Trójsky kôň?

Zpráva

DexterWx · #1 Příspěvek od **DexterWx** » 21 zář 2010 17:36

Zdravím všetkých, prednedávnom som si preinštaloval systém, teda pred 4 dňami a nechce sa mi odznova.
Ale k problému: dnes mi ESS 4.2.64 začal vyhadzovať toto:
Obrázek

Vyhadzuje mi to po časových intervaloch.

Potom zachvíľku vyhodí zas toto:
Obrázek

Net mám tiež spomalený, viete mi niekto pomôcť?

#2 Příspěvek od **vyosek** » 21 zář 2010 17:48

Zdravim a pekny den preji

Vlozte log z RSITu (viz muj podpis)

Nasledujici soubory otestujte na VirusTotalu (viz muj podpis)

C:\Windows\System32\svchost.exe
Kliknete na Prochazet
Soubor nehledejte, jen vlozte cestu souboru, ktery chci otestovat
Pokud napise Soubor byl jiz testovan, dejte otestovat znovu
Kliknete na Otestovat soubor
Vysledek analyzy sem vlozte (jako odkaz)

DexterWx · #3 Příspěvek od **DexterWx** » 21 zář 2010 17:59

Odkaz na virustotal, je to asi čisté:

Kód: Vybrat vše

http://www.virustotal.com/file-scan/report.html?id=121118a0f5e0e8c933efd28c9901e54e42792619a8a3a6d11e1f0025a7324bc2-1285087837

Nech sa páči, ten log:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Feri at 2010-09-21 18:54:10
Microsoft Windows 7 Professional
System drive C: has 18 GB (59%) free of 31 GB
Total RAM: 3071 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:54:43, on 21. 9. 2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Java\jre6\bin\javaw.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe
C:\Program Files\ScreenShots\ScreenShots.exe
H:\IDM\RSIT.exe
C:\Program Files\trend micro\Feri.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.2\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GridinSoft Trojan Killer] "C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe" 0
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Prevziať cez IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Prevziať cez IDM všetky prepojenia - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Prevziať obsah FLV cez IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{11D5534D-2251-4307-BD07-A502EFBC187E}: NameServer = 10.1.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{11D5534D-2251-4307-BD07-A502EFBC187E}: NameServer = 10.1.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{11D5534D-2251-4307-BD07-A502EFBC187E}: NameServer = 10.1.0.1
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 6336 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2010-05-26 193968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-18 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-09-03 9726568]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-08-10 421888]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2010-07-12 74752]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-08-12 2215064]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"ICQ"=C:\Program Files\ICQ7.2\ICQ.exe [2010-08-22 133432]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-09-18 1173504]
"GridinSoft Trojan Killer"=C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe [2010-09-21 4625408]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2010-07-21 2736128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-09-21 18:54:11 ----D---- C:\Program Files\trend micro
2010-09-21 18:54:10 ----D---- C:\rsit
2010-09-21 18:21:53 ----D---- C:\Shoty
2010-09-21 16:30:57 ----AD---- C:\Windows\rundll16.exe
2010-09-21 16:30:57 ----AD---- C:\Windows\logo1_.exe
2010-09-21 16:29:05 ----AD---- C:\Windows\VDLL.DLL
2010-09-21 16:29:05 ----AD---- C:\Windows\system32\runouce.exe
2010-09-21 16:29:05 ----AD---- C:\Windows\RUNDL132.EXE
2010-09-21 16:29:05 ----AD---- C:\Windows\logo_1.exe
2010-09-21 16:25:50 ----A---- C:\Windows\system32\msvcr80.dll
2010-09-21 16:25:49 ----A---- C:\Windows\system32\msvcp80.dll
2010-09-21 16:25:48 ----A---- C:\Windows\system32\eEmpty.exe
2010-09-21 16:25:44 ----D---- C:\Program Files\Common Files\MicroWorld
2010-09-21 16:25:21 ----D---- C:\ProgramData\MicroWorld
2010-09-21 13:59:50 ----D---- C:\Program Files\GridinSoft Trojan Killer
2010-09-21 11:30:15 ----D---- C:\ProgramData\LightScribe
2010-09-21 11:30:11 ----D---- C:\Users\Feri\AppData\Roaming\Nero
2010-09-21 11:20:41 ----D---- C:\Program Files\Nero
2010-09-21 11:20:21 ----D---- C:\ProgramData\Nero
2010-09-21 11:20:18 ----D---- C:\Program Files\Common Files\Nero
2010-09-21 11:18:49 ----D---- C:\Program Files\Common Files\LightScribe
2010-09-20 20:05:57 ----D---- C:\Program Files\JDownloader
2010-09-19 19:14:43 ----D---- C:\Users\Feri\AppData\Roaming\URSoft
2010-09-19 19:14:42 ----AD---- C:\ProgramData\TEMP
2010-09-19 19:14:28 ----D---- C:\Program Files\Your Uninstaller 2010
2010-09-19 15:43:43 ----D---- C:\Users\Feri\AppData\Roaming\NVIDIA
2010-09-19 11:43:02 ----D---- C:\Users\Feri\AppData\Roaming\ACD Systems
2010-09-19 00:49:33 ----A---- C:\Windows\system32\drivers\beep.sys_old
2010-09-18 20:50:07 ----D---- C:\ProgramData\Sun
2010-09-18 20:50:07 ----D---- C:\Program Files\Common Files\Java
2010-09-18 20:50:02 ----A---- C:\Windows\system32\javaws.exe
2010-09-18 20:50:02 ----A---- C:\Windows\system32\javaw.exe
2010-09-18 20:50:02 ----A---- C:\Windows\system32\java.exe
2010-09-18 20:50:02 ----A---- C:\Windows\system32\deployJava1.dll
2010-09-18 20:49:54 ----D---- C:\Program Files\Java
2010-09-18 20:18:50 ----D---- C:\Users\Feri\AppData\Roaming\ESET
2010-09-18 20:18:09 ----D---- C:\ProgramData\ESET
2010-09-18 20:18:09 ----D---- C:\Program Files\ESET
2010-09-18 19:14:15 ----D---- C:\Program Files\Winamp Detect
2010-09-18 19:14:02 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-09-18 19:14:00 ----D---- C:\Users\Feri\AppData\Roaming\Winamp
2010-09-18 19:14:00 ----D---- C:\Program Files\Winamp
2010-09-18 18:16:18 ----D---- C:\Users\Feri\AppData\Roaming\Media Player Classic
2010-09-18 18:04:17 ----A---- C:\Windows\system32\mdimon.dll
2010-09-18 18:03:05 ----D---- C:\Program Files\Microsoft Works
2010-09-18 18:02:55 ----D---- C:\Program Files\Microsoft Visual Studio
2010-09-18 18:02:55 ----D---- C:\Program Files\Common Files\DESIGNER
2010-09-18 18:02:43 ----D---- C:\Windows\PCHEALTH
2010-09-18 18:02:43 ----D---- C:\Program Files\Microsoft.NET
2010-09-18 18:01:13 ----D---- C:\Program Files\Microsoft Office
2010-09-18 18:01:12 ----D---- C:\ProgramData\Microsoft Help
2010-09-18 18:00:52 ----RHD---- C:\MSOCache
2010-09-18 17:56:19 ----D---- C:\Users\Feri\AppData\Roaming\IDM
2010-09-18 17:56:18 ----D---- C:\Users\Feri\AppData\Roaming\DMCache
2010-09-18 17:56:12 ----D---- C:\Program Files\Internet Download Manager
2010-09-18 17:54:09 ----A---- C:\Windows\system32\unrar.dll
2010-09-18 17:54:07 ----A---- C:\Windows\system32\yv12vfw.dll
2010-09-18 17:54:07 ----A---- C:\Windows\system32\xvidvfw.dll
2010-09-18 17:54:07 ----A---- C:\Windows\system32\xvidcore.dll
2010-09-18 17:54:07 ----A---- C:\Windows\system32\x264vfw.dll
2010-09-18 17:54:06 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2010-09-18 17:54:06 ----A---- C:\Windows\system32\ff_vfw.dll
2010-09-18 17:54:03 ----D---- C:\Program Files\K-Lite Codec Pack
2010-09-18 17:51:24 ----D---- C:\ProgramData\ACD Systems
2010-09-18 17:51:21 ----D---- C:\Program Files\Common Files\ACD Systems
2010-09-18 17:51:21 ----D---- C:\Program Files\ACD Systems
2010-09-18 17:50:14 ----D---- C:\Windows\system32\directx
2010-09-18 17:47:14 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2010-09-18 17:46:36 ----D---- C:\Program Files\CCleaner
2010-09-18 17:43:46 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-09-18 17:43:35 ----D---- C:\Program Files\Adobe
2010-09-18 16:59:34 ----D---- C:\ProgramData\Adobe
2010-09-18 16:59:23 ----D---- C:\Program Files\Common Files\Adobe
2010-09-18 16:58:39 ----D---- C:\Users\Feri\AppData\Roaming\skypePM
2010-09-18 16:57:16 ----D---- C:\Windows\Panther
2010-09-18 16:57:14 ----D---- C:\Program Files\Common Files\Skype
2010-09-18 16:57:13 ----RD---- C:\Program Files\Skype
2010-09-18 16:57:11 ----D---- C:\ProgramData\Skype
2010-09-18 16:57:04 ----RASH---- C:\BOOTSECT.BAK
2010-09-18 16:57:02 ----SHD---- C:\Boot
2010-09-18 16:56:58 ----RA---- C:\Windows\system32\drivers\iteatapi.sys
2010-09-18 16:51:40 ----D---- C:\Program Files\ICQ7.2
2010-09-18 16:47:04 ----D---- C:\Users\Feri\AppData\Roaming\WinRAR
2010-09-18 16:46:53 ----D---- C:\Program Files\WinRAR
2010-09-18 16:45:35 ----D---- C:\Users\Feri\AppData\Roaming\Macromedia
2010-09-18 16:45:35 ----D---- C:\Users\Feri\AppData\Roaming\Adobe
2010-09-18 16:45:32 ----D---- C:\Windows\system32\Macromed
2010-09-18 16:43:18 ----D---- C:\ProgramData\Apple Computer
2010-09-18 16:43:18 ----D---- C:\Program Files\QuickTime
2010-09-18 16:43:03 ----D---- C:\Program Files\Common Files\Apple
2010-09-18 16:42:56 ----D---- C:\ProgramData\Apple
2010-09-18 16:42:56 ----D---- C:\Program Files\Apple Software Update
2010-09-18 16:42:00 ----D---- C:\Program Files\Mozilla Firefox
2010-09-18 16:30:21 ----D---- C:\Program Files\Yamicsoft
2010-09-18 16:23:34 ----D---- C:\Windows\system32\drivers\NIS
2010-09-18 16:23:32 ----D---- C:\ProgramData\Norton
2010-09-18 16:23:11 ----D---- C:\ProgramData\NortonInstaller
2010-09-18 16:19:21 ----A---- C:\Windows\system32\XAudio2_7.dll
2010-09-18 16:19:21 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2010-09-18 16:19:21 ----A---- C:\Windows\system32\xactengine3_7.dll
2010-09-18 16:19:21 ----A---- C:\Windows\system32\D3DX9_43.dll
2010-09-18 16:19:21 ----A---- C:\Windows\system32\d3dx11_43.dll
2010-09-18 16:19:21 ----A---- C:\Windows\system32\d3dx10_43.dll
2010-09-18 16:19:21 ----A---- C:\Windows\system32\d3dcsx_43.dll
2010-09-18 16:19:21 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2010-09-18 16:19:20 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-09-18 16:19:20 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-09-18 16:19:19 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-09-18 16:19:19 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-09-18 16:19:18 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-09-18 16:19:18 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-09-18 16:19:18 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-09-18 16:19:18 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-09-18 16:19:17 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-09-18 16:19:17 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-09-18 16:19:17 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-09-18 16:19:17 ----A---- C:\Windows\system32\d3dx10_41.dll
2010-09-18 16:19:17 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2010-09-18 16:19:16 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-09-18 16:19:16 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-09-18 16:19:16 ----A---- C:\Windows\system32\D3DX9_41.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-09-18 16:19:15 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-09-18 16:19:14 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-09-18 16:19:14 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-09-18 16:19:14 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-09-18 16:19:14 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-09-18 16:19:14 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-09-18 16:19:14 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-09-18 16:19:14 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-09-18 16:19:14 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-09-18 16:19:14 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-09-18 16:19:13 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-09-18 16:19:13 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-09-18 16:19:13 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-09-18 16:19:13 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-09-18 16:19:13 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-09-18 16:19:13 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-09-18 16:19:13 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-09-18 16:19:13 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-09-18 16:19:12 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-09-18 16:19:12 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-09-18 16:19:12 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-09-18 16:19:12 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-09-18 16:19:12 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-09-18 16:19:12 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-09-18 16:19:12 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\xinput1_3.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-09-18 16:19:11 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-09-18 16:19:10 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-09-18 16:19:10 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-09-18 16:19:10 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-09-18 16:19:10 ----A---- C:\Windows\system32\d3dx10.dll
2010-09-18 16:19:09 ----A---- C:\Windows\system32\xinput1_2.dll
2010-09-18 16:19:09 ----A---- C:\Windows\system32\xinput1_1.dll
2010-09-18 16:19:09 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-09-18 16:19:09 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-09-18 16:19:09 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-09-18 16:19:09 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-09-18 16:19:09 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-09-18 16:19:08 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-09-18 16:19:04 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-09-18 16:19:04 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-09-18 16:19:04 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-09-18 16:19:04 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-09-18 16:19:04 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-09-18 16:19:04 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-09-18 16:19:04 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-09-18 16:19:04 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-09-18 16:19:03 ----A---- C:\Windows\system32\d3dx9_24.dll
2010-09-18 16:17:18 ----D---- C:\Windows\system32\RTCOM
2010-09-18 16:16:47 ----A---- C:\Windows\system32\WavesLib.dll
2010-09-18 16:16:47 ----A---- C:\Windows\system32\WavesGUILib.dll
2010-09-18 16:16:47 ----A---- C:\Windows\system32\SRSWOW.dll
2010-09-18 16:16:47 ----A---- C:\Windows\system32\SRSTSXT.dll
2010-09-18 16:16:47 ----A---- C:\Windows\system32\SRSTSHD.dll
2010-09-18 16:16:47 ----A---- C:\Windows\system32\SRSHP360.dll
2010-09-18 16:16:47 ----A---- C:\Windows\system32\SFNHK.dll
2010-09-18 16:16:47 ----A---- C:\Windows\system32\SFCOM.dll
2010-09-18 16:16:47 ----A---- C:\Windows\system32\SFAPO.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RtkPgExt.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RtkCoInst.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RtkApoApi.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RtkAPO.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RTEEP32A.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RTEEL32A.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RTEEG32A.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RTEED32A.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RP3DHT32.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\RP3DAA32.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2010-09-18 16:16:46 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2010-09-18 16:16:45 ----A---- C:\Windows\system32\FMAPO.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\AERTARen.dll
2010-09-18 16:16:45 ----A---- C:\Windows\system32\AERTACap.dll
2010-09-18 16:16:43 ----HD---- C:\Program Files\Temp
2010-09-18 16:16:42 ----A---- C:\Windows\RtlExUpd.dll
2010-09-18 16:16:39 ----D---- C:\Program Files\Common Files\InstallShield
2010-09-18 16:16:03 ----A---- C:\Windows\system32\RtNicProp32.dll
2010-09-18 16:16:03 ----A---- C:\Windows\system32\drivers\Rtnicxp.sys
2010-09-18 16:16:02 ----D---- C:\Program Files\Realtek
2010-09-18 16:16:01 ----HD---- C:\Program Files\InstallShield Installation Information
2010-09-18 16:15:07 ----D---- C:\ProgramData\NVIDIA
2010-09-18 16:14:56 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-09-18 16:14:22 ----SHD---- C:\Windows\Installer
2010-09-18 16:14:20 ----D---- C:\ProgramData\NVIDIA Corporation
2010-09-18 16:14:15 ----D---- C:\Program Files\NVIDIA Corporation
2010-09-18 16:13:43 ----A---- C:\Windows\system32\OpenCL.dll
2010-09-18 16:13:43 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2010-09-18 16:13:43 ----A---- C:\Windows\system32\dpinst.exe
2010-09-18 16:13:40 ----A---- C:\Windows\system32\nvoglv32.dll
2010-09-18 16:13:40 ----A---- C:\Windows\system32\nvdecodemft.dll
2010-09-18 16:13:40 ----A---- C:\Windows\system32\nvd3dum.dll
2010-09-18 16:13:40 ----A---- C:\Windows\system32\nvcuvid.dll
2010-09-18 16:13:40 ----A---- C:\Windows\system32\nvcuvenc.dll
2010-09-18 16:13:40 ----A---- C:\Windows\system32\nvcuda.dll
2010-09-18 16:13:37 ----A---- C:\Windows\system32\nvcompiler.dll
2010-09-18 16:13:37 ----A---- C:\Windows\system32\nvcod1922.dll
2010-09-18 16:13:37 ----A---- C:\Windows\system32\nvcod.dll
2010-09-18 16:13:37 ----A---- C:\Windows\system32\nvapi.dll
2010-09-18 16:13:31 ----D---- C:\NVIDIA
2010-09-18 16:12:28 ----D---- C:\Program Files\RocketDock
2010-09-18 16:11:59 ----D---- C:\Users\Feri\AppData\Roaming\Mozilla
2010-09-18 16:11:39 ----D---- C:\Users\Feri\AppData\Roaming\ICQ
2010-09-18 16:11:26 ----D---- C:\Users\Feri\AppData\Roaming\Skype
2010-09-18 16:11:00 ----D---- C:\ikony new
2010-09-18 16:10:04 ----D---- C:\Program Files\ScreenShots
2010-09-18 16:08:24 ----D---- C:\Users\Feri\AppData\Roaming\Identities
2010-09-18 16:08:12 ----SD---- C:\Users\Feri\AppData\Roaming\Microsoft
2010-09-18 16:08:12 ----D---- C:\Users\Feri\AppData\Roaming\Media Center Programs
2010-09-18 16:07:52 ----SHD---- C:\Recovery
2010-09-18 16:01:58 ----D---- C:\Windows\SoftwareDistribution
2010-09-18 15:59:23 ----D---- C:\Windows\Prefetch
2010-09-18 15:58:48 ----ASH---- C:\pagefile.sys
2010-09-18 15:58:47 ----SHD---- C:\System Volume Information
2010-09-18 06:42:51 ----A---- C:\Windows\system32\drivers\dfsc.sys
2010-09-18 06:42:02 ----A---- C:\Windows\system32\gpsvc.dll
2010-09-18 06:41:14 ----A---- C:\Windows\system32\drivers\appid.sys
2010-09-18 06:41:14 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2010-09-18 06:39:39 ----A---- C:\Windows\system32\tsgqec.dll
2010-09-18 06:39:39 ----A---- C:\Windows\system32\mstscax.dll
2010-09-18 06:39:39 ----A---- C:\Windows\system32\mstsc.exe
2010-09-18 06:39:39 ----A---- C:\Windows\system32\aaclient.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\puiobj.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\puiapi.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\printui.exe
2010-09-18 06:37:58 ----A---- C:\Windows\system32\printui.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\findnetprinters.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\compstui.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\provsvc.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\pnrpsvc.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\p2psvc.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\p2pnetsh.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\p2pgroup.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\p2pcollab.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\P2P.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\ListSvc.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\Groupinghc.dll
2010-09-18 06:35:10 ----A---- C:\Windows\system32\VSSVC.exe
2010-09-18 06:32:44 ----A---- C:\Windows\system32\gdi32.dll
2010-09-18 06:31:08 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-09-18 06:31:08 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-09-18 06:30:11 ----A---- C:\Windows\system32\drivers\acpi.sys
2010-09-18 06:29:24 ----A---- C:\Windows\system32\msxml6.dll
2010-09-18 06:27:42 ----A---- C:\Windows\system32\rtutils.dll
2010-09-18 06:26:46 ----A---- C:\Windows\system32\localspl.dll
2010-09-18 06:25:50 ----A---- C:\Windows\system32\cdosys.dll
2010-09-18 06:24:47 ----A---- C:\Windows\system32\ir32_32.dll
2010-09-18 06:24:47 ----A---- C:\Windows\system32\iccvid.dll
2010-09-18 06:22:55 ----A---- C:\Windows\system32\sppnp.dll
2010-09-18 06:20:51 ----A---- C:\Windows\system32\tapisrv.dll
2010-09-18 06:18:57 ----A---- C:\Windows\system32\lsm.exe
2010-09-18 06:18:12 ----A---- C:\Windows\system32\wbemcomn.dll
2010-09-18 06:17:26 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-09-18 06:17:26 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-09-18 06:17:26 ----A---- C:\Windows\system32\drivers\srv.sys
2010-09-18 06:16:37 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2010-09-18 06:15:51 ----A---- C:\Windows\system32\mshtml.dll
2010-09-18 06:14:53 ----A---- C:\Windows\system32\t2embed.dll
2010-09-18 06:14:53 ----A---- C:\Windows\system32\fontsub.dll
2010-09-18 06:14:53 ----A---- C:\Windows\system32\atmlib.dll
2010-09-18 06:14:53 ----A---- C:\Windows\system32\atmfd.dll
2010-09-18 06:13:57 ----A---- C:\Windows\system32\usp10.dll
2010-09-18 06:13:13 ----A---- C:\Windows\system32\oleaut32.dll
2010-09-18 06:11:05 ----A---- C:\Windows\system32\esent.dll
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\nvstor.sys
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\nvraid.sys
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\amdxata.sys
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\amdsata.sys
2010-09-18 06:08:15 ----A---- C:\Windows\system32\diskraid.exe
2010-09-18 06:07:20 ----A---- C:\Windows\system32\userenv.dll
2010-09-18 06:06:25 ----A---- C:\Windows\system32\drivers\netio.sys
2010-09-18 06:04:35 ----A---- C:\Windows\system32\wmpps.dll
2010-09-18 06:04:35 ----A---- C:\Windows\system32\wmploc.DLL
2010-09-18 06:04:35 ----A---- C:\Windows\system32\wmp.dll
2010-09-18 06:04:35 ----A---- C:\Windows\system32\spwmp.dll
2010-09-18 06:04:35 ----A---- C:\Windows\system32\dxmasf.dll
2010-09-18 06:02:41 ----A---- C:\Windows\system32\prntvpt.dll
2010-09-18 06:01:58 ----A---- C:\Windows\system32\rastls.dll
2010-09-18 05:58:43 ----A---- C:\Windows\system32\drivers\vmbus.sys
2010-09-18 05:57:58 ----A---- C:\Windows\system32\ci.dll
2010-09-18 05:57:10 ----A---- C:\Windows\system32\eudcedit.exe
2010-09-18 05:55:13 ----A---- C:\Windows\system32\drivers\ndis.sys
2010-09-18 05:52:39 ----A---- C:\Windows\system32\wevtsvc.dll
2010-09-18 05:51:44 ----A---- C:\Windows\system32\drivers\rdbss.sys
2010-09-18 05:51:01 ----A---- C:\Windows\system32\mstask.dll
2010-09-18 05:48:27 ----A---- C:\Windows\system32\drivers\wanarp.sys
2010-09-18 05:48:27 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2010-09-18 05:47:40 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2010-09-18 05:46:11 ----A---- C:\Windows\system32\winsrv.dll
2010-09-18 05:44:42 ----A---- C:\Windows\system32\zipfldr.dll
2010-09-18 05:42:07 ----A---- C:\Windows\system32\prncache.dll
2010-09-18 05:41:14 ----A---- C:\Windows\system32\setupcl.exe
2010-09-18 05:38:59 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-09-18 05:38:59 ----A---- C:\Windows\system32\PresentationHost.exe
2010-09-18 05:37:54 ----A---- C:\Windows\system32\drivers\msdsm.sys
2010-09-18 05:37:01 ----A---- C:\Windows\system32\wwanconn.dll
2010-09-18 05:36:07 ----A---- C:\Windows\system32\vbscript.dll
2010-09-18 05:33:25 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2010-09-18 05:32:29 ----A---- C:\Windows\system32\winresume.exe
2010-09-18 05:32:29 ----A---- C:\Windows\system32\winload.exe
2010-09-18 05:31:36 ----A---- C:\Windows\system32\appmgr.dll
2010-09-18 05:30:43 ----A---- C:\Windows\system32\dnsrslvr.dll
2010-09-18 05:30:43 ----A---- C:\Windows\system32\dnsapi.dll
2010-09-18 05:30:42 ----A---- C:\Windows\system32\dnscacheugc.exe
2010-09-18 05:29:51 ----A---- C:\Windows\system32\raschap.dll
2010-09-18 05:28:05 ----A---- C:\Windows\explorer.exe
2010-09-18 05:25:41 ----A---- C:\Windows\system32\rdpdd.dll
2010-09-18 05:25:41 ----A---- C:\Windows\system32\drivers\volmgr.sys
2010-09-18 05:25:41 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2010-09-18 05:25:41 ----A---- C:\Windows\system32\drivers\pci.sys
2010-09-18 05:25:40 ----A---- C:\Windows\system32\drivers\termdd.sys
2010-09-18 05:23:55 ----A---- C:\Windows\system32\basecsp.dll
2010-09-18 05:23:08 ----A---- C:\Windows\system32\msdri.dll
2010-09-18 05:23:07 ----A---- C:\Windows\system32\psisdecd.dll
2010-09-18 05:21:16 ----A---- C:\Windows\system32\audiosrv.dll
2010-09-18 05:21:15 ----A---- C:\Windows\system32\AUDIOKSE.dll
2010-09-18 05:21:15 ----A---- C:\Windows\system32\AudioEng.dll
2010-09-18 05:21:15 ----A---- C:\Windows\system32\audiodg.exe
2010-09-18 05:20:32 ----A---- C:\Windows\twain_32.dll
2010-09-18 05:20:32 ----A---- C:\Windows\system32\wiaservc.dll
2010-09-18 05:16:54 ----A---- C:\Windows\system32\cryptsvc.dll
2010-09-18 05:16:06 ----A---- C:\Windows\system32\user32.dll
2010-09-18 05:14:09 ----A---- C:\Windows\system32\mapistub.dll
2010-09-18 05:14:09 ----A---- C:\Windows\system32\mapi32.dll
2010-09-18 05:13:27 ----A---- C:\Windows\system32\themeui.dll
2010-09-18 05:12:42 ----A---- C:\Windows\system32\schannel.dll
2010-09-18 05:11:02 ----A---- C:\Windows\system32\umpnpmgr.dll
2010-09-18 05:09:27 ----A---- C:\Windows\system32\termsrv.dll
2010-09-18 05:08:45 ----A---- C:\Windows\system32\drivers\ntfs.sys
2010-09-18 05:07:48 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2010-09-18 05:07:06 ----A---- C:\Windows\system32\dot3svc.dll
2010-09-18 05:07:06 ----A---- C:\Windows\system32\dot3msm.dll
2010-09-18 05:07:06 ----A---- C:\Windows\system32\dot3dlg.dll
2010-09-18 05:07:06 ----A---- C:\Windows\system32\dot3api.dll
2010-09-18 05:02:58 ----A---- C:\Windows\system32\vds.exe
2010-09-18 05:01:32 ----A---- C:\Windows\system32\Robocopy.exe
2010-09-18 05:00:05 ----A---- C:\Windows\system32\webservices.dll
2010-09-18 04:58:36 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-09-18 04:57:54 ----A---- C:\Windows\system32\ole32.dll
2010-09-18 04:57:11 ----A---- C:\Windows\system32\netjoin.dll
2010-09-18 04:56:28 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2010-09-18 04:54:56 ----A---- C:\Windows\system32\drivers\ks.sys
2010-09-18 04:54:17 ----A---- C:\Windows\system32\WMPhoto.dll
2010-09-18 04:53:37 ----A---- C:\Windows\system32\asycfilt.dll
2010-09-18 04:52:54 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-09-18 04:52:15 ----A---- C:\Windows\system32\imapi2.dll
2010-09-18 04:51:33 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-09-18 04:51:33 ----A---- C:\Windows\system32\rasmans.dll
2010-09-18 04:51:33 ----A---- C:\Windows\system32\netiougc.exe
2010-09-18 04:50:50 ----A---- C:\Windows\system32\cabview.dll
2010-09-18 04:50:09 ----A---- C:\Windows\system32\wlaninst.dll
2010-09-18 04:48:50 ----A---- C:\Windows\system32\wmpeffects.dll
2010-09-18 04:48:03 ----A---- C:\Windows\system32\sbunattend.exe
2010-09-18 04:46:32 ----A---- C:\Windows\system32\rpcrt4.dll
2010-09-18 04:44:55 ----A---- C:\Windows\system32\iasrad.dll
2010-09-18 04:44:07 ----A---- C:\Windows\system32\netiohlp.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\secproc_isv.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\secproc.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-09-18 04:43:17 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-09-18 04:43:17 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-09-18 04:43:17 ----A---- C:\Windows\system32\RMActivate.exe
2010-09-18 04:42:26 ----A---- C:\Windows\system32\scrptadm.dll
2010-09-18 04:42:26 ----A---- C:\Windows\system32\AdmTmpl.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFx.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFSvc.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFPlatform.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFHost.exe
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2010-09-18 04:41:37 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2010-09-18 04:40:47 ----A---- C:\Windows\system32\hbaapi.dll
2010-09-18 04:40:00 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2010-09-18 04:39:12 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-09-18 04:38:23 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-09-18 04:37:35 ----A---- C:\Windows\system32\ncryptui.dll
2010-09-18 04:36:01 ----A---- C:\Windows\system32\dnscmmc.dll
2010-09-18 04:35:11 ----A---- C:\Windows\system32\nltest.exe
2010-09-18 04:35:11 ----A---- C:\Windows\system32\netlogon.dll
2010-09-18 04:35:11 ----A---- C:\Windows\system32\netapi32.dll
2010-09-18 04:35:11 ----A---- C:\Windows\system32\logoncli.dll
2010-09-18 04:34:21 ----A---- C:\Windows\system32\w32tm.exe
2010-09-18 04:33:42 ----A---- C:\Windows\system32\wintrust.dll
2010-09-18 04:33:04 ----A---- C:\Windows\system32\inetcomm.dll
2010-09-18 04:32:22 ----A---- C:\Windows\system32\drivers\udfs.sys
2010-09-18 04:30:58 ----A---- C:\Windows\system32\xolehlp.dll
2010-09-18 04:30:58 ----A---- C:\Windows\system32\mtxclu.dll
2010-09-18 04:30:58 ----A---- C:\Windows\system32\msdtctm.dll
2010-09-18 04:30:58 ----A---- C:\Windows\system32\msdtcprx.dll
2010-09-18 04:30:08 ----A---- C:\Windows\system32\drivers\cdrom.sys
2010-09-18 04:29:20 ----A---- C:\Windows\system32\halmacpi.dll
2010-09-18 04:29:20 ----A---- C:\Windows\system32\halacpi.dll
2010-09-18 04:29:20 ----A---- C:\Windows\system32\hal.dll
2010-09-18 04:27:12 ----A---- C:\Windows\system32\mfds.dll
2010-09-18 04:25:04 ----A---- C:\Windows\system32\drivers\usbcir.sys
2010-09-18 04:25:04 ----A---- C:\Windows\system32\CIRCoInst.dll
2010-09-18 04:22:51 ----A---- C:\Windows\system32\scecli.dll
2010-09-18 04:22:04 ----A---- C:\Windows\system32\conhost.exe
2010-09-18 04:21:25 ----A---- C:\Windows\system32\msinfo32.exe
2010-09-18 04:20:01 ----A---- C:\Windows\system32\qdvd.dll
2010-09-18 04:18:34 ----A---- C:\Windows\system32\efscore.dll
2010-09-18 04:17:53 ----A---- C:\Windows\system32\winlogon.exe
2010-09-18 04:15:41 ----A---- C:\Windows\system32\rasapi32.dll
2010-09-18 04:15:40 ----A---- C:\Windows\system32\rasppp.dll
2010-09-18 04:15:40 ----A---- C:\Windows\system32\mprddm.dll
2010-09-18 04:14:29 ----A---- C:\Windows\system32\cscsvc.dll
2010-09-18 04:14:28 ----A---- C:\Windows\system32\cscdll.dll
2010-09-18 04:14:28 ----A---- C:\Windows\system32\cscapi.dll
2010-09-18 04:13:28 ----A---- C:\Windows\system32\cryptui.dll
2010-09-18 04:12:51 ----A---- C:\Windows\system32\apphelp.dll
2010-09-18 04:12:10 ----A---- C:\Windows\system32\Narrator.exe
2010-09-18 04:10:13 ----A---- C:\Windows\system32\crypt32.dll
2010-09-18 04:08:55 ----A---- C:\Windows\system32\taskschd.dll
2010-09-18 04:08:18 ----A---- C:\Windows\system32\isoburn.exe
2010-09-18 04:06:55 ----A---- C:\Windows\system32\jscript.dll
2010-09-18 04:06:17 ----A---- C:\Windows\system32\win32spl.dll
2010-09-18 04:06:17 ----A---- C:\Windows\system32\PrintBrmUi.exe
2010-09-18 04:04:44 ----A---- C:\Windows\system32\scansetting.dll
2010-09-18 04:03:51 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-09-18 04:03:13 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2010-09-18 04:02:33 ----A---- C:\Windows\system32\dot3cfg.dll
2010-09-18 03:59:55 ----A---- C:\Windows\system32\wwanprotdim.dll
2010-09-18 03:58:42 ----A---- C:\Windows\system32\evr.dll
2010-09-18 03:58:07 ----A---- C:\Windows\system32\autochk.exe
2010-09-18 03:57:32 ----A---- C:\Windows\system32\taskhost.exe
2010-09-18 03:56:17 ----A---- C:\Windows\system32\msyuv.dll
2010-09-18 03:56:17 ----A---- C:\Windows\system32\iyuv_32.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\tsbyuv.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\quartz.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\msvidc32.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\msrle32.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\mciavi32.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\avifil32.dll
2010-09-18 03:55:37 ----A---- C:\Windows\system32\vpnikeapi.dll
2010-09-18 03:55:37 ----A---- C:\Windows\system32\vpnike.dll
2010-09-18 03:55:00 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-09-18 03:54:24 ----A---- C:\Windows\system32\msv1_0.dll
2010-09-18 03:53:07 ----A---- C:\Windows\system32\AzSqlExt.dll
2010-09-18 03:53:07 ----A---- C:\Windows\system32\azroles.dll
2010-09-18 03:52:32 ----A---- C:\Windows\system32\dxdiagn.dll
2010-09-18 03:52:32 ----A---- C:\Windows\system32\dxdiag.exe
2010-09-18 03:48:34 ----A---- C:\Windows\system32\msasn1.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\tquery.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-09-18 03:45:22 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-09-18 03:45:22 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-09-18 03:45:22 ----A---- C:\Windows\system32\mssvp.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\mssrch.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\mssphtb.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\mssph.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\msscntrs.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\uxlibres.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\uxlib.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\spwizres.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\spwizimg_original.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\spwizimg.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\spwizeng.dll
2010-09-18 03:43:50 ----A---- C:\Windows\system32\iprtrmgr.dll
2010-09-18 03:43:07 ----A---- C:\Windows\system32\rdpendp.dll
2010-09-18 03:42:24 ----A---- C:\Windows\system32\onexui.dll
2010-09-18 03:42:24 ----A---- C:\Windows\system32\onex.dll
2010-09-18 03:41:11 ----A---- C:\Windows\system32\WebClnt.dll
2010-09-18 03:39:56 ----A---- C:\Windows\system32\profsvc.dll
2010-09-18 03:39:20 ----A---- C:\Windows\system32\licmgr10.dll
2010-09-18 03:38:45 ----A---- C:\Windows\system32\framedynos.dll
2010-09-18 03:38:45 ----A---- C:\Windows\system32\framedyn.dll
2010-09-18 03:38:05 ----A---- C:\Windows\system32\regapi.dll
2010-09-18 03:36:56 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2010-09-18 03:36:17 ----A---- C:\Windows\system32\rdpcorekmts.dll
2010-09-18 03:32:37 ----A---- C:\Windows\system32\drivers\umbus.sys
2010-09-18 03:30:59 ----A---- C:\Windows\system32\sxstrace.exe
2010-09-18 03:30:59 ----A---- C:\Windows\system32\sxs.dll
2010-09-18 03:30:59 ----A---- C:\Windows\system32\comctl32.dll
2010-09-18 03:30:01 ----A---- C:\Windows\system32\poqexec.exe
2010-09-18 03:29:18 ----A---- C:\Windows\system32\iertutil.dll
2010-09-18 03:28:41 ----A---- C:\Windows\system32\win32k.sys
2010-09-18 03:28:08 ----A---- C:\Windows\system32\samsrv.dll
2010-09-18 03:27:26 ----A---- C:\Windows\system32\KernelBase.dll
2010-09-18 03:27:26 ----A---- C:\Windows\system32\kernel32.dll
2010-09-18 03:26:45 ----A---- C:\Windows\system32\spoolsv.exe
2010-09-18 03:26:03 ----A---- C:\Windows\system32\sspisrv.dll
2010-09-18 03:26:03 ----A---- C:\Windows\system32\sspicli.dll
2010-09-18 03:26:03 ----A---- C:\Windows\system32\secur32.dll
2010-09-18 03:26:03 ----A---- C:\Windows\system32\lsasrv.dll
2010-09-18 03:26:03 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-09-18 03:26:03 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2010-09-18 03:25:29 ----A---- C:\Windows\system32\UIRibbonRes.dll
2010-09-18 03:25:29 ----A---- C:\Windows\system32\UIRibbon.dll
2010-09-18 03:24:48 ----A---- C:\Windows\system32\ieui.dll
2010-09-18 03:24:48 ----A---- C:\Windows\system32\ieframe.dll
2010-09-18 03:24:10 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-09-18 03:24:10 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-09-18 03:23:12 ----A---- C:\Windows\system32\drivers\msahci.sys
2010-09-18 03:23:12 ----A---- C:\Windows\system32\drivers\ataport.sys
2010-09-18 03:22:40 ----A---- C:\Windows\system32\propsys.dll
2010-09-18 03:21:50 ----A---- C:\Windows\system32\drivers\usbport.sys
2010-09-18 03:21:50 ----A---- C:\Windows\system32\drivers\usbhub.sys
2010-09-18 03:21:50 ----A---- C:\Windows\system32\drivers\usbehci.sys
2010-09-18 03:21:11 ----A---- C:\Windows\system32\spp.dll
2010-09-18 03:20:35 ----A---- C:\Windows\system32\uxsms.dll
2010-09-18 03:20:35 ----A---- C:\Windows\system32\dwmredir.dll
2010-09-18 03:20:35 ----A---- C:\Windows\system32\dwm.exe
2010-09-18 03:19:51 ----A---- C:\Windows\system32\shell32.dll
2010-09-18 03:19:09 ----A---- C:\Windows\system32\gpprefcl.dll
2010-09-18 03:18:38 ----A---- C:\Windows\system32\sdrsvc.dll
2010-09-18 03:18:38 ----A---- C:\Windows\system32\sdengin2.dll
2010-09-18 03:18:38 ----A---- C:\Windows\system32\sdclt.exe
2010-09-18 03:18:07 ----A---- C:\Windows\system32\shsvcs.dll
2010-09-18 03:17:35 ----A---- C:\Windows\system32\drivers\storport.sys
2010-09-18 03:16:58 ----A---- C:\Windows\system32\inetpp.dll
2010-09-18 03:16:27 ----A---- C:\Windows\system32\WsmAuto.dll
2010-09-18 03:16:26 ----A---- C:\Windows\system32\WsmWmiPl.dll
2010-09-18 03:16:26 ----A---- C:\Windows\system32\WsmSvc.dll
2010-09-18 03:16:26 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2010-09-18 03:16:26 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2010-09-18 03:15:51 ----A---- C:\Windows\system32\bcdboot.exe
2010-09-18 03:15:09 ----A---- C:\Windows\system32\drivers\mpio.sys
2010-09-18 03:13:51 ----A---- C:\Windows\system32\setupapi.dll
2010-09-18 03:13:51 ----A---- C:\Windows\system32\drvstore.dll
2010-09-18 03:13:11 ----A---- C:\Windows\system32\Wldap32.dll
2010-09-18 03:12:31 ----A---- C:\Windows\system32\wininet.dll
2010-09-18 03:11:49 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2010-09-18 03:10:26 ----A---- C:\Windows\system32\SearchFolder.dll
2010-09-18 03:09:56 ----A---- C:\Windows\system32\pla.dll
2010-09-18 03:09:56 ----A---- C:\Windows\system32\pdh.dll
2010-09-18 03:09:23 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2010-09-18 03:08:52 ----A---- C:\Windows\system32\CPFilters.dll
2010-09-18 03:08:18 ----A---- C:\Windows\system32\nrpsrv.dll
2010-09-18 03:07:48 ----A---- C:\Windows\system32\ntdll.dll
2010-09-18 03:07:13 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2010-09-18 03:06:42 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-09-18 03:06:42 ----A---- C:\Windows\system32\actxprxy.dll
2010-09-18 03:06:10 ----A---- C:\Windows\system32\wisptis.exe
2010-09-18 03:06:10 ----A---- C:\Windows\system32\TabSvc.dll
2010-09-18 03:05:26 ----A---- C:\Windows\system32\msdrm.dll
2010-09-18 03:02:17 ----A---- C:\Windows\system32\drivers\hidclass.sys
2010-09-18 03:01:43 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2010-09-18 03:01:08 ----A---- C:\Windows\system32\WSDApi.dll
2010-09-18 03:00:36 ----A---- C:\Windows\system32\sppsvc.exe
2010-09-18 03:00:02 ----A---- C:\Windows\system32\drivers\volsnap.sys
2010-09-18 02:59:27 ----A---- C:\Windows\system32\FXSSVC.exe
2010-09-18 02:58:49 ----A---- C:\Windows\system32\RpcRtRemote.dll
2010-09-18 02:58:11 ----A---- C:\Windows\system32\clusapi.dll
2010-09-18 02:57:31 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2010-09-18 02:56:54 ----A---- C:\Windows\system32\TSpkg.dll
2010-09-18 02:56:54 ----A---- C:\Windows\system32\credssp.dll
2010-09-18 02:56:16 ----A---- C:\Windows\system32\eapphost.dll
2010-09-18 02:56:16 ----A---- C:\Windows\system32\eappgnui.dll
2010-09-18 02:56:16 ----A---- C:\Windows\system32\eapp3hst.dll
2010-09-18 02:55:38 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-09-18 02:54:48 ----A---- C:\Windows\system32\iepeers.dll
2010-09-18 02:54:48 ----A---- C:\Windows\system32\iedkcs32.dll
2010-09-18 02:54:47 ----A---- C:\Windows\system32\mstime.dll
2010-09-18 02:54:47 ----A---- C:\Windows\system32\msfeedssync.exe
2010-09-18 02:54:47 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-09-18 02:54:46 ----A---- C:\Windows\system32\urlmon.dll
2010-09-18 02:53:49 ----A---- C:\Windows\system32\wbengine.exe
2010-09-18 02:53:12 ----A---- C:\Windows\system32\drivers\csc.sys
2010-09-18 02:53:12 ----A---- C:\Windows\system32\CscMig.dll
2010-09-18 02:52:36 ----A---- C:\Windows\system32\netid.dll
2010-09-18 02:51:18 ----A---- C:\Windows\system32\tzres.dll
2010-09-18 02:50:34 ----A---- C:\Windows\system32\kerberos.dll
2010-09-18 02:49:59 ----A---- C:\Windows\system32\consent.exe
2010-09-18 02:49:59 ----A---- C:\Windows\system32\appinfo.dll
2010-09-18 02:47:43 ----A---- C:\Windows\system32\WMVDECOD.DLL
2010-09-18 02:47:43 ----A---- C:\Windows\system32\mfreadwrite.dll
2010-09-18 02:47:43 ----A---- C:\Windows\system32\mf.dll
2010-09-18 02:47:02 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-09-18 02:47:02 ----A---- C:\Windows\system32\cdd.dll
2010-09-18 02:46:26 ----A---- C:\Windows\system32\msxml3.dll
2010-09-18 02:45:47 ----A---- C:\Windows\system32\CertEnroll.dll
2010-09-18 02:45:10 ----A---- C:\Windows\system32\drivers\http.sys
2010-09-18 02:44:35 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2010-09-18 02:44:00 ----A---- C:\Windows\system32\vsstrace.dll
2010-09-18 02:43:59 ----A---- C:\Windows\system32\vssapi.dll
2010-09-18 02:43:16 ----A---- C:\Windows\system32\cscobj.dll
2010-09-18 02:42:42 ----A---- C:\Windows\system32\mcbuilder.exe
2010-09-18 02:42:08 ----A---- C:\Windows\system32\drivers\tdx.sys
2010-09-18 02:41:34 ----A---- C:\Windows\system32\drivers\partmgr.sys
2010-09-18 02:40:59 ----A---- C:\Windows\system32\pnidui.dll
2010-09-18 02:40:59 ----A---- C:\Windows\system32\netshell.dll
2010-09-18 02:40:23 ----A---- C:\Windows\system32\cmd.exe
2010-09-18 02:39:46 ----A---- C:\Windows\system32\IKEEXT.DLL
2010-09-18 02:39:09 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-09-18 02:38:34 ----A---- C:\Windows\system32\certmgr.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\FntCache.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\DWrite.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\d3d10warp.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\d3d10_1core.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\d2d1.dll
2010-09-18 02:37:24 ----A---- C:\Windows\system32\XpsRasterService.dll
2010-09-18 02:37:24 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2010-09-18 02:36:17 ----A---- C:\Windows\system32\AtBroker.exe
2010-09-18 02:35:42 ----A---- C:\Windows\system32\wshnetbs.dll
2010-09-18 02:35:07 ----A---- C:\Windows\system32\rundll32.exe
2010-09-18 02:34:30 ----A---- C:\Windows\system32\MUILanguageCleanup.dll
2010-09-18 02:34:30 ----A---- C:\Windows\system32\lpremove.exe
2010-09-18 02:34:30 ----A---- C:\Windows\system32\lpksetupproxyserv.dll
2010-09-18 02:34:30 ----A---- C:\Windows\system32\lpksetup.exe
2010-09-18 02:34:30 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2010-09-18 02:33:37 ----A---- C:\Windows\system32\notepad.exe
2010-09-18 02:33:37 ----A---- C:\Windows\notepad.exe
2010-09-14 04:45:27 ----A---- C:\Windows\clock.exe

======List of files/folders modified in the last 1 months======

2010-09-21 18:54:43 ----D---- C:\Windows\Temp
2010-09-21 18:54:11 ----RD---- C:\Program Files
2010-09-21 16:30:57 ----D---- C:\Windows
2010-09-21 16:29:05 ----D---- C:\Windows\System32
2010-09-21 16:25:44 ----D---- C:\Program Files\Common Files
2010-09-21 16:25:21 ----HD---- C:\ProgramData
2010-09-21 14:33:30 ----D---- C:\Windows\system32\config
2010-09-21 14:27:40 ----D---- C:\Windows\inf
2010-09-21 11:19:56 ----D---- C:\Windows\winsxs
2010-09-21 11:19:55 ----D---- C:\Program Files\Common Files\microsoft shared
2010-09-20 18:39:34 ----D---- C:\Windows\system32\Tasks
2010-09-19 17:16:09 ----D---- C:\Windows\system32\drivers
2010-09-19 17:16:08 ----D---- C:\Windows\system32\DriverStore
2010-09-19 17:16:08 ----D---- C:\Windows\system32\catroot
2010-09-19 17:15:25 ----SD---- C:\ProgramData\Microsoft
2010-09-19 17:15:24 ----D---- C:\Windows\system32\drivers\UMDF
2010-09-19 15:40:47 ----RSD---- C:\Windows\assembly
2010-09-19 00:55:36 ----D---- C:\Windows\debug
2010-09-19 00:49:34 ----D---- C:\Windows\system
2010-09-18 18:02:47 ----RSD---- C:\Windows\Fonts
2010-09-18 18:01:35 ----D---- C:\Windows\ShellNew
2010-09-18 18:01:29 ----A---- C:\Windows\win.ini
2010-09-18 18:01:27 ----D---- C:\Program Files\Common Files\System
2010-09-18 17:12:33 ----D---- C:\Windows\Microsoft.NET
2010-09-18 16:43:40 ----D---- C:\Program Files\Internet Explorer
2010-09-18 16:29:27 ----D---- C:\Windows\system32\wdi
2010-09-18 16:18:26 ----D---- C:\Windows\Logs
2010-09-18 16:18:19 ----D---- C:\Windows\system32\catroot2
2010-09-18 16:15:49 ----D---- C:\Windows\system32\restore
2010-09-18 16:15:19 ----D---- C:\Windows\system32\CodeIntegrity
2010-09-18 16:14:46 ----D---- C:\Windows\Help
2010-09-18 16:13:04 ----D---- C:\Windows\system32\wbem
2010-09-18 16:08:21 ----SHD---- C:\$Recycle.Bin
2010-09-18 16:08:09 ----RD---- C:\Users
2010-09-18 16:07:42 ----D---- C:\Windows\rescache
2010-09-18 16:02:07 ----D---- C:\Windows\system32\sysprep
2010-09-18 15:59:33 ----D---- C:\Windows\CSC
2010-09-18 14:01:44 ----A---- C:\Windows\system32\imageres.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iteatapi;ITEATAPI_Service_Install; C:\Windows\system32\DRIVERS\iteatapi.sys [2010-02-16 24972]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-09-18 173440]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-09-18 387584]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2010-07-29 134512]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2010-07-29 41336]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-09-03 3185640]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2009-07-23 43008]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\Windows\system32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\k750mdfl.sys [2005-02-11 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\Windows\system32\DRIVERS\k750mdm.sys [2005-02-11 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\Windows\system32\DRIVERS\k750mgmt.sys [2005-02-11 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:\Windows\system32\DRIVERS\k750obex.sys [2005-02-11 79488]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2010-09-18 175752]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-08-12 810144]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2010-07-21 73728]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2010-05-18 935208]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-09 129640]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-07-09 248936]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-08-12 33584]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

#4 Příspěvek od **vyosek** » 21 zář 2010 18:19

Dle VT je soubor cisty

Doporucuji odinstalovat GridinSoft Trojan Killer - neni treba kdyz mate ESS

Predpokladam ze ten balicek Esetu mate legalni = zakoupenou licenci

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) (viz muj podpis)

Provedte aktualizaci - treti zalozka
Provedte uplny sken - nic nemazte
MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

DexterWx · #5 Příspěvek od **DexterWx** » 21 zář 2010 19:50

Trojan Killer je preč..
Eset mám trial = použitý trial licencia priamo od esetu, vyžiadaný na mail.
A log z MBAM Rýchla kontrola:
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verzia databázy: 4665

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

21. 9. 2010 19:36:39
mbam-log-2010-09-21 (19-36-39).txt

Typ kontroly: Rýchla kontrola
Objektov kontrolovaných: 134242
Uplynulý čas: 6 min, 2 sek

Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registračné kľúče: 0
Infikované registračné hodnoty: 0
Infikované položky registračných dát: 0
Infikované priečinky: 0
Infikované súbory: 0

Infikované služby pamäte:
(Škodlivé položky neboli zistené)

Infikované moduly pamäte:
(Škodlivé položky neboli zistené)

Infikované registračné kľúče:
(Škodlivé položky neboli zistené)

Infikované registračné hodnoty:
(Škodlivé položky neboli zistené)

Infikované položky registračných dát:
(Škodlivé položky neboli zistené)

Infikované priečinky:
(Škodlivé položky neboli zistené)

Infikované súbory:
(Škodlivé položky neboli zistené)
úplnú kontrolu pridám, keď to dokončí, trvá to celú večnosť..

Zatiaľ ďakujem pekne za pomoc.

#6 Příspěvek od **vyosek** » 21 zář 2010 19:55

Nemate prozatim zac, pockame co ukaze uplna kontrola...

DexterWx · #7 Příspěvek od **DexterWx** » 21 zář 2010 21:54

Ono mi to robilo 3 hodiny, no zrazu sa to zrušilo.

Nebol by predsa len jednoduchší ten reinstall?

Lebo, ako tak vidím, nikde nič a akoby sa niekto/skôr niečo chcel/o dostať do môjho compu.

Začalo to inak inštaláciou Trojan Killeru a použitím cracku, jeho výsledok je tu:

Kód: Vybrat vše

http://www.virustotal.com/file-scan/report.html?id=dd71fa5c27fa3592b80263467e84065838145cdbb3a64191cb5a14a4f010900f-1284860754

#8 Příspěvek od **vyosek** » 21 zář 2010 22:01

Pokud si cracknete antispywarevory program neni se cemu divit

Nehlede na porusovani autorskeho zakona a pachani trestneho cinu Obrázek

.

Stahnete na plochu CKScanner

Spustte a kliknete na Search for files
Po dokonceni skenu kliknete na Save List to File a nasledne OK
Na plose se Vam vytvori log s nazvem ckfiles.txt, jeho obsah mi sem vlozte

Spustte MBAM v nouzovem rezimu (restart PC, mackat F8, zvolit Stav nouze s praci v siti)

DexterWx · #9 Příspěvek od **DexterWx** » 21 zář 2010 22:23

Prvý krát som urobil niečo také a aj posledný krát.

Nech sa páči:
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verzia databázy: 4666

Windows 6.1.7600 (Safe Mode)
Internet Explorer 8.0.7600.16385

21. 9. 2010 23:22:12
mbam-log-2010-09-21 (23-22-12).txt

Typ kontroly: Rýchla kontrola
Objektov kontrolovaných: 132220
Uplynulý čas: 5 min, 34 sek

Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registračné kľúče: 0
Infikované registračné hodnoty: 0
Infikované položky registračných dát: 0
Infikované priečinky: 0
Infikované súbory: 0

Infikované služby pamäte:
(Škodlivé položky neboli zistené)

Infikované moduly pamäte:
(Škodlivé položky neboli zistené)

Infikované registračné kľúče:
(Škodlivé položky neboli zistené)

Infikované registračné hodnoty:
(Škodlivé položky neboli zistené)

Infikované položky registračných dát:
(Škodlivé položky neboli zistené)

Infikované priečinky:
(Škodlivé položky neboli zistené)

Infikované súbory:
(Škodlivé položky neboli zistené)

#10 Příspěvek od **vyosek** » 21 zář 2010 22:25

Fajn, jeste log z CKScanneru a uplynou kontrolu v MBAM - opet v nouzovem rezimu...

DexterWx · #11 Příspěvek od **DexterWx** » 22 zář 2010 17:06

Zdravím, takže ráno zapnem počítač a každý prehliadač mi vypisoval chybu a ponúklo možnosť skončiť program.
Tak som musel urobiť ten reinštal, aj keď som nechcel.
Problém prestal, ale chcel by som sa uistiť, že je môj systém naozaj čistý, keďže som dával rýchly formát.
Log CKScanner:
CKScanner - Additional Security Risks - These are not necessarily bad
scanner sequence 3.MN.11
----- EOF -----
Log RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Feri at 2010-09-22 17:59:03
Microsoft Windows 7 Professional
System drive C: has 20 GB (66%) free of 31 GB
Total RAM: 3071 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:59:24, on 22. 9. 2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\ICQ7.2\ICQ.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Java\jre6\bin\javaw.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe
C:\Windows\system32\SearchFilterHost.exe
H:\IDM\RSIT(2).exe
C:\Program Files\trend micro\Feri.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\RunOnce: [CleanSetup] cmd /C rmdir /S /Q "C:\Users\Feri\AppData\Local\Temp\nro.tmp\"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.2\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 5131 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-22 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-09-03 9726568]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-08-12 2215064]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"CleanSetup"=cmd /C rmdir /S /Q C:\Users\Feri\AppData\Local\Temp\nro.tmp\ []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"ICQ"=C:\Program Files\ICQ7.2\ICQ.exe [2010-08-22 133432]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2010-08-16 2736128]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-09-22 17:59:03 ----D---- C:\rsit
2010-09-22 17:59:03 ----D---- C:\Program Files\trend micro
2010-09-22 16:02:13 ----D---- C:\Users\Feri\AppData\Roaming\Media Player Classic
2010-09-22 15:55:07 ----D---- C:\Users\Feri\AppData\Roaming\skypePM
2010-09-22 15:51:52 ----D---- C:\Program Files\Common Files\Skype
2010-09-22 15:51:49 ----RD---- C:\Program Files\Skype
2010-09-22 15:51:48 ----D---- C:\ProgramData\Skype
2010-09-22 15:42:40 ----D---- C:\Program Files\JDownloader
2010-09-22 15:40:08 ----D---- C:\ProgramData\Sun
2010-09-22 15:40:07 ----D---- C:\Program Files\Common Files\Java
2010-09-22 15:40:00 ----A---- C:\Windows\system32\javaws.exe
2010-09-22 15:40:00 ----A---- C:\Windows\system32\javaw.exe
2010-09-22 15:40:00 ----A---- C:\Windows\system32\java.exe
2010-09-22 15:40:00 ----A---- C:\Windows\system32\deployJava1.dll
2010-09-22 15:39:52 ----D---- C:\Program Files\Java
2010-09-22 15:34:01 ----D---- C:\Users\Feri\AppData\Roaming\URSoft
2010-09-22 15:34:01 ----AD---- C:\ProgramData\TEMP
2010-09-22 15:33:47 ----D---- C:\Program Files\Your Uninstaller 2010
2010-09-22 15:33:08 ----D---- C:\Program Files\CCleaner
2010-09-22 15:32:11 ----D---- C:\ProgramData\Adobe
2010-09-22 15:32:03 ----D---- C:\Program Files\Common Files\Adobe
2010-09-22 15:32:03 ----D---- C:\Program Files\Adobe
2010-09-22 15:25:49 ----D---- C:\ProgramData\LightScribe
2010-09-22 15:25:42 ----D---- C:\Users\Feri\AppData\Roaming\Nero
2010-09-22 15:15:21 ----D---- C:\Program Files\Nero
2010-09-22 15:15:03 ----D---- C:\ProgramData\Nero
2010-09-22 15:15:01 ----D---- C:\Program Files\Common Files\Nero
2010-09-22 15:14:24 ----D---- C:\Program Files\Common Files\LightScribe
2010-09-22 14:58:18 ----D---- C:\Program Files\Common Files\Akamai
2010-09-22 10:50:22 ----D---- C:\Users\Feri\AppData\Roaming\NVIDIA
2010-09-22 09:10:18 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-09-22 09:10:18 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-09-22 09:10:17 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-09-22 08:53:03 ----A---- C:\Windows\system32\XAudio2_7.dll
2010-09-22 08:53:03 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2010-09-22 08:53:03 ----A---- C:\Windows\system32\xactengine3_7.dll
2010-09-22 08:53:03 ----A---- C:\Windows\system32\d3dcsx_43.dll
2010-09-22 08:53:03 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\D3DX9_43.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\d3dx11_43.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\d3dx10_43.dll
2010-09-22 08:53:02 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-09-22 08:53:01 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-09-22 08:53:01 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-09-22 08:53:01 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-09-22 08:53:01 ----A---- C:\Windows\system32\d3dx10_41.dll
2010-09-22 08:53:01 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-09-22 08:53:01 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2010-09-22 08:53:00 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-09-22 08:53:00 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-09-22 08:53:00 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-09-22 08:53:00 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-09-22 08:53:00 ----A---- C:\Windows\system32\D3DX9_41.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-09-22 08:52:59 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-09-22 08:52:58 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-09-22 08:52:58 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-09-22 08:52:58 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-09-22 08:52:58 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-09-22 08:52:58 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-09-22 08:52:58 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-09-22 08:52:58 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-09-22 08:52:58 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-09-22 08:52:58 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-09-22 08:52:57 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-09-22 08:52:57 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-09-22 08:52:57 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-09-22 08:52:57 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-09-22 08:52:57 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-09-22 08:52:56 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-09-22 08:52:56 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-09-22 08:52:56 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-09-22 08:52:56 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-09-22 08:52:56 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-09-22 08:52:56 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-09-22 08:52:56 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-09-22 08:52:55 ----A---- C:\Windows\system32\xinput1_3.dll
2010-09-22 08:52:55 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-09-22 08:52:55 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-09-22 08:52:55 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-09-22 08:52:55 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-09-22 08:52:55 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-09-22 08:52:55 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-09-22 08:52:55 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-09-22 08:52:55 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-09-22 08:52:54 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-09-22 08:52:54 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-09-22 08:52:54 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-09-22 08:52:54 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-09-22 08:52:54 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-09-22 08:52:54 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-09-22 08:52:54 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-09-22 08:52:54 ----A---- C:\Windows\system32\d3dx10.dll
2010-09-22 08:52:53 ----A---- C:\Windows\system32\xinput1_2.dll
2010-09-22 08:52:53 ----A---- C:\Windows\system32\xinput1_1.dll
2010-09-22 08:52:53 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-09-22 08:52:53 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-09-22 08:52:52 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-09-22 08:52:51 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-09-22 08:52:51 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-09-22 08:52:51 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-09-22 08:52:51 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-09-22 08:52:51 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-09-22 08:52:51 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-09-22 08:52:50 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-09-22 08:52:50 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-09-22 08:52:50 ----A---- C:\Windows\system32\d3dx9_24.dll
2010-09-22 08:52:19 ----D---- C:\Shoty
2010-09-22 08:52:03 ----D---- C:\Program Files\ScreenShots
2010-09-22 08:49:47 ----D---- C:\Windows\system32\directx
2010-09-22 08:49:10 ----D---- C:\Users\Feri\AppData\Roaming\WinRAR
2010-09-22 08:48:57 ----D---- C:\Program Files\WinRAR
2010-09-22 08:47:41 ----D---- C:\ProgramData\ACD Systems
2010-09-22 08:47:33 ----D---- C:\Program Files\Common Files\ACD Systems
2010-09-22 08:47:33 ----D---- C:\Program Files\ACD Systems
2010-09-22 08:45:57 ----A---- C:\Windows\system32\unrar.dll
2010-09-22 08:45:54 ----A---- C:\Windows\system32\yv12vfw.dll
2010-09-22 08:45:54 ----A---- C:\Windows\system32\x264vfw.dll
2010-09-22 08:45:53 ----A---- C:\Windows\system32\xvidvfw.dll
2010-09-22 08:45:53 ----A---- C:\Windows\system32\xvidcore.dll
2010-09-22 08:45:53 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2010-09-22 08:45:53 ----A---- C:\Windows\system32\ff_vfw.dll
2010-09-22 08:45:48 ----D---- C:\Program Files\K-Lite Codec Pack
2010-09-22 08:42:24 ----D---- C:\Program Files\ICQ7.2
2010-09-22 08:39:57 ----D---- C:\Users\Feri\AppData\Roaming\Macromedia
2010-09-22 08:39:57 ----D---- C:\Users\Feri\AppData\Roaming\Adobe
2010-09-22 08:36:41 ----A---- C:\Windows\system32\drivers\sptd.sys
2010-09-22 08:36:38 ----D---- C:\Program Files\DAEMON Tools Lite
2010-09-22 08:36:16 ----D---- C:\Users\Feri\AppData\Roaming\DAEMON Tools Lite
2010-09-22 08:36:13 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-09-22 08:31:38 ----D---- C:\ProgramData\Apple Computer
2010-09-22 08:31:38 ----D---- C:\Program Files\QuickTime
2010-09-22 08:31:13 ----D---- C:\Program Files\Common Files\Apple
2010-09-22 08:31:07 ----D---- C:\ProgramData\Apple
2010-09-22 08:31:07 ----D---- C:\Program Files\Apple Software Update
2010-09-22 08:29:26 ----D---- C:\Windows\system32\Macromed
2010-09-22 08:22:11 ----D---- C:\Program Files\Mozilla Firefox
2010-09-22 08:18:50 ----D---- C:\Program Files\RocketDock
2010-09-22 08:18:12 ----D---- C:\Users\Feri\AppData\Roaming\Skype
2010-09-22 08:17:58 ----D---- C:\Users\Feri\AppData\Roaming\Mozilla
2010-09-22 08:17:50 ----D---- C:\Users\Feri\AppData\Roaming\ICQ
2010-09-22 08:17:19 ----N---- C:\Windows\system32\MpSigStub.exe
2010-09-22 08:17:06 ----D---- C:\ikony new
2010-09-22 06:33:37 ----D---- C:\Windows\Panther
2010-09-22 06:33:25 ----RASH---- C:\BOOTSECT.BAK
2010-09-22 06:33:23 ----SHD---- C:\Boot
2010-09-22 06:33:19 ----RA---- C:\Windows\system32\drivers\iteatapi.sys
2010-09-22 05:54:20 ----D---- C:\Users\Feri\AppData\Roaming\ESET
2010-09-22 05:53:24 ----D---- C:\ProgramData\ESET
2010-09-22 05:53:24 ----D---- C:\Program Files\ESET
2010-09-22 05:52:01 ----D---- C:\Windows\system32\RTCOM
2010-09-22 05:51:36 ----A---- C:\Windows\system32\WavesLib.dll
2010-09-22 05:51:36 ----A---- C:\Windows\system32\WavesGUILib.dll
2010-09-22 05:51:36 ----A---- C:\Windows\system32\SRSWOW.dll
2010-09-22 05:51:36 ----A---- C:\Windows\system32\SRSTSXT.dll
2010-09-22 05:51:36 ----A---- C:\Windows\system32\SRSTSHD.dll
2010-09-22 05:51:36 ----A---- C:\Windows\system32\SRSHP360.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\SFNHK.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\SFCOM.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\SFAPO.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RtkPgExt.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RtkCoInst.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RtkApoApi.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RtkAPO.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RTEEP32A.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RTEEL32A.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RTEEG32A.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RTEED32A.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RP3DHT32.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\RP3DAA32.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2010-09-22 05:51:35 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2010-09-22 05:51:34 ----A---- C:\Windows\system32\FMAPO.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\AERTARen.dll
2010-09-22 05:51:34 ----A---- C:\Windows\system32\AERTACap.dll
2010-09-22 05:51:32 ----HD---- C:\Program Files\Temp
2010-09-22 05:51:32 ----A---- C:\Windows\RtlExUpd.dll
2010-09-22 05:51:28 ----D---- C:\Program Files\Common Files\InstallShield
2010-09-22 05:50:54 ----D---- C:\ProgramData\NVIDIA
2010-09-22 05:50:13 ----D---- C:\ProgramData\NVIDIA Corporation
2010-09-22 05:50:10 ----D---- C:\Program Files\NVIDIA Corporation
2010-09-22 05:49:48 ----A---- C:\Windows\system32\OpenCL.dll
2010-09-22 05:49:48 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2010-09-22 05:49:48 ----A---- C:\Windows\system32\dpinst.exe
2010-09-22 05:49:46 ----A---- C:\Windows\system32\nvoglv32.dll
2010-09-22 05:49:46 ----A---- C:\Windows\system32\nvdecodemft.dll
2010-09-22 05:49:46 ----A---- C:\Windows\system32\nvd3dum.dll
2010-09-22 05:49:46 ----A---- C:\Windows\system32\nvcuvid.dll
2010-09-22 05:49:46 ----A---- C:\Windows\system32\nvcuvenc.dll
2010-09-22 05:49:46 ----A---- C:\Windows\system32\nvcuda.dll
2010-09-22 05:49:43 ----A---- C:\Windows\system32\nvcompiler.dll
2010-09-22 05:49:43 ----A---- C:\Windows\system32\nvcod1922.dll
2010-09-22 05:49:43 ----A---- C:\Windows\system32\nvcod.dll
2010-09-22 05:49:43 ----A---- C:\Windows\system32\nvapi.dll
2010-09-22 05:49:37 ----D---- C:\NVIDIA
2010-09-22 05:49:28 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-09-22 05:49:12 ----HD---- C:\Program Files\InstallShield Installation Information
2010-09-22 05:49:12 ----D---- C:\Program Files\Realtek
2010-09-22 05:49:12 ----A---- C:\Windows\system32\RtNicProp32.dll
2010-09-22 05:49:12 ----A---- C:\Windows\system32\drivers\Rtnicxp.sys
2010-09-22 05:47:57 ----D---- C:\Program Files\Yamicsoft
2010-09-22 05:47:49 ----SHD---- C:\Windows\Installer
2010-09-22 05:44:41 ----D---- C:\Users\Feri\AppData\Roaming\Identities
2010-09-22 05:44:30 ----SD---- C:\Users\Feri\AppData\Roaming\Microsoft
2010-09-22 05:44:30 ----D---- C:\Users\Feri\AppData\Roaming\Media Center Programs
2010-09-22 05:44:11 ----SHD---- C:\Recovery
2010-09-22 05:38:20 ----D---- C:\Windows\SoftwareDistribution
2010-09-22 05:35:52 ----D---- C:\Windows\Prefetch
2010-09-22 05:35:14 ----ASH---- C:\pagefile.sys
2010-09-22 05:35:12 ----SHD---- C:\System Volume Information
2010-09-18 06:42:51 ----A---- C:\Windows\system32\drivers\dfsc.sys
2010-09-18 06:42:02 ----A---- C:\Windows\system32\gpsvc.dll
2010-09-18 06:41:14 ----A---- C:\Windows\system32\drivers\appid.sys
2010-09-18 06:41:14 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2010-09-18 06:39:39 ----A---- C:\Windows\system32\tsgqec.dll
2010-09-18 06:39:39 ----A---- C:\Windows\system32\mstscax.dll
2010-09-18 06:39:39 ----A---- C:\Windows\system32\mstsc.exe
2010-09-18 06:39:39 ----A---- C:\Windows\system32\aaclient.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\puiobj.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\puiapi.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\printui.exe
2010-09-18 06:37:58 ----A---- C:\Windows\system32\printui.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\findnetprinters.dll
2010-09-18 06:37:58 ----A---- C:\Windows\system32\compstui.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\provsvc.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\pnrpsvc.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\p2psvc.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\p2pnetsh.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\p2pgroup.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\p2pcollab.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\P2P.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\ListSvc.dll
2010-09-18 06:37:03 ----A---- C:\Windows\system32\Groupinghc.dll
2010-09-18 06:35:10 ----A---- C:\Windows\system32\VSSVC.exe
2010-09-18 06:32:44 ----A---- C:\Windows\system32\gdi32.dll
2010-09-18 06:31:08 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-09-18 06:31:08 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-09-18 06:30:11 ----A---- C:\Windows\system32\drivers\acpi.sys
2010-09-18 06:29:24 ----A---- C:\Windows\system32\msxml6.dll
2010-09-18 06:27:42 ----A---- C:\Windows\system32\rtutils.dll
2010-09-18 06:26:46 ----A---- C:\Windows\system32\localspl.dll
2010-09-18 06:25:50 ----A---- C:\Windows\system32\cdosys.dll
2010-09-18 06:24:47 ----A---- C:\Windows\system32\ir32_32.dll
2010-09-18 06:24:47 ----A---- C:\Windows\system32\iccvid.dll
2010-09-18 06:22:55 ----A---- C:\Windows\system32\sppnp.dll
2010-09-18 06:20:51 ----A---- C:\Windows\system32\tapisrv.dll
2010-09-18 06:18:57 ----A---- C:\Windows\system32\lsm.exe
2010-09-18 06:18:12 ----A---- C:\Windows\system32\wbemcomn.dll
2010-09-18 06:17:26 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-09-18 06:17:26 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-09-18 06:17:26 ----A---- C:\Windows\system32\drivers\srv.sys
2010-09-18 06:16:37 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2010-09-18 06:15:51 ----A---- C:\Windows\system32\mshtml.dll
2010-09-18 06:14:53 ----A---- C:\Windows\system32\t2embed.dll
2010-09-18 06:14:53 ----A---- C:\Windows\system32\fontsub.dll
2010-09-18 06:14:53 ----A---- C:\Windows\system32\atmlib.dll
2010-09-18 06:14:53 ----A---- C:\Windows\system32\atmfd.dll
2010-09-18 06:13:57 ----A---- C:\Windows\system32\usp10.dll
2010-09-18 06:13:13 ----A---- C:\Windows\system32\oleaut32.dll
2010-09-18 06:11:05 ----A---- C:\Windows\system32\esent.dll
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\nvstor.sys
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\nvraid.sys
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\amdxata.sys
2010-09-18 06:11:05 ----A---- C:\Windows\system32\drivers\amdsata.sys
2010-09-18 06:08:15 ----A---- C:\Windows\system32\diskraid.exe
2010-09-18 06:07:20 ----A---- C:\Windows\system32\userenv.dll
2010-09-18 06:06:25 ----A---- C:\Windows\system32\drivers\netio.sys
2010-09-18 06:04:35 ----A---- C:\Windows\system32\wmpps.dll
2010-09-18 06:04:35 ----A---- C:\Windows\system32\wmploc.DLL
2010-09-18 06:04:35 ----A---- C:\Windows\system32\wmp.dll
2010-09-18 06:04:35 ----A---- C:\Windows\system32\spwmp.dll
2010-09-18 06:04:35 ----A---- C:\Windows\system32\dxmasf.dll
2010-09-18 06:02:41 ----A---- C:\Windows\system32\prntvpt.dll
2010-09-18 06:01:58 ----A---- C:\Windows\system32\rastls.dll
2010-09-18 05:58:43 ----A---- C:\Windows\system32\drivers\vmbus.sys
2010-09-18 05:57:58 ----A---- C:\Windows\system32\ci.dll
2010-09-18 05:57:10 ----A---- C:\Windows\system32\eudcedit.exe
2010-09-18 05:55:13 ----A---- C:\Windows\system32\drivers\ndis.sys
2010-09-18 05:52:39 ----A---- C:\Windows\system32\wevtsvc.dll
2010-09-18 05:51:44 ----A---- C:\Windows\system32\drivers\rdbss.sys
2010-09-18 05:51:01 ----A---- C:\Windows\system32\mstask.dll
2010-09-18 05:48:27 ----A---- C:\Windows\system32\drivers\wanarp.sys
2010-09-18 05:48:27 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2010-09-18 05:47:40 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2010-09-18 05:46:11 ----A---- C:\Windows\system32\winsrv.dll
2010-09-18 05:44:42 ----A---- C:\Windows\system32\zipfldr.dll
2010-09-18 05:42:07 ----A---- C:\Windows\system32\prncache.dll
2010-09-18 05:41:14 ----A---- C:\Windows\system32\setupcl.exe
2010-09-18 05:38:59 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-09-18 05:38:59 ----A---- C:\Windows\system32\PresentationHost.exe
2010-09-18 05:37:54 ----A---- C:\Windows\system32\drivers\msdsm.sys
2010-09-18 05:37:01 ----A---- C:\Windows\system32\wwanconn.dll
2010-09-18 05:36:07 ----A---- C:\Windows\system32\vbscript.dll
2010-09-18 05:33:25 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2010-09-18 05:32:29 ----A---- C:\Windows\system32\winresume.exe
2010-09-18 05:32:29 ----A---- C:\Windows\system32\winload.exe
2010-09-18 05:31:36 ----A---- C:\Windows\system32\appmgr.dll
2010-09-18 05:30:43 ----A---- C:\Windows\system32\dnsrslvr.dll
2010-09-18 05:30:43 ----A---- C:\Windows\system32\dnsapi.dll
2010-09-18 05:30:42 ----A---- C:\Windows\system32\dnscacheugc.exe
2010-09-18 05:29:51 ----A---- C:\Windows\system32\raschap.dll
2010-09-18 05:28:05 ----A---- C:\Windows\explorer.exe
2010-09-18 05:25:41 ----A---- C:\Windows\system32\rdpdd.dll
2010-09-18 05:25:41 ----A---- C:\Windows\system32\drivers\volmgr.sys
2010-09-18 05:25:41 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2010-09-18 05:25:41 ----A---- C:\Windows\system32\drivers\pci.sys
2010-09-18 05:25:40 ----A---- C:\Windows\system32\drivers\termdd.sys
2010-09-18 05:23:55 ----A---- C:\Windows\system32\basecsp.dll
2010-09-18 05:23:08 ----A---- C:\Windows\system32\msdri.dll
2010-09-18 05:23:07 ----A---- C:\Windows\system32\psisdecd.dll
2010-09-18 05:21:16 ----A---- C:\Windows\system32\audiosrv.dll
2010-09-18 05:21:15 ----A---- C:\Windows\system32\AUDIOKSE.dll
2010-09-18 05:21:15 ----A---- C:\Windows\system32\AudioEng.dll
2010-09-18 05:21:15 ----A---- C:\Windows\system32\audiodg.exe
2010-09-18 05:20:32 ----A---- C:\Windows\twain_32.dll
2010-09-18 05:20:32 ----A---- C:\Windows\system32\wiaservc.dll
2010-09-18 05:16:54 ----A---- C:\Windows\system32\cryptsvc.dll
2010-09-18 05:16:06 ----A---- C:\Windows\system32\user32.dll
2010-09-18 05:14:09 ----A---- C:\Windows\system32\mapistub.dll
2010-09-18 05:14:09 ----A---- C:\Windows\system32\mapi32.dll
2010-09-18 05:13:27 ----A---- C:\Windows\system32\themeui.dll
2010-09-18 05:12:42 ----A---- C:\Windows\system32\schannel.dll
2010-09-18 05:11:02 ----A---- C:\Windows\system32\umpnpmgr.dll
2010-09-18 05:09:27 ----A---- C:\Windows\system32\termsrv.dll
2010-09-18 05:08:45 ----A---- C:\Windows\system32\drivers\ntfs.sys
2010-09-18 05:07:48 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2010-09-18 05:07:06 ----A---- C:\Windows\system32\dot3svc.dll
2010-09-18 05:07:06 ----A---- C:\Windows\system32\dot3msm.dll
2010-09-18 05:07:06 ----A---- C:\Windows\system32\dot3dlg.dll
2010-09-18 05:07:06 ----A---- C:\Windows\system32\dot3api.dll
2010-09-18 05:02:58 ----A---- C:\Windows\system32\vds.exe
2010-09-18 05:01:32 ----A---- C:\Windows\system32\Robocopy.exe
2010-09-18 05:00:05 ----A---- C:\Windows\system32\webservices.dll
2010-09-18 04:58:36 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-09-18 04:57:54 ----A---- C:\Windows\system32\ole32.dll
2010-09-18 04:57:11 ----A---- C:\Windows\system32\netjoin.dll
2010-09-18 04:56:28 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2010-09-18 04:54:56 ----A---- C:\Windows\system32\drivers\ks.sys
2010-09-18 04:54:17 ----A---- C:\Windows\system32\WMPhoto.dll
2010-09-18 04:53:37 ----A---- C:\Windows\system32\asycfilt.dll
2010-09-18 04:52:54 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-09-18 04:52:15 ----A---- C:\Windows\system32\imapi2.dll
2010-09-18 04:51:33 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-09-18 04:51:33 ----A---- C:\Windows\system32\rasmans.dll
2010-09-18 04:51:33 ----A---- C:\Windows\system32\netiougc.exe
2010-09-18 04:50:50 ----A---- C:\Windows\system32\cabview.dll
2010-09-18 04:50:09 ----A---- C:\Windows\system32\wlaninst.dll
2010-09-18 04:48:50 ----A---- C:\Windows\system32\wmpeffects.dll
2010-09-18 04:48:03 ----A---- C:\Windows\system32\sbunattend.exe
2010-09-18 04:46:32 ----A---- C:\Windows\system32\rpcrt4.dll
2010-09-18 04:44:55 ----A---- C:\Windows\system32\iasrad.dll
2010-09-18 04:44:07 ----A---- C:\Windows\system32\netiohlp.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\secproc_isv.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\secproc.dll
2010-09-18 04:43:17 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-09-18 04:43:17 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-09-18 04:43:17 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-09-18 04:43:17 ----A---- C:\Windows\system32\RMActivate.exe
2010-09-18 04:42:26 ----A---- C:\Windows\system32\scrptadm.dll
2010-09-18 04:42:26 ----A---- C:\Windows\system32\AdmTmpl.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFx.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFSvc.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFPlatform.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFHost.exe
2010-09-18 04:41:37 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2010-09-18 04:41:37 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2010-09-18 04:41:37 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2010-09-18 04:40:47 ----A---- C:\Windows\system32\hbaapi.dll
2010-09-18 04:40:00 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2010-09-18 04:39:12 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-09-18 04:38:23 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-09-18 04:37:35 ----A---- C:\Windows\system32\ncryptui.dll
2010-09-18 04:36:01 ----A---- C:\Windows\system32\dnscmmc.dll
2010-09-18 04:35:11 ----A---- C:\Windows\system32\nltest.exe
2010-09-18 04:35:11 ----A---- C:\Windows\system32\netlogon.dll
2010-09-18 04:35:11 ----A---- C:\Windows\system32\netapi32.dll
2010-09-18 04:35:11 ----A---- C:\Windows\system32\logoncli.dll
2010-09-18 04:34:21 ----A---- C:\Windows\system32\w32tm.exe
2010-09-18 04:33:42 ----A---- C:\Windows\system32\wintrust.dll
2010-09-18 04:33:04 ----A---- C:\Windows\system32\inetcomm.dll
2010-09-18 04:32:22 ----A---- C:\Windows\system32\drivers\udfs.sys
2010-09-18 04:30:58 ----A---- C:\Windows\system32\xolehlp.dll
2010-09-18 04:30:58 ----A---- C:\Windows\system32\mtxclu.dll
2010-09-18 04:30:58 ----A---- C:\Windows\system32\msdtctm.dll
2010-09-18 04:30:58 ----A---- C:\Windows\system32\msdtcprx.dll
2010-09-18 04:30:08 ----A---- C:\Windows\system32\drivers\cdrom.sys
2010-09-18 04:29:20 ----A---- C:\Windows\system32\halmacpi.dll
2010-09-18 04:29:20 ----A---- C:\Windows\system32\halacpi.dll
2010-09-18 04:29:20 ----A---- C:\Windows\system32\hal.dll
2010-09-18 04:27:12 ----A---- C:\Windows\system32\mfds.dll
2010-09-18 04:25:04 ----A---- C:\Windows\system32\drivers\usbcir.sys
2010-09-18 04:25:04 ----A---- C:\Windows\system32\CIRCoInst.dll
2010-09-18 04:22:51 ----A---- C:\Windows\system32\scecli.dll
2010-09-18 04:22:04 ----A---- C:\Windows\system32\conhost.exe
2010-09-18 04:21:25 ----A---- C:\Windows\system32\msinfo32.exe
2010-09-18 04:20:01 ----A---- C:\Windows\system32\qdvd.dll
2010-09-18 04:18:34 ----A---- C:\Windows\system32\efscore.dll
2010-09-18 04:17:53 ----A---- C:\Windows\system32\winlogon.exe
2010-09-18 04:15:41 ----A---- C:\Windows\system32\rasapi32.dll
2010-09-18 04:15:40 ----A---- C:\Windows\system32\rasppp.dll
2010-09-18 04:15:40 ----A---- C:\Windows\system32\mprddm.dll
2010-09-18 04:14:29 ----A---- C:\Windows\system32\cscsvc.dll
2010-09-18 04:14:28 ----A---- C:\Windows\system32\cscdll.dll
2010-09-18 04:14:28 ----A---- C:\Windows\system32\cscapi.dll
2010-09-18 04:13:28 ----A---- C:\Windows\system32\cryptui.dll
2010-09-18 04:12:51 ----A---- C:\Windows\system32\apphelp.dll
2010-09-18 04:12:10 ----A---- C:\Windows\system32\Narrator.exe
2010-09-18 04:10:13 ----A---- C:\Windows\system32\crypt32.dll
2010-09-18 04:08:55 ----A---- C:\Windows\system32\taskschd.dll
2010-09-18 04:08:18 ----A---- C:\Windows\system32\isoburn.exe
2010-09-18 04:06:55 ----A---- C:\Windows\system32\jscript.dll
2010-09-18 04:06:17 ----A---- C:\Windows\system32\win32spl.dll
2010-09-18 04:06:17 ----A---- C:\Windows\system32\PrintBrmUi.exe
2010-09-18 04:04:44 ----A---- C:\Windows\system32\scansetting.dll
2010-09-18 04:03:51 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-09-18 04:03:13 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2010-09-18 04:02:33 ----A---- C:\Windows\system32\dot3cfg.dll
2010-09-18 03:59:55 ----A---- C:\Windows\system32\wwanprotdim.dll
2010-09-18 03:58:42 ----A---- C:\Windows\system32\evr.dll
2010-09-18 03:58:07 ----A---- C:\Windows\system32\autochk.exe
2010-09-18 03:57:32 ----A---- C:\Windows\system32\taskhost.exe
2010-09-18 03:56:17 ----A---- C:\Windows\system32\msyuv.dll
2010-09-18 03:56:17 ----A---- C:\Windows\system32\iyuv_32.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\tsbyuv.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\quartz.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\msvidc32.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\msrle32.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\mciavi32.dll
2010-09-18 03:56:16 ----A---- C:\Windows\system32\avifil32.dll
2010-09-18 03:55:37 ----A---- C:\Windows\system32\vpnikeapi.dll
2010-09-18 03:55:37 ----A---- C:\Windows\system32\vpnike.dll
2010-09-18 03:55:00 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-09-18 03:54:24 ----A---- C:\Windows\system32\msv1_0.dll
2010-09-18 03:53:07 ----A---- C:\Windows\system32\AzSqlExt.dll
2010-09-18 03:53:07 ----A---- C:\Windows\system32\azroles.dll
2010-09-18 03:52:32 ----A---- C:\Windows\system32\dxdiagn.dll
2010-09-18 03:52:32 ----A---- C:\Windows\system32\dxdiag.exe
2010-09-18 03:48:34 ----A---- C:\Windows\system32\msasn1.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\tquery.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-09-18 03:45:22 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-09-18 03:45:22 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-09-18 03:45:22 ----A---- C:\Windows\system32\mssvp.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\mssrch.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\mssphtb.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\mssph.dll
2010-09-18 03:45:22 ----A---- C:\Windows\system32\msscntrs.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\uxlibres.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\uxlib.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\spwizres.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\spwizimg_original.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\spwizimg.dll
2010-09-18 03:44:37 ----A---- C:\Windows\system32\spwizeng.dll
2010-09-18 03:43:50 ----A---- C:\Windows\system32\iprtrmgr.dll
2010-09-18 03:43:07 ----A---- C:\Windows\system32\rdpendp.dll
2010-09-18 03:42:24 ----A---- C:\Windows\system32\onexui.dll
2010-09-18 03:42:24 ----A---- C:\Windows\system32\onex.dll
2010-09-18 03:41:11 ----A---- C:\Windows\system32\WebClnt.dll
2010-09-18 03:39:56 ----A---- C:\Windows\system32\profsvc.dll
2010-09-18 03:39:20 ----A---- C:\Windows\system32\licmgr10.dll
2010-09-18 03:38:45 ----A---- C:\Windows\system32\framedynos.dll
2010-09-18 03:38:45 ----A---- C:\Windows\system32\framedyn.dll
2010-09-18 03:38:05 ----A---- C:\Windows\system32\regapi.dll
2010-09-18 03:36:56 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2010-09-18 03:36:17 ----A---- C:\Windows\system32\rdpcorekmts.dll
2010-09-18 03:32:37 ----A---- C:\Windows\system32\drivers\umbus.sys
2010-09-18 03:30:59 ----A---- C:\Windows\system32\sxstrace.exe
2010-09-18 03:30:59 ----A---- C:\Windows\system32\sxs.dll
2010-09-18 03:30:59 ----A---- C:\Windows\system32\comctl32.dll
2010-09-18 03:30:01 ----A---- C:\Windows\system32\poqexec.exe
2010-09-18 03:29:18 ----A---- C:\Windows\system32\iertutil.dll
2010-09-18 03:28:41 ----A---- C:\Windows\system32\win32k.sys
2010-09-18 03:28:08 ----A---- C:\Windows\system32\samsrv.dll
2010-09-18 03:27:26 ----A---- C:\Windows\system32\KernelBase.dll
2010-09-18 03:27:26 ----A---- C:\Windows\system32\kernel32.dll
2010-09-18 03:26:45 ----A---- C:\Windows\system32\spoolsv.exe
2010-09-18 03:26:03 ----A---- C:\Windows\system32\sspisrv.dll
2010-09-18 03:26:03 ----A---- C:\Windows\system32\sspicli.dll
2010-09-18 03:26:03 ----A---- C:\Windows\system32\secur32.dll
2010-09-18 03:26:03 ----A---- C:\Windows\system32\lsasrv.dll
2010-09-18 03:26:03 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-09-18 03:26:03 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2010-09-18 03:25:29 ----A---- C:\Windows\system32\UIRibbonRes.dll
2010-09-18 03:25:29 ----A---- C:\Windows\system32\UIRibbon.dll
2010-09-18 03:24:48 ----A---- C:\Windows\system32\ieui.dll
2010-09-18 03:24:48 ----A---- C:\Windows\system32\ieframe.dll
2010-09-18 03:24:10 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-09-18 03:24:10 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-09-18 03:23:12 ----A---- C:\Windows\system32\drivers\msahci.sys
2010-09-18 03:23:12 ----A---- C:\Windows\system32\drivers\ataport.sys
2010-09-18 03:22:40 ----A---- C:\Windows\system32\propsys.dll
2010-09-18 03:21:50 ----A---- C:\Windows\system32\drivers\usbport.sys
2010-09-18 03:21:50 ----A---- C:\Windows\system32\drivers\usbhub.sys
2010-09-18 03:21:50 ----A---- C:\Windows\system32\drivers\usbehci.sys
2010-09-18 03:21:11 ----A---- C:\Windows\system32\spp.dll
2010-09-18 03:20:35 ----A---- C:\Windows\system32\uxsms.dll
2010-09-18 03:20:35 ----A---- C:\Windows\system32\dwmredir.dll
2010-09-18 03:20:35 ----A---- C:\Windows\system32\dwm.exe
2010-09-18 03:19:51 ----A---- C:\Windows\system32\shell32.dll
2010-09-18 03:19:09 ----A---- C:\Windows\system32\gpprefcl.dll
2010-09-18 03:18:38 ----A---- C:\Windows\system32\sdrsvc.dll
2010-09-18 03:18:38 ----A---- C:\Windows\system32\sdengin2.dll
2010-09-18 03:18:38 ----A---- C:\Windows\system32\sdclt.exe
2010-09-18 03:18:07 ----A---- C:\Windows\system32\shsvcs.dll
2010-09-18 03:17:35 ----A---- C:\Windows\system32\drivers\storport.sys
2010-09-18 03:16:58 ----A---- C:\Windows\system32\inetpp.dll
2010-09-18 03:16:27 ----A---- C:\Windows\system32\WsmAuto.dll
2010-09-18 03:16:26 ----A---- C:\Windows\system32\WsmWmiPl.dll
2010-09-18 03:16:26 ----A---- C:\Windows\system32\WsmSvc.dll
2010-09-18 03:16:26 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2010-09-18 03:16:26 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2010-09-18 03:15:51 ----A---- C:\Windows\system32\bcdboot.exe
2010-09-18 03:15:09 ----A---- C:\Windows\system32\drivers\mpio.sys
2010-09-18 03:13:51 ----A---- C:\Windows\system32\setupapi.dll
2010-09-18 03:13:51 ----A---- C:\Windows\system32\drvstore.dll
2010-09-18 03:13:11 ----A---- C:\Windows\system32\Wldap32.dll
2010-09-18 03:12:31 ----A---- C:\Windows\system32\wininet.dll
2010-09-18 03:11:49 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2010-09-18 03:10:26 ----A---- C:\Windows\system32\SearchFolder.dll
2010-09-18 03:09:56 ----A---- C:\Windows\system32\pla.dll
2010-09-18 03:09:56 ----A---- C:\Windows\system32\pdh.dll
2010-09-18 03:09:23 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2010-09-18 03:08:52 ----A---- C:\Windows\system32\CPFilters.dll
2010-09-18 03:08:18 ----A---- C:\Windows\system32\nrpsrv.dll
2010-09-18 03:07:48 ----A---- C:\Windows\system32\ntdll.dll
2010-09-18 03:07:13 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2010-09-18 03:06:42 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-09-18 03:06:42 ----A---- C:\Windows\system32\actxprxy.dll
2010-09-18 03:06:10 ----A---- C:\Windows\system32\wisptis.exe
2010-09-18 03:06:10 ----A---- C:\Windows\system32\TabSvc.dll
2010-09-18 03:05:26 ----A---- C:\Windows\system32\msdrm.dll
2010-09-18 03:02:17 ----A---- C:\Windows\system32\drivers\hidclass.sys
2010-09-18 03:01:43 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2010-09-18 03:01:08 ----A---- C:\Windows\system32\WSDApi.dll
2010-09-18 03:00:36 ----A---- C:\Windows\system32\sppsvc.exe
2010-09-18 03:00:02 ----A---- C:\Windows\system32\drivers\volsnap.sys
2010-09-18 02:59:27 ----A---- C:\Windows\system32\FXSSVC.exe
2010-09-18 02:58:49 ----A---- C:\Windows\system32\RpcRtRemote.dll
2010-09-18 02:58:11 ----A---- C:\Windows\system32\clusapi.dll
2010-09-18 02:57:31 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2010-09-18 02:56:54 ----A---- C:\Windows\system32\TSpkg.dll
2010-09-18 02:56:54 ----A---- C:\Windows\system32\credssp.dll
2010-09-18 02:56:16 ----A---- C:\Windows\system32\eapphost.dll
2010-09-18 02:56:16 ----A---- C:\Windows\system32\eappgnui.dll
2010-09-18 02:56:16 ----A---- C:\Windows\system32\eapp3hst.dll
2010-09-18 02:55:38 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-09-18 02:54:48 ----A---- C:\Windows\system32\iepeers.dll
2010-09-18 02:54:48 ----A---- C:\Windows\system32\iedkcs32.dll
2010-09-18 02:54:47 ----A---- C:\Windows\system32\mstime.dll
2010-09-18 02:54:47 ----A---- C:\Windows\system32\msfeedssync.exe
2010-09-18 02:54:47 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-09-18 02:54:46 ----A---- C:\Windows\system32\urlmon.dll
2010-09-18 02:53:49 ----A---- C:\Windows\system32\wbengine.exe
2010-09-18 02:53:12 ----A---- C:\Windows\system32\drivers\csc.sys
2010-09-18 02:53:12 ----A---- C:\Windows\system32\CscMig.dll
2010-09-18 02:52:36 ----A---- C:\Windows\system32\netid.dll
2010-09-18 02:51:18 ----A---- C:\Windows\system32\tzres.dll
2010-09-18 02:50:34 ----A---- C:\Windows\system32\kerberos.dll
2010-09-18 02:49:59 ----A---- C:\Windows\system32\consent.exe
2010-09-18 02:49:59 ----A---- C:\Windows\system32\appinfo.dll
2010-09-18 02:47:43 ----A---- C:\Windows\system32\WMVDECOD.DLL
2010-09-18 02:47:43 ----A---- C:\Windows\system32\mfreadwrite.dll
2010-09-18 02:47:43 ----A---- C:\Windows\system32\mf.dll
2010-09-18 02:47:02 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-09-18 02:47:02 ----A---- C:\Windows\system32\cdd.dll
2010-09-18 02:46:26 ----A---- C:\Windows\system32\msxml3.dll
2010-09-18 02:45:47 ----A---- C:\Windows\system32\CertEnroll.dll
2010-09-18 02:45:10 ----A---- C:\Windows\system32\drivers\http.sys
2010-09-18 02:44:35 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2010-09-18 02:44:00 ----A---- C:\Windows\system32\vsstrace.dll
2010-09-18 02:43:59 ----A---- C:\Windows\system32\vssapi.dll
2010-09-18 02:43:16 ----A---- C:\Windows\system32\cscobj.dll
2010-09-18 02:42:42 ----A---- C:\Windows\system32\mcbuilder.exe
2010-09-18 02:42:08 ----A---- C:\Windows\system32\drivers\tdx.sys
2010-09-18 02:41:34 ----A---- C:\Windows\system32\drivers\partmgr.sys
2010-09-18 02:40:59 ----A---- C:\Windows\system32\pnidui.dll
2010-09-18 02:40:59 ----A---- C:\Windows\system32\netshell.dll
2010-09-18 02:40:23 ----A---- C:\Windows\system32\cmd.exe
2010-09-18 02:39:46 ----A---- C:\Windows\system32\IKEEXT.DLL
2010-09-18 02:39:09 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-09-18 02:38:34 ----A---- C:\Windows\system32\certmgr.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\FntCache.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\DWrite.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\d3d10warp.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\d3d10_1core.dll
2010-09-18 02:37:59 ----A---- C:\Windows\system32\d2d1.dll
2010-09-18 02:37:24 ----A---- C:\Windows\system32\XpsRasterService.dll
2010-09-18 02:37:24 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2010-09-18 02:36:17 ----A---- C:\Windows\system32\AtBroker.exe
2010-09-18 02:35:42 ----A---- C:\Windows\system32\wshnetbs.dll
2010-09-18 02:35:07 ----A---- C:\Windows\system32\rundll32.exe
2010-09-18 02:34:30 ----A---- C:\Windows\system32\MUILanguageCleanup.dll
2010-09-18 02:34:30 ----A---- C:\Windows\system32\lpremove.exe
2010-09-18 02:34:30 ----A---- C:\Windows\system32\lpksetupproxyserv.dll
2010-09-18 02:34:30 ----A---- C:\Windows\system32\lpksetup.exe
2010-09-18 02:34:30 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2010-09-18 02:33:37 ----A---- C:\Windows\system32\notepad.exe
2010-09-18 02:33:37 ----A---- C:\Windows\notepad.exe

======List of files/folders modified in the last 1 months======

2010-09-22 17:59:07 ----D---- C:\Windows\Temp
2010-09-22 17:59:03 ----RD---- C:\Program Files
2010-09-22 15:55:08 ----D---- C:\Windows\System32
2010-09-22 15:52:16 ----D---- C:\Windows\system32\Tasks
2010-09-22 15:51:52 ----D---- C:\Program Files\Common Files
2010-09-22 15:51:48 ----HD---- C:\ProgramData
2010-09-22 15:24:04 ----D---- C:\Windows\system32\config
2010-09-22 15:13:56 ----D---- C:\Windows\winsxs
2010-09-22 15:13:54 ----D---- C:\Program Files\Common Files\microsoft shared
2010-09-22 14:37:41 ----D---- C:\Windows\inf
2010-09-22 10:50:01 ----D---- C:\Windows
2010-09-22 09:35:08 ----D---- C:\Windows\Microsoft.NET
2010-09-22 09:34:57 ----RSD---- C:\Windows\assembly
2010-09-22 09:01:27 ----RSD---- C:\Windows\Fonts
2010-09-22 08:49:46 ----D---- C:\Windows\Logs
2010-09-22 08:40:07 ----D---- C:\Windows\system32\wdi
2010-09-22 08:36:41 ----D---- C:\Windows\system32\drivers
2010-09-22 08:32:02 ----D---- C:\Program Files\Internet Explorer
2010-09-22 05:54:22 ----D---- C:\Windows\system32\catroot2
2010-09-22 05:54:22 ----D---- C:\Windows\system32\catroot
2010-09-22 05:54:01 ----D---- C:\Windows\system32\DriverStore
2010-09-22 05:51:51 ----D---- C:\Windows\system32\CodeIntegrity
2010-09-22 05:50:34 ----D---- C:\Windows\Help
2010-09-22 05:48:14 ----D---- C:\Windows\system32\wbem
2010-09-22 05:44:38 ----SHD---- C:\$Recycle.Bin
2010-09-22 05:44:27 ----RD---- C:\Users
2010-09-22 05:44:12 ----SD---- C:\ProgramData\Microsoft
2010-09-22 05:44:01 ----D---- C:\Windows\rescache
2010-09-22 05:43:53 ----D---- C:\Windows\debug
2010-09-22 05:38:32 ----D---- C:\Windows\system32\sysprep
2010-09-22 05:35:58 ----D---- C:\Windows\CSC
2010-09-18 14:01:44 ----A---- C:\Windows\system32\imageres.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iteatapi;ITEATAPI_Service_Install; C:\Windows\system32\DRIVERS\iteatapi.sys [2010-02-16 24972]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-09-18 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-09-22 691696]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-09-18 387584]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2010-07-29 134512]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2010-07-29 41336]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-09-03 3185640]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2009-07-23 43008]
S3 ah1jr1oj;ah1jr1oj; C:\Windows\system32\drivers\ah1jr1oj.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2010-09-18 175752]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Akamai;Akamai NetSession Interface; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-08-12 810144]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2010-08-16 73728]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-09 129640]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-07-09 248936]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2010-05-18 935208]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-08-12 33584]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

Ďakujem

#12 Příspěvek od **vyosek** » 22 zář 2010 17:19

Log vypada cisty

DexterWx · #13 Příspěvek od **DexterWx** » 22 zář 2010 18:59

Ďakujem ešte raz za rady, pekný večer.

môžte lock.

#14 Příspěvek od **vyosek** » 22 zář 2010 19:53

Nemate zac, pekny vecer i Vam

VIRY.CZ

Trójsky kôň?

Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?

Re: Trójsky kôň?