Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosim o kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Prosim o kontrolu

#1 Příspěvek od Edon »

Tu je log z RSIT:

Logfile of random's system information tool 1.08 (written by random/random)
Run by notebook at 2011-06-29 16:21:48
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 7 GB (9%) free of 76 GB
Total RAM: 4061 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:22:30, on 29. 6. 2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Users\notebook\AppData\Roaming\QipGuard\QipGuard.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files (x86)\ICQ7.2\ICQ.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Olympus\ib\olycamdetect.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
C:\Program Files (x86)\landi 11\Landi11.exe
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files\trend micro\notebook.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: QipLI - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Pomocník pri prihlasovaní v sieti Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: PHPNukeEN - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [Olympus ib] "C:\Program Files (x86)\Olympus\ib\olycamdetect.exe" /Startup
O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files (x86)\Olympus\ib\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Olympus\ib" UpdateWithCreateOnce "Software\OLYMPUS\ib\1.0"
O4 - HKLM\..\Run: [DivX Download Manager] "C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe" start
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O4 - HKCU\..\Run: [QIP Internet Guardian] C:\Users\notebook\AppData\Roaming\QipGuard\QipGuard.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ7.2\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [AdobeUpdater6] "C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Landi 11.lnk = C:\Program Files (x86)\landi 11\Landi11.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13797 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe"
"C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\servicing\TrustedInstaller.exe
"taskhost.exe"
taskeng.exe {06A23DDD-B732-4114-8E7E-16BEA9B74FDA}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Windows\system32\spool\DRIVERS\x64\3\HP1006MC.EXE" -Embedding
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
Atouch64.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
ATKOSD.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
KBFiltr.exe
"C:\Windows\System32\igfxtray.exe"
WDC.exe
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Users\notebook\AppData\Roaming\QipGuard\QipGuard.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files (x86)\ICQ7.2\ICQ.exe" silent loginmode=4
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe"
"C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
"C:\Program Files (x86)\Olympus\ib\olycamdetect.exe" /Startup
"C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe"
"C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip
"C:\Program Files (x86)\landi 11\Landi11.exe" -tray
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe" -AU_LAUNCH_MODE=1 -AU_DISPLAY_LANG=en_US -AU_LAUNCH_APPID=reader9rdr-MUI
C:\Windows\system32\AUDIODG.EXE 0x7c8
{9E48A746-B4D5-452A-8719-51F851AB0324}
{A8AD995F-219F-4A33-B3F2-D2379A9130A1}
"C:\Program Files (x86)\Opera\opera.exe"
"C:\Windows\system32\wuauclt.exe"
"C:\Users\notebook\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
taskhost.exe $(Arg0)

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\RMSchedule.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-06-08 346736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2010-06-08 318960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-12-30 382720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-11-13 3913000]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6B5863A0-C43F-4C0A-982B-CC0E9125783F}]
QipLI Class - C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll [2010-10-25 48080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v sieti Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2010-10-25 140752]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-06-08 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2010-06-08 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2010-06-08 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dd02a4eb-4afd-4d60-99d8-e67f964ca813}]
PHPNukeEN Toolbar - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll [2010-11-13 3913000]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-06-08 346736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-06-08 256112]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll [2010-09-06 1048888]
{dd02a4eb-4afd-4d60-99d8-e67f964ca813} - PHPNukeEN Toolbar - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll [2010-11-13 3913000]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-11-13 3913000]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2009-09-30 621440]
"ASUS WebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2010-03-16 1754448]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-01 323584]
"Setwallpaper"=c:\programdata\SetWallpaper.cmd []
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-11-04 2919168]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-08-25 161304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-08-25 386584]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-08-25 415256]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"QIP Internet Guardian"=C:\Users\notebook\AppData\Roaming\QipGuard\QipGuard.exe [2010-10-25 190928]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"PC Suite Tray"=C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2010-12-21 1483264]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]
"ICQ"=C:\Program Files (x86)\ICQ7.2\ICQ.exe [2011-01-05 133432]
"AdobeUpdater6"=C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe [2009-01-08 2521464]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSMTray]
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe [2009-06-24 272952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-06-08 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"Boingo Wi-Fi"=C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2010-06-08 2429]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-09-17 2245120]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [2009-08-20 170624]
"TkBellExe"=C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [2010-12-30 274608]
"Olympus ib"=C:\Program Files (x86)\Olympus\ib\olycamdetect.exe [2010-06-02 93376]
"MDS_Menu"=C:\Program Files (x86)\Olympus\ib\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"DivX Download Manager"=C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe [2011-02-08 63360]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]
"SSDMonitor"=C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2010-11-15 112600]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe

C:\Users\notebook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Landi 11.lnk - C:\Program Files (x86)\landi 11\Landi11.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-08-25 271360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=16

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-06-29 16:21:49 ----D---- C:\Program Files\trend micro
2011-06-29 16:21:48 ----D---- C:\rsit
2011-06-24 12:17:49 ----D---- C:\Windows\system32\SPReview
2011-06-24 12:16:06 ----D---- C:\Windows\system32\EventProviders
2011-06-22 17:28:47 ----A---- C:\Windows\system32\netfxperf.dll
2011-06-22 17:28:47 ----A---- C:\Windows\system32\dfshim.dll
2011-06-22 17:28:35 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2011-06-22 17:28:29 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-06-22 17:28:29 ----A---- C:\Windows\system32\mstscax.dll
2011-06-22 17:28:29 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-06-22 17:28:29 ----A---- C:\Windows\system32\d3d10warp.dll
2011-06-22 17:28:25 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-06-22 17:28:21 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2011-06-22 17:28:20 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2011-06-22 17:28:20 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2011-06-22 17:28:20 ----A---- C:\Windows\system32\sysmain.dll
2011-06-22 17:28:19 ----A---- C:\Windows\system32\shell32.dll
2011-06-22 17:28:17 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-06-22 17:28:16 ----A---- C:\Windows\system32\wmp.dll
2011-06-22 17:28:16 ----A---- C:\Windows\system32\tquery.dll
2011-06-22 17:28:14 ----A---- C:\Windows\system32\ntdll.dll
2011-06-22 17:28:14 ----A---- C:\Windows\system32\mssrch.dll
2011-06-22 17:28:14 ----A---- C:\Windows\system32\mscoree.dll
2011-06-22 17:28:13 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-06-22 17:28:12 ----A---- C:\Windows\system32\secproc_isv.dll
2011-06-22 17:28:12 ----A---- C:\Windows\system32\mf.dll
2011-06-22 17:28:11 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2011-06-22 17:28:11 ----A---- C:\Windows\system32\xpsservices.dll
2011-06-22 17:28:11 ----A---- C:\Windows\system32\secproc.dll
2011-06-22 17:28:11 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-06-22 17:28:11 ----A---- C:\Windows\system32\RMActivate.exe
2011-06-22 17:28:09 ----A---- C:\Windows\SYSWOW64\shell32.dll
2011-06-22 17:28:08 ----A---- C:\Windows\SYSWOW64\secproc.dll
2011-06-22 17:28:08 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2011-06-22 17:28:08 ----A---- C:\Windows\system32\rpcrt4.dll
2011-06-22 17:28:06 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2011-06-22 17:28:06 ----A---- C:\Windows\system32\schedsvc.dll
2011-06-22 17:28:06 ----A---- C:\Windows\system32\ole32.dll
2011-06-22 17:28:04 ----A---- C:\Windows\system32\spwizui.dll
2011-06-22 17:28:03 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2011-06-22 17:28:02 ----A---- C:\Windows\system32\wevtsvc.dll
2011-06-22 17:28:02 ----A---- C:\Windows\system32\taskschd.dll
2011-06-22 17:28:02 ----A---- C:\Windows\system32\RacEngn.dll
2011-06-22 17:28:02 ----A---- C:\Windows\system32\diagperf.dll
2011-06-22 17:28:01 ----A---- C:\Windows\SYSWOW64\mf.dll
2011-06-22 17:28:01 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-06-22 17:28:00 ----A---- C:\Windows\system32\vssapi.dll
2011-06-22 17:28:00 ----A---- C:\Windows\system32\msxml3.dll
2011-06-22 17:28:00 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-06-22 17:27:59 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2011-06-22 17:27:59 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-06-22 17:27:58 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2011-06-22 17:27:58 ----A---- C:\Windows\system32\UIRibbon.dll
2011-06-22 17:27:58 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-06-22 17:27:56 ----A---- C:\Windows\SYSWOW64\wmp.dll
2011-06-22 17:27:55 ----A---- C:\Windows\system32\WsmSvc.dll
2011-06-22 17:27:54 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2011-06-22 17:27:54 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2011-06-22 17:27:54 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-06-22 17:27:54 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-06-22 17:27:54 ----A---- C:\Windows\system32\PresentationHost.exe
2011-06-22 17:27:53 ----A---- C:\Windows\system32\rdpdd.dll
2011-06-22 17:27:53 ----A---- C:\Windows\system32\MPSSVC.dll
2011-06-22 17:27:52 ----A---- C:\Windows\SYSWOW64\tquery.dll
2011-06-22 17:27:52 ----A---- C:\Windows\system32\WinSAT.exe
2011-06-22 17:27:52 ----A---- C:\Windows\system32\spreview.exe
2011-06-22 17:27:52 ----A---- C:\Windows\system32\spinstall.exe
2011-06-22 17:27:52 ----A---- C:\Windows\system32\CertEnroll.dll
2011-06-22 17:27:51 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-06-22 17:27:51 ----A---- C:\Windows\system32\d3d9.dll
2011-06-22 17:27:50 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2011-06-22 17:27:50 ----A---- C:\Windows\system32\msxml6.dll
2011-06-22 17:27:50 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-06-22 17:27:49 ----A---- C:\Windows\system32\SearchFolder.dll
2011-06-22 17:27:48 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2011-06-22 17:27:47 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2011-06-22 17:27:47 ----A---- C:\Windows\system32\kernel32.dll
2011-06-22 17:27:47 ----A---- C:\Windows\system32\gpsvc.dll
2011-06-22 17:27:46 ----A---- C:\Windows\system32\VSSVC.exe
2011-06-22 17:27:46 ----A---- C:\Windows\system32\mstime.dll
2011-06-22 17:27:46 ----A---- C:\Windows\system32\dwmcore.dll
2011-06-22 17:27:46 ----A---- C:\Windows\system32\drivers\http.sys
2011-06-22 17:27:46 ----A---- C:\Windows\system32\dbgeng.dll
2011-06-22 17:27:44 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-06-22 17:27:44 ----A---- C:\Windows\system32\crypt32.dll
2011-06-22 17:27:43 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2011-06-22 17:27:42 ----A---- C:\Windows\SYSWOW64\ole32.dll
2011-06-22 17:27:42 ----A---- C:\Windows\system32\TSWorkspace.dll
2011-06-22 17:27:42 ----A---- C:\Windows\system32\schannel.dll
2011-06-22 17:27:42 ----A---- C:\Windows\system32\qmgr.dll
2011-06-22 17:27:42 ----A---- C:\Windows\system32\KernelBase.dll
2011-06-22 17:27:42 ----A---- C:\Windows\system32\audiosrv.dll
2011-06-22 17:27:42 ----A---- C:\Windows\system32\actxprxy.dll
2011-06-22 17:27:41 ----A---- C:\Windows\system32\termsrv.dll
2011-06-22 17:27:41 ----A---- C:\Windows\system32\lsasrv.dll
2011-06-22 17:27:40 ----A---- C:\Windows\system32\sqmapi.dll
2011-06-22 17:27:40 ----A---- C:\Windows\system32\mstsc.exe
2011-06-22 17:27:40 ----A---- C:\Windows\system32\imapi2fs.dll
2011-06-22 17:27:39 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2011-06-22 17:27:39 ----A---- C:\Windows\system32\winhttp.dll
2011-06-22 17:27:39 ----A---- C:\Windows\system32\netlogon.dll
2011-06-22 17:27:39 ----A---- C:\Windows\system32\d3d11.dll
2011-06-22 17:27:38 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2011-06-22 17:27:38 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2011-06-22 17:27:38 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-06-22 17:27:38 ----A---- C:\Windows\system32\msv1_0.dll
2011-06-22 17:27:37 ----A---- C:\Windows\system32\propsys.dll
2011-06-22 17:27:36 ----A---- C:\Windows\system32\setupapi.dll
2011-06-22 17:27:36 ----A---- C:\Windows\system32\rpcss.dll
2011-06-22 17:27:35 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2011-06-22 17:27:35 ----A---- C:\Windows\system32\wbengine.exe
2011-06-22 17:27:34 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2011-06-22 17:27:34 ----A---- C:\Windows\system32\werconcpl.dll
2011-06-22 17:27:34 ----A---- C:\Windows\system32\user32.dll
2011-06-22 17:27:34 ----A---- C:\Windows\system32\taskeng.exe
2011-06-22 17:27:34 ----A---- C:\Windows\system32\odbc32.dll
2011-06-22 17:27:34 ----A---- C:\Windows\system32\authui.dll
2011-06-22 17:27:33 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2011-06-22 17:27:33 ----A---- C:\Windows\system32\WSDApi.dll
2011-06-22 17:27:33 ----A---- C:\Windows\system32\drivers\netio.sys
2011-06-22 17:27:33 ----A---- C:\Windows\system32\dhcpcore.dll
2011-06-22 17:27:33 ----A---- C:\Windows\system32\certmgr.dll
2011-06-22 17:27:32 ----A---- C:\Windows\SYSWOW64\wer.dll
2011-06-22 17:27:32 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-06-22 17:27:32 ----A---- C:\Windows\system32\scavengeui.dll
2011-06-22 17:27:32 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-06-22 17:27:32 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-06-22 17:27:31 ----A---- C:\Windows\SYSWOW64\certcli.dll
2011-06-22 17:27:31 ----A---- C:\Windows\system32\webio.dll
2011-06-22 17:27:31 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-06-22 17:27:31 ----A---- C:\Windows\system32\localspl.dll
2011-06-22 17:27:30 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-06-22 17:27:30 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2011-06-22 17:27:30 ----A---- C:\Windows\system32\tsmf.dll
2011-06-22 17:27:30 ----A---- C:\Windows\system32\shlwapi.dll
2011-06-22 17:27:30 ----A---- C:\Windows\system32\ncsi.dll
2011-06-22 17:27:30 ----A---- C:\Windows\system32\msdrm.dll
2011-06-22 17:27:29 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2011-06-22 17:27:29 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-06-22 17:27:29 ----A---- C:\Windows\system32\netshell.dll
2011-06-22 17:27:29 ----A---- C:\Windows\system32\msdtctm.dll
2011-06-22 17:27:29 ----A---- C:\Windows\system32\framedynos.dll
2011-06-22 17:27:29 ----A---- C:\Windows\system32\drivers\cng.sys
2011-06-22 17:27:28 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2011-06-22 17:27:28 ----A---- C:\Windows\SYSWOW64\mstime.dll
2011-06-22 17:27:28 ----A---- C:\Windows\system32\ws2_32.dll
2011-06-22 17:27:28 ----A---- C:\Windows\system32\winlogon.exe
2011-06-22 17:27:28 ----A---- C:\Windows\system32\usp10.dll
2011-06-22 17:27:28 ----A---- C:\Windows\system32\quartz.dll
2011-06-22 17:27:28 ----A---- C:\Windows\system32\nlasvc.dll
2011-06-22 17:27:28 ----A---- C:\Windows\system32\netcfgx.dll
2011-06-22 17:27:27 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2011-06-22 17:27:27 ----A---- C:\Windows\SYSWOW64\quartz.dll
2011-06-22 17:27:27 ----A---- C:\Windows\system32\wmpps.dll
2011-06-22 17:27:27 ----A---- C:\Windows\system32\lsm.exe
2011-06-22 17:27:27 ----A---- C:\Windows\system32\dxgi.dll
2011-06-22 17:27:27 ----A---- C:\Windows\system32\comdlg32.dll
2011-06-22 17:27:27 ----A---- C:\Windows\system32\apphelp.dll
2011-06-22 17:27:26 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2011-06-22 17:27:26 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2011-06-22 17:27:26 ----A---- C:\Windows\system32\wpdshext.dll
2011-06-22 17:27:26 ----A---- C:\Windows\system32\Query.dll
2011-06-22 17:27:26 ----A---- C:\Windows\system32\mswsock.dll
2011-06-22 17:27:26 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-06-22 17:27:25 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-06-22 17:27:25 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-06-22 17:27:25 ----A---- C:\Windows\system32\QAGENT.DLL
2011-06-22 17:27:25 ----A---- C:\Windows\system32\BFE.DLL
2011-06-22 17:27:25 ----A---- C:\Windows\system32\azroles.dll
2011-06-22 17:27:24 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2011-06-22 17:27:24 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2011-06-22 17:27:24 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2011-06-22 17:27:24 ----A---- C:\Windows\system32\Vault.dll
2011-06-22 17:27:24 ----A---- C:\Windows\system32\samsrv.dll
2011-06-22 17:27:24 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2011-06-22 17:27:24 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-06-22 17:27:24 ----A---- C:\Windows\system32\cmd.exe
2011-06-22 17:27:23 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2011-06-22 17:27:23 ----A---- C:\Windows\system32\win32spl.dll
2011-06-22 17:27:23 ----A---- C:\Windows\system32\lpksetup.exe
2011-06-22 17:27:22 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2011-06-22 17:27:22 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2011-06-22 17:27:22 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2011-06-22 17:27:22 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2011-06-22 17:27:22 ----A---- C:\Windows\system32\mssvp.dll
2011-06-22 17:27:21 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2011-06-22 17:27:21 ----A---- C:\Windows\system32\WebClnt.dll
2011-06-22 17:27:20 ----A---- C:\Windows\SYSWOW64\webio.dll
2011-06-22 17:27:20 ----A---- C:\Windows\SYSWOW64\Query.dll
2011-06-22 17:27:20 ----A---- C:\Windows\system32\Wldap32.dll
2011-06-22 17:27:20 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-06-22 17:27:20 ----A---- C:\Windows\system32\sxs.dll
2011-06-22 17:27:20 ----A---- C:\Windows\system32\mcbuilder.exe
2011-06-22 17:27:20 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2011-06-22 17:27:19 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2011-06-22 17:27:19 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-06-22 17:27:19 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2011-06-22 17:27:19 ----A---- C:\Windows\system32\taskcomp.dll
2011-06-22 17:27:19 ----A---- C:\Windows\system32\pnidui.dll
2011-06-22 17:27:19 ----A---- C:\Windows\system32\mfds.dll
2011-06-22 17:27:19 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-06-22 17:27:18 ----A---- C:\Windows\SYSWOW64\schannel.dll
2011-06-22 17:27:18 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2011-06-22 17:27:18 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2011-06-22 17:27:18 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2011-06-22 17:27:18 ----A---- C:\Windows\system32\wuaueng.dll
2011-06-22 17:27:18 ----A---- C:\Windows\system32\webservices.dll
2011-06-22 17:27:18 ----A---- C:\Windows\system32\hgprint.dll
2011-06-22 17:27:17 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2011-06-22 17:27:17 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2011-06-22 17:27:17 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2011-06-22 17:27:17 ----A---- C:\Windows\system32\spoolsv.exe
2011-06-22 17:27:17 ----A---- C:\Windows\system32\SessEnv.dll
2011-06-22 17:27:16 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2011-06-22 17:27:16 ----A---- C:\Windows\SYSWOW64\authui.dll
2011-06-22 17:27:16 ----A---- C:\Windows\system32\winsta.dll
2011-06-22 17:27:16 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-06-22 17:27:16 ----A---- C:\Windows\system32\iepeers.dll
2011-06-22 17:27:16 ----A---- C:\Windows\system32\fveapi.dll
2011-06-22 17:27:16 ----A---- C:\Windows\system32\dot3api.dll
2011-06-22 17:27:15 ----A---- C:\Windows\SYSWOW64\usp10.dll
2011-06-22 17:27:15 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2011-06-22 17:27:15 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2011-06-22 17:27:15 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2011-06-22 17:27:15 ----A---- C:\Windows\system32\prncache.dll
2011-06-22 17:27:15 ----A---- C:\Windows\system32\gdi32.dll
2011-06-22 17:27:15 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-06-22 17:27:15 ----A---- C:\Windows\system32\drivers\msrpc.sys
2011-06-22 17:27:14 ----A---- C:\Windows\system32\mcmde.dll
2011-06-22 17:27:13 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2011-06-22 17:27:13 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-06-22 17:27:13 ----A---- C:\Windows\system32\wlanpref.dll
2011-06-22 17:27:13 ----A---- C:\Windows\system32\schtasks.exe
2011-06-22 17:27:12 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2011-06-22 17:27:12 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-06-22 17:27:12 ----A---- C:\Windows\SYSWOW64\userenv.dll
2011-06-22 17:27:12 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2011-06-22 17:27:12 ----A---- C:\Windows\system32\wuapi.dll
2011-06-22 17:27:12 ----A---- C:\Windows\system32\wintrust.dll
2011-06-22 17:27:12 ----A---- C:\Windows\system32\vpnike.dll
2011-06-22 17:27:12 ----A---- C:\Windows\system32\userenv.dll
2011-06-22 17:27:12 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-06-22 17:27:11 ----A---- C:\Windows\system32\evr.dll
2011-06-22 17:27:11 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-06-22 17:27:10 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2011-06-22 17:27:10 ----A---- C:\Windows\system32\photowiz.dll
2011-06-22 17:27:10 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-06-22 17:27:10 ----A---- C:\Windows\system32\framedyn.dll
2011-06-22 17:27:09 ----A---- C:\Windows\system32\AudioSes.dll
2011-06-22 17:27:08 ----A---- C:\Windows\SYSWOW64\cmd.exe
2011-06-22 17:27:08 ----A---- C:\Windows\system32\wmpmde.dll
2011-06-22 17:27:08 ----A---- C:\Windows\system32\WMPEncEn.dll
2011-06-22 17:27:08 ----A---- C:\Windows\system32\wmpeffects.dll
2011-06-22 17:27:08 ----A---- C:\Windows\system32\SyncCenter.dll
2011-06-22 17:27:08 ----A---- C:\Windows\system32\srvsvc.dll
2011-06-22 17:27:08 ----A---- C:\Windows\system32\sppobjs.dll
2011-06-22 17:27:08 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-06-22 17:27:08 ----A---- C:\Windows\system32\FXSSVC.exe
2011-06-22 17:27:08 ----A---- C:\Windows\system32\aepdu.dll
2011-06-22 17:27:07 ----A---- C:\Windows\system32\shsvcs.dll
2011-06-22 17:27:07 ----A---- C:\Windows\system32\aeinv.dll
2011-06-22 17:27:06 ----A---- C:\Windows\system32\fde.dll
2011-06-22 17:27:05 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2011-06-22 17:27:04 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2011-06-22 17:27:04 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2011-06-22 17:27:04 ----A---- C:\Windows\SYSWOW64\propsys.dll
2011-06-22 17:27:04 ----A---- C:\Windows\SYSWOW64\mfds.dll
2011-06-22 17:27:04 ----A---- C:\Windows\system32\WinSATAPI.dll
2011-06-22 17:27:04 ----A---- C:\Windows\system32\stobject.dll
2011-06-22 17:27:04 ----A---- C:\Windows\system32\netdiagfx.dll
2011-06-22 17:27:04 ----A---- C:\Windows\system32\localsec.dll
2011-06-22 17:27:04 ----A---- C:\Windows\system32\imapi2.dll
2011-06-22 17:27:04 ----A---- C:\Windows\system32\credui.dll
2011-06-22 17:27:04 ----A---- C:\Windows\system32\bcryptprimitives.dll
2011-06-22 17:27:03 ----A---- C:\Windows\SYSWOW64\user32.dll
2011-06-22 17:27:03 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-06-22 17:27:03 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-06-22 17:27:03 ----A---- C:\Windows\system32\cdd.dll
2011-06-22 17:27:02 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2011-06-22 17:27:02 ----A---- C:\Windows\SYSWOW64\azroles.dll
2011-06-22 17:27:02 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-06-22 17:27:02 ----A---- C:\Windows\system32\spp.dll
2011-06-22 17:27:02 ----A---- C:\Windows\system32\QSHVHOST.DLL
2011-06-22 17:27:02 ----A---- C:\Windows\system32\netid.dll
2011-06-22 17:27:02 ----A---- C:\Windows\system32\inetpp.dll
2011-06-22 17:27:02 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2011-06-22 17:27:02 ----A---- C:\Windows\system32\davclnt.dll
2011-06-22 17:27:01 ----A---- C:\Windows\system32\biocpl.dll
2011-06-22 17:27:00 ----A---- C:\Windows\system32\scansetting.dll
2011-06-22 17:27:00 ----A---- C:\Windows\system32\profsvc.dll
2011-06-22 17:27:00 ----A---- C:\Windows\system32\printui.dll
2011-06-22 17:27:00 ----A---- C:\Windows\system32\mspbda.dll
2011-06-22 17:27:00 ----A---- C:\Windows\system32\msinfo32.exe
2011-06-22 17:27:00 ----A---- C:\Windows\system32\gameux.dll
2011-06-22 17:26:59 ----A---- C:\Windows\SYSWOW64\themeui.dll
2011-06-22 17:26:58 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2011-06-22 17:26:58 ----A---- C:\Windows\SYSWOW64\spp.dll
2011-06-22 17:26:58 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2011-06-22 17:26:58 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2011-06-22 17:26:58 ----A---- C:\Windows\SYSWOW64\credui.dll
2011-06-22 17:26:58 ----A---- C:\Windows\system32\pla.dll
2011-06-22 17:26:58 ----A---- C:\Windows\system32\conhost.exe
2011-06-22 17:26:58 ----A---- C:\Windows\splwow64.exe
2011-06-22 17:26:56 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2011-06-22 17:26:56 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2011-06-22 17:26:56 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2011-06-22 17:26:56 ----A---- C:\Windows\system32\wusa.exe
2011-06-22 17:26:56 ----A---- C:\Windows\system32\wiaservc.dll
2011-06-22 17:26:56 ----A---- C:\Windows\system32\vds.exe
2011-06-22 17:26:56 ----A---- C:\Windows\system32\rpchttp.dll
2011-06-22 17:26:56 ----A---- C:\Windows\system32\msdri.dll
2011-06-22 17:26:56 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-06-22 17:26:56 ----A---- C:\Windows\system32\drivers\pci.sys
2011-06-22 17:26:56 ----A---- C:\Windows\system32\cryptsvc.dll
2011-06-22 17:26:56 ----A---- C:\Windows\system32\aitagent.exe
2011-06-22 17:26:55 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-06-22 17:26:55 ----A---- C:\Windows\system32\mscms.dll
2011-06-22 17:26:54 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2011-06-22 17:26:54 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2011-06-22 17:26:54 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2011-06-22 17:26:54 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-06-22 17:26:54 ----A---- C:\Windows\system32\wisptis.exe
2011-06-22 17:26:54 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2011-06-22 17:26:54 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2011-06-22 17:26:53 ----A---- C:\Windows\system32\msi.dll
2011-06-22 17:26:52 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2011-06-22 17:26:52 ----A---- C:\Windows\SYSWOW64\evr.dll
2011-06-22 17:26:52 ----A---- C:\Windows\system32\sppwinob.dll
2011-06-22 17:26:52 ----A---- C:\Windows\system32\ocsetup.exe
2011-06-22 17:26:52 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-06-22 17:26:51 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2011-06-22 17:26:50 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2011-06-22 17:26:50 ----A---- C:\Windows\SYSWOW64\calc.exe
2011-06-22 17:26:50 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-06-22 17:26:50 ----A---- C:\Windows\system32\rdpcore.dll
2011-06-22 17:26:50 ----A---- C:\Windows\system32\ocsetapi.dll
2011-06-22 17:26:50 ----A---- C:\Windows\system32\eapp3hst.dll
2011-06-22 17:26:50 ----A---- C:\Windows\system32\DXP.dll
2011-06-22 17:26:50 ----A---- C:\Windows\system32\drivers\volmgr.sys
2011-06-22 17:26:50 ----A---- C:\Windows\system32\ci.dll
2011-06-22 17:26:50 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-06-22 17:26:49 ----A---- C:\Windows\system32\ntshrui.dll
2011-06-22 17:26:49 ----A---- C:\Windows\system32\drivers\msdsm.sys
2011-06-22 17:26:48 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2011-06-22 17:26:48 ----A---- C:\Windows\system32\wcncsvc.dll
2011-06-22 17:26:48 ----A---- C:\Windows\system32\upnp.dll
2011-06-22 17:26:48 ----A---- C:\Windows\system32\Robocopy.exe
2011-06-22 17:26:48 ----A---- C:\Windows\system32\mprapi.dll
2011-06-22 17:26:48 ----A---- C:\Windows\system32\eapphost.dll
2011-06-22 17:26:47 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2011-06-22 17:26:47 ----A---- C:\Windows\system32\t2embed.dll
2011-06-22 17:26:47 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2011-06-22 17:26:46 ----A---- C:\Windows\SYSWOW64\sxs.dll
2011-06-22 17:26:46 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-06-22 17:26:46 ----A---- C:\Windows\system32\thumbcache.dll
2011-06-22 17:26:46 ----A---- C:\Windows\system32\hal.dll
2011-06-22 17:26:45 ----A---- C:\Windows\SYSWOW64\netshell.dll
2011-06-22 17:26:44 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2011-06-22 17:26:44 ----A---- C:\Windows\SYSWOW64\stobject.dll
2011-06-22 17:26:44 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2011-06-22 17:26:44 ----A---- C:\Windows\system32\scecli.dll
2011-06-22 17:26:44 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-06-22 17:26:44 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2011-06-22 17:26:44 ----A---- C:\Windows\system32\DxpTaskSync.dll
2011-06-22 17:26:44 ----A---- C:\Windows\system32\dwmredir.dll
2011-06-22 17:26:44 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-06-22 17:26:44 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-06-22 17:26:42 ----A---- C:\Windows\SYSWOW64\prncache.dll
2011-06-22 17:26:42 ----A---- C:\Windows\SYSWOW64\printui.dll
2011-06-22 17:26:42 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2011-06-22 17:26:42 ----A---- C:\Windows\system32\themeui.dll
2011-06-22 17:26:42 ----A---- C:\Windows\system32\sspicli.dll
2011-06-22 17:26:42 ----A---- C:\Windows\system32\puiobj.dll
2011-06-22 17:26:42 ----A---- C:\Windows\system32\onex.dll
2011-06-22 17:26:42 ----A---- C:\Windows\system32\nlaapi.dll
2011-06-22 17:26:42 ----A---- C:\Windows\system32\msasn1.dll
2011-06-22 17:26:42 ----A---- C:\Windows\system32\iasrad.dll
2011-06-22 17:26:42 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2011-06-22 17:26:42 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2011-06-22 17:26:42 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2011-06-22 17:26:40 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2011-06-22 17:26:40 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2011-06-22 17:26:40 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2011-06-22 17:26:40 ----A---- C:\Windows\SYSWOW64\net1.exe
2011-06-22 17:26:40 ----A---- C:\Windows\SYSWOW64\msi.dll
2011-06-22 17:26:40 ----A---- C:\Windows\system32\iedkcs32.dll
2011-06-22 17:26:40 ----A---- C:\Windows\system32\aaclient.dll
2011-06-22 17:26:39 ----A---- C:\Windows\system32\wow64.dll
2011-06-22 17:26:38 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2011-06-22 17:26:38 ----A---- C:\Windows\system32\wdc.dll
2011-06-22 17:26:38 ----A---- C:\Windows\system32\scesrv.dll
2011-06-22 17:26:38 ----A---- C:\Windows\system32\rasmans.dll
2011-06-22 17:26:37 ----A---- C:\Windows\system32\wlangpui.dll
2011-06-22 17:26:37 ----A---- C:\Windows\system32\VAN.dll
2011-06-22 17:26:37 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-06-22 17:26:37 ----A---- C:\Windows\system32\sdengin2.dll
2011-06-22 17:26:37 ----A---- C:\Windows\system32\msftedit.dll
2011-06-22 17:26:36 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2011-06-22 17:26:36 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2011-06-22 17:26:36 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2011-06-22 17:26:36 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-06-22 17:26:36 ----A---- C:\Windows\system32\wscapi.dll
2011-06-22 17:26:36 ----A---- C:\Windows\system32\wiadefui.dll
2011-06-22 17:26:36 ----A---- C:\Windows\system32\SndVol.exe
2011-06-22 17:26:36 ----A---- C:\Windows\system32\samcli.dll
2011-06-22 17:26:36 ----A---- C:\Windows\system32\regapi.dll
2011-06-22 17:26:36 ----A---- C:\Windows\system32\netcenter.dll
2011-06-22 17:26:36 ----A---- C:\Windows\system32\iasacct.dll
2011-06-22 17:26:36 ----A---- C:\Windows\system32\dskquoui.dll
2011-06-22 17:26:36 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-06-22 17:26:36 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-06-22 17:26:36 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-06-22 17:26:35 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2011-06-22 17:26:35 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2011-06-22 17:26:35 ----A---- C:\Windows\system32\wucltux.dll
2011-06-22 17:26:35 ----A---- C:\Windows\system32\TabSvc.dll
2011-06-22 17:26:35 ----A---- C:\Windows\system32\srchadmin.dll
2011-06-22 17:26:35 ----A---- C:\Windows\system32\QUTIL.DLL
2011-06-22 17:26:35 ----A---- C:\Windows\system32\consent.exe
2011-06-22 17:26:34 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2011-06-22 17:26:34 ----A---- C:\Windows\SYSWOW64\webservices.dll
2011-06-22 17:26:34 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2011-06-22 17:26:34 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2011-06-22 17:26:34 ----A---- C:\Windows\SYSWOW64\fde.dll
2011-06-22 17:26:33 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2011-06-22 17:26:33 ----A---- C:\Windows\system32\WUDFSvc.dll
2011-06-22 17:26:33 ----A---- C:\Windows\system32\wksprt.exe
2011-06-22 17:26:33 ----A---- C:\Windows\system32\taskhost.exe
2011-06-22 17:26:33 ----A---- C:\Windows\system32\setupcl.exe
2011-06-22 17:26:33 ----A---- C:\Windows\system32\rastls.dll
2011-06-22 17:26:33 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-06-22 17:26:32 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2011-06-22 17:26:32 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-06-22 17:26:32 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2011-06-22 17:26:32 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-06-22 17:26:30 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2011-06-22 17:26:30 ----A---- C:\Windows\SYSWOW64\pla.dll
2011-06-22 17:26:30 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2011-06-22 17:26:30 ----A---- C:\Windows\system32\tapisrv.dll
2011-06-22 17:26:30 ----A---- C:\Windows\system32\netiohlp.dll
2011-06-22 17:26:30 ----A---- C:\Windows\system32\msconfig.exe
2011-06-22 17:26:30 ----A---- C:\Windows\system32\mimefilt.dll
2011-06-22 17:26:30 ----A---- C:\Windows\system32\ListSvc.dll
2011-06-22 17:26:30 ----A---- C:\Windows\system32\hgcpl.dll
2011-06-22 17:26:30 ----A---- C:\Windows\system32\drivers\raspptp.sys
2011-06-22 17:26:29 ----A---- C:\Windows\system32\lsmproxy.dll
2011-06-22 17:26:29 ----A---- C:\Windows\system32\drivers\ks.sys
2011-06-22 17:26:29 ----A---- C:\Windows\system32\clusapi.dll
2011-06-22 17:26:29 ----A---- C:\Windows\system32\basecsp.dll
2011-06-22 17:26:28 ----A---- C:\Windows\SYSWOW64\winsta.dll
2011-06-22 17:26:28 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2011-06-22 17:26:28 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2011-06-22 17:26:28 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-06-22 17:26:28 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2011-06-22 17:26:28 ----A---- C:\Windows\system32\mtxclu.dll
2011-06-22 17:26:28 ----A---- C:\Windows\system32\fdeploy.dll
2011-06-22 17:26:28 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-06-22 17:26:28 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-06-22 17:26:27 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2011-06-22 17:26:27 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2011-06-22 17:26:27 ----A---- C:\Windows\system32\riched20.dll
2011-06-22 17:26:26 ----A---- C:\Windows\SYSWOW64\gameux.dll
2011-06-22 17:26:26 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2011-06-22 17:26:26 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2011-06-22 17:26:26 ----A---- C:\Windows\system32\dnscmmc.dll
2011-06-22 17:26:25 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2011-06-22 17:26:25 ----A---- C:\Windows\SYSWOW64\onex.dll
2011-06-22 17:26:25 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2011-06-22 17:26:25 ----A---- C:\Windows\system32\sharemediacpl.dll
2011-06-22 17:26:25 ----A---- C:\Windows\system32\RpcRtRemote.dll
2011-06-22 17:26:25 ----A---- C:\Windows\system32\powercpl.dll
2011-06-22 17:26:25 ----A---- C:\Windows\system32\logoncli.dll
2011-06-22 17:26:24 ----A---- C:\Windows\SYSWOW64\winmm.dll
2011-06-22 17:26:24 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2011-06-22 17:26:24 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2011-06-22 17:26:24 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2011-06-22 17:26:24 ----A---- C:\Windows\system32\themecpl.dll
2011-06-22 17:26:24 ----A---- C:\Windows\system32\SensorsCpl.dll
2011-06-22 17:26:24 ----A---- C:\Windows\system32\netjoin.dll
2011-06-22 17:26:24 ----A---- C:\Windows\system32\nci.dll
2011-06-22 17:26:24 ----A---- C:\Windows\system32\Narrator.exe
2011-06-22 17:26:24 ----A---- C:\Windows\system32\Faultrep.dll
2011-06-22 17:26:24 ----A---- C:\Windows\system32\eudcedit.exe
2011-06-22 17:26:23 ----A---- C:\Windows\SYSWOW64\samcli.dll
2011-06-22 17:26:23 ----A---- C:\Windows\SYSWOW64\proquota.exe
2011-06-22 17:26:23 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2011-06-22 17:26:23 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2011-06-22 17:26:23 ----A---- C:\Windows\SYSWOW64\autochk.exe
2011-06-22 17:26:23 ----A---- C:\Windows\system32\wkssvc.dll
2011-06-22 17:26:23 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-06-22 17:26:23 ----A---- C:\Windows\system32\sppcomapi.dll
2011-06-22 17:26:23 ----A---- C:\Windows\system32\licmgr10.dll
2011-06-22 17:26:23 ----A---- C:\Windows\system32\comctl32.dll
2011-06-22 17:26:23 ----A---- C:\Windows\system32\cabview.dll
2011-06-22 17:26:22 ----A---- C:\Windows\SYSWOW64\thumbcache.dll


Pokracovanie nizzsie :D
Nahoru
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Re: Prosim o kontrolu

#2 Příspěvek od Edon »

Pokracovanie:

2011-06-22 17:26:22 ----A---- C:\Windows\SYSWOW64\regapi.dll
2011-06-22 17:26:22 ----A---- C:\Windows\SYSWOW64\msutb.dll
2011-06-22 17:26:22 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2011-06-22 17:26:22 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2011-06-22 17:26:22 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2011-06-22 17:26:22 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2011-06-22 17:26:22 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2011-06-22 17:26:22 ----A---- C:\Windows\system32\autochk.exe
2011-06-22 17:26:22 ----A---- C:\Windows\system32\autofmt.exe
2011-06-22 17:26:22 ----A---- C:\Windows\system32\autoconv.exe
2011-06-22 17:26:21 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2011-06-22 17:26:21 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2011-06-22 17:26:21 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2011-06-22 17:26:21 ----A---- C:\Windows\system32\wpd_ci.dll
2011-06-22 17:26:21 ----A---- C:\Windows\system32\shsetup.dll
2011-06-22 17:26:21 ----A---- C:\Windows\system32\nshipsec.dll
2011-06-22 17:26:21 ----A---- C:\Windows\system32\fms.dll
2011-06-22 17:26:21 ----A---- C:\Windows\system32\audiodg.exe
2011-06-22 17:26:20 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2011-06-22 17:26:20 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2011-06-22 17:26:20 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2011-06-22 17:26:20 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2011-06-22 17:26:20 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2011-06-22 17:26:20 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2011-06-22 17:26:20 ----A---- C:\Windows\system32\wwanconn.dll
2011-06-22 17:26:20 ----A---- C:\Windows\system32\wlanui.dll
2011-06-22 17:26:20 ----A---- C:\Windows\system32\sdclt.exe
2011-06-22 17:26:20 ----A---- C:\Windows\system32\prntvpt.dll
2011-06-22 17:26:20 ----A---- C:\Windows\system32\mscorier.dll
2011-06-22 17:26:20 ----A---- C:\Windows\system32\drivers\wanarp.sys
2011-06-22 17:26:20 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2011-06-22 17:26:20 ----A---- C:\Windows\system32\drivers\scsiport.sys
2011-06-22 17:26:20 ----A---- C:\Windows\system32\bcdsrv.dll
2011-06-22 17:26:19 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2011-06-22 17:26:19 ----A---- C:\Windows\SYSWOW64\netid.dll
2011-06-22 17:26:19 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2011-06-22 17:26:19 ----A---- C:\Windows\system32\qedit.dll
2011-06-22 17:26:19 ----A---- C:\Windows\system32\mprddm.dll
2011-06-22 17:26:19 ----A---- C:\Windows\system32\fontext.dll
2011-06-22 17:26:19 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2011-06-22 17:26:19 ----A---- C:\Windows\system32\dps.dll
2011-06-22 17:26:19 ----A---- C:\Windows\system32\Display.dll
2011-06-22 17:26:19 ----A---- C:\Windows\system32\AxInstSv.dll
2011-06-22 17:26:18 ----A---- C:\Windows\SYSWOW64\wdc.dll
2011-06-22 17:26:18 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2011-06-22 17:26:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2011-06-22 17:26:18 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2011-06-22 17:26:18 ----A---- C:\Windows\system32\wmpsrcwp.dll
2011-06-22 17:26:18 ----A---- C:\Windows\system32\mblctr.exe
2011-06-22 17:26:18 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-06-22 17:26:18 ----A---- C:\Windows\system32\credssp.dll
2011-06-22 17:26:18 ----A---- C:\Windows\system32\batmeter.dll
2011-06-22 17:26:17 ----A---- C:\Windows\SYSWOW64\Vault.dll
2011-06-22 17:26:17 ----A---- C:\Windows\SYSWOW64\untfs.dll
2011-06-22 17:26:17 ----A---- C:\Windows\SYSWOW64\rastls.dll
2011-06-22 17:26:17 ----A---- C:\Windows\SYSWOW64\nci.dll
2011-06-22 17:26:16 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2011-06-22 17:26:16 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2011-06-22 17:26:16 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2011-06-22 17:26:16 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2011-06-22 17:26:16 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-06-22 17:26:16 ----A---- C:\Windows\system32\usercpl.dll
2011-06-22 17:26:16 ----A---- C:\Windows\system32\rtutils.dll
2011-06-22 17:26:16 ----A---- C:\Windows\system32\provsvc.dll
2011-06-22 17:26:16 ----A---- C:\Windows\system32\DiagCpl.dll
2011-06-22 17:26:16 ----A---- C:\Windows\system32\bootres.dll
2011-06-22 17:26:15 ----A---- C:\Windows\system32\wpccpl.dll
2011-06-22 17:26:15 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2011-06-22 17:26:14 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2011-06-22 17:26:14 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2011-06-22 17:26:14 ----A---- C:\Windows\SYSWOW64\Display.dll
2011-06-22 17:26:14 ----A---- C:\Windows\system32\sppsvc.exe
2011-06-22 17:26:14 ----A---- C:\Windows\system32\SndVolSSO.dll
2011-06-22 17:26:14 ----A---- C:\Windows\system32\rasppp.dll
2011-06-22 17:26:14 ----A---- C:\Windows\system32\dot3cfg.dll
2011-06-22 17:26:13 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2011-06-22 17:26:13 ----A---- C:\Windows\SYSWOW64\userinit.exe
2011-06-22 17:26:13 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2011-06-22 17:26:13 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2011-06-22 17:26:13 ----A---- C:\Windows\system32\shdocvw.dll
2011-06-22 17:26:13 ----A---- C:\Windows\system32\hbaapi.dll
2011-06-22 17:26:13 ----A---- C:\Windows\system32\dxdiagn.dll
2011-06-22 17:26:13 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2011-06-22 17:26:12 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2011-06-22 17:26:12 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2011-06-22 17:26:12 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2011-06-22 17:26:12 ----A---- C:\Windows\system32\taskmgr.exe
2011-06-22 17:26:12 ----A---- C:\Windows\system32\proquota.exe
2011-06-22 17:26:12 ----A---- C:\Windows\system32\prnfldr.dll
2011-06-22 17:26:12 ----A---- C:\Windows\system32\pdh.dll
2011-06-22 17:26:12 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2011-06-22 17:26:12 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2011-06-22 17:26:11 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-06-22 17:26:11 ----A---- C:\Windows\system32\untfs.dll
2011-06-22 17:26:11 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2011-06-22 17:26:11 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-06-22 17:26:10 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2011-06-22 17:26:10 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2011-06-22 17:26:10 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2011-06-22 17:26:10 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2011-06-22 17:26:10 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2011-06-22 17:26:10 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2011-06-22 17:26:10 ----A---- C:\Windows\SYSWOW64\cabview.dll
2011-06-22 17:26:10 ----A---- C:\Windows\system32\userinit.exe
2011-06-22 17:26:10 ----A---- C:\Windows\system32\rdpcorekmts.dll
2011-06-22 17:26:10 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-06-22 17:26:09 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2011-06-22 17:26:08 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2011-06-22 17:26:08 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2011-06-22 17:26:08 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2011-06-22 17:26:08 ----A---- C:\Windows\system32\zipfldr.dll
2011-06-22 17:26:08 ----A---- C:\Windows\system32\webcheck.dll
2011-06-22 17:26:08 ----A---- C:\Windows\system32\slui.exe
2011-06-22 17:26:08 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2011-06-22 17:26:07 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2011-06-22 17:26:07 ----A---- C:\Windows\system32\msieftp.dll
2011-06-22 17:26:06 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2011-06-22 17:26:06 ----A---- C:\Windows\SYSWOW64\scecli.dll
2011-06-22 17:26:06 ----A---- C:\Windows\SYSWOW64\mscories.dll
2011-06-22 17:26:06 ----A---- C:\Windows\SYSWOW64\mscms.dll
2011-06-22 17:26:06 ----A---- C:\Windows\SYSWOW64\localsec.dll
2011-06-22 17:26:06 ----A---- C:\Windows\SYSWOW64\fontext.dll
2011-06-22 17:26:06 ----A---- C:\Windows\system32\sud.dll
2011-06-22 17:26:06 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2011-06-22 17:26:06 ----A---- C:\Windows\system32\DeviceCenter.dll
2011-06-22 17:26:05 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2011-06-22 17:26:05 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2011-06-22 17:26:05 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2011-06-22 17:26:05 ----A---- C:\Windows\system32\twext.dll
2011-06-22 17:26:05 ----A---- C:\Windows\system32\taskbarcpl.dll
2011-06-22 17:26:05 ----A---- C:\Windows\system32\srcore.dll
2011-06-22 17:26:05 ----A---- C:\Windows\system32\qdvd.dll
2011-06-22 17:26:05 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2011-06-22 17:26:05 ----A---- C:\Windows\system32\networkmap.dll
2011-06-22 17:26:05 ----A---- C:\Windows\system32\dot3svc.dll
2011-06-22 17:26:05 ----A---- C:\Windows\system32\cryptui.dll
2011-06-22 17:26:05 ----A---- C:\Windows\system32\ActionCenter.dll
2011-06-22 17:26:04 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2011-06-22 17:26:04 ----A---- C:\Windows\SYSWOW64\VAN.dll
2011-06-22 17:26:04 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2011-06-22 17:26:04 ----A---- C:\Windows\SYSWOW64\qedit.dll
2011-06-22 17:26:04 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2011-06-22 17:26:04 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2011-06-22 17:26:04 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2011-06-22 17:26:04 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2011-06-22 17:26:04 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2011-06-22 17:26:04 ----A---- C:\Windows\system32\rdpwsx.dll
2011-06-22 17:26:03 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2011-06-22 17:26:03 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2011-06-22 17:26:03 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2011-06-22 17:26:03 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2011-06-22 17:26:03 ----A---- C:\Windows\system32\uxlib.dll
2011-06-22 17:26:03 ----A---- C:\Windows\system32\sisbkup.dll
2011-06-22 17:26:03 ----A---- C:\Windows\system32\recovery.dll
2011-06-22 17:26:03 ----A---- C:\Windows\system32\OobeFldr.dll
2011-06-22 17:26:03 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-06-22 17:26:03 ----A---- C:\Windows\system32\isoburn.exe
2011-06-22 17:26:03 ----A---- C:\Windows\system32\dsuiext.dll
2011-06-22 17:26:03 ----A---- C:\Windows\system32\cca.dll
2011-06-22 17:26:03 ----A---- C:\Windows\system32\bcdedit.exe
2011-06-22 17:26:03 ----A---- C:\Windows\system32\azroleui.dll
2011-06-22 17:26:03 ----A---- C:\Windows\system32\asycfilt.dll
2011-06-22 17:26:02 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2011-06-22 17:26:02 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2011-06-22 17:26:02 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2011-06-22 17:26:02 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2011-06-22 17:26:02 ----A---- C:\Windows\system32\tzutil.exe
2011-06-22 17:26:02 ----A---- C:\Windows\system32\systemcpl.dll
2011-06-22 17:26:02 ----A---- C:\Windows\system32\syncui.dll
2011-06-22 17:26:02 ----A---- C:\Windows\system32\sdcpl.dll
2011-06-22 17:26:02 ----A---- C:\Windows\system32\recdisc.exe
2011-06-22 17:26:02 ----A---- C:\Windows\system32\netplwiz.dll
2011-06-22 17:26:02 ----A---- C:\Windows\system32\httpapi.dll
2011-06-22 17:26:02 ----A---- C:\Windows\system32\efscore.dll
2011-06-22 17:26:01 ----A---- C:\Windows\system32\autoplay.dll
2011-06-22 17:26:00 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2011-06-22 17:26:00 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2011-06-22 17:26:00 ----A---- C:\Windows\system32\shwebsvc.dll
2011-06-22 17:26:00 ----A---- C:\Windows\system32\drivers\mpio.sys
2011-06-22 17:25:59 ----A---- C:\Windows\SYSWOW64\wusa.exe
2011-06-22 17:25:59 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2011-06-22 17:25:59 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2011-06-22 17:25:59 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2011-06-22 17:25:59 ----A---- C:\Windows\system32\wlanmsm.dll
2011-06-22 17:25:59 ----A---- C:\Windows\system32\sysclass.dll
2011-06-22 17:25:59 ----A---- C:\Windows\system32\sspisrv.dll
2011-06-22 17:25:59 ----A---- C:\Windows\system32\sdrsvc.dll
2011-06-22 17:25:59 ----A---- C:\Windows\system32\ncryptui.dll
2011-06-22 17:25:59 ----A---- C:\Windows\system32\msvidc32.dll
2011-06-22 17:25:59 ----A---- C:\Windows\system32\certcli.dll
2011-06-22 17:25:59 ----A---- C:\Windows\system32\appinfo.dll
2011-06-22 17:25:59 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2011-06-22 17:25:58 ----A---- C:\Windows\SYSWOW64\sud.dll
2011-06-22 17:25:58 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2011-06-22 17:25:58 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2011-06-22 17:25:58 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2011-06-22 17:25:58 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2011-06-22 17:25:58 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2011-06-22 17:25:58 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2011-06-22 17:25:58 ----A---- C:\Windows\system32\spwizeng.dll
2011-06-22 17:25:58 ----A---- C:\Windows\system32\MFPlay.dll
2011-06-22 17:25:58 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-06-22 17:25:57 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2011-06-22 17:25:57 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2011-06-22 17:25:57 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2011-06-22 17:25:57 ----A---- C:\Windows\SYSWOW64\credssp.dll
2011-06-22 17:25:57 ----A---- C:\Windows\system32\vdsutil.dll
2011-06-22 17:25:57 ----A---- C:\Windows\system32\termmgr.dll
2011-06-22 17:25:57 ----A---- C:\Windows\system32\sethc.exe
2011-06-22 17:25:57 ----A---- C:\Windows\system32\odbccp32.dll
2011-06-22 17:25:57 ----A---- C:\Windows\system32\msscp.dll
2011-06-22 17:25:57 ----A---- C:\Windows\system32\mshtmled.dll
2011-06-22 17:25:57 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-06-22 17:25:56 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2011-06-22 17:25:56 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2011-06-22 17:25:56 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2011-06-22 17:25:56 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-06-22 17:25:56 ----A---- C:\Windows\SYSWOW64\ftp.exe
2011-06-22 17:25:56 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2011-06-22 17:25:56 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2011-06-22 17:25:56 ----A---- C:\Windows\system32\tsgqec.dll
2011-06-22 17:25:56 ----A---- C:\Windows\system32\sqlcese30.dll
2011-06-22 17:25:56 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-06-22 17:25:56 ----A---- C:\Windows\system32\rstrui.exe
2011-06-22 17:25:56 ----A---- C:\Windows\system32\ReAgent.dll
2011-06-22 17:25:56 ----A---- C:\Windows\system32\ntlanman.dll
2011-06-22 17:25:56 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-06-22 17:25:55 ----A---- C:\Windows\SYSWOW64\syncui.dll
2011-06-22 17:25:55 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2011-06-22 17:25:55 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2011-06-22 17:25:55 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2011-06-22 17:25:55 ----A---- C:\Windows\SYSWOW64\efscore.dll
2011-06-22 17:25:55 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2011-06-22 17:25:55 ----A---- C:\Windows\system32\wwanprotdim.dll
2011-06-22 17:25:55 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-06-22 17:25:55 ----A---- C:\Windows\system32\secur32.dll
2011-06-22 17:25:55 ----A---- C:\Windows\system32\rdpd3d.dll
2011-06-22 17:25:55 ----A---- C:\Windows\system32\odbctrac.dll
2011-06-22 17:25:55 ----A---- C:\Windows\system32\iyuv_32.dll
2011-06-22 17:25:55 ----A---- C:\Windows\system32\iTVData.dll
2011-06-22 17:25:55 ----A---- C:\Windows\system32\iprtrmgr.dll
2011-06-22 17:25:54 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2011-06-22 17:25:54 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2011-06-22 17:25:54 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2011-06-22 17:25:54 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2011-06-22 17:25:54 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2011-06-22 17:25:54 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-06-22 17:25:54 ----A---- C:\Windows\system32\srvcli.dll
2011-06-22 17:25:54 ----A---- C:\Windows\system32\slwga.dll
2011-06-22 17:25:54 ----A---- C:\Windows\system32\msiexec.exe
2011-06-22 17:25:54 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-06-22 17:25:53 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2011-06-22 17:25:53 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2011-06-22 17:25:53 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2011-06-22 17:25:53 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2011-06-22 17:25:53 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2011-06-22 17:25:53 ----A---- C:\Windows\system32\wavemsp.dll
2011-06-22 17:25:53 ----A---- C:\Windows\system32\ntprint.dll
2011-06-22 17:25:53 ----A---- C:\Windows\system32\nslookup.exe
2011-06-22 17:25:53 ----A---- C:\Windows\system32\NAPHLPR.DLL
2011-06-22 17:25:53 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2011-06-22 17:25:53 ----A---- C:\Windows\system32\acppage.dll
2011-06-22 17:25:52 ----A---- C:\Windows\SYSWOW64\sethc.exe
2011-06-22 17:25:52 ----A---- C:\Windows\SYSWOW64\riched20.dll
2011-06-22 17:25:52 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2011-06-22 17:25:52 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2011-06-22 17:25:52 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2011-06-22 17:25:52 ----A---- C:\Windows\system32\srrstr.dll
2011-06-22 17:25:52 ----A---- C:\Windows\system32\sppnp.dll
2011-06-22 17:25:52 ----A---- C:\Windows\system32\bcdboot.exe
2011-06-22 17:25:51 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2011-06-22 17:25:51 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2011-06-22 17:25:51 ----A---- C:\Windows\SYSWOW64\migisol.dll
2011-06-22 17:25:51 ----A---- C:\Windows\SYSWOW64\fms.dll
2011-06-22 17:25:51 ----A---- C:\Windows\SYSWOW64\activeds.dll
2011-06-22 17:25:51 ----A---- C:\Windows\system32\TSpkg.dll
2011-06-22 17:25:51 ----A---- C:\Windows\system32\certprop.dll
2011-06-22 17:25:50 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2011-06-22 17:25:50 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2011-06-22 17:25:50 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2011-06-22 17:25:50 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2011-06-22 17:25:50 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2011-06-22 17:25:50 ----A---- C:\Windows\system32\wkscli.dll
2011-06-22 17:25:50 ----A---- C:\Windows\system32\remotepg.dll
2011-06-22 17:25:50 ----A---- C:\Windows\system32\networkexplorer.dll
2011-06-22 17:25:50 ----A---- C:\Windows\system32\dfrgui.exe
2011-06-22 17:25:50 ----A---- C:\Windows\system32\cdosys.dll
2011-06-22 17:25:50 ----A---- C:\Windows\system32\cabinet.dll
2011-06-22 17:25:49 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2011-06-22 17:25:49 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2011-06-22 17:25:49 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2011-06-22 17:25:49 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2011-06-22 17:25:49 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2011-06-22 17:25:49 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2011-06-22 17:25:49 ----A---- C:\Windows\system32\wmpdxm.dll
2011-06-22 17:25:49 ----A---- C:\Windows\system32\WinSCard.dll
2011-06-22 17:25:49 ----A---- C:\Windows\system32\ftp.exe
2011-06-22 17:25:48 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2011-06-22 17:25:48 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2011-06-22 17:25:48 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2011-06-22 17:25:48 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2011-06-22 17:25:48 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2011-06-22 17:25:48 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2011-06-22 17:25:48 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2011-06-22 17:25:48 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2011-06-22 17:25:48 ----A---- C:\Windows\system32\wvc.dll
2011-06-22 17:25:48 ----A---- C:\Windows\system32\wuwebv.dll
2011-06-22 17:25:48 ----A---- C:\Windows\system32\wsqmcons.exe
2011-06-22 17:25:48 ----A---- C:\Windows\system32\wsnmp32.dll
2011-06-22 17:25:48 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-06-22 17:25:48 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-06-22 17:25:48 ----A---- C:\Windows\system32\net1.exe
2011-06-22 17:25:48 ----A---- C:\Windows\system32\blackbox.dll
2011-06-22 17:25:47 ----A---- C:\Windows\SYSWOW64\wvc.dll
2011-06-22 17:25:47 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2011-06-22 17:25:47 ----A---- C:\Windows\system32\msyuv.dll
2011-06-22 17:25:47 ----A---- C:\Windows\system32\mfps.dll
2011-06-22 17:25:46 ----A---- C:\Windows\twain_32.dll
2011-06-22 17:25:46 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2011-06-22 17:25:46 ----A---- C:\Windows\SYSWOW64\twext.dll
2011-06-22 17:25:46 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2011-06-22 17:25:46 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2011-06-22 17:25:46 ----A---- C:\Windows\SYSWOW64\qcap.dll
2011-06-22 17:25:46 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-06-22 17:25:46 ----A---- C:\Windows\SYSWOW64\mstask.dll
2011-06-22 17:25:46 ----A---- C:\Windows\system32\WUDFPlatform.dll
2011-06-22 17:25:46 ----A---- C:\Windows\system32\unimdmat.dll
2011-06-22 17:25:46 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-06-22 17:25:46 ----A---- C:\Windows\system32\OpcServices.dll
2011-06-22 17:25:46 ----A---- C:\Windows\system32\msrle32.dll
2011-06-22 17:25:46 ----A---- C:\Windows\system32\mapistub.dll
2011-06-22 17:25:46 ----A---- C:\Windows\system32\mapi32.dll
2011-06-22 17:25:46 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-06-22 17:25:45 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2011-06-22 17:25:45 ----A---- C:\Windows\SYSWOW64\qasf.dll
2011-06-22 17:25:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2011-06-22 17:25:45 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-06-22 17:25:45 ----A---- C:\Windows\system32\iscsium.dll
2011-06-22 17:25:45 ----A---- C:\Windows\system32\diskraid.exe
2011-06-22 17:25:44 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-06-22 17:25:44 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2011-06-22 17:25:44 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2011-06-22 17:25:44 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2011-06-22 17:25:44 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2011-06-22 17:25:44 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2011-06-22 17:25:44 ----A---- C:\Windows\system32\tsbyuv.dll
2011-06-22 17:25:44 ----A---- C:\Windows\system32\seclogon.dll
2011-06-22 17:25:44 ----A---- C:\Windows\system32\muifontsetup.dll
2011-06-22 17:25:44 ----A---- C:\Windows\system32\ifsutil.dll
2011-06-22 17:25:44 ----A---- C:\Windows\system32\drivers\umbus.sys
2011-06-22 17:25:43 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2011-06-22 17:25:43 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2011-06-22 17:25:43 ----A---- C:\Windows\system32\wmpshell.dll
2011-06-22 17:25:43 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2011-06-22 17:25:43 ----A---- C:\Windows\system32\rdpencom.dll
2011-06-22 17:25:43 ----A---- C:\Windows\system32\perfmon.exe
2011-06-22 17:25:43 ----A---- C:\Windows\system32\d3d10level9.dll
2011-06-22 17:25:42 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2011-06-22 17:25:42 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2011-06-22 17:25:42 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2011-06-22 17:25:42 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2011-06-22 17:25:42 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2011-06-22 17:25:42 ----A---- C:\Windows\SYSWOW64\msscp.dll
2011-06-22 17:25:42 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2011-06-22 17:25:42 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2011-06-22 17:25:42 ----A---- C:\Windows\SYSWOW64\acppage.dll
2011-06-22 17:25:42 ----A---- C:\Windows\system32\umb.dll
2011-06-22 17:25:42 ----A---- C:\Windows\system32\tlscsp.dll
2011-06-22 17:25:42 ----A---- C:\Windows\system32\qasf.dll
2011-06-22 17:25:42 ----A---- C:\Windows\system32\netutils.dll
2011-06-22 17:25:42 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2011-06-22 17:25:42 ----A---- C:\Windows\system32\inseng.dll
2011-06-22 17:25:42 ----A---- C:\Windows\system32\dbghelp.dll
2011-06-22 17:25:42 ----A---- C:\Windows\system32\AzSqlExt.dll
2011-06-22 17:25:41 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2011-06-22 17:25:41 ----A---- C:\Windows\SYSWOW64\raschap.dll
2011-06-22 17:25:41 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2011-06-22 17:25:41 ----A---- C:\Windows\system32\runonce.exe
2011-06-22 17:25:41 ----A---- C:\Windows\system32\FXSAPI.dll
2011-06-22 17:25:41 ----A---- C:\Windows\system32\browser.dll
2011-06-22 17:25:41 ----A---- C:\Windows\system32\ActionQueue.dll
2011-06-22 17:25:41 ----A---- C:\Windows\bfsvc.exe
2011-06-22 17:25:40 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2011-06-22 17:25:40 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2011-06-22 17:25:40 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2011-06-22 17:25:40 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2011-06-22 17:25:40 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2011-06-22 17:25:40 ----A---- C:\Windows\SYSWOW64\input.dll
2011-06-22 17:25:40 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2011-06-22 17:25:40 ----A---- C:\Windows\system32\wpdwcn.dll
2011-06-22 17:25:40 ----A---- C:\Windows\system32\WMADMOD.DLL
2011-06-22 17:25:40 ----A---- C:\Windows\system32\wiavideo.dll
2011-06-22 17:25:40 ----A---- C:\Windows\system32\syssetup.dll
2011-06-22 17:25:40 ----A---- C:\Windows\system32\raschap.dll
2011-06-22 17:25:39 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2011-06-22 17:25:39 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2011-06-22 17:25:39 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2011-06-22 17:25:39 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2011-06-22 17:25:39 ----A---- C:\Windows\system32\MdSched.exe
2011-06-22 17:25:38 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2011-06-22 17:25:38 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2011-06-22 17:25:38 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2011-06-22 17:25:38 ----A---- C:\Windows\SYSWOW64\runonce.exe
2011-06-22 17:25:38 ----A---- C:\Windows\SYSWOW64\onexui.dll
2011-06-22 17:25:38 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2011-06-22 17:25:38 ----A---- C:\Windows\SYSWOW64\inseng.dll
2011-06-22 17:25:38 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2011-06-22 17:25:38 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-06-22 17:25:38 ----A---- C:\Windows\system32\vdsbas.dll
2011-06-22 17:25:38 ----A---- C:\Windows\system32\mstask.dll
2011-06-22 17:25:38 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-06-22 17:25:38 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2011-06-22 17:25:37 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2011-06-22 17:25:37 ----A---- C:\Windows\SYSWOW64\logagent.exe
2011-06-22 17:25:37 ----A---- C:\Windows\system32\nltest.exe
2011-06-22 17:25:37 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-06-22 17:25:36 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2011-06-22 17:25:36 ----A---- C:\Windows\SYSWOW64\shacct.dll
2011-06-22 17:25:36 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2011-06-22 17:25:36 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2011-06-22 17:25:36 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2011-06-22 17:25:36 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2011-06-22 17:25:36 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2011-06-22 17:25:36 ----A---- C:\Windows\system32\vss_ps.dll
2011-06-22 17:25:36 ----A---- C:\Windows\system32\tabcal.exe
2011-06-22 17:25:36 ----A---- C:\Windows\system32\shacct.dll
2011-06-22 17:25:36 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2011-06-22 17:25:36 ----A---- C:\Windows\system32\cscapi.dll
2011-06-22 17:25:36 ----A---- C:\Windows\system32\bitsadmin.exe
2011-06-22 17:25:35 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2011-06-22 17:25:35 ----A---- C:\Windows\system32\WPDSp.dll
2011-06-22 17:25:35 ----A---- C:\Windows\system32\wmdrmnet.dll
2011-06-22 17:25:35 ----A---- C:\Windows\system32\qcap.dll
2011-06-22 17:25:35 ----A---- C:\Windows\system32\logman.exe
2011-06-22 17:25:34 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2011-06-22 17:25:34 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2011-06-22 17:25:34 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2011-06-22 17:25:34 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2011-06-22 17:25:34 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2011-06-22 17:25:34 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2011-06-22 17:25:34 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2011-06-22 17:25:34 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2011-06-22 17:25:34 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2011-06-22 17:25:34 ----A---- C:\Windows\system32\wudriver.dll
2011-06-22 17:25:34 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-06-22 17:25:34 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-06-22 17:25:34 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-06-22 17:25:34 ----A---- C:\Windows\system32\qdv.dll
2011-06-22 17:25:34 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2011-06-22 17:25:34 ----A---- C:\Windows\system32\mssphtb.dll
2011-06-22 17:25:34 ----A---- C:\Windows\system32\msnetobj.dll
2011-06-22 17:25:33 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2011-06-22 17:25:33 ----A---- C:\Windows\SYSWOW64\pdh.dll
2011-06-22 17:25:33 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2011-06-22 17:25:33 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2011-06-22 17:25:33 ----A---- C:\Windows\SYSWOW64\logman.exe
2011-06-22 17:25:33 ----A---- C:\Windows\system32\spbcd.dll
2011-06-22 17:25:33 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-06-22 17:25:33 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2011-06-22 17:25:32 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2011-06-22 17:25:32 ----A---- C:\Windows\system32\takeown.exe
2011-06-22 17:25:32 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-06-22 17:25:32 ----A---- C:\Windows\system32\fphc.dll
2011-06-22 17:25:32 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2011-06-22 17:25:32 ----A---- C:\Windows\system32\dot3ui.dll
2011-06-22 17:25:31 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2011-06-22 17:25:31 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2011-06-22 17:25:31 ----A---- C:\Windows\SYSWOW64\utildll.dll
2011-06-22 17:25:31 ----A---- C:\Windows\SYSWOW64\fphc.dll
2011-06-22 17:25:31 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2011-06-22 17:25:31 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2011-06-22 17:25:31 ----A---- C:\Windows\system32\WMPhoto.dll
2011-06-22 17:25:31 ----A---- C:\Windows\system32\amstream.dll
2011-06-22 17:25:30 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2011-06-22 17:25:30 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2011-06-22 17:25:30 ----A---- C:\Windows\SYSWOW64\takeown.exe
2011-06-22 17:25:30 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2011-06-22 17:25:30 ----A---- C:\Windows\SYSWOW64\qdv.dll
2011-06-22 17:25:30 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2011-06-22 17:25:30 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2011-06-22 17:25:30 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2011-06-22 17:25:30 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2011-06-22 17:25:30 ----A---- C:\Windows\system32\WUDFHost.exe
2011-06-22 17:25:30 ----A---- C:\Windows\system32\vfwwdm32.dll
2011-06-22 17:25:30 ----A---- C:\Windows\system32\shimgvw.dll
2011-06-22 17:25:30 ----A---- C:\Windows\system32\QCLIPROV.DLL
2011-06-22 17:25:30 ----A---- C:\Windows\system32\nrpsrv.dll
2011-06-22 17:25:30 ----A---- C:\Windows\system32\netapi32.dll
2011-06-22 17:25:30 ----A---- C:\Windows\system32\iasrecst.dll
2011-06-22 17:25:30 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2011-06-22 17:25:30 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-06-22 17:25:30 ----A---- C:\Windows\system32\djoin.exe
2011-06-22 17:25:30 ----A---- C:\Windows\system32\cmstp.exe
2011-06-22 17:25:30 ----A---- C:\Windows\system32\CertPolEng.dll
2011-06-22 17:25:29 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2011-06-22 17:25:29 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2011-06-22 17:25:29 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2011-06-22 17:25:29 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2011-06-22 17:25:29 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2011-06-22 17:25:29 ----A---- C:\Windows\SYSWOW64\cca.dll
2011-06-22 17:25:29 ----A---- C:\Windows\system32\WUDFx.dll
2011-06-22 17:25:29 ----A---- C:\Windows\system32\WavDest.dll
2011-06-22 17:25:29 ----A---- C:\Windows\system32\drivers\usbser.sys
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2011-06-22 17:25:28 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2011-06-22 17:25:28 ----A---- C:\Windows\system32\wuauclt.exe
2011-06-22 17:25:28 ----A---- C:\Windows\system32\sscore.dll
2011-06-22 17:25:28 ----A---- C:\Windows\system32\relog.exe
2011-06-22 17:25:28 ----A---- C:\Windows\system32\mydocs.dll
2011-06-22 17:25:28 ----A---- C:\Windows\system32\MultiDigiMon.exe
2011-06-22 17:25:28 ----A---- C:\Windows\system32\KMSVC.DLL
2011-06-22 17:25:28 ----A---- C:\Windows\system32\iscsicli.exe
2011-06-22 17:25:28 ----A---- C:\Windows\system32\fdProxy.dll
2011-06-22 17:25:28 ----A---- C:\Windows\system32\drivers\pacer.sys
2011-06-22 17:25:28 ----A---- C:\Windows\system32\diskpart.exe
2011-06-22 17:25:27 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2011-06-22 17:25:27 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2011-06-22 17:25:27 ----A---- C:\Windows\SYSWOW64\relog.exe
2011-06-22 17:25:27 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2011-06-22 17:25:27 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2011-06-22 17:25:27 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2011-06-22 17:25:27 ----A---- C:\Windows\SYSWOW64\amstream.dll
2011-06-22 17:25:27 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-06-22 17:25:27 ----A---- C:\Windows\system32\msdmo.dll
2011-06-22 17:25:27 ----A---- C:\Windows\system32\mobsync.exe
2011-06-22 17:25:27 ----A---- C:\Windows\system32\itircl.dll
2011-06-22 17:25:27 ----A---- C:\Windows\system32\dot3msm.dll
2011-06-22 17:25:27 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\resutils.dll
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\itircl.dll
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2011-06-22 17:25:26 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2011-06-22 17:25:26 ----A---- C:\Windows\system32\wuapp.exe
2011-06-22 17:25:26 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-06-22 17:25:26 ----A---- C:\Windows\system32\mciqtz32.dll
2011-06-22 17:25:26 ----A---- C:\Windows\system32\choice.exe
2011-06-22 17:25:26 ----A---- C:\Windows\system32\FXSTIFF.dll
2011-06-22 17:25:26 ----A---- C:\Windows\system32\eappgnui.dll
2011-06-22 17:25:26 ----A---- C:\Windows\system32\browcli.dll
2011-06-22 17:25:25 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2011-06-22 17:25:25 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2011-06-22 17:25:25 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2011-06-22 17:25:25 ----A---- C:\Windows\SYSWOW64\secur32.dll
2011-06-22 17:25:25 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2011-06-22 17:25:25 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2011-06-22 17:25:25 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2011-06-22 17:25:25 ----A---- C:\Windows\SYSWOW64\findstr.exe
2011-06-22 17:25:25 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2011-06-22 17:25:25 ----A---- C:\Windows\system32\sppc.dll
2011-06-22 17:25:25 ----A---- C:\Windows\system32\onexui.dll
2011-06-22 17:25:25 ----A---- C:\Windows\system32\luainstall.dll
2011-06-22 17:25:25 ----A---- C:\Windows\system32\imagehlp.dll
2011-06-22 17:25:25 ----A---- C:\Windows\system32\findstr.exe
2011-06-22 17:25:25 ----A---- C:\Windows\system32\drivers\tunnel.sys
2011-06-22 17:25:24 ----A---- C:\Windows\SYSWOW64\netutils.dll
2011-06-22 17:25:24 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2011-06-22 17:25:24 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2011-06-22 17:25:24 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2011-06-22 17:25:24 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2011-06-22 17:25:24 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2011-06-22 17:25:24 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2011-06-22 17:25:24 ----A---- C:\Windows\system32\schedcli.dll
2011-06-22 17:25:24 ----A---- C:\Windows\system32\repair-bde.exe
2011-06-22 17:25:24 ----A---- C:\Windows\system32\manage-bde.exe
2011-06-22 17:25:24 ----A---- C:\Windows\system32\inetmib1.dll
2011-06-22 17:25:24 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-06-22 17:25:23 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2011-06-22 17:25:23 ----A---- C:\Windows\SYSWOW64\sppc.dll
2011-06-22 17:25:23 ----A---- C:\Windows\SYSWOW64\spopk.dll
2011-06-22 17:25:23 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2011-06-22 17:25:23 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2011-06-22 17:25:23 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2011-06-22 17:25:23 ----A---- C:\Windows\system32\spopk.dll
2011-06-22 17:25:23 ----A---- C:\Windows\system32\RDPENCDD.dll
2011-06-22 17:25:23 ----A---- C:\Windows\system32\profprov.dll
2011-06-22 17:25:22 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2011-06-22 17:25:22 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2011-06-22 17:25:22 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2011-06-22 17:25:22 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2011-06-22 17:25:22 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2011-06-22 17:25:22 ----A---- C:\Windows\system32\odbcconf.dll
2011-06-22 17:25:22 ----A---- C:\Windows\system32\FXSMON.dll
2011-06-22 17:25:22 ----A---- C:\Windows\system32\fixmapi.exe
2011-06-22 17:25:22 ----A---- C:\Windows\system32\elsTrans.dll
2011-06-22 17:25:21 ----A---- C:\Windows\SYSWOW64\wups.dll
2011-06-22 17:25:21 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2011-06-22 17:25:21 ----A---- C:\Windows\SYSWOW64\perfts.dll
2011-06-22 17:25:21 ----A---- C:\Windows\SYSWOW64\browcli.dll
2011-06-22 17:25:21 ----A---- C:\Windows\system32\wshbth.dll
2011-06-22 17:25:21 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-06-22 17:25:21 ----A---- C:\Windows\system32\TRAPI.dll
2011-06-22 17:25:21 ----A---- C:\Windows\system32\msfeedssync.exe
2011-06-22 17:25:21 ----A---- C:\Windows\system32\drivers\tdi.sys
2011-06-22 17:25:20 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-06-22 17:25:20 ----A---- C:\Windows\SYSWOW64\imm32.dll
2011-06-22 17:25:20 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2011-06-22 17:25:20 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2011-06-22 17:25:20 ----A---- C:\Windows\system32\napdsnap.dll
2011-06-22 17:25:20 ----A---- C:\Windows\system32\LogonUI.exe
2011-06-22 17:25:20 ----A---- C:\Windows\system32\FXSUNATD.exe
2011-06-22 17:25:20 ----A---- C:\Windows\system32\dsauth.dll
2011-06-22 17:25:19 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2011-06-22 17:25:19 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2011-06-22 17:25:19 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2011-06-22 17:25:19 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2011-06-22 17:25:19 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2011-06-22 17:25:19 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2011-06-22 17:25:19 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2011-06-22 17:25:19 ----A---- C:\Windows\system32\cscdll.dll
2011-06-22 17:25:19 ----A---- C:\Windows\system32\bitsperf.dll
2011-06-22 17:25:18 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2011-06-22 17:25:18 ----A---- C:\Windows\system32\wups2.dll
2011-06-22 17:25:18 ----A---- C:\Windows\system32\wups.dll
2011-06-22 17:25:18 ----A---- C:\Windows\system32\wsdchngr.dll
2011-06-22 17:25:18 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2011-06-22 17:25:17 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2011-06-22 17:25:17 ----A---- C:\Windows\SYSWOW64\sscore.dll
2011-06-22 17:25:17 ----A---- C:\Windows\SYSWOW64\shgina.dll
2011-06-22 17:25:17 ----A---- C:\Windows\SYSWOW64\riched32.dll
2011-06-22 17:25:17 ----A---- C:\Windows\system32\shgina.dll
2011-06-22 17:25:16 ----A---- C:\Windows\system32\wshirda.dll
2011-06-22 17:25:16 ----A---- C:\Windows\system32\wow64win.dll
2011-06-22 17:25:16 ----A---- C:\Windows\system32\wow64cpu.dll
2011-06-22 17:25:16 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-06-22 17:25:16 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2011-06-22 17:25:15 ----A---- C:\Windows\system32\drivers\hidusb.sys
2011-06-22 17:25:15 ----A---- C:\Windows\system32\drivers\appid.sys
2011-06-22 17:25:14 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2011-06-22 17:25:14 ----A---- C:\Windows\system32\riched32.dll
2011-06-22 17:25:14 ----A---- C:\Windows\system32\rdpcfgex.dll
2011-06-22 17:25:14 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-06-22 17:25:13 ----A---- C:\Windows\system32\spwmp.dll
2011-06-22 17:25:13 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2011-06-22 17:25:13 ----A---- C:\Windows\system32\browseui.dll
2011-06-22 17:25:12 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2011-06-22 17:25:12 ----A---- C:\Windows\SYSWOW64\browseui.dll
2011-06-22 17:25:12 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2011-06-22 17:25:12 ----A---- C:\Windows\system32\C_ISCII.DLL
2011-06-22 17:25:11 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2011-06-22 17:25:11 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2011-06-22 17:25:11 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2011-06-22 17:25:11 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2011-06-22 17:25:11 ----A---- C:\Windows\system32\shunimpl.dll
2011-06-22 17:25:11 ----A---- C:\Windows\system32\dxmasf.dll
2011-06-22 17:25:11 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2011-06-22 17:25:11 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2011-06-22 17:25:11 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-06-22 17:25:11 ----A---- C:\Windows\system32\drivers\scfilter.sys
2011-06-22 17:25:11 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-06-22 17:25:11 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-06-22 17:25:10 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2011-06-22 17:25:10 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\wmploc.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDTUQ.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDTUF.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDSG.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDSF.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDPO.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDNEPR.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\kbdlk41a.dll
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDINTAM.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDINBEN.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDGR1.DLL
2011-06-22 17:25:10 ----A---- C:\Windows\system32\KBDGKL.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\system32\KBDUS.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\system32\KBDMON.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\system32\KBDLT1.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\system32\KBDGEO.DLL
2011-06-22 17:25:09 ----A---- C:\Windows\system32\KBDCZ1.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-06-22 17:25:08 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2011-06-22 17:25:08 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2011-06-22 17:25:08 ----A---- C:\Windows\system32\tzres.dll
2011-06-22 17:25:08 ----A---- C:\Windows\system32\nlsbres.dll
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDTURME.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDMAORI.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDINTEL.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDINORI.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDINMAR.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDINKAN.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDINHIN.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDBULG.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDBLR.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\KBDBASH.DLL
2011-06-22 17:25:08 ----A---- C:\Windows\system32\dpnaddr.dll
2011-06-22 17:25:07 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2011-06-22 17:25:07 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2011-06-22 17:25:07 ----A---- C:\Windows\system32\spwizres.dll
2011-06-22 17:25:07 ----A---- C:\Windows\system32\pifmgr.dll
2011-06-22 17:25:07 ----A---- C:\Windows\system32\BlbEvents.dll
2011-06-22 17:24:44 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2011-06-22 17:24:44 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2011-06-22 17:24:32 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2011-06-22 17:24:32 ----A---- C:\Windows\SYSWOW64\dpx.dll
2011-06-22 17:24:27 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2011-06-22 17:20:07 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-06-22 17:20:07 ----A---- C:\Windows\system32\wbemcomn.dll
2011-06-22 17:19:57 ----A---- C:\Windows\system32\SmiEngine.dll
2011-06-22 17:19:50 ----A---- C:\Windows\system32\PkgMgr.exe
2011-06-22 17:18:59 ----A---- C:\Windows\system32\drvstore.dll
2011-06-22 17:18:58 ----A---- C:\Windows\system32\dpx.dll
2011-06-16 15:17:21 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-06-16 15:17:21 ----A---- C:\Windows\system32\drivers\afd.sys
2011-06-16 15:17:20 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-06-16 15:17:17 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-06-16 15:17:17 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-06-16 15:17:17 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-06-16 15:17:16 ----A---- C:\Windows\system32\win32k.sys
2011-06-16 15:17:10 ----A---- C:\Windows\system32\mshtml.dll
2011-06-16 15:17:08 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-06-16 15:17:08 ----A---- C:\Windows\system32\iertutil.dll
2011-06-16 15:17:03 ----A---- C:\Windows\system32\ieframe.dll
2011-06-16 15:17:01 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-06-16 15:17:00 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-06-16 15:17:00 ----A---- C:\Windows\system32\msfeeds.dll
2011-06-16 15:16:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-06-16 15:16:57 ----A---- C:\Windows\system32\urlmon.dll
2011-06-16 15:16:55 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-06-16 15:16:54 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-06-16 15:16:54 ----A---- C:\Windows\system32\wininet.dll
2011-06-16 15:16:53 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-06-16 15:16:53 ----A---- C:\Windows\system32\ieui.dll
2011-06-16 15:16:52 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-06-16 15:16:52 ----A---- C:\Windows\system32\jsproxy.dll
2011-06-16 15:16:41 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2011-06-16 15:16:41 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2011-06-16 15:16:41 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-06-16 15:16:41 ----A---- C:\Windows\system32\d3d10_1.dll
2011-06-16 15:16:39 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-06-16 15:16:39 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-06-16 15:16:39 ----A---- C:\Windows\system32\drivers\srv.sys
2011-06-16 15:16:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-06-16 15:16:38 ----A---- C:\Windows\system32\oleaut32.dll
2011-06-16 15:16:37 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-06-16 15:16:37 ----A---- C:\Windows\system32\inetcomm.dll
2011-06-13 20:51:44 ----D---- C:\Users\notebook\AppData\Roaming\PhotoScape

======List of files/folders modified in the last 1 months======

2011-06-29 16:22:30 ----D---- C:\Windows\Prefetch
2011-06-29 16:21:49 ----RD---- C:\Program Files
2011-06-29 16:21:49 ----D---- C:\Windows\Temp
2011-06-29 13:12:43 ----D---- C:\Windows\Microsoft.NET
2011-06-29 13:12:23 ----RSD---- C:\Windows\assembly
2011-06-29 12:47:36 ----SHD---- C:\System Volume Information
2011-06-29 12:23:43 ----D---- C:\Windows\system32\catroot
2011-06-29 12:23:42 ----D---- C:\Windows\system32\catroot2
2011-06-29 12:23:41 ----D---- C:\Windows\winsxs
2011-06-29 12:11:07 ----D---- C:\Users\notebook\AppData\Roaming\ICQ
2011-06-29 12:11:05 ----D---- C:\ProgramData\Landi11-original
2011-06-29 12:10:21 ----D---- C:\Windows\system32\Tasks
2011-06-29 12:10:08 ----D---- C:\Windows\system32\config
2011-06-28 13:03:10 ----SHD---- C:\Windows\Installer
2011-06-28 12:53:53 ----D---- C:\Windows\System32
2011-06-28 12:53:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-06-28 12:53:52 ----D---- C:\Windows\inf
2011-06-26 19:23:49 ----AD---- C:\ProgramData\Temp
2011-06-25 20:59:06 ----D---- C:\Windows\Tasks
2011-06-25 20:59:05 ----D---- C:\Windows\system32\wfp
2011-06-25 20:58:23 ----D---- C:\Windows\SYSWOW64\Speech
2011-06-25 20:58:22 ----D---- C:\Windows\SYSWOW64\MUI
2011-06-25 20:58:21 ----D---- C:\Windows\system32\spp
2011-06-25 20:58:21 ----D---- C:\Windows\system32\Speech
2011-06-25 20:58:21 ----D---- C:\Windows\system32\MUI
2011-06-25 20:58:15 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-06-25 20:56:48 ----D---- C:\Windows\registration
2011-06-25 20:49:30 ----D---- C:\Windows\system32\LogFiles
2011-06-25 11:17:35 ----SHD---- C:\Boot
2011-06-25 11:16:40 ----D---- C:\Windows
2011-06-25 11:16:21 ----D---- C:\Windows\system32\DriverStore
2011-06-25 11:10:07 ----D---- C:\Program Files (x86)\Windows Sidebar
2011-06-25 11:10:07 ----D---- C:\Program Files (x86)\Windows Mail
2011-06-25 11:10:06 ----D---- C:\Program Files (x86)\Windows Portable Devices
2011-06-25 11:10:06 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2011-06-25 11:10:06 ----D---- C:\Program Files (x86)\Windows Media Player
2011-06-25 11:10:06 ----D---- C:\Program Files (x86)\Internet Explorer
2011-06-25 11:10:05 ----D---- C:\Program Files\Windows Sidebar
2011-06-25 11:10:05 ----D---- C:\Program Files\Windows Mail
2011-06-25 11:10:04 ----D---- C:\Program Files\Windows Portable Devices
2011-06-25 11:10:04 ----D---- C:\Program Files\Windows Photo Viewer
2011-06-25 11:10:04 ----D---- C:\Program Files\Windows Media Player
2011-06-25 11:10:04 ----D---- C:\Program Files\Windows Journal
2011-06-25 11:10:04 ----D---- C:\Program Files\Internet Explorer
2011-06-25 11:10:04 ----D---- C:\Program Files\DVD Maker
2011-06-25 11:10:02 ----D---- C:\Windows\servicing
2011-06-25 11:10:02 ----D---- C:\Program Files\Windows Defender
2011-06-25 11:10:01 ----D---- C:\Windows\ehome
2011-06-25 11:09:54 ----D---- C:\Windows\SYSWOW64\da-DK
2011-06-25 11:09:53 ----D---- C:\Windows\SYSWOW64\sk-SK
2011-06-25 11:09:53 ----D---- C:\Windows\SYSWOW64\en-US
2011-06-25 11:09:52 ----D---- C:\Windows\SYSWOW64\sppui
2011-06-25 11:09:52 ----D---- C:\Windows\SYSWOW64\Setup
2011-06-25 11:09:52 ----D---- C:\Windows\SYSWOW64\oobe
2011-06-25 11:09:52 ----D---- C:\Windows\SYSWOW64\migration
2011-06-25 11:09:52 ----D---- C:\Windows\SYSWOW64\manifeststore
2011-06-25 11:09:52 ----D---- C:\Windows\SYSWOW64\es-ES
2011-06-25 11:09:52 ----D---- C:\Windows\SYSWOW64\en
2011-06-25 11:09:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-06-25 11:09:52 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2011-06-25 11:09:51 ----D---- C:\Windows\SYSWOW64\wbem
2011-06-25 11:09:51 ----D---- C:\Windows\SYSWOW64\migwiz
2011-06-25 11:09:50 ----D---- C:\Windows\SYSWOW64\Dism
2011-06-25 11:09:50 ----D---- C:\Windows\SysWOW64
2011-06-25 11:09:27 ----D---- C:\Windows\system32\da-DK
2011-06-25 11:09:27 ----D---- C:\Windows\PolicyDefinitions
2011-06-25 11:09:26 ----D---- C:\Windows\system32\sk-SK
2011-06-25 11:09:25 ----D---- C:\Windows\system32\en-US
2011-06-25 11:09:24 ----D---- C:\Windows\system32\Setup
2011-06-25 11:09:24 ----D---- C:\Windows\system32\oobe
2011-06-25 11:09:24 ----D---- C:\Windows\system32\migration
2011-06-25 11:09:24 ----D---- C:\Windows\system32\cs-CZ
2011-06-25 11:09:24 ----D---- C:\Windows\system32\AdvancedInstallers
2011-06-25 11:09:23 ----D---- C:\Windows\system32\sppui
2011-06-25 11:09:23 ----D---- C:\Windows\system32\manifeststore
2011-06-25 11:09:23 ----D---- C:\Windows\system32\es-ES
2011-06-25 11:09:22 ----D---- C:\Windows\system32\wbem
2011-06-25 11:09:22 ----D---- C:\Windows\system32\drivers\en-US
2011-06-25 11:09:22 ----D---- C:\Windows\system32\drivers
2011-06-25 11:09:20 ----D---- C:\Windows\system32\migwiz
2011-06-25 11:09:20 ----D---- C:\Windows\system32\Dism
2011-06-25 11:08:51 ----RSD---- C:\Windows\Fonts
2011-06-25 11:08:50 ----D---- C:\Windows\AppPatch
2011-06-25 11:08:26 ----D---- C:\Windows\system32\Boot
2011-06-24 14:11:54 ----D---- C:\Users\notebook\AppData\Roaming\Skype
2011-06-24 14:11:49 ----D---- C:\Users\notebook\AppData\Roaming\skypePM
2011-06-24 12:35:08 ----D---- C:\Windows\Logs
2011-06-24 12:31:32 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2011-06-24 12:31:31 ----A---- C:\Windows\system32\msclmd.dll
2011-06-17 22:19:13 ----D---- C:\Users\notebook\AppData\Roaming\gtk-2.0
2011-06-17 13:23:50 ----A---- C:\Windows\system32\MRT.exe
2011-06-17 13:23:37 ----D---- C:\ProgramData\Microsoft Help
2011-06-08 14:39:21 ----RD---- C:\Program Files (x86)
2011-06-07 19:00:55 ----D---- C:\ProgramData\Norton
2011-06-06 07:47:02 ----D---- C:\Program Files (x86)\Registry Mechanic
2011-06-01 19:01:36 ----SD---- C:\Users\notebook\AppData\Roaming\Microsoft
2011-06-01 19:01:36 ----SD---- C:\ProgramData\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AsDsm;AsDsm; C:\Windows\system32\drivers\AsDsm.sys [2010-06-08 35384]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-08-06 408600]
R0 lullaby;lullaby; C:\Windows\system32\DRIVERS\lullaby.sys [2009-06-18 15928]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-12-30 834544]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-07-29 141264]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-09-03 170104]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-07-29 126320]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-08-25 10611552]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-05 1806400]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-07-09 1222144]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 awey2d4a;awey2d4a; C:\Windows\system32\drivers\awey2d4a.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2010-07-30 19456]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-07-30 26624]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-07-30 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-07-30 9216]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-12-08 379520]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2010-11-04 810144]
R2 ICQ Service;ICQ Service; C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [2010-09-06 247096]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [2010-10-01 632792]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R3 ADSMService;ADSM Service; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [2008-03-31 225280]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-06-08 135664]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-11-04 42360]
S3 fsssvc;Bezpečnosť rodiny v službe Windows Live; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-06-08 135664]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-08 182768]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1255736]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosim o kontrolu

#3 Příspěvek od motji »

Dobrý večer :)

:arrow: Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

Obrázekzáložka čistič
-nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
-po analýze klikněte na Spustit Ccleaner

Obrázekzáložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy :arrow: ok :arrow: zavřít

Obrázek Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.



:arrow: Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT :!:
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Re: Prosim o kontrolu

#4 Příspěvek od Edon »

Tak Ccleanerom vyciste to vymazavanie porobim neskor neni to totiz moj ntb ale holkin. Tu je log z MBAM:


Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Verzia databázy: 6987

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

30. 6. 2011 18:46:39
mbam-log-2011-06-30 (18-46-31).txt

Typ kontroly: Úplná kontrola (C:\|D:\|)
Objektov kontrolovaných: 316649
Uplynutý čas: 45 min, 14 sek

Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registračné kľúče: 0
Infikované registračné hodnoty: 0
Infikované položky registračných dát: 0
Infikované priečinky: 0
Infikované súbory: 1

Infikované služby pamäte:
(Škodlivé položky neboli zistené)

Infikované moduly pamäte:
(Škodlivé položky neboli zistené)

Infikované registračné kľúče:
(Škodlivé položky neboli zistené)

Infikované registračné hodnoty:
(Škodlivé položky neboli zistené)

Infikované položky registračných dát:
(Škodlivé položky neboli zistené)

Infikované priečinky:
(Škodlivé položky neboli zistené)

Infikované súbory:
c:\Setup.exe (Trojan.Agent) -> No action taken.
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosim o kontrolu

#5 Příspěvek od motji »

V mbamu smažte.
Jaké jsou s pc problémy?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Re: Prosim o kontrolu

#6 Příspěvek od Edon »

PC je mierne spomaleny ale predsa len je to ntb a je tu hrozne vela veci. Musim ju donutit povymazavt veci co nikdy nepouzila. Skor mi robi starosti akysi program PC TOOLS REGISTRY MECHANIC ktory sa obcas pusti urobi nejaky scan a vyhadzuje mnozstvo chyb v registroch. Netusim kde sa tu vzal alebo co je to zac ale kedysi to tu nevyhadzovalo.
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosim o kontrolu

#7 Příspěvek od motji »

:arrow: Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT
- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde :)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Re: Prosim o kontrolu

#8 Příspěvek od Edon »

tu su skeny z OTL, poslem vam to po castiach lebo to ma vela znakov tak posielam prvy:

OTL logfile created on: 30. 6. 2011 22:08:28 - Run 1
OTL by OldTimer - Version 3.2.25.0 Folder = C:\Users\notebook\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 0000041b | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

3,97 Gb Total Physical Memory | 2,46 Gb Available Physical Memory | 62,04% Memory free
7,93 Gb Paging File | 6,28 Gb Available in Paging File | 79,17% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 74,52 Gb Total Space | 9,78 Gb Free Space | 13,13% Space Free | Partition Type: NTFS
Drive D: | 204,03 Gb Total Space | 203,71 Gb Free Space | 99,84% Space Free | Partition Type: NTFS

Computer Name: NOTEBOOK-PC | User Name: notebook | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/06/30 22:06:51 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\notebook\Desktop\OTL.exe
PRC - [2011/05/29 09:11:28 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/03/21 20:56:16 | 001,230,704 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/01/05 10:18:50 | 000,133,432 | ---- | M] (ICQ, LLC.) -- C:\Program Files (x86)\ICQ7.2\ICQ.exe
PRC - [2010/12/30 11:02:08 | 000,274,608 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2010/12/22 19:34:55 | 002,691,072 | ---- | M] ( ) -- C:\Program Files (x86)\landi 11\Landi11.exe
PRC - [2010/12/21 12:53:40 | 001,483,264 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
PRC - [2010/12/08 15:31:06 | 000,628,736 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
PRC - [2010/11/15 17:05:30 | 000,112,600 | ---- | M] (PC Tools) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
PRC - [2010/11/04 18:15:50 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2010/10/25 16:46:36 | 000,190,928 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\QipGuard\QipGuard.exe
PRC - [2010/10/01 13:27:22 | 000,632,792 | ---- | M] (PC Tools) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2010/09/16 12:26:00 | 001,016,792 | ---- | M] (PC Tool) -- C:\Program Files (x86)\Registry Mechanic\Alert.exe
PRC - [2010/06/08 03:07:59 | 003,058,304 | ---- | M] (ASUS) -- C:\Windows\AsScrPro.exe
PRC - [2010/06/02 18:27:26 | 000,093,376 | ---- | M] (OLYMPUS IMAGING CORP.) -- C:\Program Files (x86)\Olympus\ib\olycamdetect.exe
PRC - [2010/04/01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2010/01/05 02:43:36 | 001,597,440 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
PRC - [2009/11/24 22:45:36 | 000,053,888 | ---- | M] () -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
PRC - [2009/11/02 23:21:26 | 000,103,720 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
PRC - [2009/10/27 10:15:02 | 000,120,832 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2009/08/20 05:31:48 | 000,170,624 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
PRC - [2009/08/17 18:58:46 | 006,859,392 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
PRC - [2009/08/12 23:20:46 | 000,178,816 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
PRC - [2009/08/12 21:32:56 | 000,365,936 | ---- | M] (Boingo Wireless, Inc.) -- C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
PRC - [2009/07/31 19:38:24 | 000,305,720 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
PRC - [2009/06/24 21:30:18 | 000,272,952 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
PRC - [2009/06/19 19:29:42 | 000,105,016 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
PRC - [2009/06/19 19:29:26 | 002,488,888 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
PRC - [2009/06/16 02:30:42 | 000,084,536 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe
PRC - [2008/12/23 02:15:34 | 000,174,648 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
PRC - [2008/10/04 15:08:56 | 000,098,816 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe
PRC - [2008/08/14 06:00:08 | 000,113,208 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe
PRC - [2008/08/14 05:59:56 | 000,301,624 | ---- | M] () -- C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe
PRC - [2008/03/31 11:55:48 | 000,225,280 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
PRC - [2007/11/30 20:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
PRC - [2007/08/08 09:08:40 | 000,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe


========== Modules (SafeList) ==========

MOD - [2011/06/30 22:06:51 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\notebook\Desktop\OTL.exe
MOD - [2010/11/20 13:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/11/04 18:18:12 | 000,042,360 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV:64bit: - [2010/11/04 18:15:50 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2009/12/08 01:16:34 | 000,379,520 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Windows\SysNative\FBAgent.exe -- (AFBAgent)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2007/08/08 09:08:40 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2010/12/08 15:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/10/01 13:27:22 | 000,632,792 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/16 02:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/03/31 11:55:48 | 000,225,280 | ---- | M] (ASUSTek Computer Inc.) [On_Demand | Running] -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe -- (ADSMService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/05/29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011/03/11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/12/30 19:18:50 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/11/20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 12:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010/09/03 07:13:46 | 000,170,104 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2010/08/25 20:36:04 | 010,611,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/07/30 15:18:04 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2010/07/30 15:18:02 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2010/07/30 15:18:00 | 000,026,624 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2010/07/30 15:17:56 | 000,019,456 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2010/07/29 13:31:26 | 000,141,264 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2010/07/29 13:31:26 | 000,126,320 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2009/10/15 11:23:19 | 000,117,760 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2009/10/05 03:33:59 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/08/23 07:08:07 | 000,056,320 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1E62x64.sys -- (L1E)
DRV:64bit: - [2009/08/06 23:24:13 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/07/20 11:29:39 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 10:11:31 | 001,222,144 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2009/06/18 21:18:10 | 000,015,928 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\lullaby.sys -- (lullaby)
DRV:64bit: - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 22:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SiSG664.sys -- (SiSGbeLH)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/05 12:15:55 | 001,806,400 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV:64bit: - [2009/05/13 03:07:19 | 000,015,928 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATK64AMD.sys -- (MTsensor)
DRV:64bit: - [2008/12/08 18:35:52 | 000,061,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2008/08/28 12:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2008/05/24 02:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV:64bit: - [2007/07/24 20:11:32 | 000,014,904 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll (Conduit Ltd.)


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\URLSearchHook: {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\URLSearchHook: {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/12/30 11:02:19 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video [2011/05/28 10:47:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa [2011/05/28 10:47:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010/12/25 19:33:50 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (QipLI Class) - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll (TODO: <Company name>)
O2 - BHO: (QIPBHO Class) - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (PHPNukeEN Toolbar) - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll (Conduit Ltd.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (PHPNukeEN Toolbar) - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\Toolbar\WebBrowser: (PHPNukeEN Toolbar) - {DD02A4EB-4AFD-4D60-99D8-E67F964CA813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (AlcorMicro Co., Ltd.)
O4:64bit: - HKLM..\Run: [ASUS WebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe ()
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [Boingo Wi-Fi] C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk ()
O4 - HKLM..\Run: [DivX Download Manager] C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe (DivX, LLC)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MDS_Menu] C:\Program Files (x86)\Olympus\ib\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Olympus ib] C:\Program Files (x86)\Olympus\ib\olycamdetect.exe (OLYMPUS IMAGING CORP.)
O4 - HKLM..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe (PC Tools)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000..\Run: [ICQ] C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O4 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000..\Run: [PC Suite Tray] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000..\Run: [QIP Internet Guardian] C:\Users\notebook\AppData\Roaming\QipGuard\QipGuard.exe ()
O4 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000..\Run: [RESTART_STICKY_NOTES] File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found
O4 - Startup: C:\Users\notebook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Landi 11.lnk = C:\Program Files (x86)\landi 11\Landi11.exe ( )
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 16
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.254
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/01/13 06:41:47 | 000,000,251 | ---- | M] () - C:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*


Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
Drivers32: vidc.VP60 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.yv12 - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011/06/30 22:06:49 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Users\notebook\Desktop\OTL.exe
[2011/06/30 17:58:36 | 000,000,000 | ---D | C] -- C:\Users\notebook\AppData\Roaming\Malwarebytes
[2011/06/30 17:58:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/06/30 17:58:05 | 000,039,984 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/06/30 17:58:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/06/30 17:58:02 | 000,025,912 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/06/30 17:58:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/06/30 17:50:22 | 000,000,000 | ---D | C] -- C:\Users\notebook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011/06/30 17:50:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CCleaner
[2011/06/29 16:21:49 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011/06/29 16:21:48 | 000,000,000 | ---D | C] -- C:\rsit
[2011/06/29 12:28:48 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2011/06/29 12:28:48 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2011/06/29 12:28:46 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2011/06/29 12:28:46 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2011/06/29 12:28:45 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2011/06/29 12:28:44 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2011/06/29 12:28:44 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2011/06/29 12:28:43 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2011/06/29 12:28:43 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2011/06/29 12:28:43 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2011/06/29 12:28:43 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2011/06/29 12:28:43 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2011/06/29 12:28:42 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2011/06/29 12:28:41 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssphtb.dll
[2011/06/29 12:28:41 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2011/06/29 12:28:41 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2011/06/24 12:17:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2011/06/24 12:16:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2011/06/22 17:28:47 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2011/06/22 17:28:47 | 000,048,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2011/06/22 17:28:35 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2011/06/22 17:28:29 | 003,715,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2011/06/22 17:28:29 | 001,838,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2011/06/22 17:28:29 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2011/06/22 17:28:29 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2011/06/22 17:28:25 | 003,215,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2011/06/22 17:28:21 | 001,171,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10warp.dll
[2011/06/22 17:28:20 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll
[2011/06/22 17:28:20 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll
[2011/06/22 17:28:16 | 014,633,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2011/06/22 17:28:14 | 001,731,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2011/06/22 17:28:13 | 003,205,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmcndmgr.dll
[2011/06/22 17:28:12 | 004,120,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2011/06/22 17:28:12 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2011/06/22 17:28:11 | 003,008,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xpsservices.dll
[2011/06/22 17:28:11 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2011/06/22 17:28:11 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2011/06/22 17:28:11 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2011/06/22 17:28:11 | 000,359,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2011/06/22 17:28:08 | 001,219,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2011/06/22 17:28:08 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2011/06/22 17:28:08 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2011/06/22 17:28:06 | 002,086,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2011/06/22 17:28:06 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2011/06/22 17:28:04 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizui.dll
[2011/06/22 17:28:02 | 001,556,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RacEngn.dll
[2011/06/22 17:28:02 | 001,340,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagperf.dll
[2011/06/22 17:28:02 | 001,197,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskschd.dll
[2011/06/22 17:28:01 | 003,207,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2011/06/22 17:28:01 | 001,866,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2011/06/22 17:28:00 | 001,753,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vssapi.dll
[2011/06/22 17:27:59 | 001,334,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2011/06/22 17:27:59 | 001,326,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NaturalLanguage6.dll
[2011/06/22 17:27:58 | 003,860,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbon.dll
[2011/06/22 17:27:58 | 000,299,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcupdate_GenuineIntel.dll
[2011/06/22 17:27:56 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2011/06/22 17:27:54 | 003,027,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVCORE.DLL
[2011/06/22 17:27:54 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2011/06/22 17:27:54 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2011/06/22 17:27:54 | 000,109,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2011/06/22 17:27:54 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2011/06/22 17:27:53 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpdd.dll
[2011/06/22 17:27:52 | 003,957,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSAT.exe
[2011/06/22 17:27:52 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2011/06/22 17:27:52 | 000,598,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spinstall.exe
[2011/06/22 17:27:52 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spreview.exe
[2011/06/22 17:27:51 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
[2011/06/22 17:27:51 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2011/06/22 17:27:50 | 001,115,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RacEngn.dll
[2011/06/22 17:27:49 | 000,867,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
[2011/06/22 17:27:48 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthFWSnapin.dll
[2011/06/22 17:27:47 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuthFWSnapin.dll
[2011/06/22 17:27:47 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2011/06/22 17:27:46 | 003,391,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
[2011/06/22 17:27:46 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2011/06/22 17:27:44 | 001,456,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2011/06/22 17:27:43 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2011/06/22 17:27:42 | 000,958,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2011/06/22 17:27:42 | 000,750,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2011/06/22 17:27:42 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2011/06/22 17:27:41 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2011/06/22 17:27:40 | 001,244,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2fs.dll
[2011/06/22 17:27:40 | 001,116,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2011/06/22 17:27:40 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqmapi.dll
[2011/06/22 17:27:39 | 000,787,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2011/06/22 17:27:39 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netlogon.dll
[2011/06/22 17:27:38 | 001,828,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d9.dll
[2011/06/22 17:27:37 | 001,212,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll
[2011/06/22 17:27:36 | 001,900,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll
[2011/06/22 17:27:35 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
[2011/06/22 17:27:34 | 001,927,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2011/06/22 17:27:34 | 001,281,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\werconcpl.dll
[2011/06/22 17:27:34 | 001,008,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2011/06/22 17:27:34 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbc32.dll
[2011/06/22 17:27:34 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe
[2011/06/22 17:27:33 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certmgr.dll
[2011/06/22 17:27:33 | 001,049,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2011/06/22 17:27:33 | 000,376,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2011/06/22 17:27:32 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2011/06/22 17:27:32 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
[2011/06/22 17:27:31 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2011/06/22 17:27:31 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceApi.dll
[2011/06/22 17:27:31 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2011/06/22 17:27:31 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2011/06/22 17:27:30 | 001,371,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2011/06/22 17:27:30 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
[2011/06/22 17:27:30 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shlwapi.dll
[2011/06/22 17:27:30 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsmf.dll
[2011/06/22 17:27:30 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2011/06/22 17:27:29 | 002,652,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netshell.dll
[2011/06/22 17:27:29 | 001,509,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdtctm.dll
[2011/06/22 17:27:29 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2011/06/22 17:27:29 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedynos.dll
[2011/06/22 17:27:28 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2011/06/22 17:27:28 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2011/06/22 17:27:28 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll
[2011/06/22 17:27:28 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2011/06/22 17:27:28 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ws2_32.dll
[2011/06/22 17:27:28 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpmonui.dll
[2011/06/22 17:27:27 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2011/06/22 17:27:27 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2011/06/22 17:27:27 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TSWorkspace.dll
[2011/06/22 17:27:27 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
[2011/06/22 17:27:27 | 000,481,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpps.dll
[2011/06/22 17:27:27 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.exe
[2011/06/22 17:27:27 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
[2011/06/22 17:27:26 | 002,543,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdshext.dll
[2011/06/22 17:27:26 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Query.dll
[2011/06/22 17:27:26 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsmf.dll
[2011/06/22 17:27:26 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3api.dll
[2011/06/22 17:27:25 | 000,897,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroles.dll
[2011/06/22 17:27:25 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QAGENT.DLL
[2011/06/22 17:27:24 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Vault.dll
[2011/06/22 17:27:24 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2011/06/22 17:27:24 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmd.exe
[2011/06/22 17:27:24 | 000,281,600 | ---- | C] (Microsoft) -- C:\Windows\SysNative\DShowRdpFilter.dll
[2011/06/22 17:27:23 | 002,522,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
[2011/06/22 17:27:23 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2011/06/22 17:27:23 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetup.exe
[2011/06/22 17:27:22 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2011/06/22 17:27:22 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll
[2011/06/22 17:27:21 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2011/06/22 17:27:20 | 001,363,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Query.dll
[2011/06/22 17:27:20 | 001,190,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2011/06/22 17:27:20 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sxs.dll
[2011/06/22 17:27:20 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2011/06/22 17:27:20 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wldap32.dll
[2011/06/22 17:27:20 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcbuilder.exe
[2011/06/22 17:27:19 | 001,808,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pnidui.dll
[2011/06/22 17:27:19 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ipsmsnap.dll
[2011/06/22 17:27:19 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskcomp.dll
[2011/06/22 17:27:19 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfds.dll
[2011/06/22 17:27:19 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\upnp.dll
[2011/06/22 17:27:18 | 002,151,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmcndmgr.dll
[2011/06/22 17:27:18 | 001,158,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webservices.dll
[2011/06/22 17:27:18 | 000,252,928 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\DShowRdpFilter.dll
[2011/06/22 17:27:18 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgprint.dll
[2011/06/22 17:27:18 | 000,049,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2011/06/22 17:27:17 | 000,732,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2fs.dll
[2011/06/22 17:27:17 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdrm.dll
[2011/06/22 17:27:16 | 001,792,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2011/06/22 17:27:16 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlsrv32.dll
[2011/06/22 17:27:16 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2011/06/22 17:27:16 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2011/06/22 17:27:16 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsta.dll
[2011/06/22 17:27:16 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3api.dll
[2011/06/22 17:27:15 | 000,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceApi.dll
[2011/06/22 17:27:15 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2011/06/22 17:27:15 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2011/06/22 17:27:15 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mcbuilder.exe
[2011/06/22 17:27:15 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prncache.dll
[2011/06/22 17:27:14 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcmde.dll
[2011/06/22 17:27:13 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certmgr.dll
[2011/06/22 17:27:13 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanpref.dll
[2011/06/22 17:27:13 | 001,243,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMNetMgr.dll
[2011/06/22 17:27:13 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schtasks.exe
[2011/06/22 17:27:12 | 001,712,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xpsservices.dll
[2011/06/22 17:27:12 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2011/06/22 17:27:12 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnike.dll
[2011/06/22 17:27:12 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2011/06/22 17:27:12 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userenv.dll
[2011/06/22 17:27:11 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\evr.dll
[2011/06/22 17:27:10 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\photowiz.dll
[2011/06/22 17:27:10 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedyn.dll
[2011/06/22 17:27:09 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2011/06/22 17:27:08 | 002,262,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncCenter.dll
[2011/06/22 17:27:08 | 002,072,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPEncEn.dll
[2011/06/22 17:27:08 | 001,082,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll
[2011/06/22 17:27:08 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2011/06/22 17:27:08 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpeffects.dll
[2011/06/22 17:27:08 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2011/06/22 17:27:08 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmd.exe
[2011/06/22 17:27:08 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2011/06/22 17:27:07 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2011/06/22 17:27:06 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fde.dll
[2011/06/22 17:27:05 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedynos.dll
[2011/06/22 17:27:04 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localsec.dll
[2011/06/22 17:27:04 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2.dll
[2011/06/22 17:27:04 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSATAPI.dll
[2011/06/22 17:27:04 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2011/06/22 17:27:04 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netdiagfx.dll
[2011/06/22 17:27:04 | 000,298,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcryptprimitives.dll
[2011/06/22 17:27:04 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfds.dll
[2011/06/22 17:27:04 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll
[2011/06/22 17:27:04 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credui.dll
[2011/06/22 17:27:03 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2011/06/22 17:27:02 | 000,762,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroles.dll
[2011/06/22 17:27:02 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tcpipcfg.dll
[2011/06/22 17:27:02 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spp.dll
[2011/06/22 17:27:02 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSHVHOST.DLL
[2011/06/22 17:27:02 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll
[2011/06/22 17:27:02 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netid.dll
[2011/06/22 17:27:02 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2011/06/22 17:27:02 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2011/06/22 17:27:01 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\biocpl.dll
[2011/06/22 17:27:00 | 002,746,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2011/06/22 17:27:00 | 001,050,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\printui.dll
[2011/06/22 17:27:00 | 000,571,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mspbda.dll
[2011/06/22 17:27:00 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msinfo32.exe
[2011/06/22 17:27:00 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scansetting.dll
[2011/06/22 17:26:59 | 002,755,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll
[2011/06/22 17:26:58 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhotoScreensaver.scr
[2011/06/22 17:26:58 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2011/06/22 17:26:58 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\credui.dll
[2011/06/22 17:26:58 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2011/06/22 17:26:56 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2011/06/22 17:26:56 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wusa.exe
[2011/06/22 17:26:56 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2011/06/22 17:26:56 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
[2011/06/22 17:26:56 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2011/06/22 17:26:56 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IPHLPAPI.DLL
[2011/06/22 17:26:56 | 000,144,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\basecsp.dll
[2011/06/22 17:26:56 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitagent.exe
[2011/06/22 17:26:55 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscms.dll
[2011/06/22 17:26:54 | 000,934,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallControlPanel.dll
[2011/06/22 17:26:54 | 000,854,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbghelp.dll
[2011/06/22 17:26:54 | 000,508,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxgi.dll
[2011/06/22 17:26:54 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2011/06/22 17:26:54 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wisptis.exe
[2011/06/22 17:26:54 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll
[2011/06/22 17:26:53 | 003,211,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2011/06/22 17:26:52 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\evr.dll
[2011/06/22 17:26:52 | 000,418,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
[2011/06/22 17:26:52 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll
[2011/06/22 17:26:52 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetup.exe
[2011/06/22 17:26:51 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSATAPI.dll
[2011/06/22 17:26:50 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2011/06/22 17:26:50 | 000,780,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2011/06/22 17:26:50 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlsrv32.dll
[2011/06/22 17:26:50 | 000,776,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\calc.exe
[2011/06/22 17:26:50 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXP.dll
[2011/06/22 17:26:50 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapp3hst.dll
[2011/06/22 17:26:50 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cfgmgr32.dll
[2011/06/22 17:26:50 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetapi.dll
[2011/06/22 17:26:49 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2011/06/22 17:26:48 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbon.dll
[2011/06/22 17:26:48 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
[2011/06/22 17:26:48 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapphost.dll
[2011/06/22 17:26:48 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\upnp.dll
[2011/06/22 17:26:48 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprapi.dll
[2011/06/22 17:26:48 | 000,128,000 | ---- | C] (Microsoft) -- C:\Windows\SysNative\Robocopy.exe
[2011/06/22 17:26:47 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2011/06/22 17:26:47 | 000,078,720 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\drivers\HpSAMD.sys
[2011/06/22 17:26:46 | 000,263,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
[2011/06/22 17:26:46 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2011/06/22 17:26:46 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\thumbcache.dll
[2011/06/22 17:26:45 | 002,494,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netshell.dll
[2011/06/22 17:26:44 | 001,457,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DxpTaskSync.dll
[2011/06/22 17:26:44 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSMPEG2ENC.DLL
[2011/06/22 17:26:44 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PerfCenterCPL.dll
[2011/06/22 17:26:44 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scecli.dll
[2011/06/22 17:26:44 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll
[2011/06/22 17:26:42 | 002,851,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll
[2011/06/22 17:26:42 | 000,932,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\printui.dll
[2011/06/22 17:26:42 | 000,675,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXPTaskRingtone.dll
[2011/06/22 17:26:42 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiobj.dll
[2011/06/22 17:26:42 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onex.dll
[2011/06/22 17:26:42 | 000,179,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys
[2011/06/22 17:26:42 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2011/06/22 17:26:42 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prncache.dll
[2011/06/22 17:26:42 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2011/06/22 17:26:40 | 002,341,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msi.dll
[2011/06/22 17:26:40 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpeffects.dll
[2011/06/22 17:26:40 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2011/06/22 17:26:40 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\net1.exe
[2011/06/22 17:26:40 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2011/06/22 17:26:39 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2011/06/22 17:26:38 | 001,363,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll
[2011/06/22 17:26:38 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll
[2011/06/22 17:26:38 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scansetting.dll
[2011/06/22 17:26:37 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdengin2.dll
[2011/06/22 17:26:37 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2011/06/22 17:26:37 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll
[2011/06/22 17:26:37 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2011/06/22 17:26:37 | 000,475,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlangpui.dll
[2011/06/22 17:26:36 | 002,504,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVCORE.DLL
[2011/06/22 17:26:36 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcenter.dll
[2011/06/22 17:26:36 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiadefui.dll
[2011/06/22 17:26:36 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlangpui.dll
[2011/06/22 17:26:36 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVol.exe
[2011/06/22 17:26:36 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquoui.dll
[2011/06/22 17:26:36 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MMDevAPI.dll
[2011/06/22 17:26:36 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\regapi.dll
[2011/06/22 17:26:36 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\davclnt.dll
[2011/06/22 17:26:36 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samcli.dll
[2011/06/22 17:26:36 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
[2011/06/22 17:26:35 | 002,621,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2011/06/22 17:26:35 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srchadmin.dll
[2011/06/22 17:26:35 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSHVHOST.DLL
[2011/06/22 17:26:35 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2011/06/22 17:26:35 | 000,112,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2011/06/22 17:26:35 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QUTIL.DLL
[2011/06/22 17:26:34 | 002,311,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdshext.dll
[2011/06/22 17:26:34 | 001,750,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pnidui.dll
[2011/06/22 17:26:34 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webservices.dll
[2011/06/22 17:26:34 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2011/06/22 17:26:34 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fde.dll
[2011/06/22 17:26:34 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2011/06/22 17:26:33 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
[2011/06/22 17:26:33 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2011/06/22 17:26:33 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netdiagfx.dll
[2011/06/22 17:26:33 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupcl.exe
[2011/06/22 17:26:33 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2011/06/22 17:26:32 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SyncCenter.dll
[2011/06/22 17:26:32 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appwiz.cpl
[2011/06/22 17:26:32 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TabletPC.cpl
[2011/06/22 17:26:32 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2011/06/22 17:26:32 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll
[2011/06/22 17:26:30 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgcpl.dll
[2011/06/22 17:26:30 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msconfig.exe
[2011/06/22 17:26:30 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netiohlp.dll
[2011/06/22 17:26:30 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSCard.dll
[2011/06/22 17:26:30 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mimefilt.dll
[2011/06/22 17:26:29 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
[2011/06/22 17:26:29 | 000,166,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\basecsp.dll
[2011/06/22 17:26:29 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsmproxy.dll
[2011/06/22 17:26:28 | 001,538,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2011/06/22 17:26:28 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSMPEG2ENC.DLL
[2011/06/22 17:26:28 | 000,826,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2011/06/22 17:26:28 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayCpl.dll
[2011/06/22 17:26:28 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mtxclu.dll
[2011/06/22 17:26:28 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2011/06/22 17:26:28 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winsta.dll
[2011/06/22 17:26:28 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdeploy.dll
[2011/06/22 17:26:28 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2011/06/22 17:26:27 | 000,633,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched20.dll
[2011/06/22 17:26:27 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2.dll
[2011/06/22 17:26:26 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2011/06/22 17:26:26 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DXPTaskRingtone.dll
[2011/06/22 17:26:26 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscmmc.dll
[2011/06/22 17:26:25 | 001,624,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPEncEn.dll
[2011/06/22 17:26:25 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercpl.dll
[2011/06/22 17:26:25 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sharemediacpl.dll
[2011/06/22 17:26:25 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onex.dll
[2011/06/22 17:26:25 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logoncli.dll
[2011/06/22 17:26:25 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RpcRtRemote.dll
[2011/06/22 17:26:24 | 002,250,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsCpl.dll
[2011/06/22 17:26:24 | 002,193,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themecpl.dll
[2011/06/22 17:26:24 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Narrator.exe
[2011/06/22 17:26:24 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autofmt.exe
[2011/06/22 17:26:24 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eudcedit.exe
[2011/06/22 17:26:24 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Faultrep.dll
[2011/06/22 17:26:24 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netjoin.dll
[2011/06/22 17:26:24 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nci.dll
[2011/06/22 17:26:24 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hbaapi.dll
[2011/06/22 17:26:23 | 000,668,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autochk.exe
[2011/06/22 17:26:23 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2011/06/22 17:26:23 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppcomapi.dll
[2011/06/22 17:26:23 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiohlp.dll
[2011/06/22 17:26:23 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2011/06/22 17:26:23 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IPHLPAPI.DLL
[2011/06/22 17:26:23 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2011/06/22 17:26:23 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnikeapi.dll
[2011/06/22 17:26:23 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\proquota.exe
[2011/06/22 17:26:22 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoconv.exe
[2011/06/22 17:26:22 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autochk.exe
[2011/06/22 17:26:22 | 000,763,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autofmt.exe
[2011/06/22 17:26:22 | 000,679,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoconv.exe
[2011/06/22 17:26:22 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ipsmsnap.dll
[2011/06/22 17:26:22 | 000,303,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msinfo32.exe
[2011/06/22 17:26:22 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AudioSes.dll
[2011/06/22 17:26:22 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msutb.dll
[2011/06/22 17:26:22 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\regapi.dll
[2011/06/22 17:26:22 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mimefilt.dll
[2011/06/22 17:26:21 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpd_ci.dll
[2011/06/22 17:26:21 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshipsec.dll
[2011/06/22 17:26:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srchadmin.dll
[2011/06/22 17:26:21 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpipcfg.dll
[2011/06/22 17:26:21 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schtasks.exe
[2011/06/22 17:26:21 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shsetup.dll
[2011/06/22 17:26:21 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2011/06/22 17:26:21 | 000,116,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2011/06/22 17:26:20 | 001,466,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2011/06/22 17:26:20 | 001,264,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdclt.exe
[2011/06/22 17:26:20 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercpl.dll
[2011/06/22 17:26:20 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanui.dll
[2011/06/22 17:26:20 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msihnd.dll
[2011/06/22 17:26:20 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanconn.dll
[2011/06/22 17:26:20 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapphost.dll
[2011/06/22 17:26:20 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedyn.dll
[2011/06/22 17:26:20 | 000,171,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scsiport.sys
[2011/06/22 17:26:20 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdsrv.dll
[2011/06/22 17:26:20 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prntvpt.dll
[2011/06/22 17:26:20 | 000,155,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscorier.dll
[2011/06/22 17:26:20 | 000,154,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscorier.dll
[2011/06/22 17:26:19 | 001,066,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll
[2011/06/22 17:26:19 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
[2011/06/22 17:26:19 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontext.dll
[2011/06/22 17:26:19 | 000,665,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuxiliaryDisplayCpl.dll
[2011/06/22 17:26:19 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2011/06/22 17:26:19 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2011/06/22 17:26:19 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprddm.dll
[2011/06/22 17:26:19 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QAGENT.DLL
[2011/06/22 17:26:19 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netid.dll
[2011/06/22 17:26:18 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll
[2011/06/22 17:26:18 | 000,957,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mblctr.exe
[2011/06/22 17:26:18 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll
[2011/06/22 17:26:18 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
[2011/06/22 17:26:18 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpsrcwp.dll
[2011/06/22 17:26:18 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2011/06/22 17:26:18 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2011/06/22 17:26:17 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Vault.dll
[2011/06/22 17:26:17 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
[2011/06/22 17:26:17 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\untfs.dll
[2011/06/22 17:26:17 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nci.dll
[2011/06/22 17:26:16 | 002,217,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bootres.dll
[2011/06/22 17:26:16 | 001,326,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanpref.dll
[2011/06/22 17:26:16 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DiagCpl.dll
[2011/06/22 17:26:16 | 001,003,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMNetMgr.dll
[2011/06/22 17:26:16 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2011/06/22 17:26:16 | 000,098,816 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\Robocopy.exe
[2011/06/22 17:26:16 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSTPager.ax
[2011/06/22 17:26:16 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2011/06/22 17:26:16 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2011/06/22 17:26:15 | 000,812,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpccpl.dll
[2011/06/22 17:26:15 | 000,433,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MCEWMDRMNDBootstrap.dll
[2011/06/22 17:26:15 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksproxy.ax
[2011/06/22 17:26:14 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DxpTaskSync.dll
[2011/06/22 17:26:14 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll
[2011/06/22 17:26:14 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskmgr.exe
[2011/06/22 17:26:14 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2011/06/22 17:26:14 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasppp.dll
[2011/06/22 17:26:14 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3cfg.dll
[2011/06/22 17:26:13 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mtxclu.dll
[2011/06/22 17:26:13 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxdiagn.dll
[2011/06/22 17:26:13 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2011/06/22 17:26:13 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll
[2011/06/22 17:26:13 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hbaapi.dll
[2011/06/22 17:26:12 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prnfldr.dll
[2011/06/22 17:26:12 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\termmgr.dll
[2011/06/22 17:26:12 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
[2011/06/22 17:26:12 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pdh.dll
[2011/06/22 17:26:12 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eudcedit.exe
[2011/06/22 17:26:12 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskmgr.exe
[2011/06/22 17:26:12 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\proquota.exe
[2011/06/22 17:26:11 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\untfs.dll
[2011/06/22 17:26:11 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAC3ENC.DLL
[2011/06/22 17:26:11 | 000,155,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
Nahoru
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Re: Prosim o kontrolu

#9 Příspěvek od Edon »

tu je dalsie pokracovanie z prveho :



[2011/06/22 17:26:11 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDShServiceObj.dll
[2011/06/22 17:26:10 | 003,745,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\accessibilitycpl.dll
[2011/06/22 17:26:10 | 000,856,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FirewallControlPanel.dll
[2011/06/22 17:26:10 | 000,649,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appwiz.cpl
[2011/06/22 17:26:10 | 000,416,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiadefui.dll
[2011/06/22 17:26:10 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppcomapi.dll
[2011/06/22 17:26:10 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasppp.dll
[2011/06/22 17:26:10 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2011/06/22 17:26:10 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2011/06/22 17:26:10 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logoncli.dll
[2011/06/22 17:26:10 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shsetup.dll
[2011/06/22 17:26:09 | 002,202,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsCpl.dll
[2011/06/22 17:26:08 | 002,157,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themecpl.dll
[2011/06/22 17:26:08 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\zipfldr.dll
[2011/06/22 17:26:08 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slui.exe
[2011/06/22 17:26:08 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\defaultlocationcpl.dll
[2011/06/22 17:26:08 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2011/06/22 17:26:08 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscmmc.dll
[2011/06/22 17:26:07 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PhotoScreensaver.scr
[2011/06/22 17:26:07 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2011/06/22 17:26:07 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hgcpl.dll
[2011/06/22 17:26:06 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontext.dll
[2011/06/22 17:26:06 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sud.dll
[2011/06/22 17:26:06 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCenter.dll
[2011/06/22 17:26:06 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscms.dll
[2011/06/22 17:26:06 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\localsec.dll
[2011/06/22 17:26:06 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scecli.dll
[2011/06/22 17:26:06 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mpeg2Data.ax
[2011/06/22 17:26:06 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscories.dll
[2011/06/22 17:26:05 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkmap.dll
[2011/06/22 17:26:05 | 001,065,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptui.dll
[2011/06/22 17:26:05 | 000,780,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenter.dll
[2011/06/22 17:26:05 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2011/06/22 17:26:05 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2011/06/22 17:26:05 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprddm.dll
[2011/06/22 17:26:05 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskbarcpl.dll
[2011/06/22 17:26:05 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OnLineIDCpl.dll
[2011/06/22 17:26:05 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2011/06/22 17:26:05 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twext.dll
[2011/06/22 17:26:05 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2011/06/22 17:26:04 | 001,644,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcenter.dll
[2011/06/22 17:26:04 | 000,740,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\batmeter.dll
[2011/06/22 17:26:04 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2011/06/22 17:26:04 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PerfCenterCPL.dll
[2011/06/22 17:26:04 | 000,600,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
[2011/06/22 17:26:04 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2011/06/22 17:26:04 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2011/06/22 17:26:04 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanui.dll
[2011/06/22 17:26:04 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl
[2011/06/22 17:26:04 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prntvpt.dll
[2011/06/22 17:26:04 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2011/06/22 17:26:03 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OobeFldr.dll
[2011/06/22 17:26:03 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsuiext.dll
[2011/06/22 17:26:03 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroleui.dll
[2011/06/22 17:26:03 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizeng.dll
[2011/06/22 17:26:03 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdedit.exe
[2011/06/22 17:26:03 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MediaMetadataHandler.dll
[2011/06/22 17:26:03 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVol.exe
[2011/06/22 17:26:03 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroleui.dll
[2011/06/22 17:26:03 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxlib.dll
[2011/06/22 17:26:03 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recovery.dll
[2011/06/22 17:26:03 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cca.dll
[2011/06/22 17:26:03 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\isoburn.exe
[2011/06/22 17:26:03 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\w32tm.exe
[2011/06/22 17:26:03 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sisbkup.dll
[2011/06/22 17:26:02 | 003,727,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\accessibilitycpl.dll
[2011/06/22 17:26:02 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdcpl.dll
[2011/06/22 17:26:02 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl
[2011/06/22 17:26:02 | 000,516,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\main.cpl
[2011/06/22 17:26:02 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\systemcpl.dll
[2011/06/22 17:26:02 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\zipfldr.dll
[2011/06/22 17:26:02 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\efscore.dll
[2011/06/22 17:26:02 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recdisc.exe
[2011/06/22 17:26:02 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAC3ENC.DLL
[2011/06/22 17:26:02 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syncui.dll
[2011/06/22 17:26:02 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VBICodec.ax
[2011/06/22 17:26:02 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll
[2011/06/22 17:26:02 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdeploy.dll
[2011/06/22 17:26:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tzutil.exe
[2011/06/22 17:26:02 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpapi.dll
[2011/06/22 17:26:01 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoplay.dll
[2011/06/22 17:26:00 | 001,003,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptui.dll
[2011/06/22 17:26:00 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shwebsvc.dll
[2011/06/22 17:26:00 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netjoin.dll
[2011/06/22 17:25:59 | 002,130,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\networkmap.dll
[2011/06/22 17:25:59 | 000,549,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenterCPL.dll
[2011/06/22 17:25:59 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2011/06/22 17:25:59 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2011/06/22 17:25:59 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Faultrep.dll
[2011/06/22 17:25:59 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wusa.exe
[2011/06/22 17:25:59 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysclass.dll
[2011/06/22 17:25:59 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adsldp.dll
[2011/06/22 17:25:59 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptui.dll
[2011/06/22 17:25:59 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2011/06/22 17:25:58 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sud.dll
[2011/06/22 17:25:58 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenter.dll
[2011/06/22 17:25:58 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizeng.dll
[2011/06/22 17:25:58 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prnfldr.dll
[2011/06/22 17:25:58 | 000,312,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MCEWMDRMNDBootstrap.dll
[2011/06/22 17:25:58 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2011/06/22 17:25:58 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll
[2011/06/22 17:25:58 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OnLineIDCpl.dll
[2011/06/22 17:25:58 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayServices.dll
[2011/06/22 17:25:58 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksxbar.ax
[2011/06/22 17:25:57 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscp.dll
[2011/06/22 17:25:57 | 000,474,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx
[2011/06/22 17:25:57 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\termmgr.dll
[2011/06/22 17:25:57 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx
[2011/06/22 17:25:57 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\photowiz.dll
[2011/06/22 17:25:57 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sethc.exe
[2011/06/22 17:25:57 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MediaMetadataHandler.dll
[2011/06/22 17:25:57 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll
[2011/06/22 17:25:57 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2011/06/22 17:25:57 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011/06/22 17:25:56 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl
[2011/06/22 17:25:56 | 000,446,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlcese30.dll
[2011/06/22 17:25:56 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl
[2011/06/22 17:25:56 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2011/06/22 17:25:56 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2011/06/22 17:25:56 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iprtrmgr.dll
[2011/06/22 17:25:56 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\defaultlocationcpl.dll
[2011/06/22 17:25:56 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
[2011/06/22 17:25:56 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ifsutil.dll
[2011/06/22 17:25:56 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2011/06/22 17:25:56 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntlanman.dll
[2011/06/22 17:25:56 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3cfg.dll
[2011/06/22 17:25:56 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2011/06/22 17:25:56 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ftp.exe
[2011/06/22 17:25:56 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sisbkup.dll
[2011/06/22 17:25:55 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenterCPL.dll
[2011/06/22 17:25:55 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shwebsvc.dll
[2011/06/22 17:25:55 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ssText3d.scr
[2011/06/22 17:25:55 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdm.tsp
[2011/06/22 17:25:55 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2011/06/22 17:25:55 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iTVData.dll
[2011/06/22 17:25:55 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iprtrmgr.dll
[2011/06/22 17:25:55 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2011/06/22 17:25:55 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\efscore.dll
[2011/06/22 17:25:55 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syncui.dll
[2011/06/22 17:25:55 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2011/06/22 17:25:55 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserAccountControlSettings.dll
[2011/06/22 17:25:55 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpd3d.dll
[2011/06/22 17:25:55 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2011/06/22 17:25:55 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2011/06/22 17:25:54 | 000,781,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
[2011/06/22 17:25:54 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2011/06/22 17:25:54 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmmgrtn.dll
[2011/06/22 17:25:54 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DeviceCenter.dll
[2011/06/22 17:25:54 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquoui.dll
[2011/06/22 17:25:54 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoplay.dll
[2011/06/22 17:25:54 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srvcli.dll
[2011/06/22 17:25:54 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntlanman.dll
[2011/06/22 17:25:54 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSTPager.ax
[2011/06/22 17:25:54 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slwga.dll
[2011/06/22 17:25:53 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OobeFldr.dll
[2011/06/22 17:25:53 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\systemcpl.dll
[2011/06/22 17:25:53 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntprint.dll
[2011/06/22 17:25:53 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntprint.dll
[2011/06/22 17:25:53 | 000,255,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wavemsp.dll
[2011/06/22 17:25:53 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairingFolder.dll
[2011/06/22 17:25:53 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl
[2011/06/22 17:25:53 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
[2011/06/22 17:25:53 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPHLPR.DLL
[2011/06/22 17:25:53 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nslookup.exe
[2011/06/22 17:25:53 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acppage.dll
[2011/06/22 17:25:53 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2011/06/22 17:25:52 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
[2011/06/22 17:25:52 | 000,656,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2011/06/22 17:25:52 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\riched20.dll
[2011/06/22 17:25:52 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srrstr.dll
[2011/06/22 17:25:52 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sethc.exe
[2011/06/22 17:25:52 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksproxy.ax
[2011/06/22 17:25:52 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdboot.exe
[2011/06/22 17:25:52 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPHLPR.DLL
[2011/06/22 17:25:52 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppnp.dll
[2011/06/22 17:25:51 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\activeds.dll
[2011/06/22 17:25:51 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpsrcwp.dll
[2011/06/22 17:25:51 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll
[2011/06/22 17:25:51 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\migisol.dll
[2011/06/22 17:25:51 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2011/06/22 17:25:50 | 001,672,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkexplorer.dll
[2011/06/22 17:25:50 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2011/06/22 17:25:50 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2011/06/22 17:25:50 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfrgui.exe
[2011/06/22 17:25:50 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshipsec.dll
[2011/06/22 17:25:50 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\remotepg.dll
[2011/06/22 17:25:50 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabinet.dll
[2011/06/22 17:25:50 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wkscli.dll
[2011/06/22 17:25:50 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\httpapi.dll
[2011/06/22 17:25:49 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2011/06/22 17:25:49 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2011/06/22 17:25:49 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpdxm.dll
[2011/06/22 17:25:49 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2011/06/22 17:25:49 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wavemsp.dll
[2011/06/22 17:25:49 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSCard.dll
[2011/06/22 17:25:49 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2011/06/22 17:25:49 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kstvtune.ax
[2011/06/22 17:25:49 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\isoburn.exe
[2011/06/22 17:25:49 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ftp.exe
[2011/06/22 17:25:48 | 000,840,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\blackbox.dll
[2011/06/22 17:25:48 | 000,685,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsuiext.dll
[2011/06/22 17:25:48 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmdev.dll
[2011/06/22 17:25:48 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wvc.dll
[2011/06/22 17:25:48 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfrgui.exe
[2011/06/22 17:25:48 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3ui.dll
[2011/06/22 17:25:48 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsqmcons.exe
[2011/06/22 17:25:48 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetup.exe
[2011/06/22 17:25:48 | 000,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2011/06/22 17:25:48 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\net1.exe
[2011/06/22 17:25:48 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsnmp32.dll
[2011/06/22 17:25:48 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tzutil.exe
[2011/06/22 17:25:48 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wtsapi32.dll
[2011/06/22 17:25:48 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFaultSecure.exe
[2011/06/22 17:25:47 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wvc.dll
[2011/06/22 17:25:47 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimgapi.dll
[2011/06/22 17:25:47 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2011/06/22 17:25:46 | 001,911,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
[2011/06/22 17:25:46 | 000,899,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Bubbles.scr
[2011/06/22 17:25:46 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdm.tsp
[2011/06/22 17:25:46 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2011/06/22 17:25:46 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstask.dll
[2011/06/22 17:25:46 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qcap.dll
[2011/06/22 17:25:46 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2011/06/22 17:25:46 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2011/06/22 17:25:46 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twext.dll
[2011/06/22 17:25:46 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupugc.exe
[2011/06/22 17:25:46 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapistub.dll
[2011/06/22 17:25:46 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapi32.dll
[2011/06/22 17:25:46 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdmat.dll
[2011/06/22 17:25:46 | 000,051,200 | ---- | C] (Twain Working Group) -- C:\Windows\twain_32.dll
[2011/06/22 17:25:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2011/06/22 17:25:45 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\main.cpl
[2011/06/22 17:25:45 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskraid.exe
[2011/06/22 17:25:45 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qasf.dll
[2011/06/22 17:25:45 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2011/06/22 17:25:45 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\uxlib.dll
[2011/06/22 17:25:45 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsium.dll
[2011/06/22 17:25:44 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ssText3d.scr
[2011/06/22 17:25:44 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\audiodev.dll
[2011/06/22 17:25:44 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mystify.scr
[2011/06/22 17:25:44 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Ribbons.scr
[2011/06/22 17:25:44 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ifsutil.dll
[2011/06/22 17:25:44 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvfw32.dll
[2011/06/22 17:25:44 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nslookup.exe
[2011/06/22 17:25:44 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2011/06/22 17:25:44 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll
[2011/06/22 17:25:44 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\muifontsetup.dll
[2011/06/22 17:25:44 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\slwga.dll
[2011/06/22 17:25:43 | 000,616,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
[2011/06/22 17:25:43 | 000,573,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2011/06/22 17:25:43 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsAnytimeUpgradeResults.exe
[2011/06/22 17:25:43 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
[2011/06/22 17:25:43 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpencom.dll
[2011/06/22 17:25:43 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfmon.exe
[2011/06/22 17:25:43 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpshell.dll
[2011/06/22 17:25:42 | 001,087,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbghelp.dll
[2011/06/22 17:25:42 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
[2011/06/22 17:25:42 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimserv.exe
[2011/06/22 17:25:42 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskraid.exe
[2011/06/22 17:25:42 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qasf.dll
[2011/06/22 17:25:42 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairingFolder.dll
[2011/06/22 17:25:42 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpencom.dll
[2011/06/22 17:25:42 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2011/06/22 17:25:42 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tlscsp.dll
[2011/06/22 17:25:42 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\umb.dll
[2011/06/22 17:25:42 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPCRYPT.DLL
[2011/06/22 17:25:42 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\acppage.dll
[2011/06/22 17:25:42 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AzSqlExt.dll
[2011/06/22 17:25:42 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netutils.dll
[2011/06/22 17:25:41 | 000,623,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSAPI.dll
[2011/06/22 17:25:41 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\raschap.dll
[2011/06/22 17:25:41 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionQueue.dll
[2011/06/22 17:25:41 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfmon.exe
[2011/06/22 17:25:41 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\remotepg.dll
[2011/06/22 17:25:41 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2011/06/22 17:25:41 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\runonce.exe
[2011/06/22 17:25:40 | 001,232,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMADMOD.DLL
[2011/06/22 17:25:40 | 000,402,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
[2011/06/22 17:25:40 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\raschap.dll
[2011/06/22 17:25:40 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdwcn.dll
[2011/06/22 17:25:40 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll
[2011/06/22 17:25:40 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetapi.dll
[2011/06/22 17:25:40 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiavideo.dll
[2011/06/22 17:25:40 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2011/06/22 17:25:40 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QUTIL.DLL
[2011/06/22 17:25:40 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPCRYPT.DLL
[2011/06/22 17:25:40 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syssetup.dll
[2011/06/22 17:25:39 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MdSched.exe
[2011/06/22 17:25:39 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserAccountControlSettings.dll
[2011/06/22 17:25:39 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PrintIsolationProxy.dll
[2011/06/22 17:25:39 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vpnikeapi.dll
[2011/06/22 17:25:38 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onexui.dll
[2011/06/22 17:25:38 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVSDECD.DLL
[2011/06/22 17:25:38 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpdxm.dll
[2011/06/22 17:25:38 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstask.dll
[2011/06/22 17:25:38 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iTVData.dll
[2011/06/22 17:25:38 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxdiagn.dll
[2011/06/22 17:25:38 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdwcn.dll
[2011/06/22 17:25:38 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsbas.dll
[2011/06/22 17:25:38 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vdsbas.dll
[2011/06/22 17:25:38 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Kswdmcap.ax
[2011/06/22 17:25:38 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2011/06/22 17:25:38 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\runonce.exe
[2011/06/22 17:25:37 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nltest.exe
[2011/06/22 17:25:37 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rmcast.sys
[2011/06/22 17:25:37 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logagent.exe
[2011/06/22 17:25:37 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2011/06/22 17:25:36 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmdev.dll
[2011/06/22 17:25:36 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10level9.dll
[2011/06/22 17:25:36 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapp3hst.dll
[2011/06/22 17:25:36 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsadmin.exe
[2011/06/22 17:25:36 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
[2011/06/22 17:25:36 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shacct.dll
[2011/06/22 17:25:36 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSVRMGMT.DLL
[2011/06/22 17:25:36 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shacct.dll
[2011/06/22 17:25:36 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tabcal.exe
[2011/06/22 17:25:36 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vss_ps.dll
[2011/06/22 17:25:36 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscapi.dll
[2011/06/22 17:25:35 | 000,527,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmnet.dll
[2011/06/22 17:25:35 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDSp.dll
[2011/06/22 17:25:35 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qcap.dll
[2011/06/22 17:25:35 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpshell.dll
[2011/06/22 17:25:35 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logman.exe
[2011/06/22 17:25:34 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMSPDMOD.DLL
[2011/06/22 17:25:34 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Bubbles.scr
[2011/06/22 17:25:34 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msnetobj.dll
[2011/06/22 17:25:34 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlcese30.dll
[2011/06/22 17:25:34 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdv.dll
[2011/06/22 17:25:34 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceSyncProvider.dll
[2011/06/22 17:25:34 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsadmin.exe
[2011/06/22 17:25:34 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprapi.dll
[2011/06/22 17:25:34 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2011/06/22 17:25:34 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2011/06/22 17:25:34 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2011/06/22 17:25:34 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2011/06/22 17:25:34 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdmat.dll
[2011/06/22 17:25:34 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpd3d.dll
[2011/06/22 17:25:34 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsium.dll
[2011/06/22 17:25:34 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\lsmproxy.dll
[2011/06/22 17:25:33 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2011/06/22 17:25:33 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceStatus.dll
[2011/06/22 17:25:33 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdh.dll
[2011/06/22 17:25:33 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceSyncProvider.dll
[2011/06/22 17:25:33 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2011/06/22 17:25:33 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kstvtune.ax
[2011/06/22 17:25:33 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logman.exe
[2011/06/22 17:25:33 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spbcd.dll
[2011/06/22 17:25:33 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptui.dll
[2011/06/22 17:25:32 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceStatus.dll
[2011/06/22 17:25:32 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WPDSp.dll
[2011/06/22 17:25:32 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2011/06/22 17:25:32 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3ui.dll
[2011/06/22 17:25:32 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mystify.scr
[2011/06/22 17:25:32 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Ribbons.scr
[2011/06/22 17:25:32 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2011/06/22 17:25:32 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl
[2011/06/22 17:25:32 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\desk.cpl
[2011/06/22 17:25:32 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fphc.dll
[2011/06/22 17:25:32 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSVRMGMT.DLL
[2011/06/22 17:25:32 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\olethk32.dll
[2011/06/22 17:25:32 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapistub.dll
[2011/06/22 17:25:32 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapi32.dll
[2011/06/22 17:25:32 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mpeg2Data.ax
[2011/06/22 17:25:32 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011/06/22 17:25:32 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\takeown.exe
[2011/06/22 17:25:32 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PnPUnattend.exe
[2011/06/22 17:25:32 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2011/06/22 17:25:31 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMADMOD.DLL
[2011/06/22 17:25:31 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2011/06/22 17:25:31 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3msm.dll
[2011/06/22 17:25:31 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiavideo.dll
[2011/06/22 17:25:31 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Kswdmcap.ax
[2011/06/22 17:25:31 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fphc.dll
[2011/06/22 17:25:31 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2011/06/22 17:25:31 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\amstream.dll
[2011/06/22 17:25:31 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\utildll.dll
[2011/06/22 17:25:30 | 001,148,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IMJP10.IME
[2011/06/22 17:25:30 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVSDECD.DLL
[2011/06/22 17:25:30 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmnet.dll
[2011/06/22 17:25:30 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdv.dll
[2011/06/22 17:25:30 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msnetobj.dll
[2011/06/22 17:25:30 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2011/06/22 17:25:30 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqmapi.dll
[2011/06/22 17:25:30 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imagehlp.dll
[2011/06/22 17:25:30 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VBICodec.ax
[2011/06/22 17:25:30 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EhStorAPI.dll
[2011/06/22 17:25:30 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EhStorAPI.dll
[2011/06/22 17:25:30 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmstp.exe
[2011/06/22 17:25:30 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QCLIPROV.DLL
[2011/06/22 17:25:30 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2011/06/22 17:25:30 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2011/06/22 17:25:30 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertPolEng.dll
[2011/06/22 17:25:30 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\djoin.exe
[2011/06/22 17:25:30 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\takeown.exe
[2011/06/22 17:25:30 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimgvw.dll
[2011/06/22 17:25:30 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HotStartUserAgent.dll
[2011/06/22 17:25:30 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nrpsrv.dll
[2011/06/22 17:25:29 | 000,681,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2011/06/22 17:25:29 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppinst.dll
[2011/06/22 17:25:29 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmstp.exe
[2011/06/22 17:25:29 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSDvbNP.ax
[2011/06/22 17:25:29 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QCLIPROV.DLL
[2011/06/22 17:25:29 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cca.dll
[2011/06/22 17:25:29 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WavDest.dll
[2011/06/22 17:25:29 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbser.sys
[2011/06/22 17:25:28 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMSPDMOD.DLL
[2011/06/22 17:25:28 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msorcl32.dll
[2011/06/22 17:25:28 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskpart.exe
[2011/06/22 17:25:28 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsicli.exe
[2011/06/22 17:25:28 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mydocs.dll
[2011/06/22 17:25:28 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupcln.dll
[2011/06/22 17:25:28 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdProxy.dll
[2011/06/22 17:25:28 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MuiUnattend.exe
[2011/06/22 17:25:28 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\g711codc.ax
[2011/06/22 17:25:28 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vfwwdm32.dll
[2011/06/22 17:25:28 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsnmp32.dll
[2011/06/22 17:25:28 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MultiDigiMon.exe
[2011/06/22 17:25:28 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2011/06/22 17:25:28 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdhui.dll
[2011/06/22 17:25:28 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\relog.exe
[2011/06/22 17:25:28 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AzSqlExt.dll
[2011/06/22 17:25:28 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sscore.dll
[2011/06/22 17:25:27 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2011/06/22 17:25:27 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\itircl.dll
[2011/06/22 17:25:27 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsicli.exe
[2011/06/22 17:25:27 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mydocs.dll
[2011/06/22 17:25:27 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\desk.cpl
[2011/06/22 17:25:27 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3msm.dll
[2011/06/22 17:25:27 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mobsync.exe
[2011/06/22 17:25:27 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\amstream.dll
[2011/06/22 17:25:27 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spbcd.dll
[2011/06/22 17:25:27 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wkscli.dll
[2011/06/22 17:25:27 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbisurf.ax
[2011/06/22 17:25:27 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\relog.exe
[2011/06/22 17:25:27 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdmo.dll
[2011/06/22 17:25:27 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiougc.exe
[2011/06/22 17:25:27 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BWUnpairElevated.dll
[2011/06/22 17:25:26 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IMJP10.IME
[2011/06/22 17:25:26 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSTIFF.dll
[2011/06/22 17:25:26 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2011/06/22 17:25:26 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\itircl.dll
[2011/06/22 17:25:26 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpps.dll
[2011/06/22 17:25:26 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskpart.exe
[2011/06/22 17:25:26 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappgnui.dll
[2011/06/22 17:25:26 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2011/06/22 17:25:26 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2011/06/22 17:25:26 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\resutils.dll
[2011/06/22 17:25:26 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastapi.dll
[2011/06/22 17:25:26 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertPolEng.dll
[2011/06/22 17:25:26 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2011/06/22 17:25:26 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksxbar.ax
[2011/06/22 17:25:26 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciqtz32.dll
[2011/06/22 17:25:26 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2011/06/22 17:25:26 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\choice.exe
[2011/06/22 17:25:26 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netbtugc.exe
[2011/06/22 17:25:26 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syssetup.dll
[2011/06/22 17:25:25 | 001,080,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onexui.dll
[2011/06/22 17:25:25 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2011/06/22 17:25:25 | 000,278,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2011/06/22 17:25:25 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppc.dll
[2011/06/22 17:25:25 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappgnui.dll
[2011/06/22 17:25:25 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2011/06/22 17:25:25 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\findstr.exe
[2011/06/22 17:25:25 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tlscsp.dll
[2011/06/22 17:25:25 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\findstr.exe
[2011/06/22 17:25:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\luainstall.dll
[2011/06/22 17:25:25 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2011/06/22 17:25:25 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFaultSecure.exe
[2011/06/22 17:25:25 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgentc.exe
[2011/06/22 17:25:24 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mobsync.exe
[2011/06/22 17:25:24 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\manage-bde.exe
[2011/06/22 17:25:24 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabinet.dll
[2011/06/22 17:25:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetmib1.dll
[2011/06/22 17:25:24 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSDvbNP.ax
[2011/06/22 17:25:24 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\repair-bde.exe
[2011/06/22 17:25:24 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdiasqmmodule.dll
[2011/06/22 17:25:24 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciqtz32.dll
[2011/06/22 17:25:24 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schedcli.dll
[2011/06/22 17:25:24 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\muifontsetup.dll
[2011/06/22 17:25:23 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDPENCDD.dll
[2011/06/22 17:25:23 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppc.dll
[2011/06/22 17:25:23 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2011/06/22 17:25:23 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\luainstall.dll
[2011/06/22 17:25:23 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shimgvw.dll
[2011/06/22 17:25:23 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unlodctr.exe
[2011/06/22 17:25:23 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\profprov.dll
[2011/06/22 17:25:23 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spopk.dll
[2011/06/22 17:25:23 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spopk.dll
[2011/06/22 17:25:22 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbcconf.dll
[2011/06/22 17:25:22 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetmib1.dll
[2011/06/22 17:25:22 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\g711codc.ax
[2011/06/22 17:25:22 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2011/06/22 17:25:22 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSMON.dll
[2011/06/22 17:25:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcconf.dll
[2011/06/22 17:25:22 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbisurf.ax
[2011/06/22 17:25:22 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdmo.dll
[2011/06/22 17:25:22 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elsTrans.dll
[2011/06/22 17:25:22 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdprefdrvapi.dll
[2011/06/22 17:25:22 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fixmapi.exe
[2011/06/22 17:25:21 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll
[2011/06/22 17:25:21 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
[2011/06/22 17:25:21 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2011/06/22 17:25:21 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2011/06/22 17:25:21 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys
[2011/06/22 17:25:21 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TRAPI.dll
[2011/06/22 17:25:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfts.dll
[2011/06/22 17:25:21 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2011/06/22 17:25:20 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\napdsnap.dll
[2011/06/22 17:25:20 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsauth.dll
[2011/06/22 17:25:20 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LogonUI.exe
[2011/06/22 17:25:20 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdprefdrvapi.dll
[2011/06/22 17:25:20 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elsTrans.dll
[2011/06/22 17:25:20 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSUNATD.exe
[2011/06/22 17:25:20 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2011/06/22 17:25:19 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\napdsnap.dll
[2011/06/22 17:25:19 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbrpm.sys
[2011/06/22 17:25:19 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsauth.dll
[2011/06/22 17:25:19 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscdll.dll
[2011/06/22 17:25:19 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsperf.dll
[2011/06/22 17:25:19 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TRAPI.dll
[2011/06/22 17:25:19 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsperf.dll
[2011/06/22 17:25:19 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schedcli.dll
[2011/06/22 17:25:18 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imkr80.ime
[2011/06/22 17:25:18 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2011/06/22 17:25:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2011/06/22 17:25:18 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsdchngr.dll
[2011/06/22 17:25:17 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2011/06/22 17:25:17 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imkr80.ime
[2011/06/22 17:25:17 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shgina.dll
[2011/06/22 17:25:17 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsdchngr.dll
[2011/06/22 17:25:17 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shgina.dll
[2011/06/22 17:25:17 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll
[2011/06/22 17:25:17 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\riched32.dll
[2011/06/22 17:25:16 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2011/06/22 17:25:16 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBCAMD2.sys
[2011/06/22 17:25:16 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshirda.dll
[2011/06/22 17:25:16 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2011/06/22 17:25:15 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2011/06/22 17:25:14 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshirda.dll
[2011/06/22 17:25:14 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched32.dll
[2011/06/22 17:25:14 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcfgex.dll
[2011/06/22 17:25:13 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2011/06/22 17:25:12 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\C_ISCII.DLL
[2011/06/22 17:25:12 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2011/06/22 17:25:11 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shunimpl.dll
[2011/06/22 17:25:11 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\C_ISCII.DLL
[2011/06/22 17:25:11 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shunimpl.dll
[2011/06/22 17:25:11 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2011/06/22 17:25:11 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2011/06/22 17:25:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2011/06/22 17:25:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2011/06/22 17:25:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-ums-l1-1-0.dll
[2011/06/22 17:25:10 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2011/06/22 17:25:10 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2011/06/22 17:25:10 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUQ.DLL
[2011/06/22 17:25:10 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUF.DLL
[2011/06/22 17:25:10 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSG.DLL
[2011/06/22 17:25:10 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdlk41a.dll
[2011/06/22 17:25:10 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGKL.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUQ.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUF.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSG.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSF.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDPO.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDNEPR.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdlk41a.dll
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTAM.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINBEN.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGR1.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGR1.DLL
[2011/06/22 17:25:10 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGKL.DLL
[2011/06/22 17:25:09 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDCZ1.DLL
[2011/06/22 17:25:09 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDCZ1.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUS.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUGHR1.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTAJIK.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMON.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDLT1.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTAM.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINORI.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINMAR.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINKAN.DLL
[2011/06/22 17:25:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINHIN.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUS.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUGHR1.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTURME.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTAJIK.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMON.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMAORI.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDLT1.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTEL.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGEO.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGEO.DLL
[2011/06/22 17:25:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBLR.DLL
[2011/06/22 17:25:08 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlsbres.dll
[2011/06/22 17:25:08 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nlsbres.dll
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTURME.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSF.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDPO.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDNEPR.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMAORI.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTEL.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINORI.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINMAR.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINKAN.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINHIN.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINBEN.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBULG.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBLR.DLL
[2011/06/22 17:25:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBASH.DLL
[2011/06/22 17:25:08 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBULG.DLL
[2011/06/22 17:25:08 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBASH.DLL
[2011/06/22 17:25:08 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnaddr.dll
[2011/06/22 17:25:08 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnaddr.dll
[2011/06/22 17:25:07 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BlbEvents.dll
[2011/06/22 17:25:07 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pifmgr.dll
[2011/06/22 17:25:07 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pifmgr.dll
[2011/06/22 17:25:07 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizres.dll
[2011/06/22 17:25:07 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizres.dll
[2011/06/22 17:24:44 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PkgMgr.exe
[2011/06/22 17:24:44 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdscore.dll
[2011/06/22 17:24:32 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll
[2011/06/22 17:24:32 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpx.dll
[2011/06/22 17:20:07 | 000,529,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wbemcomn.dll
[2011/06/22 17:20:07 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmicmiplugin.dll
[2011/06/22 17:19:57 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmiEngine.dll
[2011/06/22 17:19:50 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PkgMgr.exe
[2011/06/22 17:18:59 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll
[2011/06/22 17:18:58 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpx.dll
[2011/06/16 15:17:20 | 000,288,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2011/06/16 15:17:00 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011/06/16 15:17:00 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2011/06/16 15:16:53 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011/06/16 15:16:53 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011/06/16 15:16:41 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2011/06/16 15:16:41 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1core.dll
[2011/06/16 15:16:41 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2011/06/16 15:16:41 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1.dll
[2011/06/16 15:16:38 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2011/06/13 20:51:44 | 000,000,000 | ---D | C] -- C:\Users\notebook\AppData\Roaming\PhotoScape
[2010/12/22 19:34:58 | 002,691,072 | ---- | C] ( ) -- C:\Windows\ulandi.exe
[2008/08/12 06:45:20 | 000,155,648 | ---- | C] (ASUS) -- C:\Program Files (x86)\Common Files\MSIactionall.dll
[2001/11/24 16:24:00 | 002,207,744 | ---- | C] ( ) -- C:\Windows\SysWow64\VBR6.exe

========== Files - Modified Within 30 Days ==========
Nahoru
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Re: Prosim o kontrolu

#10 Příspěvek od Edon »

posledna cast z prveho:




[2011/06/30 22:06:51 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\notebook\Desktop\OTL.exe
[2011/06/30 21:59:00 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/06/30 19:31:47 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/06/30 19:31:47 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/06/30 19:27:23 | 000,002,030 | ---- | M] () -- C:\Windows\SysNative\AutoRunFilter.ini
[2011/06/30 19:27:18 | 000,001,159 | ---- | M] () -- C:\Windows\SysNative\ServiceFilter.ini
[2011/06/30 19:24:46 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/06/30 19:24:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/06/30 19:24:05 | 3193,765,888 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/30 19:00:37 | 000,000,272 | ---- | M] () -- C:\Windows\tasks\RMSchedule.job
[2011/06/30 17:58:06 | 000,001,115 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/06/30 15:06:43 | 000,099,187 | ---- | M] () -- C:\Users\notebook\Desktop\p629028012.jpg
[2011/06/30 14:22:48 | 001,168,876 | ---- | M] () -- C:\Users\notebook\Desktop\P62902591.jpg
[2011/06/30 14:20:52 | 002,569,183 | ---- | M] () -- C:\Users\notebook\Desktop\P62902802.jpg
[2011/06/30 14:18:10 | 002,480,015 | ---- | M] () -- C:\Users\notebook\Desktop\P62902801.jpg
[2011/06/30 14:12:48 | 000,196,608 | -H-- | M] () -- C:\Users\notebook\Desktop\photothumb.db
[2011/06/30 14:11:54 | 001,438,215 | ---- | M] () -- C:\Users\notebook\Desktop\P6290259.jpg
[2011/06/30 14:11:45 | 002,199,211 | ---- | M] () -- C:\Users\notebook\Desktop\P6290267.jpg
[2011/06/30 14:11:27 | 001,638,983 | ---- | M] () -- C:\Users\notebook\Desktop\P6290280.jpg
[2011/06/30 14:04:08 | 000,744,898 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/06/30 14:04:08 | 000,628,454 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/06/30 14:04:08 | 000,112,240 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/06/29 20:49:15 | 000,304,952 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/06/29 16:21:20 | 000,832,273 | ---- | M] () -- C:\Users\notebook\Desktop\RSITx64.exe
[2011/06/24 12:31:32 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msclmd.dll
[2011/06/24 12:31:31 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msclmd.dll
[2011/06/17 22:24:47 | 000,786,619 | ---- | M] () -- C:\Users\notebook\Desktop\fmslam1.jpg
[2011/06/17 22:24:44 | 000,786,619 | ---- | M] () -- C:\Users\notebook\Desktop\fmslam1
[2011/06/17 22:19:12 | 001,875,123 | ---- | M] () -- C:\Users\notebook\Desktop\fmslam.jpg
[2011/06/17 22:19:12 | 000,007,046 | ---- | M] () -- C:\Users\notebook\.recently-used.xbel
[2011/06/17 22:15:17 | 002,379,166 | ---- | M] () -- C:\Users\notebook\Desktop\tamtarara.jpg
[2011/06/17 22:03:23 | 001,518,027 | ---- | M] () -- C:\Users\notebook\Desktop\P6130037111.jpg
[2011/06/17 21:59:50 | 001,552,968 | ---- | M] () -- C:\Users\notebook\Desktop\111.jpg
[2011/06/17 21:59:25 | 000,758,863 | ---- | M] () -- C:\Users\notebook\Desktop\22.jpg
[2011/06/17 21:46:07 | 002,116,543 | ---- | M] () -- C:\Users\notebook\Desktop\P6130037.jpg
[2011/06/17 21:45:04 | 001,011,041 | ---- | M] () -- C:\Users\notebook\Desktop\P6140150.jpg
[2011/06/17 19:37:15 | 001,111,622 | ---- | M] () -- C:\Users\notebook\Desktop\P617018411.jpg
[2011/06/17 19:20:10 | 001,181,081 | ---- | M] () -- C:\Users\notebook\Desktop\P6170184.jpg
[2011/06/14 20:09:46 | 002,305,828 | ---- | M] () -- C:\Users\notebook\Desktop\P6130050.jpg
[2011/06/14 20:08:34 | 001,789,608 | ---- | M] () -- C:\Users\notebook\Desktop\P6130018.jpg
[2011/06/13 21:26:12 | 001,431,045 | ---- | M] () -- C:\Users\notebook\Desktop\P613009211.jpg
[2011/06/13 20:49:56 | 001,726,070 | ---- | M] () -- C:\Users\notebook\Desktop\P6130100.jpg
[2011/06/13 20:49:40 | 001,622,597 | ---- | M] () -- C:\Users\notebook\Desktop\P6130092.jpg
[2011/06/13 20:47:46 | 002,136,771 | ---- | M] () -- C:\Users\notebook\Desktop\P6130030.jpg
[2011/06/13 20:47:23 | 001,930,780 | ---- | M] () -- C:\Users\notebook\Desktop\P6130023.jpg
[2011/06/13 15:10:23 | 000,218,365 | ---- | M] () -- C:\Users\notebook\Desktop\Serena.jpg

========== Files Created - No Company Name ==========

[2011/06/30 17:58:06 | 000,001,115 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/06/30 15:07:02 | 000,099,187 | ---- | C] () -- C:\Users\notebook\Desktop\p629028012.jpg
[2011/06/30 14:22:48 | 001,168,876 | ---- | C] () -- C:\Users\notebook\Desktop\P62902591.jpg
[2011/06/30 14:20:52 | 002,569,183 | ---- | C] () -- C:\Users\notebook\Desktop\P62902802.jpg
[2011/06/30 14:18:10 | 002,480,015 | ---- | C] () -- C:\Users\notebook\Desktop\P62902801.jpg
[2011/06/30 14:11:53 | 001,438,215 | ---- | C] () -- C:\Users\notebook\Desktop\P6290259.jpg
[2011/06/30 14:11:44 | 002,199,211 | ---- | C] () -- C:\Users\notebook\Desktop\P6290267.jpg
[2011/06/30 14:11:27 | 001,638,983 | ---- | C] () -- C:\Users\notebook\Desktop\P6290280.jpg
[2011/06/29 16:20:47 | 000,832,273 | ---- | C] () -- C:\Users\notebook\Desktop\RSITx64.exe
[2011/06/22 17:27:55 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2011/06/22 17:25:24 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2011/06/22 17:25:06 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2011/06/22 17:25:06 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2011/06/22 17:24:44 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2011/06/17 22:24:47 | 000,786,619 | ---- | C] () -- C:\Users\notebook\Desktop\fmslam1.jpg
[2011/06/17 22:24:44 | 000,786,619 | ---- | C] () -- C:\Users\notebook\Desktop\fmslam1
[2011/06/17 22:19:12 | 000,007,046 | ---- | C] () -- C:\Users\notebook\.recently-used.xbel
[2011/06/17 22:19:09 | 001,875,123 | ---- | C] () -- C:\Users\notebook\Desktop\fmslam.jpg
[2011/06/17 22:15:11 | 002,379,166 | ---- | C] () -- C:\Users\notebook\Desktop\tamtarara.jpg
[2011/06/17 21:59:25 | 000,758,863 | ---- | C] () -- C:\Users\notebook\Desktop\22.jpg
[2011/06/17 21:56:31 | 001,518,027 | ---- | C] () -- C:\Users\notebook\Desktop\P6130037111.jpg
[2011/06/17 21:46:06 | 002,116,543 | ---- | C] () -- C:\Users\notebook\Desktop\P6130037.jpg
[2011/06/17 21:45:03 | 001,011,041 | ---- | C] () -- C:\Users\notebook\Desktop\P6140150.jpg
[2011/06/17 19:37:15 | 001,111,622 | ---- | C] () -- C:\Users\notebook\Desktop\P617018411.jpg
[2011/06/17 19:20:09 | 001,181,081 | ---- | C] () -- C:\Users\notebook\Desktop\P6170184.jpg
[2011/06/14 20:09:46 | 002,305,828 | ---- | C] () -- C:\Users\notebook\Desktop\P6130050.jpg
[2011/06/14 20:08:34 | 001,789,608 | ---- | C] () -- C:\Users\notebook\Desktop\P6130018.jpg
[2011/06/13 21:26:11 | 001,431,045 | ---- | C] () -- C:\Users\notebook\Desktop\P613009211.jpg
[2011/06/13 21:05:27 | 001,552,968 | ---- | C] () -- C:\Users\notebook\Desktop\111.jpg
[2011/06/13 20:52:05 | 000,196,608 | -H-- | C] () -- C:\Users\notebook\Desktop\photothumb.db
[2011/06/13 20:51:38 | 006,651,392 | ---- | C] () -- C:\Users\notebook\Desktop\PhotoScape.exe
[2011/06/13 20:49:56 | 001,726,070 | ---- | C] () -- C:\Users\notebook\Desktop\P6130100.jpg
[2011/06/13 20:49:39 | 001,622,597 | ---- | C] () -- C:\Users\notebook\Desktop\P6130092.jpg
[2011/06/13 20:47:45 | 002,136,771 | ---- | C] () -- C:\Users\notebook\Desktop\P6130030.jpg
[2011/06/13 20:47:22 | 001,930,780 | ---- | C] () -- C:\Users\notebook\Desktop\P6130023.jpg
[2011/06/13 15:10:42 | 000,218,365 | ---- | C] () -- C:\Users\notebook\Desktop\Serena.jpg
[2011/02/20 02:27:07 | 000,000,024 | ---- | C] () -- C:\Windows\ATKPF.ini
[2010/12/29 14:31:53 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/08/25 20:34:30 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2010/08/25 20:34:30 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2010/08/25 20:34:30 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2010/06/08 03:05:14 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\LogonStart.dll
[2010/06/08 02:45:22 | 000,131,368 | ---- | C] () -- C:\ProgramData\FullRemove.exe
[2009/12/14 11:42:43 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
[2009/12/14 11:42:43 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
[2009/10/26 05:38:22 | 000,000,176 | ---- | C] () -- C:\Windows\explorer.exe.config
[2009/08/19 10:33:09 | 000,020,480 | ---- | C] () -- C:\Windows\OOBEPlayer.exe
[2009/08/19 10:33:09 | 000,000,232 | ---- | C] () -- C:\Windows\OOBEPlayer.ini
[2009/07/29 07:20:40 | 000,000,010 | ---- | C] () -- C:\Windows\SysWow64\ABLKSR.ini
[2009/07/14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 23:59:36 | 000,139,824 | ---- | C] () -- C:\Windows\SysWow64\igfcg500.bin
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009/04/08 19:31:56 | 000,106,496 | ---- | C] () -- C:\Program Files (x86)\Common Files\CPInstallAction.dll
[2008/05/22 17:35:54 | 000,051,962 | ---- | C] () -- C:\Program Files (x86)\Common Files\banner.jpg

========== LOP Check ==========

[2010/11/26 22:21:07 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Asus WebStorage
[2011/04/13 20:48:52 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\BSplayer
[2011/04/13 19:44:12 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\BSplayer Pro
[2010/12/30 19:29:24 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\DAEMON Tools Lite
[2011/06/17 22:19:13 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\gtk-2.0
[2011/06/29 12:11:07 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\ICQ
[2011/03/13 14:39:21 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Nokia
[2011/01/09 16:55:51 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Opera
[2011/03/13 14:38:44 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\PC Suite
[2011/06/13 21:26:13 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\PhotoScape
[2010/12/25 01:08:44 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\QIP
[2010/12/25 01:08:24 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\QipGuard
[2011/06/30 19:29:19 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Registry Mechanic
[2011/06/30 19:00:37 | 000,000,272 | ---- | M] () -- C:\Windows\Tasks\RMSchedule.job
[2011/05/12 15:42:24 | 000,032,522 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"QIP Internet Guardian" = C:\Users\notebook\AppData\Roaming\QipGuard\QipGuard.exe -- [2010/10/25 16:46:36 | 000,190,928 | ---- | M] ()
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2010/04/01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd)
"PC Suite Tray" = "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray -- [2010/12/21 12:53:40 | 001,483,264 | ---- | M] (Nokia)
"RESTART_STICKY_NOTES" = C:\Windows\System32\StikyNot.exe
"ICQ" = "C:\Program Files (x86)\ICQ7.2\ICQ.exe" silent loginmode=4 -- [2011/01/05 10:18:50 | 000,133,432 | ---- | M] (ICQ, LLC.)

< c:\windows\*.* /U >

< %SYSTEMDRIVE%\*.exe >
[2010/08/18 08:10:06 | 001,712,128 | ---- | M] (Marvell) -- C:\ProductInst.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011/02/25 16:58:43 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Adobe
[2010/11/26 22:21:07 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Asus WebStorage
[2011/04/13 20:48:52 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\BSplayer
[2011/04/13 19:44:12 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\BSplayer Pro
[2011/04/29 21:09:20 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\CyberLink
[2010/12/30 19:29:24 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\DAEMON Tools Lite
[2011/01/06 14:28:44 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\DivX
[2011/06/17 22:19:13 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\gtk-2.0
[2011/06/29 12:11:07 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\ICQ
[2010/11/26 20:40:23 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Identities
[2010/12/22 19:00:36 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Macromedia
[2011/06/30 17:58:36 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Malwarebytes
[2009/07/14 09:44:38 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Media Center Programs
[2011/06/01 19:01:36 | 000,000,000 | --SD | M] -- C:\Users\notebook\AppData\Roaming\Microsoft
[2010/12/25 00:41:52 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Mozilla
[2011/03/13 14:39:21 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Nokia
[2011/01/09 16:55:51 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Opera
[2011/03/13 14:38:44 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\PC Suite
[2011/06/13 21:26:13 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\PhotoScape
[2010/12/25 01:08:44 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\QIP
[2010/12/25 01:08:24 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\QipGuard
[2011/05/19 21:06:01 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Real
[2011/06/30 19:29:19 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Registry Mechanic
[2011/06/24 14:11:54 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\Skype
[2011/06/24 14:11:49 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\skypePM
[2010/12/30 19:08:11 | 000,000,000 | ---D | M] -- C:\Users\notebook\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2009/08/11 21:21:26 | 000,087,552 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\BSplayer\AC3 Filter\ac3config.exe
[2009/08/11 21:21:30 | 000,090,112 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\BSplayer\AC3 Filter\spdif_test.exe
[2010/03/22 14:52:04 | 000,697,690 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\BSplayer\AC3 Filter\unins000.exe
[2010/02/23 17:01:52 | 001,185,871 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\BSplayer\FFDShow\unins000.exe
[2010/08/14 10:42:54 | 000,113,152 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\BSplayer\Haali media splitter\dsmux.exe
[2010/08/14 10:45:10 | 000,358,400 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\BSplayer\Haali media splitter\gdsmux.exe
[2010/08/14 10:42:06 | 000,137,728 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\BSplayer\Haali media splitter\mkv2vfr.exe
[2010/09/30 15:30:22 | 000,042,305 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\BSplayer\Haali media splitter\uninstall.exe
[2010/10/25 16:46:36 | 000,190,928 | ---- | M] () -- C:\Users\notebook\AppData\Roaming\QipGuard\QipGuard.exe
[2011/06/26 07:54:50 | 000,308,864 | ---- | M] (RealNetworks, Inc.) -- C:\Users\notebook\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\8.01\rnupgagent.exe


< MD5 for: AGP440.SYS >
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: CDROM.SYS >
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010/11/20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010/11/20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010/11/20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2010/11/20 15:25:59 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\SysNative\cryptsvc.dll
[2010/11/20 15:25:59 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
[2010/11/20 14:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\SysWOW64\cryptsvc.dll
[2010/11/20 14:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2011/02/26 08:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011/02/26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011/02/26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2010/06/08 03:08:38 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011/02/26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2010/06/08 02:55:51 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/06/08 03:08:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2010/06/08 02:55:51 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010/11/20 15:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2010/06/08 03:08:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2010/06/08 02:55:51 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2010/06/08 03:08:38 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011/02/26 08:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2010/06/08 02:55:51 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
[2010/11/20 15:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010/11/20 15:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: IASTOR.SYS >
[2009/08/06 23:24:13 | 000,408,600 | ---- | M] (Intel Corporation) MD5=BBB3B6DF1ABB0FE35802EDE85CC1C011 -- C:\Windows\SysNative\drivers\iaStor.sys
[2009/08/06 23:24:13 | 000,408,600 | ---- | M] (Intel Corporation) MD5=BBB3B6DF1ABB0FE35802EDE85CC1C011 -- C:\Windows\SysNative\DriverStore\FileRepository\iaahci.inf_amd64_neutral_4fa22a1c88c09097\iaStor.sys
[2009/08/06 23:24:13 | 000,408,600 | ---- | M] (Intel Corporation) MD5=BBB3B6DF1ABB0FE35802EDE85CC1C011 -- C:\Windows\SysNative\DriverStore\FileRepository\iastor.inf_amd64_neutral_9071cf01e963be0e\iaStor.sys

< MD5 for: IASTORV.SYS >
[2010/11/20 15:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010/11/20 15:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011/03/11 08:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011/03/11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011/03/11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011/03/11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys
[2011/03/11 08:23:00 | 000,410,496 | ---- | M] (Intel Corporation) MD5=B75E45C564E944A2657167D197AB29DA -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_0b141c81a16e25e6\iaStorV.sys
[2011/03/11 08:25:49 | 000,410,496 | ---- | M] (Intel Corporation) MD5=BFDC9D75698800CFE4D1698BF2750EA2 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_0bccc8c8ba6985c1\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys

< MD5 for: LSASS.EXE >
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe

< MD5 for: NDIS.SYS >
[2010/11/20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\SysNative\drivers\ndis.sys
[2010/11/20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2010/11/20 15:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010/11/20 15:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010/11/20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010/11/20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2011/03/11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\drivers\nvraid.sys
[2011/03/11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvraid.sys
[2011/03/11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
[2010/11/20 15:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010/11/20 15:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys
[2011/03/11 08:19:21 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys
[2011/03/11 08:23:06 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A4D9C9A608A97F59307C2F2600EDC6A4 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvraid.sys
[2011/03/11 08:25:53 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A5C82EB2F72AA004887F90B84A771F73 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
[2011/03/11 08:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvstor.sys
[2011/03/11 08:25:53 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=AE274836BA56518E279087363A781214 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvstor.sys
[2011/03/11 08:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011/03/11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011/03/11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011/03/11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010/11/20 15:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010/11/20 15:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010/11/20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010/11/20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010/11/20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010/11/20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SMSS.EXE >
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2011/04/25 07:28:24 | 001,893,248 | ---- | M] (Microsoft Corporation) MD5=1F748D5439B65E0BEBD92F65048F030D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_0fb918de99201ffb\tcpip.sys
[2010/11/20 15:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2010/06/14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2011/04/25 07:32:22 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=61DC720BB065D607D5823F13D2A64321 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_0f668bf97fd90dd3\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2011/04/25 07:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\SysNative\drivers\tcpip.sys
[2011/04/25 07:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2011/04/25 08:16:34 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010/11/20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010/11/20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2010/06/08 03:08:38 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2010/06/08 03:08:38 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010/11/20 15:27:29 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010/11/20 15:27:29 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2010/11/20 14:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SysWOW64\ws2_32.dll
[2010/11/20 14:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2009/07/14 03:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2009/07/14 03:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[2011/04/22 21:09:37 | 010,990,592 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll
[2009/07/14 03:15:50 | 001,386,496 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msvbvm60.dll
[2009/07/14 03:16:13 | 000,163,840 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\scrrun.dll
[2011/02/18 07:43:28 | 000,428,032 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vbscript.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2009/07/14 03:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2009/07/14 03:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[2011/04/22 21:09:37 | 010,990,592 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll
[2009/07/14 03:15:50 | 001,386,496 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msvbvm60.dll
[2009/07/14 03:16:13 | 000,163,840 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\scrrun.dll
[2011/02/18 07:43:28 | 000,428,032 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vbscript.dll

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

========== Alternate Data Streams ==========
Nahoru
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Re: Prosim o kontrolu

#11 Příspěvek od Edon »

a este druhy sken :



OTL Extras logfile created on: 30. 6. 2011 22:08:28 - Run 1
OTL by OldTimer - Version 3.2.25.0 Folder = C:\Users\notebook\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 0000041b | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

3,97 Gb Total Physical Memory | 2,46 Gb Available Physical Memory | 62,04% Memory free
7,93 Gb Paging File | 6,28 Gb Available in Paging File | 79,17% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 74,52 Gb Total Space | 9,78 Gb Free Space | 13,13% Space Free | Partition Type: NTFS
Drive D: | 204,03 Gb Total Space | 203,71 Gb Free Space | 99,84% Space Free | Partition Type: NTFS

Computer Name: NOTEBOOK-PC | User Name: notebook | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AutoUpdateDisableNotify" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{13F4A7F3-EABC-4261-AF6B-1317777F0755}" = Fast Boot
"{1B2BD098-29D4-4752-81A2-CBFB8758ABC1}" = ESET NOD32 Antivirus
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-041B-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Slovak) 2007
"{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}" = ASUS Power4Gear Hybrid
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{AB0F0272-07A7-470B-B163-6279BB836F60}" = Bezpečnosť rodiny v službe Windows Live
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}" = SRS Premium Sound Control Panel
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB" = Windows Driver Package - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0)
"6DA48AFDE796708D5A4C9121A83E7617A63A9A15" = Windows Driver Package - Nokia Modem (10/07/2010 4.6)
"Adobe Flash Player ActiveX 64" = Adobe Flash Player 10 ActiveX 64-bit
"E5372C32E8562C76C24DBA6525002B1031495F34" = Windows Driver Package - Nokia Modem (06/09/2010 7.01.0.8)
"Elantech" = ETDWare PS/2-x64 7.0.5.9_WHQL
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"USB 2.0 1.3M UVC WebCam" = USB 2.0 1.3M UVC WebCam

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}" = ASUS AI Recovery
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Odovzdávací nástroj lokality Windows Live
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"{25941F8E-15EA-4C0A-B993-54CE71709450}" = Windows Live Toolbar
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{299CF645-48C7-4FA1-8BCD-5CE200CF180D}" = Microsoft Search Enhancement Pack
"{2B81872B-A054-48DA-BE3B-FA5C164C303A}" = ASUS FancyStart
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}" = ATKOSD2
"{3D5BD9A0-F790-467A-9940-B26927F77C01}" = Windows Live Messenger
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{4216D328-0FE8-48B8-85B8-BD300E6F080F}" = Nokia Connectivity Cable Driver
"{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}" = Junk Mail filter update
"{5B65EF64-1DFA-414A-8C94-7BB726158E21}" = ControlDeck
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{643CC22D-0994-41A8-ACE8-CF11A2ACDC1C}" = OLYMPUS Viewer 2
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{67101EAB-B558-45B1-A902-28290F15CC75}" = Windows Live Essentials
"{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}" = ASUS CopyProtect
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = The Sims 2
"{6F238EFB-D502-4164-9D32-A98E96F092F6}" = Windows Live Mail
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{754F35A5-CFC3-4D30-9B7F-BC74E6C3CB8C}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{7C05592D-424B-46CB-B505-E0013E8E75C9}" = ATK Hotkey
"{7CC978FD-AE31-419D-A7AB-2A137689AE1F}" = OLYMPUS Digital Camera Updater
"{7FF19D53-CC31-4062-AE1D-5F398407E635}" = Windows Live Fotogaléria
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117396510}" = Smileyville FREE
"{89A43E80-AC6C-4DA8-9800-F4B30ED577C0}" = OLYMPUS ib
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0012-0000-0000-0000000FF1CE}" = Microsoft Office Standard 2007
"{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0012-0000-0000-0000000FF1CE}_STANDARD_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_STANDARD_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_STANDARD_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_STANDARD_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_STANDARD_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_STANDARD_{573CA1BB-C8A3-46C4-993E-DB4043D9BFCD}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_STANDARD_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_STANDARD_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-041B-1000-0000000FF1CE}_STANDARD_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_STANDARD_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{95140000-00AF-0409-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{97A58F57-5F50-4B0E-92BA-D41AF806E1B3}" = Asistent pri prihlasovaní v sieti Windows Live
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}" = ASUS MultiFrame
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.1 MUI
"{B653A2EC-D816-4498-A4FD-651047AB9DC9}" = Boingo Wi-Fi
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{C9991C9B-0783-452E-8954-AB93E2AB3B80}_is1" = Game Park Console
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D2F5287E-5F0E-447B-9157-B08AA4E2AC76}" = Opera 9.60
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{D4AEC53C-1720-41D9-B6D7-6A60DE62D444}" = PC Connectivity Solution
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{EB2243F0-351C-4405-B2A6-2B28466AE684}" = Windows Live Writer
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F38FD0E4-B991-462B-873D-F2115EADD093}" = Nokia PC Suite
"{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"{F69E83CF-B440-43F8-89E6-6EA80712109B}" = Windows Live Communications Platform
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FA2092C5-7979-412D-A962-6485274AE1EE}" = ASUS Data Security Manager
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"ASUS AP Bank_is1" = ASUS AP Bank
"ASUS WebStorage" = ASUS WebStorage
"ASUS_Screensaver" = ASUS_Screensaver
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner
"conduitEngine" = Conduit Engine
"DivX Setup.divx.com" = DivX Setup
"Google Chrome" = Google Chrome
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{89A43E80-AC6C-4DA8-9800-F4B30ED577C0}" = OLYMPUS ib
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"Landi 11" = Landi 11
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware verzia 1.51.0.1200
"Nokia PC Suite" = Nokia PC Suite
"PHPNukeEN Toolbar" = PHPNukeEN Toolbar
"RealPlayer 12.0" = RealPlayer
"Registry Mechanic_is1" = Registry Mechanic 10.0
"STANDARD" = Microsoft Office Standard 2007
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP 2010" = QIP 2010 10.11.13.4403
"QIP Infium" = QIP Infium 3.0.9040
"QipGuard" = QIP Internet Guardian

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 10. 6. 2011 15:57:09 | Computer Name = notebook-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 13. 6. 2011 14:27:34 | Computer Name = notebook-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 13. 6. 2011 14:27:34 | Computer Name = notebook-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 17. 6. 2011 10:32:39 | Computer Name = notebook-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 17. 6. 2011 10:32:39 | Computer Name = notebook-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 17. 6. 2011 11:03:49 | Computer Name = notebook-PC | Source = Application Hang | ID = 1002
Description = The program opera.exe version 9.60.10447.0 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 205c Start
Time: 01cc2cff26db4166 Termination Time: 20 Application Path: C:\Program Files (x86)\Opera\opera.exe

Report
Id: f7121b50-98f2-11e0-9251-485b398a3b60

Error - 17. 6. 2011 13:19:50 | Computer Name = notebook-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 17. 6. 2011 13:19:50 | Computer Name = notebook-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 18. 6. 2011 15:42:44 | Computer Name = notebook-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "C:\Program Files (x86)\Real\RealPlayer\plugins\rmxrend.dll".
Dependent
Assembly Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 18. 6. 2011 15:42:51 | Computer Name = notebook-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "C:\Program Files (x86)\Real\RealPlayer\plugins\rmxrend.dll".
Dependent
Assembly Microsoft.VC90.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
could not be found. Please use sxstrace.exe for detailed diagnosis.

[ System Events ]
Error - 6. 4. 2011 14:49:02 | Computer Name = notebook-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.

Error - 6. 4. 2011 14:49:03 | Computer Name = notebook-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.

Error - 10. 4. 2011 6:40:09 | Computer Name = notebook-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1000
Description = Inicializácia klienta CBS zlyhala. Posledná chyba: 0x8007045b

Error - 10. 4. 2011 6:40:09 | Computer Name = notebook-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description = Nepodarilo sa spustiť sprievodcu inštaláciou jazykového balíka. Reštartujte
systém a znova skúste spustiť tohto sprievodcu.

Error - 27. 4. 2011 10:42:42 | Computer Name = notebook-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1000
Description = Inicializácia klienta CBS zlyhala. Posledná chyba: 0x8007045b

Error - 29. 4. 2011 17:22:26 | Computer Name = notebook-PC | Source = DCOM | ID = 10010
Description =

Error - 12. 5. 2011 9:44:30 | Computer Name = notebook-PC | Source = DCOM | ID = 10010
Description =

Error - 12. 5. 2011 9:44:30 | Computer Name = notebook-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1000
Description = Inicializácia klienta CBS zlyhala. Posledná chyba: 0x80080005

Error - 12. 5. 2011 9:47:00 | Computer Name = notebook-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1000
Description = Inicializácia klienta CBS zlyhala. Posledná chyba: 0x8007045b

Error - 19. 5. 2011 16:15:23 | Computer Name = notebook-PC | Source = DCOM | ID = 10010
Description =


< End of report >
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosim o kontrolu

#12 Příspěvek od motji »

:o Ten první log je celý? Na konci mi chybí udaje u Altrernate data stream :o
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Re: Prosim o kontrolu

#13 Příspěvek od Edon »

Aha pardon neskopirovalo sa mi toto:

========== Alternate Data Streams ==========

@Alternate Data Stream - 107 bytes -> C:\ProgramData\Temp:D1B5B4F1

< End of report >
Nahoru
Uživatelský avatar
motji
VIP
VIP
Příspěvky: 23302
Registrován: 23 říj 2008 08:02

Re: Prosim o kontrolu

#14 Příspěvek od motji »

Děkuji :D .

:arrow: Zkuste v přidat odebrat programy najít a odinstalovat tento program
Registry Mechanic

:arrow: Spustte OTL
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
@Alternate Data Stream - 107 bytes -> C:\ProgramData\Temp:D1B5B4F1
O32 - AutoRun File - [2010/01/13 06:41:47 | 000,000,251 | ---- | M] () - C:\Autorun.inf -- [ NTFS ]
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
4 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000..\Run: [RESTART_STICKY_NOTES] File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (PHPNukeEN Toolbar) - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\Toolbar\WebBrowser: (PHPNukeEN Toolbar) - {DD02A4EB-4AFD-4D60-99D8-E67F964CA813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\URLSearchHook: {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\..\URLSearchHook: {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll (Conduit Ltd.)
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll (Conduit Ltd.)

:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
C:\Users\notebook\AppData\Roaming\Registry Mechanic
C:\Windows\Tasks\RMSchedule.job
C:\ProgramData\ezsidmv.dat

:commands
[resethosts]
[emptytemp]
[EMPTYFLASH]
[Reboot]

-klikněte na tlačítko opravit.
-Následně se pc restartuje.
- Log vložte zde :)



:arrow: Otestujte na http://www.virustotal.com
C:\ProductInst.exe
C:\Program Files (x86)\landi 11\Landi11.exe
C:\Windows\ulandi.exe
-Na virustotalu dáte procházet, a do spodního okénka nakopírujete přímo cestu k souboru a dáte odeslat
-z prohlížeče zkopírujete adresu ke stránce s výsledky
-pokud se Vás zeptá, dejte soubor otestovat znovu, tak aby to byl soubor z Vašeho počítače
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data :!:
Chcete podpořit naše forum? Informace zde

Obrázek

K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Nahoru
Edon
Návštěvník
Návštěvník
Příspěvky: 54
Registrován: 14 pro 2008 15:29

Re: Prosim o kontrolu

#15 Příspěvek od Edon »

Program som odinstaloval tak uvidime co to porobi :)
Tu je log a kontroly z virus total:


All processes killed
========== OTL ==========
No active process named explorer.exe was found!
ADS C:\ProgramData\Temp:D1B5B4F1 deleted successfully.
C:\Autorun.inf moved successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{828030A1-22C1-4009-854F-8E305202313F}\ not found.
File {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{314111c7-a502-11d2-bbca-00c04f8ec294}\ not found.
File {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{828030A1-22C1-4009-854F-8E305202313F}\ not found.
File {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}\ not found.
File {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{03C514A3-1EFB-4856-9F99-10D7BE1653C0}\ not found.
File {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully.
C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{dd02a4eb-4afd-4d60-99d8-e67f964ca813} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dd02a4eb-4afd-4d60-99d8-e67f964ca813}\ deleted successfully.
C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1725867788-3198536087-3910109878-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
File C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll not found.
Registry value HKEY_USERS\S-1-5-21-1725867788-3198536087-3910109878-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{DD02A4EB-4AFD-4D60-99D8-E67F964CA813} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DD02A4EB-4AFD-4D60-99D8-E67F964CA813}\ not found.
File C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll not found.
HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-21-1725867788-3198536087-3910109878-1000\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-1725867788-3198536087-3910109878-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1725867788-3198536087-3910109878-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{95289393-33EA-4F8D-B952-483415B9C955} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95289393-33EA-4F8D-B952-483415B9C955}\ deleted successfully.
C:\Users\notebook\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-1725867788-3198536087-3910109878-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{dd02a4eb-4afd-4d60-99d8-e67f964ca813} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dd02a4eb-4afd-4d60-99d8-e67f964ca813}\ not found.
File C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{dd02a4eb-4afd-4d60-99d8-e67f964ca813} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dd02a4eb-4afd-4d60-99d8-e67f964ca813}\ not found.
File C:\Program Files (x86)\PHPNukeEN\tbPHPN.dll not found.
========== FILES ==========
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP123B.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP1B9A.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPA0D4.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPBF29.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPCC15.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
C:\WINDOWS\Installer\MSI2946.tmp moved successfully.
C:\WINDOWS\Installer\MSI34D0.tmp moved successfully.
C:\WINDOWS\Installer\MSICD13.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\wlt6DFF.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\7da8ec001865e53e9a920eda9fae0103\BITA895.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\d0b13a8d86acd7b4be00ef7129fc26e4\BITB299.tmp moved successfully.
C:\WINDOWS\Temp\CR_3FF60.tmp folder moved successfully.
C:\Users\notebook\AppData\Roaming\Registry Mechanic\log folder moved successfully.
C:\Users\notebook\AppData\Roaming\Registry Mechanic folder moved successfully.
File\Folder C:\Windows\Tasks\RMSchedule.job not found.
C:\ProgramData\ezsidmv.dat moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: notebook
->Temp folder emptied: 4900350 bytes
->Temporary Internet Files folder emptied: 85194023 bytes
->Opera cache emptied: 29087806 bytes
->Flash cache emptied: 3813 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4621 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 85153 bytes
RecycleBin emptied: 133944362 bytes

Total Files Cleaned = 242,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: notebook
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.25.0 log created on 07012011_204928

Files\Folders moved on Reboot...
C:\Users\notebook\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...



C:\ProductInst.exe
http://www.virustotal.com/file-scan/rep ... 1309548623


C:\Program Files (x86)\landi 11\Landi11.exe
http://www.virustotal.com/file-scan/rep ... 1309549615


C:\Windows\ulandi.exe
http://www.virustotal.com/file-scan/rep ... 1309549990
Nahoru
Odpovědět

Zpět na „Preventivní kontroly logů“