11:41:17 ----A---- C:\Windows\system32\fms.dll
2011-04-10 11:41:17 ----A---- C:\Windows\system32\bcdsrv.dll
2011-04-10 11:41:17 ----A---- C:\Windows\system32\autoconv.exe
2011-04-10 11:41:17 ----A---- C:\Windows\system32\audiodg.exe
2011-04-10 11:41:16 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll

[honzikuh]

2011-04-10 11:41:16 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2011-04-10 11:41:16 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2011-04-10 11:41:16 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2011-04-10 11:41:16 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2011-04-10 11:41:16 ----A---- C:\Windows\system32\wwanconn.dll
2011-04-10 11:41:16 ----A---- C:\Windows\system32\wlanui.dll
2011-04-10 11:41:16 ----A---- C:\Windows\system32\sdclt.exe
2011-04-10 11:41:16 ----A---- C:\Windows\system32\prntvpt.dll
2011-04-10 11:41:16 ----A---- C:\Windows\system32\mscorier.dll
2011-04-10 11:41:16 ----A---- C:\Windows\system32\drivers\winusb.sys
2011-04-10 11:41:16 ----A---- C:\Windows\system32\drivers\wanarp.sys
2011-04-10 11:41:16 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2011-04-10 11:41:16 ----A---- C:\Windows\system32\drivers\scsiport.sys
2011-04-10 11:41:16 ----A---- C:\Windows\system32\dps.dll
2011-04-10 11:41:15 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2011-04-10 11:41:15 ----A---- C:\Windows\SYSWOW64\netid.dll
2011-04-10 11:41:15 ----A---- C:\Windows\system32\mprddm.dll
2011-04-10 11:41:15 ----A---- C:\Windows\system32\fontext.dll
2011-04-10 11:41:15 ----A---- C:\Windows\system32\Display.dll
2011-04-10 11:41:15 ----A---- C:\Windows\system32\AxInstSv.dll
2011-04-10 11:41:14 ----A---- C:\Windows\SYSWOW64\wdc.dll
2011-04-10 11:41:14 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2011-04-10 11:41:14 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2011-04-10 11:41:14 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2011-04-10 11:41:14 ----A---- C:\Windows\system32\wmpsrcwp.dll
2011-04-10 11:41:14 ----A---- C:\Windows\system32\qedit.dll
2011-04-10 11:41:14 ----A---- C:\Windows\system32\mblctr.exe
2011-04-10 11:41:14 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-04-10 11:41:14 ----A---- C:\Windows\system32\credssp.dll
2011-04-10 11:41:14 ----A---- C:\Windows\system32\batmeter.dll
2011-04-10 11:41:13 ----A---- C:\Windows\SYSWOW64\Vault.dll
2011-04-10 11:41:13 ----A---- C:\Windows\SYSWOW64\untfs.dll
2011-04-10 11:41:13 ----A---- C:\Windows\SYSWOW64\rastls.dll
2011-04-10 11:41:13 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-04-10 11:41:13 ----A---- C:\Windows\SYSWOW64\nci.dll
2011-04-10 11:41:12 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2011-04-10 11:41:12 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2011-04-10 11:41:12 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2011-04-10 11:41:12 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2011-04-10 11:41:12 ----A---- C:\Windows\system32\usercpl.dll
2011-04-10 11:41:12 ----A---- C:\Windows\system32\rtutils.dll
2011-04-10 11:41:12 ----A---- C:\Windows\system32\provsvc.dll
2011-04-10 11:41:12 ----A---- C:\Windows\system32\DiagCpl.dll
2011-04-10 11:41:12 ----A---- C:\Windows\system32\bootres.dll
2011-04-10 11:41:11 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2011-04-10 11:41:10 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2011-04-10 11:41:10 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2011-04-10 11:41:10 ----A---- C:\Windows\SYSWOW64\Display.dll
2011-04-10 11:41:10 ----A---- C:\Windows\system32\wpccpl.dll
2011-04-10 11:41:10 ----A---- C:\Windows\system32\sppsvc.exe
2011-04-10 11:41:10 ----A---- C:\Windows\system32\SndVolSSO.dll
2011-04-10 11:41:10 ----A---- C:\Windows\system32\rasppp.dll
2011-04-10 11:41:10 ----A---- C:\Windows\system32\drivers\winhv.sys
2011-04-10 11:41:10 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2011-04-10 11:41:10 ----A---- C:\Windows\system32\dot3cfg.dll
2011-04-10 11:41:09 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2011-04-10 11:41:09 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2011-04-10 11:41:09 ----A---- C:\Windows\system32\dxdiagn.dll
2011-04-10 11:41:08 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2011-04-10 11:41:08 ----A---- C:\Windows\SYSWOW64\userinit.exe
2011-04-10 11:41:08 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2011-04-10 11:41:08 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2011-04-10 11:41:08 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2011-04-10 11:41:08 ----A---- C:\Windows\system32\taskmgr.exe
2011-04-10 11:41:08 ----A---- C:\Windows\system32\shdocvw.dll
2011-04-10 11:41:08 ----A---- C:\Windows\system32\proquota.exe
2011-04-10 11:41:08 ----A---- C:\Windows\system32\prnfldr.dll
2011-04-10 11:41:08 ----A---- C:\Windows\system32\pdh.dll
2011-04-10 11:41:08 ----A---- C:\Windows\system32\hbaapi.dll
2011-04-10 11:41:08 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2011-04-10 11:41:07 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2011-04-10 11:41:07 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-04-10 11:41:07 ----A---- C:\Windows\system32\untfs.dll
2011-04-10 11:41:07 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2011-04-10 11:41:07 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-04-10 11:41:06 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2011-04-10 11:41:06 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2011-04-10 11:41:06 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2011-04-10 11:41:06 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2011-04-10 11:41:06 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2011-04-10 11:41:06 ----A---- C:\Windows\SYSWOW64\cabview.dll
2011-04-10 11:41:06 ----A---- C:\Windows\system32\userinit.exe
2011-04-10 11:41:06 ----A---- C:\Windows\system32\rdpcorekmts.dll
2011-04-10 11:41:06 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-04-10 11:41:05 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2011-04-10 11:41:05 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2011-04-10 11:41:04 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2011-04-10 11:41:04 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2011-04-10 11:41:04 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2011-04-10 11:41:04 ----A---- C:\Windows\system32\zipfldr.dll
2011-04-10 11:41:04 ----A---- C:\Windows\system32\slui.exe
2011-04-10 11:41:04 ----A---- C:\Windows\system32\msieftp.dll
2011-04-10 11:41:04 ----A---- C:\Windows\system32\drivers\storvsc.sys
2011-04-10 11:41:04 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2011-04-10 11:41:03 ----A---- C:\Windows\SYSWOW64\scecli.dll
2011-04-10 11:41:03 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2011-04-10 11:41:02 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2011-04-10 11:41:02 ----A---- C:\Windows\SYSWOW64\mscories.dll
2011-04-10 11:41:02 ----A---- C:\Windows\SYSWOW64\mscms.dll
2011-04-10 11:41:02 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2011-04-10 11:41:02 ----A---- C:\Windows\SYSWOW64\localsec.dll
2011-04-10 11:41:02 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2011-04-10 11:41:02 ----A---- C:\Windows\SYSWOW64\fontext.dll
2011-04-10 11:41:02 ----A---- C:\Windows\system32\sud.dll
2011-04-10 11:41:02 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2011-04-10 11:41:02 ----A---- C:\Windows\system32\networkmap.dll
2011-04-10 11:41:02 ----A---- C:\Windows\system32\dot3svc.dll
2011-04-10 11:41:02 ----A---- C:\Windows\system32\DeviceCenter.dll
2011-04-10 11:41:02 ----A---- C:\Windows\system32\cryptui.dll
2011-04-10 11:41:01 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2011-04-10 11:41:01 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2011-04-10 11:41:01 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2011-04-10 11:41:01 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2011-04-10 11:41:01 ----A---- C:\Windows\system32\twext.dll
2011-04-10 11:41:01 ----A---- C:\Windows\system32\taskbarcpl.dll
2011-04-10 11:41:01 ----A---- C:\Windows\system32\srcore.dll
2011-04-10 11:41:01 ----A---- C:\Windows\system32\qdvd.dll
2011-04-10 11:41:01 ----A---- C:\Windows\system32\ActionCenter.dll
2011-04-10 11:41:00 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2011-04-10 11:41:00 ----A---- C:\Windows\SYSWOW64\VAN.dll
2011-04-10 11:41:00 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2011-04-10 11:41:00 ----A---- C:\Windows\SYSWOW64\qedit.dll
2011-04-10 11:41:00 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2011-04-10 11:41:00 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2011-04-10 11:41:00 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2011-04-10 11:41:00 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2011-04-10 11:41:00 ----A---- C:\Windows\system32\uxlib.dll
2011-04-10 11:41:00 ----A---- C:\Windows\system32\recovery.dll
2011-04-10 11:41:00 ----A---- C:\Windows\system32\rdpwsx.dll
2011-04-10 11:41:00 ----A---- C:\Windows\system32\OobeFldr.dll
2011-04-10 11:41:00 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-04-10 11:41:00 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2011-04-10 11:41:00 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-04-10 11:41:00 ----A---- C:\Windows\system32\bcdedit.exe
2011-04-10 11:40:59 ----A---- C:\Windows\system32\sisbkup.dll
2011-04-10 11:40:59 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-04-10 11:40:59 ----A---- C:\Windows\system32\isoburn.exe
2011-04-10 11:40:59 ----A---- C:\Windows\system32\dsuiext.dll
2011-04-10 11:40:59 ----A---- C:\Windows\system32\cca.dll
2011-04-10 11:40:59 ----A---- C:\Windows\system32\azroleui.dll
2011-04-10 11:40:59 ----A---- C:\Windows\system32\asycfilt.dll
2011-04-10 11:40:58 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2011-04-10 11:40:58 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2011-04-10 11:40:58 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2011-04-10 11:40:58 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2011-04-10 11:40:58 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2011-04-10 11:40:58 ----A---- C:\Windows\system32\tzutil.exe
2011-04-10 11:40:58 ----A---- C:\Windows\system32\syncui.dll
2011-04-10 11:40:58 ----A---- C:\Windows\system32\sdcpl.dll
2011-04-10 11:40:58 ----A---- C:\Windows\system32\recdisc.exe
2011-04-10 11:40:58 ----A---- C:\Windows\system32\httpapi.dll
2011-04-10 11:40:58 ----A---- C:\Windows\system32\efscore.dll
2011-04-10 11:40:57 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2011-04-10 11:40:57 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2011-04-10 11:40:57 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2011-04-10 11:40:57 ----A---- C:\Windows\system32\systemcpl.dll
2011-04-10 11:40:57 ----A---- C:\Windows\system32\shwebsvc.dll
2011-04-10 11:40:57 ----A---- C:\Windows\system32\netplwiz.dll
2011-04-10 11:40:57 ----A---- C:\Windows\system32\drivers\mpio.sys
2011-04-10 11:40:57 ----A---- C:\Windows\system32\autoplay.dll
2011-04-10 11:40:56 ----A---- C:\Windows\SYSWOW64\wusa.exe
2011-04-10 11:40:56 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2011-04-10 11:40:56 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2011-04-10 11:40:56 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2011-04-10 11:40:56 ----A---- C:\Windows\system32\wlanmsm.dll
2011-04-10 11:40:56 ----A---- C:\Windows\system32\sysclass.dll
2011-04-10 11:40:56 ----A---- C:\Windows\system32\sspisrv.dll
2011-04-10 11:40:56 ----A---- C:\Windows\system32\sdrsvc.dll
2011-04-10 11:40:56 ----A---- C:\Windows\system32\ncryptui.dll
2011-04-10 11:40:56 ----A---- C:\Windows\system32\msvidc32.dll
2011-04-10 11:40:56 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2011-04-10 11:40:56 ----A---- C:\Windows\system32\certcli.dll
2011-04-10 11:40:56 ----A---- C:\Windows\system32\appinfo.dll
2011-04-10 11:40:56 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2011-04-10 11:40:55 ----A---- C:\Windows\SYSWOW64\sud.dll
2011-04-10 11:40:55 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2011-04-10 11:40:55 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2011-04-10 11:40:55 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2011-04-10 11:40:55 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2011-04-10 11:40:55 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2011-04-10 11:40:55 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2011-04-10 11:40:55 ----A---- C:\Windows\system32\spwizeng.dll
2011-04-10 11:40:55 ----A---- C:\Windows\system32\MFPlay.dll
2011-04-10 11:40:55 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-04-10 11:40:54 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2011-04-10 11:40:54 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2011-04-10 11:40:54 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2011-04-10 11:40:54 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2011-04-10 11:40:54 ----A---- C:\Windows\SYSWOW64\credssp.dll
2011-04-10 11:40:54 ----A---- C:\Windows\system32\vdsutil.dll
2011-04-10 11:40:54 ----A---- C:\Windows\system32\termmgr.dll
2011-04-10 11:40:54 ----A---- C:\Windows\system32\sethc.exe
2011-04-10 11:40:54 ----A---- C:\Windows\system32\rstrui.exe
2011-04-10 11:40:54 ----A---- C:\Windows\system32\odbccp32.dll
2011-04-10 11:40:54 ----A---- C:\Windows\system32\msscp.dll
2011-04-10 11:40:53 ----A---- C:\Windows\SYSWOW64\ftp.exe
2011-04-10 11:40:53 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2011-04-10 11:40:53 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2011-04-10 11:40:53 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-04-10 11:40:53 ----A---- C:\Windows\system32\ReAgent.dll
2011-04-10 11:40:53 ----A---- C:\Windows\system32\ntlanman.dll
2011-04-10 11:40:52 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2011-04-10 11:40:52 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2011-04-10 11:40:52 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2011-04-10 11:40:52 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2011-04-10 11:40:52 ----A---- C:\Windows\SYSWOW64\efscore.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\wwanprotdim.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\tsgqec.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\sqlcese30.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\secur32.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\rdpd3d.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\odbctrac.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\iTVData.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\iprtrmgr.dll
2011-04-10 11:40:52 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-04-10 11:40:51 ----A---- C:\Windows\SYSWOW64\syncui.dll
2011-04-10 11:40:51 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2011-04-10 11:40:51 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2011-04-10 11:40:51 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-04-10 11:40:51 ----A---- C:\Windows\system32\slwga.dll
2011-04-10 11:40:51 ----A---- C:\Windows\system32\iyuv_32.dll
2011-04-10 11:40:51 ----A---- C:\Windows\system32\drivers\vmstorfl.sys
2011-04-10 11:40:50 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2011-04-10 11:40:50 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2011-04-10 11:40:50 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2011-04-10 11:40:50 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2011-04-10 11:40:50 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2011-04-10 11:40:50 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2011-04-10 11:40:50 ----A---- C:\Windows\system32\wavemsp.dll
2011-04-10 11:40:50 ----A---- C:\Windows\system32\srvcli.dll
2011-04-10 11:40:50 ----A---- C:\Windows\system32\nslookup.exe
2011-04-10 11:40:50 ----A---- C:\Windows\system32\NAPHLPR.DLL
2011-04-10 11:40:50 ----A---- C:\Windows\system32\msiexec.exe
2011-04-10 11:40:50 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-04-10 11:40:50 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2011-04-10 11:40:49 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2011-04-10 11:40:49 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2011-04-10 11:40:49 ----A---- C:\Windows\SYSWOW64\sethc.exe
2011-04-10 11:40:49 ----A---- C:\Windows\SYSWOW64\riched20.dll
2011-04-10 11:40:49 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2011-04-10 11:40:49 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2011-04-10 11:40:49 ----A---- C:\Windows\system32\srrstr.dll
2011-04-10 11:40:49 ----A---- C:\Windows\system32\ntprint.dll
2011-04-10 11:40:49 ----A---- C:\Windows\system32\bcdboot.exe
2011-04-10 11:40:49 ----A---- C:\Windows\system32\acppage.dll
2011-04-10 11:40:48 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2011-04-10 11:40:48 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2011-04-10 11:40:48 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2011-04-10 11:40:48 ----A---- C:\Windows\SYSWOW64\migisol.dll
2011-04-10 11:40:48 ----A---- C:\Windows\SYSWOW64\fms.dll
2011-04-10 11:40:48 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2011-04-10 11:40:48 ----A---- C:\Windows\SYSWOW64\activeds.dll
2011-04-10 11:40:48 ----A---- C:\Windows\system32\TSpkg.dll
2011-04-10 11:40:48 ----A---- C:\Windows\system32\sppnp.dll
2011-04-10 11:40:48 ----A---- C:\Windows\system32\certprop.dll
2011-04-10 11:40:47 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2011-04-10 11:40:47 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2011-04-10 11:40:47 ----A---- C:\Windows\system32\wkscli.dll
2011-04-10 11:40:47 ----A---- C:\Windows\system32\remotepg.dll
2011-04-10 11:40:47 ----A---- C:\Windows\system32\networkexplorer.dll
2011-04-10 11:40:47 ----A---- C:\Windows\system32\cabinet.dll
2011-04-10 11:40:46 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2011-04-10 11:40:46 ----A---- C:\Windows\system32\PresentationSettings.exe
2011-04-10 11:40:45 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2011-04-10 11:40:45 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2011-04-10 11:40:45 ----A---- C:\Windows\system32\dfrgui.exe
2011-04-10 11:40:45 ----A---- C:\Windows\system32\cdosys.dll
2011-04-10 11:40:44 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2011-04-10 11:40:44 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2011-04-10 11:40:44 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2011-04-10 11:40:44 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2011-04-10 11:40:44 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2011-04-10 11:40:44 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2011-04-10 11:40:44 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2011-04-10 11:40:44 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2011-04-10 11:40:44 ----A---- C:\Windows\system32\wuwebv.dll
2011-04-10 11:40:44 ----A---- C:\Windows\system32\wsnmp32.dll
2011-04-10 11:40:44 ----A---- C:\Windows\system32\wmpdxm.dll
2011-04-10 11:40:44 ----A---- C:\Windows\system32\WinSCard.dll
2011-04-10 11:40:44 ----A---- C:\Windows\system32\net1.exe
2011-04-10 11:40:44 ----A---- C:\Windows\system32\ftp.exe
2011-04-10 11:40:43 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2011-04-10 11:40:43 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2011-04-10 11:40:43 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2011-04-10 11:40:43 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2011-04-10 11:40:43 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2011-04-10 11:40:43 ----A---- C:\Windows\system32\wvc.dll
2011-04-10 11:40:43 ----A---- C:\Windows\system32\wsqmcons.exe
2011-04-10 11:40:43 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-04-10 11:40:43 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-04-10 11:40:43 ----A---- C:\Windows\system32\blackbox.dll
2011-04-10 11:40:42 ----A---- C:\Windows\SYSWOW64\wvc.dll
2011-04-10 11:40:42 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2011-04-10 11:40:42 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2011-04-10 11:40:42 ----A---- C:\Windows\SYSWOW64\twext.dll
2011-04-10 11:40:42 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2011-04-10 11:40:42 ----A---- C:\Windows\SYSWOW64\mstask.dll
2011-04-10 11:40:42 ----A---- C:\Windows\SYSWOW64\AdmTmpl.dll
2011-04-10 11:40:42 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-04-10 11:40:42 ----A---- C:\Windows\system32\msyuv.dll
2011-04-10 11:40:42 ----A---- C:\Windows\system32\mfps.dll
2011-04-10 11:40:42 ----A---- C:\Windows\system32\mapistub.dll
2011-04-10 11:40:42 ----A---- C:\Windows\system32\mapi32.dll
2011-04-10 11:40:42 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-04-10 11:40:41 ----A---- C:\Windows\twain_32.dll
2011-04-10 11:40:41 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2011-04-10 11:40:41 ----A---- C:\Windows\SYSWOW64\qcap.dll
2011-04-10 11:40:41 ----A---- C:\Windows\SYSWOW64\qasf.dll
2011-04-10 11:40:41 ----A---- C:\Windows\system32\WUDFPlatform.dll
2011-04-10 11:40:41 ----A---- C:\Windows\system32\unimdmat.dll
2011-04-10 11:40:41 ----A---- C:\Windows\system32\OpcServices.dll
2011-04-10 11:40:41 ----A---- C:\Windows\system32\msrle32.dll
2011-04-10 11:40:41 ----A---- C:\Windows\system32\iscsium.dll
2011-04-10 11:40:40 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2011-04-10 11:40:40 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-04-10 11:40:40 ----A---- C:\Windows\system32\tsbyuv.dll
2011-04-10 11:40:40 ----A---- C:\Windows\system32\seclogon.dll
2011-04-10 11:40:40 ----A---- C:\Windows\system32\ifsutil.dll
2011-04-10 11:40:40 ----A---- C:\Windows\system32\diskraid.exe
2011-04-10 11:40:39 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2011-04-10 11:40:39 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2011-04-10 11:40:39 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2011-04-10 11:40:39 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2011-04-10 11:40:39 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2011-04-10 11:40:39 ----A---- C:\Windows\system32\muifontsetup.dll
2011-04-10 11:40:39 ----A---- C:\Windows\system32\drivers\umbus.sys
2011-04-10 11:40:39 ----A---- C:\Windows\system32\d3d10level9.dll
2011-04-10 11:40:38 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2011-04-10 11:40:38 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2011-04-10 11:40:38 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2011-04-10 11:40:38 ----A---- C:\Windows\SYSWOW64\msscp.dll
2011-04-10 11:40:38 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2011-04-10 11:40:38 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2011-04-10 11:40:38 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2011-04-10 11:40:38 ----A---- C:\Windows\system32\wmpshell.dll
2011-04-10 11:40:38 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2011-04-10 11:40:38 ----A---- C:\Windows\system32\rdpencom.dll
2011-04-10 11:40:38 ----A---- C:\Windows\system32\perfmon.exe
2011-04-10 11:40:38 ----A---- C:\Windows\system32\netutils.dll
2011-04-10 11:40:38 ----A---- C:\Windows\system32\AzSqlExt.dll
2011-04-10 11:40:37 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2011-04-10 11:40:37 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2011-04-10 11:40:37 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2011-04-10 11:40:37 ----A---- C:\Windows\SYSWOW64\acppage.dll
2011-04-10 11:40:37 ----A---- C:\Windows\system32\umb.dll
2011-04-10 11:40:37 ----A---- C:\Windows\system32\tlscsp.dll
2011-04-10 11:40:37 ----A---- C:\Windows\system32\qasf.dll
2011-04-10 11:40:37 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2011-04-10 11:40:37 ----A---- C:\Windows\system32\FXSAPI.dll
2011-04-10 11:40:37 ----A---- C:\Windows\system32\dbghelp.dll
2011-04-10 11:40:37 ----A---- C:\Windows\system32\browser.dll
2011-04-10 11:40:37 ----A---- C:\Windows\system32\ActionQueue.dll
2011-04-10 11:40:36 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2011-04-10 11:40:36 ----A---- C:\Windows\SYSWOW64\raschap.dll
2011-04-10 11:40:36 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2011-04-10 11:40:36 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2011-04-10 11:40:36 ----A---- C:\Windows\SYSWOW64\input.dll
2011-04-10 11:40:36 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2011-04-10 11:40:36 ----A---- C:\Windows\system32\wpdwcn.dll
2011-04-10 11:40:36 ----A---- C:\Windows\system32\wiavideo.dll
2011-04-10 11:40:36 ----A---- C:\Windows\system32\syssetup.dll
2011-04-10 11:40:36 ----A---- C:\Windows\system32\runonce.exe
2011-04-10 11:40:36 ----A---- C:\Windows\system32\raschap.dll
2011-04-10 11:40:36 ----A---- C:\Windows\bfsvc.exe
2011-04-10 11:40:35 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2011-04-10 11:40:35 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2011-04-10 11:40:35 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2011-04-10 11:40:35 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2011-04-10 11:40:35 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2011-04-10 11:40:35 ----A---- C:\Windows\system32\WMADMOD.DLL
2011-04-10 11:40:35 ----A---- C:\Windows\system32\MdSched.exe
2011-04-10 11:40:34 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2011-04-10 11:40:34 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2011-04-10 11:40:34 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2011-04-10 11:40:34 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2011-04-10 11:40:34 ----A---- C:\Windows\SYSWOW64\runonce.exe
2011-04-10 11:40:34 ----A---- C:\Windows\SYSWOW64\onexui.dll
2011-04-10 11:40:34 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2011-04-10 11:40:34 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2011-04-10 11:40:34 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-04-10 11:40:34 ----A---- C:\Windows\system32\vdsbas.dll
2011-04-10 11:40:34 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2011-04-10 11:40:34 ----A---- C:\Windows\system32\nltest.exe
2011-04-10 11:40:34 ----A---- C:\Windows\system32\mstask.dll
2011-04-10 11:40:34 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-04-10 11:40:34 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2011-04-10 11:40:34 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-04-10 11:40:33 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2011-04-10 11:40:33 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2011-04-10 11:40:33 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2011-04-10 11:40:33 ----A---- C:\Windows\SYSWOW64\logagent.exe
2011-04-10 11:40:33 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2011-04-10 11:40:33 ----A---- C:\Windows\system32\shacct.dll
2011-04-10 11:40:33 ----A---- C:\Windows\system32\cscapi.dll
2011-04-10 11:40:33 ----A---- C:\Windows\system32\bitsadmin.exe
2011-04-10 11:40:32 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2011-04-10 11:40:32 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2011-04-10 11:40:32 ----A---- C:\Windows\SYSWOW64\shacct.dll
2011-04-10 11:40:32 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2011-04-10 11:40:32 ----A---- C:\Windows\system32\WPDSp.dll
2011-04-10 11:40:32 ----A---- C:\Windows\system32\wmdrmnet.dll
2011-04-10 11:40:32 ----A---- C:\Windows\system32\vss_ps.dll
2011-04-10 11:40:32 ----A---- C:\Windows\system32\tabcal.exe
2011-04-10 11:40:32 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2011-04-10 11:40:32 ----A---- C:\Windows\system32\qcap.dll
2011-04-10 11:40:32 ----A---- C:\Windows\system32\logman.exe
2011-04-10 11:40:31 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2011-04-10 11:40:31 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2011-04-10 11:40:31 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-04-10 11:40:30 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2011-04-10 11:40:30 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2011-04-10 11:40:30 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2011-04-10 11:40:30 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2011-04-10 11:40:30 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2011-04-10 11:40:30 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2011-04-10 11:40:30 ----A---- C:\Windows\system32\wudriver.dll
2011-04-10 11:40:30 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-04-10 11:40:30 ----A---- C:\Windows\system32\vmictimeprovider.dll
2011-04-10 11:40:30 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-04-10 11:40:30 ----A---- C:\Windows\system32\qdv.dll
2011-04-10 11:40:30 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2011-04-10 11:40:30 ----A---- C:\Windows\system32\mssphtb.dll
2011-04-10 11:40:30 ----A---- C:\Windows\system32\msnetobj.dll
2011-04-10 11:40:30 ----A---- C:\Windows\system32\CscMig.dll
2011-04-10 11:40:29 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2011-04-10 11:40:29 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2011-04-10 11:40:29 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2011-04-10 11:40:29 ----A---- C:\Windows\SYSWOW64\pdh.dll
2011-04-10 11:40:29 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2011-04-10 11:40:29 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2011-04-10 11:40:29 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2011-04-10 11:40:29 ----A---- C:\Windows\SYSWOW64\logman.exe
2011-04-10 11:40:29 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2011-04-10 11:40:29 ----A---- C:\Windows\system32\spbcd.dll
2011-04-10 11:40:29 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2011-04-10 11:40:29 ----A---- C:\Windows\system32\fphc.dll
2011-04-10 11:40:29 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2011-04-10 11:40:29 ----A---- C:\Windows\system32\dot3ui.dll
2011-04-10 11:40:28 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2011-04-10 11:40:28 ----A---- C:\Windows\SYSWOW64\utildll.dll
2011-04-10 11:40:28 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2011-04-10 11:40:28 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2011-04-10 11:40:28 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2011-04-10 11:40:28 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2011-04-10 11:40:28 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2011-04-10 11:40:28 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2011-04-10 11:40:28 ----A---- C:\Windows\system32\WMPhoto.dll
2011-04-10 11:40:28 ----A---- C:\Windows\system32\takeown.exe
2011-04-10 11:40:28 ----A---- C:\Windows\system32\setbcdlocale.dll
2011-04-10 11:40:28 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-04-10 11:40:28 ----A---- C:\Windows\system32\amstream.dll
2011-04-10 11:40:27 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2011-04-10 11:40:27 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2011-04-10 11:40:27 ----A---- C:\Windows\SYSWOW64\takeown.exe
2011-04-10 11:40:27 ----A---- C:\Windows\SYSWOW64\fphc.dll
2011-04-10 11:40:27 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2011-04-10 11:40:27 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2011-04-10 11:40:27 ----A---- C:\Windows\system32\vfwwdm32.dll
2011-04-10 11:40:27 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-04-10 11:40:26 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2011-04-10 11:40:26 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2011-04-10 11:40:26 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2011-04-10 11:40:26 ----A---- C:\Windows\SYSWOW64\qdv.dll
2011-04-10 11:40:26 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2011-04-10 11:40:26 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2011-04-10 11:40:26 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2011-04-10 11:40:26 ----A---- C:\Windows\system32\WUDFHost.exe
2011-04-10 11:40:26 ----A---- C:\Windows\system32\shimgvw.dll
2011-04-10 11:40:26 ----A---- C:\Windows\system32\QCLIPROV.DLL
2011-04-10 11:40:26 ----A---- C:\Windows\system32\nrpsrv.dll
2011-04-10 11:40:26 ----A---- C:\Windows\system32\netapi32.dll
2011-04-10 11:40:26 ----A---- C:\Windows\system32\iasrecst.dll
2011-04-10 11:40:26 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2011-04-10 11:40:26 ----A---- C:\Windows\system32\djoin.exe
2011-04-10 11:40:26 ----A---- C:\Windows\system32\cmstp.exe
2011-04-10 11:40:26 ----A---- C:\Windows\system32\CertPolEng.dll
2011-04-10 11:40:25 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2011-04-10 11:40:25 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2011-04-10 11:40:25 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2011-04-10 11:40:25 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2011-04-10 11:40:25 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2011-04-10 11:40:25 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2011-04-10 11:40:25 ----A---- C:\Windows\SYSWOW64\cca.dll
2011-04-10 11:40:25 ----A---- C:\Windows\system32\WUDFx.dll
2011-04-10 11:40:25 ----A---- C:\Windows\system32\WavDest.dll
2011-04-10 11:40:24 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2011-04-10 11:40:24 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2011-04-10 11:40:24 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2011-04-10 11:40:24 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2011-04-10 11:40:24 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2011-04-10 11:40:24 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2011-04-10 11:40:24 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2011-04-10 11:40:24 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2011-04-10 11:40:24 ----A---- C:\Windows\system32\wuauclt.exe
2011-04-10 11:40:24 ----A---- C:\Windows\system32\sscore.dll
2011-04-10 11:40:24 ----A---- C:\Windows\system32\relog.exe
2011-04-10 11:40:24 ----A---- C:\Windows\system32\mydocs.dll
2011-04-10 11:40:24 ----A---- C:\Windows\system32\MultiDigiMon.exe
2011-04-10 11:40:24 ----A---- C:\Windows\system32\KMSVC.DLL
2011-04-10 11:40:24 ----A---- C:\Windows\system32\iscsicli.exe
2011-04-10 11:40:24 ----A---- C:\Windows\system32\fdProxy.dll
2011-04-10 11:40:24 ----A---- C:\Windows\system32\drivers\usbser.sys
2011-04-10 11:40:24 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-04-10 11:40:24 ----A---- C:\Windows\system32\drivers\pacer.sys
2011-04-10 11:40:24 ----A---- C:\Windows\system32\diskpart.exe
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\relog.exe
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2011-04-10 11:40:23 ----A---- C:\Windows\SYSWOW64\amstream.dll
2011-04-10 11:40:23 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-04-10 11:40:23 ----A---- C:\Windows\system32\msdmo.dll
2011-04-10 11:40:23 ----A---- C:\Windows\system32\mobsync.exe
2011-04-10 11:40:23 ----A---- C:\Windows\system32\itircl.dll
2011-04-10 11:40:23 ----A---- C:\Windows\system32\dot3msm.dll
2011-04-10 11:40:23 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\resutils.dll
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\itircl.dll
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2011-04-10 11:40:22 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2011-04-10 11:40:22 ----A---- C:\Windows\system32\wuapp.exe
2011-04-10 11:40:22 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-04-10 11:40:22 ----A---- C:\Windows\system32\FXSTIFF.dll
2011-04-10 11:40:22 ----A---- C:\Windows\system32\browcli.dll
2011-04-10 11:40:21 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2011-04-10 11:40:21 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2011-04-10 11:40:21 ----A---- C:\Windows\SYSWOW64\secur32.dll
2011-04-10 11:40:21 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2011-04-10 11:40:21 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2011-04-10 11:40:21 ----A---- C:\Windows\system32\qprocess.exe
2011-04-10 11:40:21 ----A---- C:\Windows\system32\prevhost.exe
2011-04-10 11:40:21 ----A---- C:\Windows\system32\mciqtz32.dll
2011-04-10 11:40:21 ----A---- C:\Windows\system32\imagehlp.dll
2011-04-10 11:40:21 ----A---- C:\Windows\system32\choice.exe
2011-04-10 11:40:21 ----A---- C:\Windows\system32\findstr.exe
2011-04-10 11:40:21 ----A---- C:\Windows\system32\eappgnui.dll
2011-04-10 11:40:20 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2011-04-10 11:40:20 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2011-04-10 11:40:20 ----A---- C:\Windows\SYSWOW64\netutils.dll
2011-04-10 11:40:20 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2011-04-10 11:40:20 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2011-04-10 11:40:20 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2011-04-10 11:40:20 ----A---- C:\Windows\SYSWOW64\findstr.exe
2011-04-10 11:40:20 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2011-04-10 11:40:20 ----A---- C:\Windows\system32\sppc.dll
2011-04-10 11:40:20 ----A---- C:\Windows\system32\schedcli.dll
2011-04-10 11:40:20 ----A---- C:\Windows\system32\onexui.dll
2011-04-10 11:40:20 ----A---- C:\Windows\system32\luainstall.dll
2011-04-10 11:40:20 ----A---- C:\Windows\system32\chglogon.exe
2011-04-10 11:40:20 ----A---- C:\Windows\system32\drivers\tunnel.sys
2011-04-10 11:40:20 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-04-10 11:40:19 ----A---- C:\Windows\SYSWOW64\sppc.dll
2011-04-10 11:40:19 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2011-04-10 11:40:19 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2011-04-10 11:40:19 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2011-04-10 11:40:19 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2011-04-10 11:40:19 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2011-04-10 11:40:19 ----A---- C:\Windows\system32\spopk.dll
2011-04-10 11:40:19 ----A---- C:\Windows\system32\repair-bde.exe
2011-04-10 11:40:19 ----A---- C:\Windows\system32\qappsrv.exe
2011-04-10 11:40:19 ----A---- C:\Windows\system32\manage-bde.exe
2011-04-10 11:40:19 ----A---- C:\Windows\system32\inetmib1.dll
2011-04-10 11:40:18 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2011-04-10 11:40:18 ----A---- C:\Windows\SYSWOW64\spopk.dll
2011-04-10 11:40:18 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2011-04-10 11:40:18 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2011-04-10 11:40:18 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2011-04-10 11:40:18 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2011-04-10 11:40:18 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2011-04-10 11:40:18 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2011-04-10 11:40:18 ----A---- C:\Windows\system32\vmstorfltres.dll
2011-04-10 11:40:18 ----A---- C:\Windows\system32\vmicres.dll
2011-04-10 11:40:18 ----A---- C:\Windows\system32\tsdiscon.exe
2011-04-10 11:40:18 ----A---- C:\Windows\system32\tscon.exe
2011-04-10 11:40:18 ----A---- C:\Windows\system32\RDPENCDD.dll
2011-04-10 11:40:18 ----A---- C:\Windows\system32\profprov.dll
2011-04-10 11:40:18 ----A---- C:\Windows\system32\odbcconf.dll
2011-04-10 11:40:18 ----A---- C:\Windows\system32\logoff.exe
2011-04-10 11:40:18 ----A---- C:\Windows\system32\chgusr.exe
2011-04-10 11:40:18 ----A---- C:\Windows\system32\chgport.exe
2011-04-10 11:40:18 ----A---- C:\Windows\system32\fixmapi.exe
2011-04-10 11:40:17 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2011-04-10 11:40:17 ----A---- C:\Windows\system32\tskill.exe
2011-04-10 11:40:17 ----A---- C:\Windows\system32\shadow.exe
2011-04-10 11:40:17 ----A---- C:\Windows\system32\rwinsta.exe
2011-04-10 11:40:17 ----A---- C:\Windows\system32\FXSMON.dll
2011-04-10 11:40:17 ----A---- C:\Windows\system32\elsTrans.dll
2011-04-10 11:40:16 ----A---- C:\Windows\SYSWOW64\wups.dll
2011-04-10 11:40:16 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2011-04-10 11:40:16 ----A---- C:\Windows\SYSWOW64\perfts.dll
2011-04-10 11:40:16 ----A---- C:\Windows\SYSWOW64\imm32.dll
2011-04-10 11:40:16 ----A---- C:\Windows\SYSWOW64\browcli.dll
2011-04-10 11:40:16 ----A---- C:\Windows\system32\wshbth.dll
2011-04-10 11:40:16 ----A---- C:\Windows\system32\vmbusres.dll
2011-04-10 11:40:16 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-04-10 11:40:16 ----A---- C:\Windows\system32\TRAPI.dll
2011-04-10 11:40:16 ----A---- C:\Windows\system32\reset.exe
2011-04-10 11:40:16 ----A---- C:\Windows\system32\LogonUI.exe
2011-04-10 11:40:16 ----A---- C:\Windows\system32\dsauth.dll
2011-04-10 11:40:16 ----A---- C:\Windows\system32\drivers\tdi.sys
2011-04-10 11:40:15 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2011-04-10 11:40:15 ----A---- C:\Windows\system32\query.exe
2011-04-10 11:40:15 ----A---- C:\Windows\system32\napdsnap.dll
2011-04-10 11:40:15 ----A---- C:\Windows\system32\change.exe
2011-04-10 11:40:14 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2011-04-10 11:40:14 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2011-04-10 11:40:14 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2011-04-10 11:40:14 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2011-04-10 11:40:14 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2011-04-10 11:40:14 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2011-04-10 11:40:14 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2011-04-10 11:40:14 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2011-04-10 11:40:14 ----A---- C:\Windows\system32\FXSUNATD.exe
2011-04-10 11:40:14 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2011-04-10 11:40:14 ----A---- C:\Windows\system32\cscdll.dll
2011-04-10 11:40:14 ----A---- C:\Windows\system32\bitsperf.dll
2011-04-10 11:40:13 ----A---- C:\Windows\system32\wups2.dll
2011-04-10 11:40:13 ----A---- C:\Windows\system32\wups.dll
2011-04-10 11:40:13 ----A---- C:\Windows\system32\wsdchngr.dll
2011-04-10 11:40:13 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2011-04-10 11:40:12 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2011-04-10 11:40:12 ----A---- C:\Windows\SYSWOW64\sscore.dll
2011-04-10 11:40:12 ----A---- C:\Windows\SYSWOW64\shgina.dll
2011-04-10 11:40:12 ----A---- C:\Windows\SYSWOW64\riched32.dll
2011-04-10 11:40:12 ----A---- C:\Windows\system32\wow64win.dll
2011-04-10 11:40:12 ----A---- C:\Windows\system32\shgina.dll
2011-04-10 11:40:12 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-04-10 11:40:11 ----A---- C:\Windows\system32\wshirda.dll
2011-04-10 11:40:11 ----A---- C:\Windows\system32\wow64cpu.dll
2011-04-10 11:40:11 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2011-04-10 11:40:10 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2011-04-10 11:40:10 ----A---- C:\Windows\system32\vmbuspipe.dll
2011-04-10 11:40:10 ----A---- C:\Windows\system32\riched32.dll
2011-04-10 11:40:10 ----A---- C:\Windows\system32\rdpcfgex.dll
2011-04-10 11:40:10 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-04-10 11:40:10 ----A---- C:\Windows\system32\drivers\hidusb.sys
2011-04-10 11:40:10 ----A---- C:\Windows\system32\drivers\appid.sys
2011-04-10 11:40:09 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2011-04-10 11:40:09 ----A---- C:\Windows\SYSWOW64\browseui.dll
2011-04-10 11:40:09 ----A---- C:\Windows\system32\VmdCoinstall.dll
2011-04-10 11:40:09 ----A---- C:\Windows\system32\VmbusCoinstaller.dll
2011-04-10 11:40:09 ----A---- C:\Windows\system32\spwmp.dll
2011-04-10 11:40:09 ----A---- C:\Windows\system32\IcCoinstall.dll
2011-04-10 11:40:09 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2011-04-10 11:40:09 ----A---- C:\Windows\system32\C_ISCII.DLL
2011-04-10 11:40:09 ----A---- C:\Windows\system32\browseui.dll
2011-04-10 11:40:08 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2011-04-10 11:40:08 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2011-04-10 11:40:08 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2011-04-10 11:40:08 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2011-04-10 11:40:08 ----A---- C:\Windows\system32\shunimpl.dll
2011-04-10 11:40:08 ----A---- C:\Windows\system32\dxmasf.dll
2011-04-10 11:40:08 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2011-04-10 11:40:08 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2011-04-10 11:40:08 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-04-10 11:40:08 ----A---- C:\Windows\system32\drivers\scfilter.sys
2011-04-10 11:40:08 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2011-04-10 11:40:08 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-04-10 11:40:08 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-04-10 11:40:07 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2011-04-10 11:40:07 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\wmploc.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDTUQ.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDTUF.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDSG.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDSF.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDPO.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDNEPR.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\kbdlk41a.dll
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDINTAM.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDINBEN.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDGR1.DLL
2011-04-10 11:40:07 ----A---- C:\Windows\system32\KBDGKL.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2011-04-10 11:40:06 ----A---- C:\Windows\system32\tzres.dll
2011-04-10 11:40:06 ----A---- C:\Windows\system32\spwizres.dll
2011-04-10 11:40:06 ----A---- C:\Windows\system32\pifmgr.dll
2011-04-10 11:40:06 ----A---- C:\Windows\system32\nlsbres.dll
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDUS.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDTURME.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDMON.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDMAORI.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDLT1.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDINTEL.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDINORI.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDINMAR.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDINKAN.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDINHIN.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDGEO.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDCZ1.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDBULG.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDBLR.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\KBDBASH.DLL
2011-04-10 11:40:06 ----A---- C:\Windows\system32\drivers\vms3cap.sys
2011-04-10 11:40:06 ----A---- C:\Windows\system32\drivers\VMBusHID.sys
2011-04-10 11:40:06 ----A---- C:\Windows\system32\dpnaddr.dll
2011-04-10 11:40:06 ----A---- C:\Windows\system32\BlbEvents.dll
2011-04-10 11:39:45 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2011-04-10 11:39:45 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2011-04-10 11:39:43 ----A---- C:\Windows\SYSWOW64\printmanagement.msc
2011-04-10 11:39:29 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2011-04-10 11:39:29 ----A---- C:\Windows\SYSWOW64\dpx.dll
2011-04-10 11:39:24 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2011-04-10 11:37:12 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-04-10 11:37:12 ----A---- C:\Windows\system32\wbemcomn.dll
2011-04-10 11:37:03 ----A---- C:\Windows\system32\SmiEngine.dll
2011-04-10 11:36:59 ----A---- C:\Windows\system32\PkgMgr.exe
2011-04-10 11:36:30 ----A---- C:\Windows\system32\drvstore.dll
2011-04-10 11:36:30 ----A---- C:\Windows\system32\dpx.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\wextract.exe
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\url.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\msrating.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\msls31.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\mshta.exe
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\inseng.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\icardie.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2011-04-10 11:01:24 ----A---- C:\Windows\SYSWOW64\admparse.dll
2011-04-10 11:01:24 ----A---- C:\Windows\system32\wininet.dll
2011-04-10 11:01:24 ----A---- C:\Windows\system32\urlmon.dll
2011-04-10 11:01:24 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-04-10 11:01:24 ----A---- C:\Windows\system32\msrating.dll
2011-04-10 11:01:24 ----A---- C:\Windows\system32\msls31.dll
2011-04-10 11:01:24 ----A---- C:\Windows\system32\jsproxy.dll
2011-04-10 11:01:24 ----A---- C:\Windows\system32\iertutil.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\wextract.exe
2011-04-10 11:01:23 ----A---- C:\Windows\system32\webcheck.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\vbscript.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\url.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2011-04-10 11:01:23 ----A---- C:\Windows\system32\pngfilt.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\occache.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\mshtmler.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\mshtmled.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\mshtml.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\mshta.exe
2011-04-10 11:01:23 ----A---- C:\Windows\system32\msfeedssync.exe
2011-04-10 11:01:23 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\msfeeds.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\licmgr10.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\jscript9.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\jscript.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\inseng.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\imgutil.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\iexpress.exe
2011-04-10 11:01:23 ----A---- C:\Windows\system32\ieUnatt.exe
2011-04-10 11:01:23 ----A---- C:\Windows\system32\ieui.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\iesysprep.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\iesetup.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\iernonce.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\iepeers.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\ieframe.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\iedkcs32.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\ieapfltr.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\ieakui.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\ieaksie.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\ieakeng.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\IEAdvpack.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\ie4uinit.exe
2011-04-10 11:01:23 ----A---- C:\Windows\system32\icardie.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\dxtrans.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\dxtmsft.dll
2011-04-10 11:01:23 ----A---- C:\Windows\system32\admparse.dll
2011-04-10 10:24:05 ----A---- C:\Windows\system32\FntCache.dll
2011-04-10 10:24:04 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-04-10 10:24:04 ----A---- C:\Windows\system32\DWrite.dll
2011-04-10 10:24:03 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-04-10 10:24:03 ----A---- C:\Windows\system32\d2d1.dll
2011-04-10 10:16:45 ----D---- C:\Users\Honza\AppData\Roaming\Malwarebytes
2011-04-10 10:16:21 ----A---- C:\Windows\SYSWOW64\drivers\mbamswissarmy.sys
2011-04-10 10:16:20 ----D---- C:\ProgramData\Malwarebytes
2011-04-10 10:16:13 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-04-10 10:16:13 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-04-10 09:36:41 ----D---- C:\Users\Honza\AppData\Roaming\Opera
2011-04-10 09:36:25 ----D---- C:\Program Files (x86)\Opera
2011-04-09 17:35:48 ----A---- C:\Windows\AutoKMS.ini
2011-04-09 12:39:46 ----D---- C:\Program Files\trend micro

======List of files/folders modified in the last 1 months======

2011-04-18 15:04:31 ----D---- C:\Windows\system32\config
2011-04-18 15:01:14 ----D---- C:\Windows
2011-04-18 14:58:06 ----D---- C:\Windows\debug
2011-04-18 14:47:22 ----D---- C:\Windows\Microsoft.NET
2011-04-18 14:47:12 ----RSD---- C:\Windows\assembly
2011-04-18 14:43:45 ----SHD---- C:\System Volume Information
2011-04-18 14:37:44 ----D---- C:\Windows\System32
2011-04-18 14:37:44 ----D---- C:\Windows\inf
2011-04-18 14:37:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-04-18 14:33:34 ----D---- C:\Windows\winsxs
2011-04-18 14:31:09 ----D---- C:\Windows\SysWOW64
2011-04-18 14:31:08 ----D---- C:\Windows\system32\drivers
2011-04-18 14:31:07 ----D---- C:\Windows\system32\Boot
2011-04-13 16:58:23 ----SHD---- C:\Windows\Installer
2011-04-13 16:58:14 ----D---- C:\ProgramData\Microsoft Help
2011-04-13 16:58:01 ----D---- C:\Windows\system32\catroot2
2011-04-13 16:58:01 ----D---- C:\Windows\system32\catroot
2011-04-13 16:53:24 ----A---- C:\Windows\system32\MRT.exe
2011-04-13 16:13:36 ----D---- C:\ProgramData
2011-04-13 16:13:35 ----D---- C:\Program Files (x86)\Common Files
2011-04-13 16:13:02 ----RD---- C:\Program Files (x86)
2011-04-13 15:51:20 ----A---- C:\Windows\system.ini
2011-04-13 15:49:28 ----D---- C:\Windows\SYSWOW64\drivers
2011-04-13 15:49:28 ----D---- C:\Windows\AppPatch
2011-04-13 15:49:26 ----D---- C:\Program Files\Common Files
2011-04-13 15:38:20 ----D---- C:\Windows\Prefetch
2011-04-13 15:29:17 ----SD---- C:\Users\Honza\AppData\Roaming\Microsoft
2011-04-10 16:09:27 ----SD---- C:\ProgramData\Microsoft
2011-04-10 15:22:19 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-04-10 12:06:58 ----D---- C:\Windows\system32\DriverStore
2011-04-10 12:01:14 ----D---- C:\Program Files (x86)\Windows Sidebar
2011-04-10 12:01:14 ----D---- C:\Program Files (x86)\Windows Portable Devices
2011-04-10 12:01:14 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2011-04-10 12:01:14 ----D---- C:\Program Files (x86)\Windows Media Player
2011-04-10 12:01:14 ----D---- C:\Program Files (x86)\Windows Mail
2011-04-10 12:01:11 ----D---- C:\Program Files\Windows Sidebar
2011-04-10 12:01:11 ----D---- C:\Program Files\Windows Mail
2011-04-10 12:01:11 ----D---- C:\Program Files\DVD Maker
2011-04-10 12:01:10 ----D---- C:\Program Files\Windows Portable Devices
2011-04-10 12:01:10 ----D---- C:\Program Files\Windows Photo Viewer
2011-04-10 12:01:10 ----D---- C:\Program Files\Windows Media Player
2011-04-10 12:01:10 ----D---- C:\Program Files\Windows Journal
2011-04-10 12:01:07 ----D---- C:\Windows\servicing
2011-04-10 12:01:07 ----D---- C:\Program Files\Windows Defender
2011-04-10 12:01:06 ----D---- C:\Windows\ehome
2011-04-10 12:00:55 ----D---- C:\Windows\SYSWOW64\oobe
2011-04-10 12:00:55 ----D---- C:\Windows\SYSWOW64\da-DK
2011-04-10 12:00:54 ----D---- C:\Windows\SYSWOW64\Setup
2011-04-10 12:00:54 ----D---- C:\Windows\SYSWOW64\migration
2011-04-10 12:00:54 ----D---- C:\Windows\SYSWOW64\cs
2011-04-10 12:00:54 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2011-04-10 12:00:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-04-10 12:00:52 ----D---- C:\Windows\SYSWOW64\wbem
2011-04-10 12:00:52 ----D---- C:\Windows\SYSWOW64\sppui
2011-04-10 12:00:52 ----D---- C:\Windows\SYSWOW64\manifeststore
2011-04-10 12:00:52 ----D---- C:\Windows\SYSWOW64\es-ES
2011-04-10 12:00:51 ----D---- C:\Windows\SYSWOW64\migwiz
2011-04-10 12:00:51 ----D---- C:\Windows\SYSWOW64\Dism
2011-04-10 12:00:37 ----D---- C:\Windows\system32\oobe
2011-04-10 12:00:37 ----D---- C:\Windows\system32\en-US
2011-04-10 12:00:37 ----D---- C:\Windows\system32\da-DK
2011-04-10 12:00:37 ----D---- C:\Windows\PolicyDefinitions
2011-04-10 12:00:36 ----D---- C:\Windows\system32\Setup
2011-04-10 12:00:36 ----D---- C:\Windows\system32\migration
2011-04-10 12:00:36 ----D---- C:\Windows\system32\cs-CZ
2011-04-10 12:00:36 ----D---- C:\Windows\system32\cs
2011-04-10 12:00:36 ----D---- C:\Windows\system32\AdvancedInstallers
2011-04-10 12:00:35 ----D---- C:\Windows\system32\wbem
2011-04-10 12:00:35 ----D---- C:\Windows\system32\sppui
2011-04-10 12:00:35 ----D---- C:\Windows\system32\manifeststore
2011-04-10 12:00:35 ----D---- C:\Windows\system32\es-ES
2011-04-10 12:00:35 ----D---- C:\Windows\system32\drivers\cs-CZ
2011-04-10 12:00:34 ----D---- C:\Windows\system32\migwiz
2011-04-10 12:00:34 ----D---- C:\Windows\system32\Dism
2011-04-10 12:00:24 ----RSD---- C:\Windows\Fonts
2011-04-10 11:51:35 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2011-04-10 11:51:34 ----A---- C:\Windows\system32\msclmd.dll
2011-04-10 11:20:21 ----D---- C:\Program Files\Internet Explorer
2011-04-10 11:02:53 ----D---- C:\Windows\Logs
2011-04-10 11:02:50 ----D---- C:\Program Files (x86)\Internet Explorer
2011-04-10 11:01:46 ----D---- C:\Windows\SYSWOW64\en-US
2011-04-09 17:46:29 ----D---- C:\Windows\system32\Tasks
2011-04-09 17:35:48 ----D---- C:\Windows\Tasks
2011-04-09 12:39:46 ----RD---- C:\Program Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 188928]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-10-05 2511464]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 40832]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 72064]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2010-07-30 19456]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-07-30 26624]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-07-30 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-07-30 9216]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.ScreenshotReader.9.0;ABBYY.Licensing.FineReader.ScreenshotReader.9.0; C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe [2008-10-27 759072]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 12784]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-10-16 989800]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2010-10-20 630272]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-28 1255736]

-----------------EOF-----------------