VIRY.CZ

Otevrete si poznamkovy blok

Start->spustit->notepad
Vlozte text nize

REGEDIT4

[HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableRegedit"=dword:00000000
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\PROGRA~2\ANALOG~1\SoundMAX\SOUNDT~1.EXE"=-
"C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHookLaunch.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\xxbqhm.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winfwxvja.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\tumb.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winksein.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\3582-490\PEV.exe"=-
"C:\Program Files (x86)\ASUS\AI Direct Link\AsCmd.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winmuwh.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\uvggi.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\oimmxe.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winlrgk.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\windvpwtl.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\eacks.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winxqdeja.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\windtud.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winhumutb.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winvgox.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\gppms.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\phrhne.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winmsnge.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winlumrh.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\xdrla.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winklap.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\jxsijl.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winplxxx.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winccyo.exe"=-
"C:\beruska.com\PEV.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winkxuwd.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winonnmd.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\qbdtai.exe"=-
"C:\Program Files (x86)\ASUS\AASP\1.00.40\aaCenter.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winslkh.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winellp.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\gxykew.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winwypfsi.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winpuqk.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\qutm.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\wintdbosu.exe"=-
"C:\Users\DangerAge\Desktop\OTM.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winhmhmox.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winesecjx.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winmtse.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winfxublf.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\cinlja.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\wjeiko.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winudoygc.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\jeai.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winwamckg.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winqrdx.exe"=-
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe"=-
"C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaantmon.exe"=-
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\wincglicb.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\uydplq.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winkoof.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winpkdoiv.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winmpqce.exe"=-
"C:\Program Files (x86)\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe"=-
"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\wintmvop.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winmpbru.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\wqxquc.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\ltfvqr.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\bwuyft.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\segdh.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\utkh.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\kmuys.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winuruso.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winndhiuc.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\uder.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winjcrnnl.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winqgfwio.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winixqgg.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winymrya.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\windihe.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\hisok.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winpqiur.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winkqrqqq.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winavut.exe"=-
"C:\Users\DANGER~1\AppData\Local\Temp\winepvxkf.exe"=-

Soubor ulozte jako oprava.reg
Pri ukladani dejte ulozit jako typ Vsechny soubory (nastevni je uvedeno na obrazku nize)
Zavrit notepad ale vytvoreny soubor nespoustejte
Soubor oprava.reg ulozte primo na disk c:\ tak aby nebyl v zadne slozce (cesta tedy bude c:\oprava.reg)

Stahnete Avenger (viz muj podpis)

Pokud pouzivate Win Vista ci W7, kliknete na Avenger pravym a dejte Run As Administrator ci Spustit jako spravce
Po spusteni Vas program upozorni, ze vse co delate, delate na vlastni riziko - Dejte OK
Po potvrzeni uz na Vas koukne hlavni okno, kam vlozite skript, ktery mate nize

Kód: Vybrat vše

Folders to delete:
C:\Users\DangerAge\AppData\Local\Temp

Programs launch on reboot:
c:\oprava.reg

Do ctverecku u Scan for rootkits a Automatically disable any rootkits found dejte fajecku
Nyni uz kliknete na Execute a potvrdte Yes v nasledujicim okne - timto potvrdite spusteni skriptu
Na otazku Reboot now odpovezte opet OK - timto se PC restartuje
Po restartu by se mel otevrit poznamkovy blok s logem a jeho obsah vlozte sem. Pokud se tak nestane, naleznete pozadovany dokument v C:\avenger.txt

Vše jsem udělal..proběhl restart ale log nikde..

Poprosim o novy log z RSIT

Logfile of random's system information tool 1.09 (written by random/random)
Run by DangerAge at 2011-09-07 17:16:54
Microsoft® Windows Vista™ Ultimate
System drive C: has 21 GB (29%) free of 71 GB
Total RAM: 8190 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:10:23, on 7.9.2011
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16982)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\AASP\1.00.40\aaCenter.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Windows\SysWOW64\conime.exe
C:\Users\DANGER~1\AppData\Local\Temp\winhifem.exe
C:\Users\DANGER~1\AppData\Local\Temp\winpqiur.exe
C:\PROGRA~2\MOZILL~1\firefox.exe
C:\PROGRA~2\MOZILL~1\plugin-container.exe
C:\PROGRA~1\TRENDM~1\DANGER~1.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundTray] "C:\Program Files (x86)\Analog Devices\SoundMAX\SoundTray.exe"
O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe"
O4 - HKLM\..\Run: [CPU Power Monitor] "C:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe"
O4 - HKLM\..\Run: [Cpu Level Up help] "C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe"
O4 - HKLM\..\Run: [Launch Direct Link] "C:\Program Files (x86)\ASUS\AI Direct Link\AsShare.exe"
O4 - HKLM\..\Run: [Launch As Cmd Runner] "C:\Program Files (x86)\ASUS\AI Direct Link\AsCmd.exe" -reg
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Performance Driver Service - Unknown owner - C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6124 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
C:\Windows\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\Windows\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
winlogon.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
taskeng.exe {6A76331D-9187-4EF4-8D34-2BF78166CB70}
"C:\Program Files (x86)\ASUS\AASP\1.00.40\aaCenter.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\conime.exe
C:\PROGRA~2\Intel\INTELM~1\IAAnotif.exe
C:\PROGRA~2\Corel\CORELS~1\CORELP~1.EXE
C:\PROGRA~1\WICC9F~1\sidebar.exe /autoRun
C:\PROGRA~2\LOGMEI~1\HAMACH~2.EXE --auto-start
C:\Windows\system32\AEADISRV.EXE
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaantmon.exe"
"C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\SysWOW64\PSIService.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-459f64a5-3881-4b46-8f69-668f07b7c4a1 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-29648760-21d2-4233-ba5b-b603787780ad -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-1d903361-2b08-4b98-a75d-820fc683d56c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:cad7d23d-a158-4e95-a76b-eb7c8d637d47
taskeng.exe {F5D6869D-C434-4134-BA24-4351B2E5A58F}
C:\Windows\System32\mobsync.exe -Embedding
"C:\Program Files\Windows Media Player\wmpnscfg.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\PROGRA~2\MOZILL~1\firefox.exe
"C:\PROGRA~2\MOZILL~1\plugin-container.exe" --channel=3560.9213020.157043362 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" - -greomni "C:\PROGRA~2\MOZILL~1\omni.jar" 3560 "\\.\pipe\gecko-crash-server-pipe.3560" plugin
C:\Users\DANGER~1\AppData\Local\Temp\rqhfja.exe
C:\Users\DANGER~1\AppData\Local\Temp\winmygu.exe
C:\Users\DANGER~1\DOWNLO~1\RSITX6~1.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\PROGRA~1\TRENDM~1\DANGER~1.EXE /silentautolog

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2011-09-06 174872]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2009-12-16 1712232]
"Corel Photo Downloader"=C:\PROGRA~2\Corel\CORELS~1\CORELP~1.EXE [2011-09-06 478800]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2011-09-04 1554432]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [2011-09-07 1753600]
"SoundTray"=C:\Program Files (x86)\Analog Devices\SoundMAX\SoundTray.exe [2011-09-07 578560]
"Ai Nap"=C:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe [2011-09-07 2329600]
"CPU Power Monitor"=C:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe [2011-09-07 1413120]
"Cpu Level Up help"=C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe [2011-09-07 1402880]
"Launch Direct Link"=C:\Program Files (x86)\ASUS\AI Direct Link\AsShare.exe [2011-09-06 1441280]
"Launch As Cmd Runner"=C:\Program Files (x86)\ASUS\AI Direct Link\AsCmd.exe [2011-09-07 717312]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2011-08-15 1955208]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=1
"DisableRegistryTools"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\PROGRA~2\ANALOG~1\SoundMAX\SOUNDT~1.EXE"="C:\PROGRA~2\ANALOG~1\SoundMAX\SOUNDT~1.EXE:*:Enabled:ipsec"
"C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHookLaunch.exe"="C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHookLaunch.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\xxbqhm.exe"="C:\Users\DANGER~1\AppData\Local\Temp\xxbqhm.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winfwxvja.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winfwxvja.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\tumb.exe"="C:\Users\DANGER~1\AppData\Local\Temp\tumb.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winksein.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winksein.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\3582-490\PEV.exe"="C:\Users\DANGER~1\AppData\Local\Temp\3582-490\PEV.exe:*:Enabled:ipsec"
"C:\Program Files (x86)\ASUS\AI Direct Link\AsCmd.exe"="C:\Program Files (x86)\ASUS\AI Direct Link\AsCmd.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winmuwh.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winmuwh.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\uvggi.exe"="C:\Users\DANGER~1\AppData\Local\Temp\uvggi.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\oimmxe.exe"="C:\Users\DANGER~1\AppData\Local\Temp\oimmxe.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winlrgk.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winlrgk.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\windvpwtl.exe"="C:\Users\DANGER~1\AppData\Local\Temp\windvpwtl.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\eacks.exe"="C:\Users\DANGER~1\AppData\Local\Temp\eacks.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winxqdeja.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winxqdeja.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\windtud.exe"="C:\Users\DANGER~1\AppData\Local\Temp\windtud.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winhumutb.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winhumutb.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winvgox.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winvgox.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\gppms.exe"="C:\Users\DANGER~1\AppData\Local\Temp\gppms.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\phrhne.exe"="C:\Users\DANGER~1\AppData\Local\Temp\phrhne.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winmsnge.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winmsnge.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winlumrh.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winlumrh.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\xdrla.exe"="C:\Users\DANGER~1\AppData\Local\Temp\xdrla.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winklap.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winklap.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\jxsijl.exe"="C:\Users\DANGER~1\AppData\Local\Temp\jxsijl.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winplxxx.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winplxxx.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winccyo.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winccyo.exe:*:Enabled:ipsec"
"C:\beruska.com\PEV.exe"="C:\beruska.com\PEV.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winkxuwd.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winkxuwd.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winonnmd.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winonnmd.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\qbdtai.exe"="C:\Users\DANGER~1\AppData\Local\Temp\qbdtai.exe:*:Enabled:ipsec"
"C:\Program Files (x86)\ASUS\AASP\1.00.40\aaCenter.exe"="C:\Program Files (x86)\ASUS\AASP\1.00.40\aaCenter.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winslkh.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winslkh.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winellp.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winellp.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\gxykew.exe"="C:\Users\DANGER~1\AppData\Local\Temp\gxykew.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winwypfsi.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winwypfsi.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winpuqk.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winpuqk.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\qutm.exe"="C:\Users\DANGER~1\AppData\Local\Temp\qutm.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\wintdbosu.exe"="C:\Users\DANGER~1\AppData\Local\Temp\wintdbosu.exe:*:Enabled:ipsec"
"C:\Users\DangerAge\Desktop\OTM.exe"="C:\Users\DangerAge\Desktop\OTM.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winhmhmox.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winhmhmox.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winesecjx.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winesecjx.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winmtse.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winmtse.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winfxublf.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winfxublf.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\cinlja.exe"="C:\Users\DANGER~1\AppData\Local\Temp\cinlja.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\wjeiko.exe"="C:\Users\DANGER~1\AppData\Local\Temp\wjeiko.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winudoygc.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winudoygc.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\jeai.exe"="C:\Users\DANGER~1\AppData\Local\Temp\jeai.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winwamckg.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winwamckg.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winqrdx.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winqrdx.exe:*:Enabled:ipsec"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe"="C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe:*:Enabled:ipsec"
"C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaantmon.exe"="C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaantmon.exe:*:Enabled:ipsec"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"="C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\wincglicb.exe"="C:\Users\DANGER~1\AppData\Local\Temp\wincglicb.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\uydplq.exe"="C:\Users\DANGER~1\AppData\Local\Temp\uydplq.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winkoof.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winkoof.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winpkdoiv.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winpkdoiv.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winmpqce.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winmpqce.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\wintmvop.exe"="C:\Users\DANGER~1\AppData\Local\Temp\wintmvop.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winmpbru.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winmpbru.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\wqxquc.exe"="C:\Users\DANGER~1\AppData\Local\Temp\wqxquc.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\ltfvqr.exe"="C:\Users\DANGER~1\AppData\Local\Temp\ltfvqr.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\bwuyft.exe"="C:\Users\DANGER~1\AppData\Local\Temp\bwuyft.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\segdh.exe"="C:\Users\DANGER~1\AppData\Local\Temp\segdh.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\utkh.exe"="C:\Users\DANGER~1\AppData\Local\Temp\utkh.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\kmuys.exe"="C:\Users\DANGER~1\AppData\Local\Temp\kmuys.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winuruso.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winuruso.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winndhiuc.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winndhiuc.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\uder.exe"="C:\Users\DANGER~1\AppData\Local\Temp\uder.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winjcrnnl.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winjcrnnl.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winqgfwio.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winqgfwio.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winixqgg.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winixqgg.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winymrya.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winymrya.exe:*:Enabled:ipsec"
"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"="C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe:*:Enabled:ipsec"
"C:\Program Files (x86)\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe"="C:\Program Files (x86)\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winhifem.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winhifem.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\windihe.exe"="C:\Users\DANGER~1\AppData\Local\Temp\windihe.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\hisok.exe"="C:\Users\DANGER~1\AppData\Local\Temp\hisok.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winpqiur.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winpqiur.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winkqrqqq.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winkqrqqq.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winavut.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winavut.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winepvxkf.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winepvxkf.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winexvvg.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winexvvg.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winegetye.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winegetye.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\juvgh.exe"="C:\Users\DANGER~1\AppData\Local\Temp\juvgh.exe:*:Enabled:ipsec"
"C:\Program Files (x86)\ASUS\AASP\1.00.40\AsLoader.exe"="C:\Program Files (x86)\ASUS\AASP\1.00.40\AsLoader.exe:*:Enabled:ipsec"
"C:\PROGRA~2\MOZILL~1\uninstall\helper.exe"="C:\PROGRA~2\MOZILL~1\uninstall\helper.exe:*:Enabled:ipsec"
"C:\PROGRA~2\Corel\CORELS~1\CORELP~1.EXE"="C:\PROGRA~2\Corel\CORELS~1\CORELP~1.EXE:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\rqhfja.exe"="C:\Users\DANGER~1\AppData\Local\Temp\rqhfja.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\elth.exe"="C:\Users\DANGER~1\AppData\Local\Temp\elth.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\qpyjb.exe"="C:\Users\DANGER~1\AppData\Local\Temp\qpyjb.exe:*:Enabled:ipsec"
"C:\Users\DANGER~1\AppData\Local\Temp\winmygu.exe"="C:\Users\DANGER~1\AppData\Local\Temp\winmygu.exe:*:Enabled:ipsec"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.exe - open - C:\Windows\svchost.com "%1" %*

======List of files/folders created in the last 1 month======

2011-09-07 16:43:47 ----A---- C:\Windows\SYSWOW64\drivers\urzqr.sys
2011-09-07 16:43:47 ----A---- C:\daqy.txt
2011-09-07 16:39:56 ----A---- C:\oprava.reg.txt
2011-09-07 15:06:45 ----A---- C:\Windows\svchost.com
2011-09-06 22:03:00 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2011-09-06 22:00:22 ----AH---- C:\Windows\system32\hamachi.sys
2011-09-06 16:09:43 ----D---- C:\_OTM
2011-09-06 15:53:35 ----A---- C:\Windows\directx.sys
2011-09-06 15:53:34 ----D---- C:\$RECYCLE.BIN
2011-09-06 15:52:14 ----D---- C:\Windows\temp
2011-09-06 15:47:26 ----D---- C:\beruska.com26829b
2011-09-06 15:29:07 ----D---- C:\beruska.com
2011-09-05 19:23:46 ----A---- C:\Windows\zip.exe
2011-09-05 19:23:46 ----A---- C:\Windows\SWXCACLS.exe
2011-09-05 19:23:46 ----A---- C:\Windows\SWSC.exe
2011-09-05 19:23:46 ----A---- C:\Windows\SWREG.exe
2011-09-05 19:23:46 ----A---- C:\Windows\sed.exe
2011-09-05 19:23:46 ----A---- C:\Windows\PEV.exe
2011-09-05 19:23:46 ----A---- C:\Windows\NIRCMD.exe
2011-09-05 19:23:46 ----A---- C:\Windows\MBR.exe
2011-09-05 19:23:46 ----A---- C:\Windows\grep.exe
2011-09-05 19:23:42 ----D---- C:\Windows\ERDNT
2011-09-05 19:23:40 ----D---- C:\Qoobox
2011-09-05 19:11:55 ----D---- C:\rsit
2011-09-05 19:11:55 ----D---- C:\Program Files\trend micro
2011-09-05 18:52:28 ----A---- C:\Windows\SYSWOW64\libmysql_d.dll
2011-09-05 18:52:25 ----D---- C:\Program Files (x86)\PremiumSoft
2011-09-05 18:25:15 ----D---- C:\xampp
2011-09-05 17:30:32 ----D---- C:\ProgramData\Apple Computer
2011-09-05 17:30:32 ----D---- C:\Program Files (x86)\Safari
2011-09-05 17:30:18 ----D---- C:\ProgramData\Apple
2011-09-05 17:30:18 ----D---- C:\Program Files (x86)\Apple Software Update
2011-09-05 17:24:14 ----D---- C:\Program Files (x86)\Opera
2011-09-05 17:07:05 ----D---- C:\Program Files (x86)\Namoroka
2011-09-05 16:55:29 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-09-05 16:55:29 ----A---- C:\Windows\system32\winhttp.dll
2011-09-05 16:54:38 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2011-09-05 16:54:38 ----A---- C:\Windows\system32\setupapi.dll
2011-09-05 16:54:27 ----A---- C:\Windows\SYSWOW64\srclient.dll
2011-09-05 16:54:27 ----A---- C:\Windows\system32\wpd_ci.dll
2011-09-05 16:54:27 ----A---- C:\Windows\system32\winresume.exe
2011-09-05 16:54:27 ----A---- C:\Windows\system32\srdelayed.exe
2011-09-05 16:54:27 ----A---- C:\Windows\system32\srcore.dll
2011-09-05 16:54:27 ----A---- C:\Windows\system32\srclient.dll
2011-09-05 16:54:27 ----A---- C:\Windows\system32\rstrui.exe
2011-09-05 16:54:27 ----A---- C:\Windows\system32\kd1394.dll
2011-09-05 16:54:26 ----A---- C:\Windows\system32\winload.exe
2011-09-05 16:54:26 ----A---- C:\Windows\system32\schedsvc.dll
2011-09-05 16:54:26 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2011-09-05 16:54:26 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2011-09-05 16:54:26 ----A---- C:\Windows\system32\clfs.sys
2011-09-05 16:54:26 ----A---- C:\Windows\system32\ci.dll
2011-09-05 16:54:25 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2011-09-05 16:54:25 ----A---- C:\Windows\SYSWOW64\prflbmsg.dll
2011-09-05 16:54:25 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-09-05 16:54:25 ----A---- C:\Windows\SYSWOW64\lodctr.exe
2011-09-05 16:54:25 ----A---- C:\Windows\SYSWOW64\loadperf.dll
2011-09-05 16:54:25 ----A---- C:\Windows\SYSWOW64\kbd106n.dll
2011-09-05 16:54:25 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2011-09-05 16:54:25 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2011-09-05 16:54:25 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-09-05 16:54:25 ----A---- C:\Windows\system32\oleaut32.dll
2011-09-05 16:54:25 ----A---- C:\Windows\system32\kbd106n.dll
2011-09-05 16:54:25 ----A---- C:\Windows\system32\drvinst.exe
2011-09-05 16:54:25 ----A---- C:\Windows\system32\dispci.dll
2011-09-05 16:54:25 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-09-05 16:54:25 ----A---- C:\Windows\system32\batt.dll
2011-09-05 16:54:24 ----A---- C:\Windows\SYSWOW64\f3ahvoas.dll
2011-09-05 16:54:24 ----A---- C:\Windows\SYSWOW64\dpx.dll
2011-09-05 16:54:24 ----A---- C:\Windows\system32\unlodctr.exe
2011-09-05 16:54:24 ----A---- C:\Windows\system32\prflbmsg.dll
2011-09-05 16:54:24 ----A---- C:\Windows\system32\lodctr.exe
2011-09-05 16:54:24 ----A---- C:\Windows\system32\loadperf.dll
2011-09-05 16:54:24 ----A---- C:\Windows\system32\f3ahvoas.dll
2011-09-05 16:54:24 ----A---- C:\Windows\system32\dpx.dll
2011-09-05 16:54:23 ----A---- C:\Windows\system32\drivers\sermouse.sys
2011-09-05 16:54:23 ----A---- C:\Windows\system32\drivers\mouhid.sys
2011-09-05 16:54:23 ----A---- C:\Windows\system32\drivers\mouclass.sys
2011-09-05 16:54:23 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-09-05 16:54:23 ----A---- C:\Windows\system32\drivers\kbdclass.sys
2011-09-05 16:54:23 ----A---- C:\Windows\system32\drivers\i8042prt.sys
2011-09-05 16:32:56 ----A---- C:\Windows\system32\drivers\VBoxDrv.sys
2011-09-05 16:32:44 ----A---- C:\Windows\system32\drivers\VBoxUSBMon.sys
2011-09-05 16:32:41 ----D---- C:\Program Files\Sun
2011-09-05 16:30:47 ----A---- C:\ProgramData\nvModes.dat
2011-09-05 16:28:11 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2011-09-05 16:26:53 ----D---- C:\ProgramData\NVIDIA Corporation
2011-09-05 16:26:48 ----D---- C:\Program Files\NVIDIA Corporation
2011-09-05 16:26:03 ----A---- C:\Windows\system32\nvudisp.exe
2011-09-05 16:25:58 ----N---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-09-05 16:25:58 ----A---- C:\Windows\system32\dpinst.exe
2011-09-05 16:25:57 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2011-09-05 16:25:57 ----A---- C:\Windows\system32\nvwgf2umx.dll
2011-09-05 16:25:56 ----A---- C:\Windows\system32\nvoglv64.dll
2011-09-05 16:25:55 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2011-09-05 16:25:55 ----A---- C:\Windows\system32\nvd3dumx.dll
2011-09-05 16:25:54 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2011-09-05 16:25:54 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2011-09-05 16:25:54 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2011-09-05 16:25:54 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2011-09-05 16:25:54 ----A---- C:\Windows\system32\nvcuvid.dll
2011-09-05 16:25:54 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-09-05 16:25:54 ----A---- C:\Windows\system32\nvcuda.dll
2011-09-05 16:25:54 ----A---- C:\Windows\system32\nvcod188.dll
2011-09-05 16:25:54 ----A---- C:\Windows\system32\nvcod.dll
2011-09-05 16:25:52 ----D---- C:\NVIDIA
2011-09-05 15:16:23 ----A---- C:\Windows\system32\nvcpluir.dll
2011-09-05 15:16:22 ----A---- C:\Windows\system32\nvexpbar.dll
2011-09-05 15:15:09 ----A---- C:\Windows\system32\nvuninst.exe
2011-09-05 14:40:52 ----A---- C:\Windows\Ascd_tmp.ini
2011-09-05 14:40:39 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-09-05 14:40:39 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-09-05 14:40:39 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-09-05 14:40:15 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-09-05 14:39:47 ----A---- C:\Windows\SYSWOW64\cmifw.dll
2011-09-05 14:39:47 ----A---- C:\Windows\system32\wfapigp.dll
2011-09-05 14:39:47 ----A---- C:\Windows\system32\MPSSVC.dll
2011-09-05 14:39:47 ----A---- C:\Windows\system32\icfupgd.dll
2011-09-05 14:39:47 ----A---- C:\Windows\system32\FirewallAPI.dll
2011-09-05 14:39:47 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2011-09-05 14:39:47 ----A---- C:\Windows\system32\cmifw.dll
2011-09-05 14:39:46 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2011-09-05 14:39:46 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2011-09-05 14:39:18 ----A---- C:\Windows\system32\drivers\csc.sys
2011-09-05 14:39:18 ----A---- C:\Windows\system32\CscMig.dll
2011-09-05 14:39:15 ----A---- C:\Windows\system32\ntprint.exe
2011-09-05 14:39:15 ----A---- C:\Windows\system32\ntprint.dll
2011-09-05 14:39:15 ----A---- C:\Windows\system32\dhcpcmonitor.dll
2011-09-05 14:39:14 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2011-09-05 14:39:14 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2011-09-05 14:39:14 ----A---- C:\Windows\SYSWOW64\dhcpcmonitor.dll
2011-09-05 14:39:14 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2011-09-05 14:39:14 ----A---- C:\Windows\system32\dhcpcsvc.dll
2011-09-05 14:39:14 ----A---- C:\Windows\system32\authui.dll
2011-09-05 14:39:13 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2011-09-05 14:39:13 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2011-09-05 14:39:13 ----A---- C:\Windows\SYSWOW64\authui.dll
2011-09-05 14:39:08 ----A---- C:\Windows\SYSWOW64\sendmail.dll
2011-09-05 14:39:08 ----A---- C:\Windows\system32\sendmail.dll
2011-09-05 14:39:07 ----A---- C:\Windows\SYSWOW64\ssBranded.scr
2011-09-05 14:39:07 ----A---- C:\Windows\system32\ssBranded.scr
2011-09-05 14:38:31 ----A---- C:\Windows\SYSWOW64\rastls.dll
2011-09-05 14:38:31 ----A---- C:\Windows\SYSWOW64\raschap.dll
2011-09-05 14:38:31 ----A---- C:\Windows\system32\rastls.dll
2011-09-05 14:38:31 ----A---- C:\Windows\system32\raschap.dll
2011-09-05 14:38:08 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2011-09-05 14:38:07 ----A---- C:\Windows\system32\kernel32.dll
2011-09-05 14:38:06 ----A---- C:\Windows\SYSWOW64\apilogen.dll
2011-09-05 14:38:06 ----A---- C:\Windows\SYSWOW64\amxread.dll
2011-09-05 14:38:06 ----A---- C:\Windows\system32\apilogen.dll
2011-09-05 14:38:06 ----A---- C:\Windows\system32\amxread.dll
2011-09-05 14:37:37 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2011-09-05 14:37:37 ----A---- C:\Windows\system32\gdi32.dll
2011-09-05 14:37:05 ----A---- C:\Windows\system32\NlsLexicons0049.dll
2011-09-05 14:37:05 ----A---- C:\Windows\system32\NlsLexicons0047.dll
2011-09-05 14:37:05 ----A---- C:\Windows\system32\NlsLexicons0046.dll
2011-09-05 14:37:05 ----A---- C:\Windows\system32\NlsLexicons0045.dll
2011-09-05 14:37:05 ----A---- C:\Windows\system32\NlsLexicons0039.dll
2011-09-05 14:37:05 ----A---- C:\Windows\system32\NlsLexicons0020.dll
2011-09-05 14:37:04 ----A---- C:\Windows\system32\NlsLexicons0026.dll
2011-09-05 14:37:04 ----A---- C:\Windows\system32\NlsLexicons0024.dll
2011-09-05 14:37:04 ----A---- C:\Windows\system32\NlsLexicons0022.dll
2011-09-05 14:37:04 ----A---- C:\Windows\system32\NlsLexicons0021.dll
2011-09-05 14:37:03 ----A---- C:\Windows\system32\NlsLexicons0027.dll
2011-09-05 14:37:03 ----A---- C:\Windows\system32\NlsLexicons0013.dll
2011-09-05 14:37:03 ----A---- C:\Windows\system32\NlsLexicons0011.dll
2011-09-05 14:37:03 ----A---- C:\Windows\system32\NlsLexicons0010.dll
2011-09-05 14:37:02 ----A---- C:\Windows\system32\NlsLexicons0019.dll
2011-09-05 14:37:02 ----A---- C:\Windows\system32\NlsLexicons0018.dll
2011-09-05 14:37:02 ----A---- C:\Windows\system32\NlsLexicons0001.dll
2011-09-05 14:37:01 ----A---- C:\Windows\system32\NlsLexicons004a.dll
2011-09-05 14:37:01 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2011-09-05 14:37:01 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2011-09-05 14:37:01 ----A---- C:\Windows\system32\NlsLexicons0003.dll
2011-09-05 14:37:01 ----A---- C:\Windows\system32\NlsLexicons0002.dll
2011-09-05 14:37:00 ----A---- C:\Windows\system32\NlsLexicons004e.dll
2011-09-05 14:37:00 ----A---- C:\Windows\system32\NlsLexicons004c.dll
2011-09-05 14:37:00 ----A---- C:\Windows\system32\NlsLexicons004b.dll
2011-09-05 14:37:00 ----A---- C:\Windows\system32\NlsLexicons003e.dll
2011-09-05 14:37:00 ----A---- C:\Windows\system32\NlsLexicons002a.dll
2011-09-05 14:37:00 ----A---- C:\Windows\system32\NlsLexicons001a.dll
2011-09-05 14:36:59 ----A---- C:\Windows\system32\NlsLexicons001d.dll
2011-09-05 14:36:59 ----A---- C:\Windows\system32\NlsLexicons001b.dll
2011-09-05 14:36:59 ----A---- C:\Windows\system32\NlsLexicons000a.dll
2011-09-05 14:36:58 ----A---- C:\Windows\system32\NlsLexicons0414.dll
2011-09-05 14:36:58 ----A---- C:\Windows\system32\NlsLexicons000f.dll
2011-09-05 14:36:58 ----A---- C:\Windows\system32\NlsLexicons000d.dll
2011-09-05 14:36:58 ----A---- C:\Windows\system32\NlsLexicons000c.dll
2011-09-05 14:36:57 ----A---- C:\Windows\system32\NlsModels0011.dll
2011-09-05 14:36:57 ----A---- C:\Windows\system32\NlsLexicons081a.dll
2011-09-05 14:36:57 ----A---- C:\Windows\system32\NlsLexicons0816.dll
2011-09-05 14:36:57 ----A---- C:\Windows\system32\NlsLexicons0416.dll
2011-09-05 14:36:56 ----A---- C:\Windows\system32\NlsData0049.dll
2011-09-05 14:36:56 ----A---- C:\Windows\system32\NlsData0047.dll
2011-09-05 14:36:56 ----A---- C:\Windows\system32\NlsData0046.dll
2011-09-05 14:36:56 ----A---- C:\Windows\system32\NlsData0045.dll
2011-09-05 14:36:56 ----A---- C:\Windows\system32\NlsData0039.dll
2011-09-05 14:36:55 ----A---- C:\Windows\system32\NlsData0026.dll
2011-09-05 14:36:55 ----A---- C:\Windows\system32\NlsData0024.dll
2011-09-05 14:36:55 ----A---- C:\Windows\system32\NlsData0022.dll
2011-09-05 14:36:55 ----A---- C:\Windows\system32\NlsData0021.dll
2011-09-05 14:36:55 ----A---- C:\Windows\system32\NlsData0020.dll
2011-09-05 14:36:54 ----A---- C:\Windows\system32\NlsData0027.dll
2011-09-05 14:36:54 ----A---- C:\Windows\system32\NlsData0018.dll
2011-09-05 14:36:54 ----A---- C:\Windows\system32\NlsData0013.dll
2011-09-05 14:36:54 ----A---- C:\Windows\system32\NlsData0011.dll
2011-09-05 14:36:54 ----A---- C:\Windows\system32\NlsData0010.dll
2011-09-05 14:36:53 ----A---- C:\Windows\system32\NlsData0019.dll
2011-09-05 14:36:53 ----A---- C:\Windows\system32\NlsData0007.dll
2011-09-05 14:36:53 ----A---- C:\Windows\system32\NlsData0003.dll
2011-09-05 14:36:53 ----A---- C:\Windows\system32\NlsData0002.dll
2011-09-05 14:36:53 ----A---- C:\Windows\system32\NlsData0001.dll
2011-09-05 14:36:53 ----A---- C:\Windows\system32\NlsData0000.dll
2011-09-05 14:36:52 ----A---- C:\Windows\system32\NlsData004c.dll
2011-09-05 14:36:52 ----A---- C:\Windows\system32\NlsData004b.dll
2011-09-05 14:36:52 ----A---- C:\Windows\system32\NlsData004a.dll
2011-09-05 14:36:52 ----A---- C:\Windows\system32\NlsData0009.dll
2011-09-05 14:36:51 ----A---- C:\Windows\system32\NlsData004e.dll
2011-09-05 14:36:51 ----A---- C:\Windows\system32\NlsData003e.dll
2011-09-05 14:36:51 ----A---- C:\Windows\system32\NlsData002a.dll
2011-09-05 14:36:51 ----A---- C:\Windows\system32\NlsData001d.dll
2011-09-05 14:36:51 ----A---- C:\Windows\system32\NlsData001b.dll
2011-09-05 14:36:51 ----A---- C:\Windows\system32\NlsData001a.dll
2011-09-05 14:36:50 ----A---- C:\Windows\system32\NlsData000d.dll
2011-09-05 14:36:50 ----A---- C:\Windows\system32\NlsData000c.dll
2011-09-05 14:36:50 ----A---- C:\Windows\system32\NlsData000a.dll
2011-09-05 14:36:49 ----A---- C:\Windows\system32\NlsData081a.dll
2011-09-05 14:36:49 ----A---- C:\Windows\system32\NlsData0816.dll
2011-09-05 14:36:49 ----A---- C:\Windows\system32\NlsData0416.dll
2011-09-05 14:36:49 ----A---- C:\Windows\system32\NlsData0414.dll
2011-09-05 14:36:49 ----A---- C:\Windows\system32\NlsData000f.dll
2011-09-05 14:36:49 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-09-05 14:36:48 ----A---- C:\Windows\SYSWOW64\NlsLexicons0045.dll
2011-09-05 14:36:48 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
2011-09-05 14:36:48 ----A---- C:\Windows\system32\NlsData0c1a.dll
2011-09-05 14:36:47 ----A---- C:\Windows\SYSWOW64\NlsLexicons0049.dll
2011-09-05 14:36:47 ----A---- C:\Windows\SYSWOW64\NlsLexicons0047.dll
2011-09-05 14:36:47 ----A---- C:\Windows\SYSWOW64\NlsLexicons0046.dll
2011-09-05 14:36:47 ----A---- C:\Windows\SYSWOW64\NlsLexicons0039.dll
2011-09-05 14:36:47 ----A---- C:\Windows\SYSWOW64\NlsLexicons0021.dll
2011-09-05 14:36:47 ----A---- C:\Windows\SYSWOW64\NlsLexicons0020.dll
2011-09-05 14:36:46 ----A---- C:\Windows\SYSWOW64\NlsLexicons0026.dll
2011-09-05 14:36:46 ----A---- C:\Windows\SYSWOW64\NlsLexicons0024.dll
2011-09-05 14:36:46 ----A---- C:\Windows\SYSWOW64\NlsLexicons0022.dll
2011-09-05 14:36:45 ----A---- C:\Windows\SYSWOW64\NlsLexicons0027.dll
2011-09-05 14:36:44 ----A---- C:\Windows\SYSWOW64\NlsLexicons0013.dll
2011-09-05 14:36:44 ----A---- C:\Windows\SYSWOW64\NlsLexicons0011.dll
2011-09-05 14:36:44 ----A---- C:\Windows\SYSWOW64\NlsLexicons0010.dll
2011-09-05 14:36:43 ----A---- C:\Windows\SYSWOW64\NlsLexicons0019.dll
2011-09-05 14:36:43 ----A---- C:\Windows\SYSWOW64\NlsLexicons0018.dll
2011-09-05 14:36:43 ----A---- C:\Windows\SYSWOW64\NlsLexicons0001.dll
2011-09-05 14:36:42 ----A---- C:\Windows\SYSWOW64\NlsLexicons0009.dll
2011-09-05 14:36:42 ----A---- C:\Windows\SYSWOW64\NlsLexicons0007.dll
2011-09-05 14:36:42 ----A---- C:\Windows\SYSWOW64\NlsLexicons0003.dll
2011-09-05 14:36:42 ----A---- C:\Windows\SYSWOW64\NlsLexicons0002.dll
2011-09-05 14:36:41 ----A---- C:\Windows\SYSWOW64\NlsLexicons004e.dll
2011-09-05 14:36:41 ----A---- C:\Windows\SYSWOW64\NlsLexicons004c.dll
2011-09-05 14:36:41 ----A---- C:\Windows\SYSWOW64\NlsLexicons004b.dll
2011-09-05 14:36:41 ----A---- C:\Windows\SYSWOW64\NlsLexicons004a.dll
2011-09-05 14:36:40 ----A---- C:\Windows\SYSWOW64\NlsLexicons003e.dll
2011-09-05 14:36:40 ----A---- C:\Windows\SYSWOW64\NlsLexicons002a.dll
2011-09-05 14:36:40 ----A---- C:\Windows\SYSWOW64\NlsLexicons001b.dll
2011-09-05 14:36:40 ----A---- C:\Windows\SYSWOW64\NlsLexicons001a.dll
2011-09-05 14:36:39 ----A---- C:\Windows\SYSWOW64\NlsLexicons001d.dll
2011-09-05 14:36:39 ----A---- C:\Windows\SYSWOW64\NlsLexicons000a.dll
2011-09-05 14:36:38 ----A---- C:\Windows\SYSWOW64\NlsLexicons0414.dll
2011-09-05 14:36:38 ----A---- C:\Windows\SYSWOW64\NlsLexicons000f.dll
2011-09-05 14:36:38 ----A---- C:\Windows\SYSWOW64\NlsLexicons000d.dll
2011-09-05 14:36:38 ----A---- C:\Windows\SYSWOW64\NlsLexicons000c.dll
2011-09-05 14:36:37 ----A---- C:\Windows\SYSWOW64\NlsLexicons081a.dll
2011-09-05 14:36:37 ----A---- C:\Windows\SYSWOW64\NlsLexicons0816.dll
2011-09-05 14:36:37 ----A---- C:\Windows\SYSWOW64\NlsLexicons0416.dll
2011-09-05 14:36:36 ----A---- C:\Windows\SYSWOW64\NlsModels0011.dll
2011-09-05 14:36:36 ----A---- C:\Windows\SYSWOW64\NlsData0049.dll
2011-09-05 14:36:36 ----A---- C:\Windows\SYSWOW64\NlsData0047.dll
2011-09-05 14:36:36 ----A---- C:\Windows\SYSWOW64\NlsData0046.dll
2011-09-05 14:36:36 ----A---- C:\Windows\SYSWOW64\NlsData0045.dll
2011-09-05 14:36:35 ----A---- C:\Windows\SYSWOW64\NlsData0039.dll
2011-09-05 14:36:35 ----A---- C:\Windows\SYSWOW64\NlsData0022.dll
2011-09-05 14:36:35 ----A---- C:\Windows\SYSWOW64\NlsData0021.dll
2011-09-05 14:36:35 ----A---- C:\Windows\SYSWOW64\NlsData0020.dll
2011-09-05 14:36:34 ----A---- C:\Windows\SYSWOW64\NlsData0027.dll
2011-09-05 14:36:34 ----A---- C:\Windows\SYSWOW64\NlsData0026.dll
2011-09-05 14:36:34 ----A---- C:\Windows\SYSWOW64\NlsData0024.dll
2011-09-05 14:36:34 ----A---- C:\Windows\SYSWOW64\NlsData0011.dll
2011-09-05 14:36:34 ----A---- C:\Windows\SYSWOW64\NlsData0010.dll
2011-09-05 14:36:33 ----A---- C:\Windows\SYSWOW64\NlsData0019.dll
2011-09-05 14:36:33 ----A---- C:\Windows\SYSWOW64\NlsData0018.dll
2011-09-05 14:36:33 ----A---- C:\Windows\SYSWOW64\NlsData0013.dll
2011-09-05 14:36:33 ----A---- C:\Windows\SYSWOW64\NlsData0000.dll
2011-09-05 14:36:32 ----A---- C:\Windows\SYSWOW64\NlsData0009.dll
2011-09-05 14:36:32 ----A---- C:\Windows\SYSWOW64\NlsData0007.dll
2011-09-05 14:36:32 ----A---- C:\Windows\SYSWOW64\NlsData0003.dll
2011-09-05 14:36:32 ----A---- C:\Windows\SYSWOW64\NlsData0002.dll
2011-09-05 14:36:32 ----A---- C:\Windows\SYSWOW64\NlsData0001.dll
2011-09-05 14:36:31 ----A---- C:\Windows\SYSWOW64\NlsData004e.dll
2011-09-05 14:36:31 ----A---- C:\Windows\SYSWOW64\NlsData004c.dll
2011-09-05 14:36:31 ----A---- C:\Windows\SYSWOW64\NlsData004b.dll
2011-09-05 14:36:31 ----A---- C:\Windows\SYSWOW64\NlsData004a.dll
2011-09-05 14:36:31 ----A---- C:\Windows\SYSWOW64\NlsData003e.dll
2011-09-05 14:36:31 ----A---- C:\Windows\SYSWOW64\NlsData002a.dll
2011-09-05 14:36:30 ----A---- C:\Windows\SYSWOW64\NlsData001d.dll
2011-09-05 14:36:30 ----A---- C:\Windows\SYSWOW64\NlsData001b.dll
2011-09-05 14:36:30 ----A---- C:\Windows\SYSWOW64\NlsData001a.dll
2011-09-05 14:36:29 ----A---- C:\Windows\SYSWOW64\NlsData0414.dll
2011-09-05 14:36:29 ----A---- C:\Windows\SYSWOW64\NlsData000f.dll
2011-09-05 14:36:29 ----A---- C:\Windows\SYSWOW64\NlsData000d.dll
2011-09-05 14:36:29 ----A---- C:\Windows\SYSWOW64\NlsData000c.dll
2011-09-05 14:36:29 ----A---- C:\Windows\SYSWOW64\NlsData000a.dll
2011-09-05 14:36:28 ----A---- C:\Windows\SYSWOW64\NlsData0416.dll
2011-09-05 14:36:27 ----A---- C:\Windows\SYSWOW64\NlsData081a.dll
2011-09-05 14:36:27 ----A---- C:\Windows\SYSWOW64\NlsData0816.dll
2011-09-05 14:36:27 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2011-09-05 14:36:26 ----A---- C:\Windows\SYSWOW64\NlsLexicons0c1a.dll
2011-09-05 14:36:26 ----A---- C:\Windows\SYSWOW64\NlsData0c1a.dll
2011-09-05 14:33:45 ----A---- C:\Windows\SYSWOW64\WMASF.DLL
2011-09-05 14:33:45 ----A---- C:\Windows\SYSWOW64\LAPRXY.DLL
2011-09-05 14:33:45 ----A---- C:\Windows\SYSWOW64\asferror.dll
2011-09-05 14:33:45 ----A---- C:\Windows\system32\WMASF.DLL
2011-09-05 14:33:45 ----A---- C:\Windows\system32\LAPRXY.DLL
2011-09-05 14:33:45 ----A---- C:\Windows\system32\asferror.dll
2011-09-05 14:31:54 ----D---- C:\Program Files (x86)\MSXML 4.0
2011-09-05 14:31:40 ----A---- C:\Windows\system32\MUILanguageCleanup.dll
2011-09-05 14:31:40 ----A---- C:\Windows\system32\lpremove.exe
2011-09-05 14:31:40 ----A---- C:\Windows\system32\lpksetup.exe
2011-09-05 14:31:40 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2011-09-05 14:31:18 ----A---- C:\Windows\system32\riched32.dll
2011-09-05 14:31:18 ----A---- C:\Windows\system32\riched20.dll
2011-09-05 14:31:17 ----A---- C:\Windows\system32\rasser.dll
2011-09-05 14:31:17 ----A---- C:\Windows\system32\rasdiag.dll
2011-09-05 14:31:17 ----A---- C:\Windows\system32\rascfg.dll
2011-09-05 14:31:17 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-09-05 14:31:17 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2011-09-05 14:31:16 ----A---- C:\Windows\SYSWOW64\riched32.dll
2011-09-05 14:31:16 ----A---- C:\Windows\SYSWOW64\riched20.dll
2011-09-05 14:31:16 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2011-09-05 14:31:16 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2011-09-05 14:31:16 ----A---- C:\Windows\system32\rasmxs.dll
2011-09-05 14:31:16 ----A---- C:\Windows\system32\netcfgx.dll
2011-09-05 14:31:16 ----A---- C:\Windows\system32\msftedit.dll
2011-09-05 14:31:16 ----A---- C:\Windows\system32\drivers\wanarp.sys
2011-09-05 14:31:15 ----A---- C:\Windows\SYSWOW64\rasser.dll
2011-09-05 14:31:15 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2011-09-05 14:31:15 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2011-09-05 14:31:15 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2011-09-05 14:31:14 ----A---- C:\Windows\SYSWOW64\wshqos.dll
2011-09-05 14:31:14 ----A---- C:\Windows\SYSWOW64\traffic.dll
2011-09-05 14:31:14 ----A---- C:\Windows\SYSWOW64\pacerprf.dll
2011-09-05 14:31:14 ----A---- C:\Windows\SYSWOW64\icsunattend.exe
2011-09-05 14:31:14 ----A---- C:\Windows\system32\wshqos.dll
2011-09-05 14:31:14 ----A---- C:\Windows\system32\traffic.dll
2011-09-05 14:31:14 ----A---- C:\Windows\system32\ipnathlp.dll
2011-09-05 14:31:14 ----A---- C:\Windows\system32\icsunattend.exe
2011-09-05 14:31:14 ----A---- C:\Windows\system32\drivers\pacer.sys
2011-09-05 14:31:13 ----A---- C:\Windows\system32\pacerprf.dll
2011-09-05 14:31:13 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-09-05 14:31:13 ----A---- C:\Windows\system32\dps.dll
2011-09-05 14:31:13 ----A---- C:\Windows\system32\cdd.dll
2011-09-05 14:30:26 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-09-05 14:30:26 ----A---- C:\Windows\system32\drivers\srv.sys
2011-09-05 14:30:07 ----A---- C:\Windows\SYSWOW64\PortableDeviceTypes.dll
2011-09-05 14:30:07 ----A---- C:\Windows\SYSWOW64\PortableDeviceClassExtension.dll
2011-09-05 14:30:07 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2011-09-05 14:30:07 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2011-09-05 14:30:07 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2011-09-05 14:30:07 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-09-05 14:29:46 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2011-09-05 14:29:46 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-09-05 14:29:46 ----A---- C:\Windows\system32\INETRES.dll
2011-09-05 14:29:46 ----A---- C:\Windows\system32\inetcomm.dll
2011-09-05 14:23:17 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2011-09-05 14:23:17 ----A---- C:\Windows\SYSWOW64\icardres.dll
2011-09-05 14:23:17 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2011-09-05 14:23:17 ----A---- C:\Windows\system32\infocardapi.dll
2011-09-05 14:23:17 ----A---- C:\Windows\system32\icardres.dll
2011-09-05 14:23:17 ----A---- C:\Windows\system32\icardagt.exe
2011-09-05 14:23:14 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2011-09-05 14:23:14 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2011-09-05 14:23:13 ----A---- C:\Windows\SYSWOW64\PresentationNative_v0300.dll
2011-09-05 14:23:13 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2011-09-05 14:23:13 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2011-09-05 14:23:13 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2011-09-05 14:23:13 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-09-05 14:23:13 ----A---- C:\Windows\system32\PresentationHost.exe
2011-09-05 14:14:38 ----A---- C:\Windows\SYSWOW64\es.dll
2011-09-05 14:14:37 ----A---- C:\Windows\system32\es.dll
2011-09-04 23:15:13 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-09-04 23:15:13 ----A---- C:\Windows\system32\dnsapi.dll
2011-09-04 23:15:12 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2011-09-04 23:15:12 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2011-09-04 23:15:12 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-09-04 23:14:35 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2011-09-04 23:14:35 ----A---- C:\Windows\SYSWOW64\wmp.dll
2011-09-04 23:14:35 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2011-09-04 23:14:34 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2011-09-04 23:14:34 ----A---- C:\Windows\system32\wmploc.DLL
2011-09-04 23:14:33 ----A---- C:\Windows\system32\wmp.dll
2011-09-04 23:14:33 ----A---- C:\Windows\system32\spwmp.dll
2011-09-04 23:14:32 ----A---- C:\Windows\system32\dxmasf.dll
2011-09-04 23:14:29 ----A---- C:\Windows\SYSWOW64\unregmp2.exe
2011-09-04 23:14:28 ----A---- C:\Windows\system32\unregmp2.exe
2011-09-04 23:13:30 ----A---- C:\Windows\SYSWOW64\connect.dll
2011-09-04 23:13:30 ----A---- C:\Windows\system32\connect.dll
2011-09-04 23:12:39 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-09-04 23:12:04 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2011-09-04 23:12:04 ----A---- C:\Windows\SYSWOW64\quartz.dll
2011-09-04 23:12:04 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2011-09-04 23:12:04 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2011-09-04 23:12:04 ----A---- C:\Windows\SYSWOW64\avicap32.dll
2011-09-04 23:12:04 ----A---- C:\Windows\system32\tsbyuv.dll
2011-09-04 23:12:04 ----A---- C:\Windows\system32\quartz.dll
2011-09-04 23:12:04 ----A---- C:\Windows\system32\msyuv.dll
2011-09-04 23:12:04 ----A---- C:\Windows\system32\iyuv_32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\system32\msvidc32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\system32\msvfw32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\system32\msrle32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\system32\mciavi32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\system32\avifil32.dll
2011-09-04 23:12:03 ----A---- C:\Windows\system32\avicap32.dll
2011-09-04 23:10:45 ----A---- C:\Windows\SYSWOW64\msoert2.dll
2011-09-04 23:10:45 ----A---- C:\Windows\SYSWOW64\msoeacct.dll
2011-09-04 23:10:45 ----A---- C:\Windows\SYSWOW64\ACCTRES.dll
2011-09-04 23:10:45 ----A---- C:\Windows\system32\msoert2.dll
2011-09-04 23:10:45 ----A---- C:\Windows\system32\msoeacct.dll
2011-09-04 23:10:45 ----A---- C:\Windows\system32\ACCTRES.dll
2011-09-04 23:10:01 ----A---- C:\Windows\system32\mcmde.dll
2011-09-04 23:09:58 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2011-09-04 23:09:58 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2011-09-04 23:09:58 ----A---- C:\Windows\system32\psisdecd.dll
2011-09-04 23:09:58 ----A---- C:\Windows\system32\EncDec.dll
2011-09-04 23:08:36 ----A---- C:\Windows\SYSWOW64\Apphlpdm.dll
2011-09-04 23:08:36 ----A---- C:\Windows\system32\Apphlpdm.dll
2011-09-04 23:08:34 ----A---- C:\Windows\SYSWOW64\GameUXLegacyGDFs.dll
2011-09-04 23:08:34 ----A---- C:\Windows\SYSWOW64\gameux.dll
2011-09-04 23:08:33 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2011-09-04 23:08:33 ----A---- C:\Windows\system32\gameux.dll
2011-09-04 23:07:44 ----A---- C:\Windows\SYSWOW64\lpk.dll
2011-09-04 23:07:44 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2011-09-04 23:07:44 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2011-09-04 23:07:44 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-09-04 23:07:44 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-09-04 23:07:44 ----A---- C:\Windows\system32\lpk.dll
2011-09-04 23:07:44 ----A---- C:\Windows\system32\fontsub.dll
2011-09-04 23:07:44 ----A---- C:\Windows\system32\dciman32.dll
2011-09-04 23:07:44 ----A---- C:\Windows\system32\atmlib.dll
2011-09-04 23:07:44 ----A---- C:\Windows\system32\atmfd.dll
2011-09-04 23:07:43 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2011-09-04 23:07:43 ----A---- C:\Windows\system32\t2embed.dll
2011-09-04 23:07:11 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-09-04 23:06:17 ----A---- C:\Windows\system32\qmgr.dll
2011-09-04 23:05:47 ----A---- C:\Windows\SYSWOW64\localspl.dll
2011-09-04 23:05:47 ----A---- C:\Windows\system32\localspl.dll
2011-09-04 23:05:12 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2011-09-04 23:05:12 ----A---- C:\Windows\system32\rpcrt4.dll
2011-09-04 23:04:38 ----A---- C:\Windows\SYSWOW64\schannel.dll
2011-09-04 23:04:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2011-09-04 23:04:38 ----A---- C:\Windows\system32\schannel.dll
2011-09-04 23:04:38 ----A---- C:\Windows\system32\kerberos.dll
2011-09-04 23:04:03 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2011-09-04 23:04:03 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2011-09-04 23:04:03 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-09-04 23:04:03 ----A---- C:\Windows\system32\netiougc.exe
2011-09-04 23:04:03 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-09-04 23:04:03 ----A---- C:\Windows\system32\drivers\tunnel.sys
2011-09-04 23:04:03 ----A---- C:\Windows\system32\drivers\TUNMP.SYS
2011-09-04 23:04:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-09-04 23:03:27 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2011-09-04 23:03:27 ----A---- C:\Windows\system32\WSDApi.dll
2011-09-04 23:02:41 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2011-09-04 23:02:41 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-09-04 23:02:06 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2011-09-04 23:02:06 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-09-04 23:01:33 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2011-09-04 23:01:33 ----A---- C:\Windows\SYSWOW64\printcom.dll
2011-09-04 23:01:32 ----A---- C:\Windows\system32\win32spl.dll
2011-09-04 23:01:32 ----A---- C:\Windows\system32\printcom.dll
2011-09-04 22:59:11 ----A---- C:\Windows\system32\win32k.sys
2011-09-04 22:55:42 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-09-04 22:55:42 ----A---- C:\Windows\system32\tzres.dll
2011-09-04 22:46:31 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2011-09-04 22:46:31 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2011-09-04 22:46:31 ----A---- C:\Windows\system32\netfxperf.dll
2011-09-04 22:46:31 ----A---- C:\Windows\system32\dfshim.dll
2011-09-04 22:46:29 ----A---- C:\Windows\SYSWOW64\mscories.dll
2011-09-04 22:46:29 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2011-09-04 22:46:29 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2011-09-04 22:46:29 ----A---- C:\Windows\system32\mscories.dll
2011-09-04 22:46:29 ----A---- C:\Windows\system32\mscorier.dll
2011-09-04 22:46:29 ----A---- C:\Windows\system32\mscoree.dll
2011-09-04 22:41:49 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-09-04 22:41:49 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2011-09-04 22:41:49 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-09-04 22:41:49 ----A---- C:\Windows\system32\msxml3r.dll
2011-09-04 22:41:49 ----A---- C:\Windows\system32\msxml3.dll
2011-09-04 22:41:48 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2011-09-04 22:41:48 ----A---- C:\Windows\system32\msxml6r.dll
2011-09-04 22:41:48 ----A---- C:\Windows\system32\msxml6.dll
2011-09-04 22:41:34 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2011-09-04 22:41:34 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-09-04 22:41:34 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2011-09-04 22:41:33 ----A---- C:\Windows\system32\tsgqec.dll
2011-09-04 22:41:33 ----A---- C:\Windows\system32\mstscax.dll
2011-09-04 22:41:33 ----A---- C:\Windows\system32\aaclient.dll
2011-09-04 22:41:22 ----A---- C:\Windows\system32\browserchoice.exe
2011-09-04 22:41:15 ----A---- C:\Windows\SYSWOW64\winipsec.dll
2011-09-04 22:41:15 ----A---- C:\Windows\SYSWOW64\FwRemoteSvr.dll
2011-09-04 22:41:14 ----A---- C:\Windows\SYSWOW64\polstore.dll
2011-09-04 22:41:14 ----A---- C:\Windows\system32\winipsec.dll
2011-09-04 22:41:14 ----A---- C:\Windows\system32\polstore.dll
2011-09-04 22:41:14 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-09-04 22:41:14 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2011-09-04 22:39:54 ----A---- C:\Windows\SYSWOW64\sbunattend.exe
2011-09-04 22:39:54 ----A---- C:\Windows\system32\sbunattend.exe
2011-09-04 22:15:08 ----D---- C:\Users\DangerAge\AppData\Roaming\Corel
2011-09-04 22:06:17 ----DC---- C:\Windows\system32\DRVSTORE
2011-09-04 21:33:03 ----D---- C:\Users\DangerAge\AppData\Roaming\Macromedia
2011-09-04 21:33:03 ----D---- C:\Users\DangerAge\AppData\Roaming\Adobe
2011-09-04 21:32:16 ----D---- C:\Windows\SYSWOW64\Macromed
2011-09-04 21:32:02 ----D---- C:\ProgramData\McAfee Security Scan
2011-09-04 21:32:02 ----D---- C:\ProgramData\McAfee
2011-09-04 21:32:01 ----D---- C:\Program Files (x86)\McAfee Security Scan
2011-09-04 16:03:27 ----D---- C:\ProgramData\Corel
2011-09-04 16:03:26 ----D---- C:\Windows\SYSWOW64\Spool
2011-09-04 16:03:18 ----D---- C:\Program Files (x86)\Corel
2011-09-04 15:56:53 ----A---- C:\Windows\SYSWOW64\nshhttp.dll
2011-09-04 15:56:53 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2011-09-04 15:56:53 ----A---- C:\Windows\system32\nshhttp.dll
2011-09-04 15:56:53 ----A---- C:\Windows\system32\httpapi.dll
2011-09-04 15:56:53 ----A---- C:\Windows\system32\drivers\http.sys
2011-09-04 15:55:32 ----A---- C:\Windows\system32\rpcss.dll
2011-09-04 15:55:31 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2011-09-04 15:55:31 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2011-09-04 15:55:30 ----A---- C:\Windows\system32\iasdatastore.dll
2011-09-04 15:55:30 ----A---- C:\Windows\system32\iasads.dll
2011-09-04 15:55:29 ----A---- C:\Windows\SYSWOW64\sdohlp.dll
2011-09-04 15:55:29 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2011-09-04 15:55:29 ----A---- C:\Windows\SYSWOW64\iasdatastore.dll
2011-09-04 15:55:29 ----A---- C:\Windows\SYSWOW64\iasads.dll
2011-09-04 15:55:29 ----A---- C:\Windows\system32\sdohlp.dll
2011-09-04 15:55:29 ----A---- C:\Windows\system32\iasrecst.dll
2011-09-04 15:54:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2011-09-04 15:54:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2011-09-04 15:54:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2011-09-04 15:54:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2011-09-04 15:54:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2011-09-04 15:54:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-09-04 15:54:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-09-04 15:54:46 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-09-04 15:54:46 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-09-04 15:54:46 ----A---- C:\Windows\system32\msdrm.dll
2011-09-04 15:54:45 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2011-09-04 15:54:45 ----A---- C:\Windows\SYSWOW64\secproc.dll
2011-09-04 15:54:45 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2011-09-04 15:54:45 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2011-09-04 15:54:45 ----A---- C:\Windows\system32\secproc_isv.dll
2011-09-04 15:54:45 ----A---- C:\Windows\system32\secproc.dll
2011-09-04 15:54:45 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-09-04 15:54:45 ----A---- C:\Windows\system32\RMActivate.exe
2011-09-04 15:54:11 ----A---- C:\Windows\SYSWOW64\slwmi.dll
2011-09-04 15:54:11 ----A---- C:\Windows\SYSWOW64\SLCommDlg.dll
2011-09-04 15:54:11 ----A---- C:\Windows\SYSWOW64\SLC.dll
2011-09-04 15:54:11 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2011-09-04 15:54:11 ----A---- C:\Windows\system32\slwmi.dll
2011-09-04 15:54:11 ----A---- C:\Windows\system32\SLC.dll
2011-09-04 15:54:11 ----A---- C:\Windows\system32\mcbuilder.exe
2011-09-04 15:54:10 ----A---- C:\Windows\system32\SLUINotify.dll
2011-09-04 15:54:10 ----A---- C:\Windows\system32\SLUI.exe
2011-09-04 15:54:10 ----A---- C:\Windows\system32\SLsvc.exe
2011-09-04 15:54:10 ----A---- C:\Windows\system32\SLLUA.exe
2011-09-04 15:54:10 ----A---- C:\Windows\system32\SLCommDlg.dll
2011-09-04 15:54:10 ----A---- C:\Windows\system32\slcinst.dll
2011-09-04 15:53:41 ----A---- C:\Windows\system32\winsrv.dll
2011-09-04 15:53:41 ----A---- C:\Windows\system32\csrsrv.dll
2011-09-04 15:53:09 ----A---- C:\Windows\SYSWOW64\capicom.dll
2011-09-04 15:52:48 ----D---- C:\ProgramData\Symantec
2011-09-04 15:52:36 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2011-09-04 15:52:36 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2011-09-04 15:52:36 ----A---- C:\Windows\SYSWOW64\admparse.dll
2011-09-04 15:52:36 ----A---- C:\Windows\system32\ieUnatt.exe
2011-09-04 15:52:36 ----A---- C:\Windows\system32\ieakui.dll
2011-09-04 15:52:36 ----A---- C:\Windows\system32\ieaksie.dll
2011-09-04 15:52:36 ----A---- C:\Windows\system32\admparse.dll
2011-09-04 15:52:35 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-09-04 15:52:35 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-09-04 15:52:35 ----A---- C:\Windows\SYSWOW64\advpack.dll
2011-09-04 15:52:35 ----A---- C:\Windows\system32\occache.dll
2011-09-04 15:52:35 ----A---- C:\Windows\system32\advpack.dll
2011-09-04 15:52:34 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-09-04 15:52:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2011-09-04 15:52:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2011-09-04 15:52:34 ----A---- C:\Windows\system32\iedkcs32.dll
2011-09-04 15:52:34 ----A---- C:\Windows\system32\ieapfltr.dll
2011-09-04 15:52:34 ----A---- C:\Windows\system32\ieapfltr.dat
2011-09-04 15:52:33 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-09-04 15:52:33 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-09-04 15:52:33 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2011-09-04 15:52:33 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2011-09-04 15:52:33 ----A---- C:\Windows\system32\wininet.dll
2011-09-04 15:52:33 ----A---- C:\Windows\system32\jsproxy.dll
2011-09-04 15:52:32 ----A---- C:\Windows\system32\dxtrans.dll
2011-09-04 15:52:32 ----A---- C:\Windows\system32\dxtmsft.dll
2011-09-04 15:52:31 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-09-04 15:52:31 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-09-04 15:52:31 ----A---- C:\Windows\system32\msfeeds.dll
2011-09-04 15:52:30 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-09-04 15:52:30 ----A---- C:\Windows\system32\ieui.dll
2011-09-04 15:52:30 ----A---- C:\Windows\system32\ieframe.dll
2011-09-04 15:52:27 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2011-09-04 15:52:27 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-09-04 15:52:27 ----A---- C:\Windows\SYSWOW64\ieencode.dll
2011-09-04 15:52:27 ----A---- C:\Windows\system32\mshtmler.dll
2011-09-04 15:52:27 ----A---- C:\Windows\system32\mshtmled.dll
2011-09-04 15:52:27 ----A---- C:\Windows\system32\ieencode.dll
2011-09-04 15:52:26 ----A---- C:\Windows\system32\mshtml.dll
2011-09-04 15:52:25 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-09-04 15:52:23 ----A---- C:\Windows\SYSWOW64\mstime.dll
2011-09-04 15:52:23 ----A---- C:\Windows\SYSWOW64\icardie.dll
2011-09-04 15:52:23 ----A---- C:\Windows\system32\mstime.dll
2011-09-04 15:52:23 ----A---- C:\Windows\system32\icardie.dll
2011-09-04 15:52:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-09-04 15:52:20 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2011-09-04 15:52:20 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-09-04 15:52:20 ----A---- C:\Windows\system32\urlmon.dll
2011-09-04 15:52:20 ----A---- C:\Windows\system32\pngfilt.dll
2011-09-04 15:52:20 ----A---- C:\Windows\system32\iertutil.dll
2011-09-04 15:52:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2011-09-04 15:52:19 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2011-09-04 15:52:19 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-09-04 15:52:19 ----A---- C:\Windows\system32\iesetup.dll
2011-09-04 15:52:19 ----A---- C:\Windows\system32\iernonce.dll
2011-09-04 15:52:19 ----A---- C:\Windows\system32\ie4uinit.exe
2011-09-04 15:51:30 ----D---- C:\ProgramData\Adobe
2011-09-04 15:50:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-09-04 15:50:52 ----A---- C:\Windows\system32\jscript.dll
2011-09-04 15:50:43 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-09-04 15:50:42 ----A---- C:\Windows\system32\drivers\monitor.sys
2011-09-04 15:50:35 ----A---- C:\Windows\SYSWOW64\explorer.exe
2011-09-04 15:50:35 ----A---- C:\Windows\explorer.exe
2011-09-04 15:49:02 ----A---- C:\Windows\SYSWOW64\PhotoMetadataHandler.dll
2011-09-04 15:49:01 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2011-09-04 15:49:01 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-09-04 15:49:01 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2011-09-04 15:49:00 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2011-09-04 15:49:00 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2011-09-04 15:48:43 ----A---- C:\Windows\system32\setbcdlocale.dll
2011-09-04 15:48:43 ----A---- C:\Windows\bfsvc.exe
2011-09-04 15:31:41 ----D---- C:\Users\DangerAge\AppData\Roaming\Skype
2011-09-04 15:30:58 ----D---- C:\Users\DangerAge\AppData\Roaming\WinRAR
2011-09-04 15:30:56 ----D---- C:\Program Files\WinRAR
2011-09-04 15:25:04 ----D---- C:\Windows\system32\CSY
2011-09-04 15:25:04 ----A---- C:\Windows\system32\Imsmudlg.exe
2011-09-04 15:24:30 ----A---- C:\Windows\system32\drivers\iaStor.sys
2011-09-04 15:23:54 ----D---- C:\Program Files (x86)\Marvell
2011-09-04 15:23:02 ----SHD---- C:\Windows\Installer
2011-09-04 15:22:56 ----D---- C:\Users\DangerAge\AppData\Roaming\TMP
2011-09-04 15:21:39 ----RA---- C:\Windows\SYSWOW64\drivers\AsIO.sys
2011-09-04 15:21:39 ----RA---- C:\Windows\SYSWOW64\AsIO.dll
2011-09-04 15:21:37 ----D---- C:\Program Files (x86)\ASUS
2011-09-04 15:21:37 ----A---- C:\Windows\SYSWOW64\drivers\AsInsHelp64.sys
2011-09-04 15:21:37 ----A---- C:\Windows\SYSWOW64\drivers\AsInsHelp32.sys
2011-09-04 15:06:18 ----D---- C:\Users\DangerAge\AppData\Roaming\Mozilla
2011-09-04 15:04:37 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-09-04 14:40:38 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-09-04 14:40:38 ----A---- C:\Windows\system32\vbscript.dll
2011-09-04 14:40:07 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2011-09-04 14:40:07 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2011-09-04 14:40:04 ----A---- C:\Windows\system32\wtsapi32.dll
2011-09-04 14:40:03 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-09-04 14:40:02 ----A---- C:\Windows\system32\sysmain.dll
2011-09-04 14:39:59 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2011-09-04 14:39:27 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2011-09-04 14:39:27 ----A---- C:\Windows\system32\crypt32.dll
2011-09-04 14:39:03 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-09-04 14:38:37 ----A---- C:\Windows\system32\rrinstaller.exe
2011-09-04 14:38:37 ----A---- C:\Windows\system32\mfps.dll
2011-09-04 14:38:37 ----A---- C:\Windows\system32\mfpmp.exe
2011-09-04 14:38:37 ----A---- C:\Windows\system32\mferror.dll
2011-09-04 14:38:37 ----A---- C:\Windows\system32\mf.dll
2011-09-04 14:38:36 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2011-09-04 14:38:36 ----A---- C:\Windows\SYSWOW64\mfps.dll
2011-09-04 14:38:36 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2011-09-04 14:38:36 ----A---- C:\Windows\SYSWOW64\mferror.dll
2011-09-04 14:38:36 ----A---- C:\Windows\SYSWOW64\mf.dll
2011-09-04 14:38:33 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2011-09-04 14:38:33 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-09-04 14:37:52 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2011-09-04 14:37:52 ----A---- C:\Windows\SYSWOW64\secur32.dll
2011-09-04 14:37:52 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2011-09-04 14:37:51 ----A---- C:\Windows\system32\wdigest.dll
2011-09-04 14:37:51 ----A---- C:\Windows\system32\secur32.dll
2011-09-04 14:37:51 ----A---- C:\Windows\system32\msv1_0.dll
2011-09-04 14:37:51 ----A---- C:\Windows\system32\lsass.exe
2011-09-04 14:37:51 ----A---- C:\Windows\system32\lsasrv.dll
2011-09-04 14:37:51 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-09-04 14:37:19 ----A---- C:\Windows\SYSWOW64\atl.dll
2011-09-04 14:37:19 ----A---- C:\Windows\system32\atl.dll
2011-09-04 14:36:56 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2011-09-04 14:36:56 ----A---- C:\Windows\system32\wmpeffects.dll
2011-09-04 14:36:27 ----A---- C:\Windows\SYSWOW64\netevent.dll
2011-09-04 14:36:27 ----A---- C:\Windows\system32\TCPSVCS.EXE
2011-09-04 14:36:27 ----A---- C:\Windows\system32\ROUTE.EXE
2011-09-04 14:36:27 ----A---- C:\Windows\system32\NETSTAT.EXE
2011-09-04 14:36:27 ----A---- C:\Windows\system32\netiohlp.dll
2011-09-04 14:36:27 ----A---- C:\Windows\system32\netevent.dll
2011-09-04 14:36:27 ----A---- C:\Windows\system32\MRINFO.EXE
2011-09-04 14:36:27 ----A---- C:\Windows\system32\HOSTNAME.EXE
2011-09-04 14:36:27 ----A---- C:\Windows\system32\finger.exe
2011-09-04 14:36:27 ----A---- C:\Windows\system32\ARP.EXE
2011-09-04 14:36:26 ----A---- C:\Windows\SYSWOW64\TCPSVCS.EXE
2011-09-04 14:36:26 ----A---- C:\Windows\SYSWOW64\ROUTE.EXE
2011-09-04 14:36:26 ----A---- C:\Windows\SYSWOW64\NETSTAT.EXE
2011-09-04 14:36:26 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2011-09-04 14:36:26 ----A---- C:\Windows\SYSWOW64\MRINFO.EXE
2011-09-04 14:36:26 ----A---- C:\Windows\SYSWOW64\HOSTNAME.EXE
2011-09-04 14:36:26 ----A---- C:\Windows\SYSWOW64\finger.exe
2011-09-04 14:36:26 ----A---- C:\Windows\SYSWOW64\ARP.EXE
2011-09-04 14:36:25 ----A---- C:\Windows\system32\drivers\netio.sys
2011-09-04 14:35:46 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-09-04 14:35:21 ----A---- C:\Windows\SYSWOW64\logagent.exe
2011-09-04 14:35:21 ----A---- C:\Windows\system32\logagent.exe
2011-09-04 14:35:20 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2011-09-04 14:35:20 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-09-04 14:34:53 ----A---- C:\Windows\SYSWOW64\DWWIN.EXE
2011-09-04 14:34:53 ----A---- C:\Windows\system32\DWWIN.EXE
2011-09-04 14:34:32 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2011-09-04 14:34:32 ----A---- C:\Windows\system32\wshrm.dll
2011-09-04 14:34:32 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-09-04 14:34:09 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2011-09-04 14:34:09 ----A---- C:\Windows\system32\msasn1.dll
2011-09-04 14:33:25 ----A---- C:\Windows\system32\wkssvc.dll
2011-09-04 14:31:54 ----A---- C:\Windows\SYSWOW64\wmi.dll
2011-09-04 14:31:54 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2011-09-04 14:31:54 ----A---- C:\Windows\system32\wmi.dll
2011-09-04 14:31:54 ----A---- C:\Windows\system32\imagehlp.dll
2011-09-04 14:31:54 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2011-09-04 14:31:33 ----A---- C:\Windows\SYSWOW64\xolehlp.dll
2011-09-04 14:31:33 ----A---- C:\Windows\SYSWOW64\msdtcprx.dll
2011-09-04 14:31:33 ----A---- C:\Windows\system32\xolehlp.dll
2011-09-04 14:31:33 ----A---- C:\Windows\system32\msdtcprx.dll
2011-09-04 14:31:02 ----A---- C:\Windows\system32\drivers\pciidex.sys
2011-09-04 14:31:02 ----A---- C:\Windows\system32\drivers\pciide.sys
2011-09-04 14:31:02 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-09-04 14:31:02 ----A---- C:\Windows\system32\drivers\atapi.sys
2011-09-04 14:31:01 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-09-04 14:31:01 ----A---- C:\Windows\system32\drivers\nwifi.sys
2011-09-04 14:30:16 ----A---- C:\Windows\system32\netcfg.exe
2011-09-04 14:29:12 ----A---- C:\Windows\system32\wmpdxm.dll
2011-09-04 14:29:11 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2011-09-04 14:27:22 ----A---- C:\Windows\system32\shell32.dll
2011-09-04 14:27:20 ----A---- C:\Windows\SYSWOW64\shell32.dll
2011-09-04 14:26:40 ----A---- C:\Windows\system32\user32.dll
2011-09-04 14:26:39 ----A---- C:\Windows\SYSWOW64\user32.dll
2011-09-04 14:26:26 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-09-04 14:26:26 ----A---- C:\Windows\system32\WebClnt.dll
2011-09-04 14:26:26 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-09-04 14:26:07 ----A---- C:\Windows\SYSWOW64\L2SecHC.dll
2011-09-04 14:26:06 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2011-09-04 14:26:06 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2011-09-04 14:26:06 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2011-09-04 14:26:06 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2011-09-04 14:26:06 ----A---- C:\Windows\system32\wlanapi.dll
2011-09-04 14:26:06 ----A---- C:\Windows\system32\L2SecHC.dll
2011-09-04 14:26:05 ----A---- C:\Windows\system32\wlansvc.dll
2011-09-04 14:26:05 ----A---- C:\Windows\system32\wlansec.dll
2011-09-04 14:26:05 ----A---- C:\Windows\system32\wlanmsm.dll
2011-09-04 14:26:05 ----A---- C:\Windows\system32\wlanhlp.dll
2011-09-04 14:25:49 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2011-09-04 14:25:49 ----A---- C:\Windows\SYSWOW64\msscp.dll
2011-09-04 14:25:49 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2011-09-04 14:25:49 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2011-09-04 14:25:49 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2011-09-04 14:25:49 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2011-09-04 14:25:49 ----A---- C:\Windows\system32\msscp.dll
2011-09-04 14:24:22 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2011-09-04 14:24:22 ----A---- C:\Windows\system32\netapi32.dll
2011-09-04 14:23:08 ----D---- C:\Windows\Panther
2011-09-04 14:22:54 ----RAS---- C:\BOOTSECT.BAK
2011-09-04 14:22:52 ----D---- C:\Boot
2011-09-04 14:22:05 ----D---- C:\Program Files (x86)\Adobe
2011-09-04 14:22:05 ----A---- C:\Windows\SYSWOW64\MSVCP50.DLL
2011-09-04 14:21:59 ----A---- C:\Windows\IsUninst.exe
2011-09-04 14:15:20 ----D---- C:\ProgramData\NVIDIA
2011-09-04 14:13:33 ----N---- C:\Windows\system32\MpSigStub.exe
2011-09-04 13:46:43 ----D---- C:\Windows\ASUSInstAll
2011-09-04 13:41:44 ----A---- C:\Windows\SYSWOW64\cabview.dll
2011-09-04 13:41:44 ----A---- C:\Windows\system32\cabview.dll
2011-09-04 13:41:36 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2011-09-04 13:41:36 ----A---- C:\Windows\system32\wintrust.dll
2011-09-04 13:40:50 ----D---- C:\Program Files (x86)\Intel
2011-09-04 13:40:45 ----D---- C:\Intel
2011-09-04 13:40:33 ----A---- C:\Windows\Ascd_log.ini
2011-09-04 13:40:12 ----N---- C:\Windows\system32\adi_oal.dll
2011-09-04 13:40:12 ----D---- C:\Program Files (x86)\Creative
2011-09-04 13:40:12 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2011-09-04 13:40:12 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2011-09-04 13:40:12 ----A---- C:\Windows\SYSWOW64\adi_oal.dll
2011-09-04 13:40:12 ----A---- C:\Windows\system32\wrap_oal.dll
2011-09-04 13:40:12 ----A---- C:\Windows\system32\OpenAL32.dll
2011-09-04 13:40:01 ----A---- C:\Windows\SYSWOW64\SFFXComm.dll
2011-09-04 13:40:01 ----A---- C:\Windows\SYSWOW64\SFBH.dll
2011-09-04 13:40:01 ----A---- C:\Windows\SYSWOW64\AEADICom.dll
2011-09-04 13:39:57 ----D---- C:\ProgramData\SonicFocus
2011-09-04 13:39:50 ----A---- C:\Windows\system32\SmaxCo.dll
2011-09-04 13:39:50 ----A---- C:\Windows\system32\SFFXCPStr.dll
2011-09-04 13:39:50 ----A---- C:\Windows\system32\drivers\ADIHdAud.sys
2011-09-04 13:39:50 ----A---- C:\Windows\system32\AEADISRV.EXE
2011-09-04 13:39:50 ----A---- C:\Windows\system32\AEADIExt.dll
2011-09-04 13:39:50 ----A---- C:\Windows\system32\AEADIAPR.dll
2011-09-04 13:39:50 ----A---- C:\Windows\system32\AEADIAPO.dll
2011-09-04 13:39:49 ----A---- C:\Windows\system32\SFSAPO64.dll
2011-09-04 13:39:49 ----A---- C:\Windows\system32\SFProc64.dll
2011-09-04 13:39:49 ----A---- C:\Windows\system32\SFMAPO64.dll
2011-09-04 13:39:49 ----A---- C:\Windows\system32\SFLAPO64.dll
2011-09-04 13:39:49 ----A---- C:\Windows\system32\SFHAPO64.dll
2011-09-04 13:39:49 ----A---- C:\Windows\system32\SFDAPO64.dll
2011-09-04 13:39:49 ----A---- C:\Windows\system32\SFCTPL64.dll
2011-09-04 13:39:49 ----A---- C:\Windows\system32\SFComm64.dll
2011-09-04 13:39:47 ----D---- C:\Program Files (x86)\Analog Devices
2011-09-04 13:39:46 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-09-04 13:39:32 ----D---- C:\Users\DangerAge\AppData\Roaming\InstallShield
2011-09-04 13:39:19 ----A---- C:\Windows\system32\drivers\ASACPI.sys
2011-09-04 13:39:09 ----A---- C:\Windows\SYSWOW64\drivers\ASUSHWIO.SYS
2011-09-04 13:34:12 ----D---- C:\Users\DangerAge\AppData\Roaming\Identities
2011-09-04 13:34:06 ----SD---- C:\Users\DangerAge\AppData\Roaming\Microsoft
2011-09-04 13:34:06 ----D---- C:\Users\DangerAge\AppData\Roaming\Media Center Programs
2011-09-04 13:33:01 ----A---- C:\Windows\system32\wups2.dll
2011-09-04 13:33:01 ----A---- C:\Windows\system32\wucltux.dll
2011-09-04 13:33:01 ----A---- C:\Windows\system32\wuaueng.dll
2011-09-04 13:33:01 ----A---- C:\Windows\system32\wuauclt.exe
2011-09-04 13:32:54 ----A---- C:\Windows\SYSWOW64\wups.dll
2011-09-04 13:32:54 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2011-09-04 13:32:53 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2011-09-04 13:32:53 ----A---- C:\Windows\system32\wups.dll
2011-09-04 13:32:53 ----A---- C:\Windows\system32\wudriver.dll
2011-09-04 13:32:53 ----A---- C:\Windows\system32\wuapi.dll
2011-09-04 13:32:46 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2011-09-04 13:32:46 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2011-09-04 13:32:46 ----A---- C:\Windows\system32\wuwebv.dll
2011-09-04 13:32:46 ----A---- C:\Windows\system32\wuapp.exe
2011-09-04 13:32:06 ----SHD---- C:\ProgramData\Šablony
2011-09-04 13:32:06 ----SHD---- C:\ProgramData\Plocha
2011-09-04 13:32:06 ----SHD---- C:\ProgramData\Oblíbené položky
2011-09-04 13:32:06 ----SHD---- C:\ProgramData\Nabídka Start
2011-09-04 13:32:06 ----SHD---- C:\ProgramData\Dokumenty
2011-09-04 13:32:06 ----SHD---- C:\ProgramData\Data aplikací
2011-09-04 13:29:52 ----ASH---- C:\hiberfil.sys
2011-09-04 13:26:25 ----D---- C:\Windows\SoftwareDistribution
2011-09-04 13:25:24 ----D---- C:\Windows\system32\catroot2
2011-09-04 13:25:19 ----D---- C:\Windows\Debug
2011-09-04 13:25:18 ----D---- C:\Windows\CSC
2011-09-04 13:24:29 ----D---- C:\Windows\Prefetch
2011-09-04 13:24:21 ----ASH---- C:\pagefile.sys
2011-09-04 13:24:14 ----SHD---- C:\System Volume Information

======List of files/folders modified in the last 1 month======

2011-09-07 16:51:17 ----D---- C:\Windows\System32
2011-09-07 16:51:17 ----D---- C:\Windows\inf
2011-09-07 16:51:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-07 16:43:47 ----D---- C:\Windows\SYSWOW64\drivers
2011-09-07 15:09:03 ----D---- C:\Windows\winsxs
2011-09-07 15:06:45 ----D---- C:\Windows
2011-09-06 23:33:18 ----D---- C:\Windows\servicing
2011-09-06 22:03:02 ----D---- C:\Windows\system32\drivers
2011-09-06 22:03:00 ----RD---- C:\Program Files (x86)
2011-09-06 21:45:04 ----D---- C:\Windows\system32\drivers\etc
2011-09-06 20:14:18 ----D---- C:\Windows\Microsoft.NET
2011-09-06 17:29:16 ----RSD---- C:\Windows\assembly
2011-09-06 15:53:36 ----A---- C:\Windows\system.ini
2011-09-06 15:49:54 ----D---- C:\Windows\SysWOW64
2011-09-06 15:49:54 ----D---- C:\Windows\AppPatch
2011-09-06 15:49:52 ----D---- C:\Program Files\Common Files
2011-09-06 15:49:52 ----D---- C:\Program Files (x86)\Common Files
2011-09-06 15:17:23 ----D---- C:\Windows\system32\catroot
2011-09-06 15:12:25 ----D---- C:\Windows\system32\WDI
2011-09-05 19:28:40 ----D---- C:\ProgramData
2011-09-05 19:11:55 ----RD---- C:\Program Files
2011-09-05 18:44:52 ----SD---- C:\ProgramData\Microsoft
2011-09-05 17:00:39 ----D---- C:\Windows\rescache
2011-09-05 16:59:33 ----D---- C:\Program Files\Windows Mail
2011-09-05 16:59:33 ----D---- C:\Program Files\Common Files\System
2011-09-05 16:59:33 ----D---- C:\Program Files (x86)\Windows Mail
2011-09-05 16:59:32 ----D---- C:\Windows\SYSWOW64\wbem
2011-09-05 16:59:32 ----D---- C:\Windows\SYSWOW64\migration
2011-09-05 16:59:32 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-09-05 16:59:30 ----D---- C:\Windows\system32\migration
2011-09-05 16:59:30 ----D---- C:\Windows\system32\drivers\cs-CZ
2011-09-05 16:59:30 ----D---- C:\Windows\system32\cs-CZ
2011-09-05 16:27:35 ----D---- C:\Windows\Help
2011-09-05 14:48:14 ----D---- C:\Windows\SYSWOW64\manifeststore
2011-09-05 14:48:14 ----D---- C:\Windows\system32\manifeststore
2011-09-05 14:48:11 ----D---- C:\Windows\SYSWOW64\ras
2011-09-05 14:48:11 ----D---- C:\Windows\SYSWOW64\icsxml
2011-09-05 14:48:11 ----D---- C:\Windows\system32\ras
2011-09-05 14:48:11 ----D---- C:\Windows\system32\icsxml
2011-09-05 14:48:11 ----D---- C:\Program Files\Windows Calendar
2011-09-05 14:48:11 ----D---- C:\Program Files (x86)\Windows Calendar
2011-09-05 14:48:07 ----D---- C:\Windows\SYSWOW64\XPSViewer
2011-09-05 14:48:05 ----D---- C:\Windows\SYSWOW64\en-US
2011-09-05 14:48:05 ----D---- C:\Windows\system32\wbem
2011-09-05 14:48:05 ----D---- C:\Windows\system32\en-US
2011-09-05 14:06:42 ----D---- C:\Program Files\Windows Media Player
2011-09-05 14:06:42 ----D---- C:\Program Files (x86)\Windows Media Player
2011-09-05 14:06:41 ----D---- C:\Windows\ehome
2011-09-04 23:06:46 ----A---- C:\Windows\system32\hal.dll
2011-09-04 22:39:58 ----D---- C:\Program Files\Windows Sidebar
2011-09-04 22:39:58 ----D---- C:\Program Files (x86)\Windows Sidebar
2011-09-04 15:59:58 ----D---- C:\Windows\SYSWOW64\ias
2011-09-04 15:59:57 ----D---- C:\Windows\SYSWOW64\SLUI
2011-09-04 15:59:57 ----D---- C:\Windows\system32\SLUI
2011-09-04 15:59:56 ----D---- C:\Program Files\Internet Explorer
2011-09-04 15:59:56 ----D---- C:\Program Files (x86)\Internet Explorer
2011-09-04 15:59:50 ----D---- C:\Windows\system32\Boot
2011-09-04 14:58:53 ----ASH---- C:\Program Files (x86)\desktop.ini
2011-09-04 14:58:45 ----ASH---- C:\Program Files\desktop.ini
2011-09-04 14:53:26 ----RSD---- C:\Windows\Fonts
2011-09-04 14:53:11 ----D---- C:\Program Files\Windows Defender
2011-09-04 14:24:06 ----D---- C:\Program Files\Movie Maker
2011-09-04 13:46:47 ----D---- C:\Windows\system32\Tasks
2011-09-04 13:36:37 ----D---- C:\Windows\Logs
2011-09-04 13:33:56 ----RD---- C:\Users
2011-09-04 13:33:24 ----D---- C:\Windows\PolicyDefinitions
2011-09-04 13:32:26 ----D---- C:\Windows\system32\restore
2011-09-04 13:32:06 ----D---- C:\Program Files\Windows NT
2011-09-04 13:26:51 ----D---- C:\Windows\system32\drivers\UMDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fvevol;BitLocker Drive Encryption Filter Driver; C:\Windows\System32\DRIVERS\fvevol.sys [2006-11-02 138856]
R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-03-21 381720]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2006-10-18 13632]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2009-12-17 193232]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2009-12-17 53264]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2007-07-18 432640]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2006-10-31 15680]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-12-18 11337704]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2009-12-17 145360]
R3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2009-12-17 165200]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 108032]
R3 yukonx64;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x64.sys [2007-05-24 335872]
S0 fejxibjk;fejxibjk; C:\Windows\system32\drivers\urzqr.sys []
S3 catchme;catchme; \??\C:\beruska.com26829b\catchme.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 6144]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 273920]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 11008]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 7040]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 6656]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 7936]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2007-06-07 89088]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-08-15 2329480]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2011-09-06 355096]
R2 NVIDIA Performance Driver Service;NVIDIA Performance Driver Service; C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe [2009-12-08 6810728]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-12-17 383592]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2006-11-02 174656]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-09-06 239208]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2011-09-05 300960]

-----------------EOF-----------------

2011-09-07 16:39:56 ----A---- C:\oprava.reg.txt ja psal a dal i obrazek jak to ma byt ulozeno, takze prosim znovu - pak tu muzem odvirovavat poradk dokola. Takze znovu a radne vytvorte ten soubor oprava.reg

Pro Avenger pouzijte tento skript

Kód: Vybrat vše

Folders to delete:
C:\Users\DangerAge\AppData\Local\Temp

Files to delete:
C:\Windows\svchost.com
C:\Windows\SYSWOW64\drivers\urzqr.sys

Drivers to delete:
urzqr
fejxibjk

Programs launch on reboot:
c:\oprava.reg

pořád nic log nikde..nebo jestli jsem to dobře pochopil špatně jsem ten soubor oprava pojmenoval,nebo co dělám špatně?...Ještě upozornim když zadám skript a potvrdim hned vyjedou 5x chyba správce zakázal upravy registru...Třeba jestli to není tim

Ano, pojmenoval jste jej spatne, ulozit jste jej jako textovy soubor a ne jako vsechny soubory - tak jako ukazuje obrazek

Odinstalujte Spybot pokud pouzivate

V nouzovrem rezimu znovu aplikujte Avenger

Totálně sem sformátoval všechny disky a nainstaloval systém...Vím že to do tohodle fora asi nepatří

ale ...Mám problém po nainstalování vypadalo vše dobře ...Ale,vždycky při instalaci různých aplikací mě to oznámí že musím mít Vista service pack 2...Tak jsem stáhnul 1 i 2 v češtině 64bit...Ale při instalaci Service Pack 1 mi to asi v pulce hodí neznámou chybu ...A fakt nevim co s tim dělat ...Když nenainstaluju tohle,nenainstaluju nic..Poraďte prosím

Pokud je problem v instalaci Service Packu, tak bych se obratil na technickou podporu microsoftu - je to jejich produkt, tak at se staraj a co mam zkusenost, tak se staraji docela velmi dobre

Konkrétně ?

https://support.microsoft.com/oas/defau ... redirect=1 Tohle by vas melo navest k nim na support

VIRY.CZ

Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..

Re: Nejdou spustit některé .exe soubory..