VIRY.CZ

Zdravím ... bohužel jsem byl tak hloupý a na tento vir jsem skočil. Potřebuji tedy pomoc. Děkuji předem, zde je text toho, co mi vyskočilo ze dvou poznámkových BLOKů.

DanyCZ

-------------------------------------


Logfile of random's system information tool 1.09 (written by random/random)
Run by Daniel at 2011-07-24 19:12:00
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 393 GB (86%) free of 459 GB
Total RAM: 3000 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:12:10, on 24.7.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Nuance\PDF Professional 6\PdfPro6Hook.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\windows\system32\igfxsrvc.exe
C:\Windows\update.tray-9-0\svchost.exe
C:\Windows\l1rezerv.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Steam\steam.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\rundll32.exe
C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\update.tray-9-0-lnk\svchost.exe
C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\SearchFilterHost.exe
C:\Users\Daniel\Downloads\RSIT.exe
C:\Program Files\trend micro\Daniel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100326202849.dll (file missing)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (file missing)
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O2 - BHO: ZeonIEEventHelper Class - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (file missing)
O3 - Toolbar: Nuance PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [McAfee Managed Services Tray] C:\Program Files\McAfee\Managed VirusScan\DesktopUI\XTray.Exe
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [PDFHook] C:\Program Files\Nuance\PDF Professional 6\pdfpro6hook.exe
O4 - HKLM\..\Run: [PDF6 Registry Controller] C:\Program Files\Nuance\PDF Professional 6\RegistryController.exe
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [wxpdrv] C:\windows\services32.exe
O4 - HKLM\..\Run: [tray_ico0] C:\windows\update.tray-9-0\svchost.exe
O4 - HKLM\..\Run: [2950809.exe] "C:\Windows\Temp\2950809.exe"
O4 - HKLM\..\Run: [sysdriver32.exe] "C:\windows\sysdriver32.exe" rezerv
O4 - HKLM\..\Run: [sysdriver32_.exe] "C:\windows\sysdriver32_.exe" rezerv
O4 - HKLM\..\Run: [8357422.exe] "C:\Windows\Temp\8357422.exe"
O4 - HKLM\..\Run: [2440994.exe] "C:\Windows\Temp\2440994.exe"
O4 - HKLM\..\Run: [48514721-loader2.exe] "C:\Windows\Temp\48514721-loader2.exe"
O4 - HKLM\..\Run: [l1rezerv.exe] "C:\windows\l1rezerv.exe"
O4 - HKLM\..\Run: [systemup] "C:\windows\systemup.exe" stand
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Google Update] "C:\Users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Append the content of the link to existing PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Append the content of the selected links to existing PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
O8 - Extra context menu item: Append to existing PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Create PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: Create PDF file from the content of the link - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: Create PDF files from the selected links - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Open with Nuance PDF Converter 6.0 - res://C:\Program Files\Nuance\PDF Professional 6\cnvres_eng.dll /100
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.siteadvisor.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.siteadvisor.com (HKLM)
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (file missing)
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (file missing)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\aestsrv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee SiteAdvisor Enterprise Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor Enterprise\McSACore.exe (file missing)
O23 - Service: McShield - Unknown owner - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe (file missing)
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe (file missing)
O23 - Service: McAfee Personal Firewall Service (MpfService) - Unknown owner - C:\Program Files\McAfee\MPF\MPFSrv.exe (file missing)
O23 - Service: McAfee Virus and Spyware Protection Service (myAgtSvc) - Unknown owner - C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: PDFProFiltSrv - Nuance Communications, Inc. - C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: srvbtcclient - Unknown owner - C:\windows\update.5.0\svchost.exe
O23 - Service: srviecheck - Unknown owner - C:\windows\update.2\svchost.exe
O23 - Service: srvsysdriver32 - Unknown owner - C:\windows\sysdriver32.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: wxpdrivers - Unknown owner - C:\windows\update.1\svchost.exe

--
End of file - 15088 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-4270715904-2616785641-2204161757-1001Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-4270715904-2616785641-2204161757-1001UA.job
C:\windows\tasks\HPCeeScheduleForDaniel.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{551A852F-39A6-44A7-9C13-AFBEC9185A9D}]
PlusIEEventHelper Class - C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll [2009-02-06 249856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100326202849.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar BHO - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9}]
ZeonIEEventHelper Class - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26 475136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-04-14 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll []
{E3286BF1-E654-42FF-B4A6-5E111731DF6B} - Nuance PDF - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26 475136]
{8dcb7100-df86-4384-8842-8fa844297b3f} - @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-28 256056]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2010-01-12 563736]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-01-22 1684776]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"McAfee Managed Services Tray"=C:\Program Files\McAfee\Managed VirusScan\DesktopUI\XTray.Exe []
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-12 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-12 175640]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-12 166936]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"PDFHook"=C:\Program Files\Nuance\PDF Professional 6\pdfpro6hook.exe [2009-11-13 1277952]
"PDF6 Registry Controller"=C:\Program Files\Nuance\PDF Professional 6\RegistryController.exe [2009-11-03 110880]
"Nuance PDF Reader-reminder"=C:\Program Files\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"NortonOnlineBackupReminder"=C:\Program Files\Symantec\Norton Online Backup\Activation\NOBuActivation.exe [2009-12-03 3331944]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-01-07 253672]
"wxpdrv"=C:\windows\services32.exe [2011-07-24 1174016]
"tray_ico"= []
"tray_ico0"=C:\windows\update.tray-9-0\svchost.exe [2011-07-24 1174016]
"tray_ico1"= []
"tray_ico2"= []
"tray_ico3"= []
"tray_ico4"= []
"2950809.exe"=C:\Windows\Temp\2950809.exe [2011-07-24 247296]
"sysdriver32.exe"=C:\windows\sysdriver32.exe [2011-07-24 247296]
"sysdriver32_.exe"=C:\windows\sysdriver32_.exe [2011-07-24 247296]
"8357422.exe"=C:\Windows\Temp\8357422.exe [2011-07-24 247296]
"2440994.exe"=C:\Windows\Temp\2440994.exe [2011-07-24 495616]
"48514721-loader2.exe"=C:\Windows\Temp\48514721-loader2.exe [2011-07-24 247296]
"l1rezerv.exe"=C:\windows\l1rezerv.exe [2011-07-24 232960]
"systemup"=C:\windows\systemup.exe [2011-07-24 114176]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Program Files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-02-10 1515576]
"ISUSPM"=C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler []
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2010-01-22 2363392]
"Google Update"=C:\Users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-24 136176]
"Steam"=C:\Program Files\Steam\steam.exe [2011-02-21 1242448]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-06-15 15141768]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2011-07-20 3077528]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-01-25 225792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wxpdrivers]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableSecureUIAPaths"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2011-07-24 19:12:00 ----D---- C:\rsit
2011-07-24 19:12:00 ----D---- C:\Program Files\trend micro
2011-07-24 19:04:38 ----D---- C:\windows\ufa
2011-07-24 19:04:38 ----D---- C:\windows\rpcminer
2011-07-24 19:04:38 ----D---- C:\windows\phoenix
2011-07-24 18:48:22 ----A---- C:\windows\ddh_iplist.txt
2011-07-24 18:47:41 ----A---- C:\windows\systemup.exe
2011-07-24 18:39:56 ----A---- C:\windows\btc_client_iplist.txt
2011-07-24 18:39:32 ----HD---- C:\windows\update.5.0
2011-07-24 18:37:28 ----A---- C:\windows\l1rezerv.exe
2011-07-24 18:36:38 ----A---- C:\windows\iecheck_iplist.txt
2011-07-24 18:35:03 ----A---- C:\windows\unrar.exe
2011-07-24 18:34:25 ----HD---- C:\windows\update.2
2011-07-24 18:32:13 ----A---- C:\windows\sysdriver32_.exe
2011-07-24 18:32:04 ----A---- C:\windows\iplist.txt
2011-07-24 18:31:59 ----A---- C:\windows\sysdriver32.exe
2011-07-24 18:31:36 ----A---- C:\windows\front_ip_list.txt
2011-07-24 18:31:22 ----D---- C:\windows\av_ico
2011-07-24 18:14:44 ----HD---- C:\windows\update.1
2011-07-24 18:14:35 ----HD---- C:\windows\update.tray-9-0-lnk
2011-07-24 18:14:35 ----HD---- C:\windows\update.tray-9-0
2011-07-24 18:12:14 ----A---- C:\windows\winlog-ids.txt
2011-07-24 18:12:14 ----A---- C:\windows\winlog-dirs.txt
2011-07-24 18:12:10 ----A---- C:\windows\services32.exe
2011-07-21 17:20:07 ----D---- C:\Program Files\YouTube Downloader
2011-07-20 23:29:46 ----D---- C:\ProgramData\PMB Files
2011-07-20 23:29:33 ----D---- C:\Program Files\Pando Networks
2011-07-20 23:26:20 ----D---- C:\Users\Daniel\AppData\Roaming\Hi-Rez Studios
2011-07-20 23:26:08 ----A---- C:\windows\system32\XAudio2_7.dll
2011-07-20 23:26:08 ----A---- C:\windows\system32\XAPOFX1_5.dll
2011-07-20 23:26:07 ----A---- C:\windows\system32\xactengine3_7.dll
2011-07-20 23:26:07 ----A---- C:\windows\system32\d3dcsx_43.dll
2011-07-20 23:26:07 ----A---- C:\windows\system32\D3DCompiler_43.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\XAudio2_6.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\xactengine3_6.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\xactengine3_5.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\X3DAudio1_7.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\D3DX9_43.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\d3dx11_43.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\d3dx10_43.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\XAudio2_4.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\D3DX9_42.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\D3DX9_41.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\d3dx11_42.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\d3dcsx_42.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\D3DCompiler_42.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\XAudio2_3.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\XAPOFX1_2.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\xactengine3_4.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\X3DAudio1_6.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\D3DX9_40.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\D3DCompiler_40.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\XAudio2_2.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\XAPOFX1_1.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\xactengine3_3.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\xactengine3_2.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\X3DAudio1_5.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\d3dx10_39.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\D3DCompiler_39.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\XAudio2_1.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\XAPOFX1_0.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\xactengine3_1.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\X3DAudio1_4.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\D3DX9_39.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\d3dx10_38.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\D3DCompiler_38.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\XAudio2_0.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\xactengine3_0.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\X3DAudio1_3.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\D3DX9_38.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\D3DX9_37.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\d3dx10_37.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\D3DCompiler_37.dll
2011-07-20 23:25:07 ----HD---- C:\windows\msdownld.tmp
2011-07-20 23:25:06 ----D---- C:\windows\system32\directx
2011-07-20 23:24:53 ----D---- C:\windows\system32\AGEIA
2011-07-20 23:24:53 ----D---- C:\Program Files\AGEIA Technologies
2011-07-20 23:24:05 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-07-16 10:42:20 ----D---- C:\windows\system32\SPReview
2011-07-16 10:41:28 ----D---- C:\windows\system32\EventProviders
2011-07-14 19:51:55 ----A---- C:\windows\system32\fsquirt.exe
2011-07-14 19:51:55 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2011-07-14 19:51:55 ----A---- C:\windows\system32\drivers\bthport.sys
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-14 19:51:53 ----A---- C:\windows\system32\KernelBase.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-07-14 19:51:48 ----A---- C:\windows\system32\winsrv.dll
2011-07-14 19:51:48 ----A---- C:\windows\system32\kernel32.dll
2011-07-14 19:51:48 ----A---- C:\windows\system32\conhost.exe
2011-07-14 19:51:37 ----A---- C:\windows\system32\win32k.sys
2011-07-14 19:19:48 ----A---- C:\windows\system32\dfshim.dll
2011-07-14 19:19:44 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-07-14 19:19:44 ----A---- C:\windows\system32\mstscax.dll
2011-07-14 19:19:44 ----A---- C:\windows\system32\drivers\TsUsbFlt.sys
2011-07-14 19:19:40 ----A---- C:\windows\system32\d3d10warp.dll
2011-07-14 19:19:39 ----A---- C:\windows\system32\mfc40u.dll
2011-07-14 19:19:39 ----A---- C:\windows\system32\mfc40.dll
2011-07-14 19:19:38 ----A---- C:\windows\system32\sysmain.dll
2011-07-14 19:19:37 ----A---- C:\windows\system32\shell32.dll
2011-07-14 19:19:37 ----A---- C:\windows\system32\secproc_isv.dll
2011-07-14 19:19:36 ----A---- C:\windows\system32\secproc.dll
2011-07-14 19:19:36 ----A---- C:\windows\system32\RMActivate_isv.exe
2011-07-14 19:19:35 ----A---- C:\windows\system32\RMActivate.exe
2011-07-14 19:19:34 ----A---- C:\windows\system32\spwizui.dll
2011-07-14 19:19:34 ----A---- C:\windows\system32\mscoree.dll
2011-07-14 19:19:33 ----A---- C:\windows\system32\mf.dll
2011-07-14 19:19:32 ----A---- C:\windows\system32\mcupdate_GenuineIntel.dll
2011-07-14 19:19:32 ----A---- C:\windows\system32\CertEnroll.dll
2011-07-14 19:19:31 ----A---- C:\windows\system32\wmp.dll
2011-07-14 19:19:30 ----A---- C:\windows\system32\PresentationHostProxy.dll
2011-07-14 19:19:30 ----A---- C:\windows\system32\PresentationHost.exe
2011-07-14 19:19:30 ----A---- C:\windows\system32\drivers\msiscsi.sys
2011-07-14 19:19:30 ----A---- C:\windows\system32\drivers\hwpolicy.sys
2011-07-14 19:19:29 ----A---- C:\windows\system32\schedsvc.dll
2011-07-14 19:19:29 ----A---- C:\windows\system32\RacEngn.dll
2011-07-14 19:19:28 ----A---- C:\windows\system32\ntdll.dll
2011-07-14 19:19:28 ----A---- C:\windows\system32\AuthFWSnapin.dll
2011-07-14 19:19:27 ----A---- C:\windows\system32\rdpdd.dll
2011-07-14 19:19:26 ----A---- C:\windows\system32\qmgr.dll
2011-07-14 19:19:26 ----A---- C:\windows\system32\ExplorerFrame.dll
2011-07-14 19:19:25 ----A---- C:\windows\system32\wevtsvc.dll
2011-07-14 19:19:25 ----A---- C:\windows\system32\ole32.dll
2011-07-14 19:19:24 ----A---- C:\windows\system32\vssapi.dll
2011-07-14 19:19:24 ----A---- C:\windows\system32\SearchFolder.dll
2011-07-14 19:19:24 ----A---- C:\windows\system32\d3d9.dll
2011-07-14 19:19:23 ----A---- C:\windows\system32\taskschd.dll
2011-07-14 19:19:23 ----A---- C:\windows\system32\IKEEXT.DLL
2011-07-14 19:19:23 ----A---- C:\windows\system32\crypt32.dll
2011-07-14 19:19:22 ----A---- C:\windows\system32\wer.dll
2011-07-14 19:19:22 ----A---- C:\windows\system32\termsrv.dll
2011-07-14 19:19:22 ----A---- C:\windows\system32\spreview.exe
2011-07-14 19:19:22 ----A---- C:\windows\system32\spinstall.exe
2011-07-14 19:19:22 ----A---- C:\windows\system32\mstsc.exe
2011-07-14 19:19:22 ----A---- C:\windows\system32\certcli.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\rpcrt4.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\msxml6.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\lsasrv.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\gpsvc.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\dwmcore.dll
2011-07-14 19:19:20 ----A---- C:\windows\system32\wbengine.exe
2011-07-14 19:19:20 ----A---- C:\windows\system32\odbc32.dll
2011-07-14 19:19:20 ----A---- C:\windows\system32\mstime.dll
2011-07-14 19:19:20 ----A---- C:\windows\system32\MPSSVC.dll
2011-07-14 19:19:20 ----A---- C:\windows\system32\diagperf.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\WinSAT.exe
2011-07-14 19:19:19 ----A---- C:\windows\system32\TSWorkspace.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\tsmf.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\scavengeui.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\quartz.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\localspl.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\dot3api.dll
2011-07-14 19:19:18 ----A---- C:\windows\system32\winhttp.dll
2011-07-14 19:19:18 ----A---- C:\windows\system32\setupapi.dll
2011-07-14 19:19:18 ----A---- C:\windows\system32\iedkcs32.dll
2011-07-14 19:19:18 ----A---- C:\windows\system32\apphelp.dll
2011-07-14 19:19:17 ----A---- C:\windows\system32\VSSVC.exe
2011-07-14 19:19:17 ----A---- C:\windows\system32\netlogon.dll
2011-07-14 19:19:17 ----A---- C:\windows\system32\MSVidCtl.dll
2011-07-14 19:19:17 ----A---- C:\windows\system32\dbgeng.dll
2011-07-14 19:19:17 ----A---- C:\windows\system32\d3d11.dll
2011-07-14 19:19:16 ----A---- C:\windows\system32\winlogon.exe
2011-07-14 19:19:16 ----A---- C:\windows\system32\WindowsCodecs.dll
2011-07-14 19:19:16 ----A---- C:\windows\system32\user32.dll
2011-07-14 19:19:16 ----A---- C:\windows\system32\netcfgx.dll
2011-07-14 19:19:15 ----A---- C:\windows\system32\WsmSvc.dll
2011-07-14 19:19:15 ----A---- C:\windows\system32\WMVDECOD.DLL
2011-07-14 19:19:15 ----A---- C:\windows\system32\webio.dll
2011-07-14 19:19:15 ----A---- C:\windows\system32\Query.dll
2011-07-14 19:19:15 ----A---- C:\windows\system32\drivers\rdpwd.sys
2011-07-14 19:19:14 ----A---- C:\windows\system32\upnp.dll
2011-07-14 19:19:14 ----A---- C:\windows\system32\schannel.dll
2011-07-14 19:19:14 ----A---- C:\windows\system32\mmcndmgr.dll
2011-07-14 19:19:14 ----A---- C:\windows\system32\DShowRdpFilter.dll
2011-07-14 19:19:14 ----A---- C:\windows\system32\advapi32.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\netfxperf.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\msv1_0.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\msdrm.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\lsm.exe
2011-07-14 19:19:13 ----A---- C:\windows\system32\imapi2fs.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\authui.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\usp10.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\sppobjs.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\shlwapi.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\SessEnv.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\PortableDeviceApi.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\mcbuilder.exe
2011-07-14 19:19:11 ----A---- C:\windows\system32\xpsservices.dll
2011-07-14 19:19:11 ----A---- C:\windows\system32\winload.exe
2011-07-14 19:19:11 ----A---- C:\windows\system32\userenv.dll
2011-07-14 19:19:11 ----A---- C:\windows\system32\certmgr.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\WebClnt.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\sppwinob.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\iphlpsvc.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\comdlg32.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\audiosrv.dll
2011-07-14 19:19:09 ----A---- C:\windows\system32\rpcss.dll
2011-07-14 19:19:09 ----A---- C:\windows\system32\cmd.exe
2011-07-14 19:19:08 ----A---- C:\windows\system32\Wldap32.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\win32spl.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\propsys.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\mfds.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\framedynos.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\BFE.DLL
2011-07-14 19:19:07 ----A---- C:\windows\system32\wuaueng.dll
2011-07-14 19:19:07 ----A---- C:\windows\system32\samsrv.dll
2011-07-14 19:19:07 ----A---- C:\windows\system32\nlasvc.dll
2011-07-14 19:19:07 ----A---- C:\windows\system32\drivers\volsnap.sys
2011-07-14 19:19:07 ----A---- C:\windows\system32\drivers\netio.sys
2011-07-14 19:19:07 ----A---- C:\windows\system32\drivers\ndis.sys
2011-07-14 19:19:06 ----A---- C:\windows\system32\wucltux.dll
2011-07-14 19:19:06 ----A---- C:\windows\system32\winresume.exe
2011-07-14 19:19:06 ----A---- C:\windows\system32\werconcpl.dll
2011-07-14 19:19:06 ----A---- C:\windows\system32\profsvc.dll
2011-07-14 19:19:06 ----A---- C:\windows\system32\ncsi.dll
2011-07-14 19:19:06 ----A---- C:\windows\system32\azroles.dll
2011-07-14 19:19:05 ----A---- C:\windows\system32\themeui.dll
2011-07-14 19:19:05 ----A---- C:\windows\system32\taskeng.exe
2011-07-14 19:19:05 ----A---- C:\windows\system32\credui.dll
2011-07-14 19:19:04 ----A---- C:\windows\system32\spp.dll
2011-07-14 19:19:04 ----A---- C:\windows\system32\mswsock.dll
2011-07-14 19:19:04 ----A---- C:\windows\system32\drivers\http.sys
2011-07-14 19:19:04 ----A---- C:\windows\system32\dhcpcore.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\wintrust.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\taskcomp.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\NaturalLanguage6.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\msxml3.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\mfreadwrite.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\dxgi.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\dbghelp.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\basecsp.dll
2011-07-14 19:19:02 ----A---- C:\windows\system32\WinSATAPI.dll
2011-07-14 19:19:02 ----A---- C:\windows\system32\spoolsv.exe
2011-07-14 19:19:02 ----A---- C:\windows\system32\gdi32.dll
2011-07-14 19:19:02 ----A---- C:\windows\system32\evr.dll
2011-07-14 19:19:02 ----A---- C:\windows\system32\drivers\mrxdav.sys
2011-07-14 19:19:02 ----A---- C:\windows\system32\drivers\1394ohci.sys
2011-07-14 19:19:02 ----A---- C:\windows\system32\calc.exe
2011-07-14 19:19:01 ----A---- C:\windows\system32\vpnike.dll
2011-07-14 19:19:01 ----A---- C:\windows\system32\UIRibbon.dll
2011-07-14 19:19:01 ----A---- C:\windows\system32\srvsvc.dll
2011-07-14 19:19:01 ----A---- C:\windows\system32\sqlsrv32.dll
2011-07-14 19:19:01 ----A---- C:\windows\system32\QAGENTRT.DLL
2011-07-14 19:19:00 ----A---- C:\windows\system32\sxs.dll
2011-07-14 19:19:00 ----A---- C:\windows\system32\lpksetup.exe
2011-07-14 19:19:00 ----A---- C:\windows\system32\ie4uinit.exe
2011-07-14 19:19:00 ----A---- C:\windows\system32\fveapi.dll
2011-07-14 19:19:00 ----A---- C:\windows\system32\drivers\fvevol.sys
2011-07-14 19:19:00 ----A---- C:\windows\system32\cryptsvc.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\ws2_32.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\stobject.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\netshell.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\hgprint.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\drivers\rdbss.sys
2011-07-14 19:18:59 ----A---- C:\windows\system32\drivers\msdsm.sys
2011-07-14 19:18:58 ----A---- C:\windows\system32\prncache.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\printui.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\msi.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\inetpp.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\dps.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\comctl32.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\WSDApi.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\wmpeffects.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\rpchttp.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\net1.exe
2011-07-14 19:18:57 ----A---- C:\windows\system32\ci.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\aitagent.exe
2011-07-14 19:18:57 ----A---- C:\windows\system32\aepdu.dll
2011-07-14 19:18:56 ----A---- C:\windows\system32\FXSSVC.exe
2011-07-14 19:18:56 ----A---- C:\windows\system32\drivers\pci.sys
2011-07-14 19:18:55 ----A---- C:\windows\system32\vds.exe
2011-07-14 19:18:55 ----A---- C:\windows\system32\scansetting.dll
2011-07-14 19:18:54 ----A---- C:\windows\system32\WMVCORE.DLL
2011-07-14 19:18:54 ----A---- C:\windows\system32\wlangpui.dll
2011-07-14 19:18:54 ----A---- C:\windows\system32\MMDevAPI.dll
2011-07-14 19:18:54 ----A---- C:\windows\system32\davclnt.dll
2011-07-14 19:18:54 ----A---- C:\windows\system32\aaclient.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\wpdshext.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\webservices.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\t2embed.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\QSHVHOST.DLL
2011-07-14 19:18:53 ----A---- C:\windows\system32\pnidui.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\IPSECSVC.DLL
2011-07-14 19:18:53 ----A---- C:\windows\system32\drivers\termdd.sys
2011-07-14 19:18:53 ----A---- C:\windows\system32\consent.exe
2011-07-14 19:18:52 ----A---- C:\windows\system32\TsUsbGDCoInstaller.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\SyncCenter.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\sdengin2.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\netdiagfx.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\fde.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\drivers\sbp2port.sys
2011-07-14 19:18:51 ----A---- C:\windows\system32\wuapi.dll
2011-07-14 19:18:51 ----A---- C:\windows\system32\wscapi.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\wisptis.exe
2011-07-14 19:18:50 ----A---- C:\windows\system32\WinSCard.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\rdpcore.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\pla.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2011-07-14 19:18:50 ----A---- C:\windows\system32\msasn1.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\mcmde.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\drivers\vhdmp.sys
2011-07-14 19:18:49 ----A---- C:\windows\system32\WUDFSvc.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\winsta.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\wiaservc.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\setupcl.exe
2011-07-14 19:18:49 ----A---- C:\windows\system32\ntshrui.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\imapi2.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\iepeers.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\drivers\msahci.sys
2011-07-14 19:18:48 ----A---- C:\windows\system32\gameux.dll
2011-07-14 19:18:48 ----A---- C:\windows\system32\DXPTaskRingtone.dll
2011-07-14 19:18:48 ----A---- C:\windows\system32\aeinv.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\WMPEncEn.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\winmm.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\TabSvc.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\shsvcs.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\rasmans.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\onex.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\hbaapi.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\dwmredir.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\drivers\udfs.sys
2011-07-14 19:18:47 ----A---- C:\windows\system32\drivers\acpi.sys
2011-07-14 19:18:46 ----A---- C:\windows\system32\vaultsvc.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\samcli.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\proquota.exe
2011-07-14 19:18:46 ----A---- C:\windows\system32\netiohlp.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\Narrator.exe
2011-07-14 19:18:46 ----A---- C:\windows\system32\msutb.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\IPHLPAPI.DLL
2011-07-14 19:18:46 ----A---- C:\windows\system32\halmacpi.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\hal.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\bootres.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\autochk.exe
2011-07-14 19:18:46 ----A---- C:\windows\system32\autofmt.exe
2011-07-14 19:18:46 ----A---- C:\windows\system32\AudioSes.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\audiodg.exe
2011-07-14 19:18:45 ----A---- C:\windows\system32\wcncsvc.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\thumbcache.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\tcpipcfg.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\srchadmin.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\schtasks.exe
2011-07-14 19:18:45 ----A---- C:\windows\system32\regapi.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\powercpl.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\msinfo32.exe
2011-07-14 19:18:45 ----A---- C:\windows\system32\msihnd.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\mimefilt.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\ipsmsnap.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\framedyn.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\eapphost.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\drivers\winusb.sys
2011-07-14 19:18:45 ----A---- C:\windows\system32\drivers\volmgr.sys
2011-07-14 19:18:45 ----A---- C:\windows\system32\autoconv.exe
2011-07-14 19:18:44 ----A---- C:\windows\system32\umpo.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\sspicli.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\QAGENT.DLL
2011-07-14 19:18:44 ----A---- C:\windows\system32\netid.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\mscorier.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\DXP.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\drivers\partmgr.sys
2011-07-14 19:18:44 ----A---- C:\windows\system32\drivers\netbt.sys
2011-07-14 19:18:44 ----A---- C:\windows\system32\AuxiliaryDisplayCpl.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\actxprxy.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\wlanpref.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\wdc.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\Vault.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\untfs.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\StructuredQuery.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\sppsvc.exe
2011-07-14 19:18:43 ----A---- C:\windows\system32\sdclt.exe
2011-07-14 19:18:43 ----A---- C:\windows\system32\scesrv.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\rastls.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\nci.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\drivers\ataport.sys
2011-07-14 19:18:42 ----A---- C:\windows\system32\WMNetMgr.dll
2011-07-14 19:18:42 ----A---- C:\windows\system32\RpcRtRemote.dll
2011-07-14 19:18:42 ----A---- C:\windows\system32\Robocopy.exe
2011-07-14 19:18:42 ----A---- C:\windows\system32\ListSvc.dll
2011-07-14 19:18:42 ----A---- C:\windows\system32\licmgr10.dll
2011-07-14 19:18:42 ----A---- C:\windows\system32\DxpTaskSync.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\XpsRasterService.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\userinit.exe
2011-07-14 19:18:41 ----A---- C:\windows\system32\termmgr.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\taskmgr.exe
2011-07-14 19:18:41 ----A---- C:\windows\system32\sharemediacpl.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\puiobj.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\mtxclu.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\msdri.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\drivers\usbvideo.sys
2011-07-14 19:18:41 ----A---- C:\windows\system32\drivers\mpio.sys
2011-07-14 19:18:41 ----A---- C:\windows\system32\drivers\mountmgr.sys
2011-07-14 19:18:41 ----A---- C:\windows\system32\Display.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\DiagCpl.dll
2011-07-14 19:18:40 ----A---- C:\windows\system32\msdtctm.dll
2011-07-14 19:18:40 ----A---- C:\windows\system32\logoncli.dll
2011-07-14 19:18:40 ----A---- C:\windows\system32\eudcedit.exe
2011-07-14 19:18:40 ----A---- C:\windows\system32\drivers\scsiport.sys
2011-07-14 19:18:39 ----A---- C:\windows\system32\wpccpl.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\wiadefui.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\themecpl.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\sppcomapi.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\shsetup.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\SensorsCpl.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\rasppp.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\msconfig.exe
2011-07-14 19:18:39 ----A---- C:\windows\system32\FWPUCLNT.DLL
2011-07-14 19:18:39 ----A---- C:\windows\system32\FirewallControlPanel.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\dnscmmc.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\cabview.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\biocpl.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\tapisrv.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\scecli.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\PhotoScreensaver.scr
2011-07-14 19:18:38 ----A---- C:\windows\system32\mscories.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\mscms.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\localsec.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\hgcpl.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\fontext.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\drivers\rdyboost.sys
2011-07-14 19:18:38 ----A---- C:\windows\system32\drivers\ksecdd.sys
2011-07-14 19:18:37 ----A---- C:\windows\system32\wlanui.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\wkssvc.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\VAN.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\usercpl.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\srcore.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\SndVolSSO.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\qedit.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\prntvpt.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\PerfCenterCPL.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\netcenter.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\mprddm.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\mblctr.exe
2011-07-14 19:18:37 ----A---- C:\windows\system32\KMSVC.DLL
2011-07-14 19:18:37 ----A---- C:\windows\system32\iasacct.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\bcdsrv.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\batmeter.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\wpdbusenum.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\wksprt.exe
2011-07-14 19:18:36 ----A---- C:\windows\system32\w32tm.exe
2011-07-14 19:18:36 ----A---- C:\windows\system32\spwizeng.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\SndVol.exe
2011-07-14 19:18:36 ----A---- C:\windows\system32\qdvd.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\azroleui.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\accessibilitycpl.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\zipfldr.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\networkmap.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\netjoin.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\MSAC3ENC.DLL
2011-07-14 19:18:35 ----A---- C:\windows\system32\fdeploy.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\drivers\ks.sys
2011-07-14 19:18:35 ----A---- C:\windows\system32\cryptui.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\adsldp.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\wusa.exe
2011-07-14 19:18:34 ----A---- C:\windows\system32\sud.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\prnfldr.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\OnLineIDCpl.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\mspbda.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\MCEWMDRMNDBootstrap.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\Faultrep.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\ActionCenter.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\taskhost.exe
2011-07-14 19:18:33 ----A---- C:\windows\system32\taskbarcpl.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\slui.exe
2011-07-14 19:18:33 ----A---- C:\windows\system32\rdpcorekmts.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\photowiz.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\msieftp.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\MediaMetadataHandler.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\iprtrmgr.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\iasrad.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\halacpi.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\ftp.exe
2011-07-14 19:18:33 ----A---- C:\windows\system32\drivers\hidclass.sys
2011-07-14 19:18:33 ----A---- C:\windows\system32\dot3cfg.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\defaultlocationcpl.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\credssp.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\wpd_ci.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\syncui.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\sisbkup.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\shwebsvc.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\sdcpl.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\recovery.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\odbcjt32.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\ifsutil.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\ieUnatt.exe
2011-07-14 19:18:32 ----A---- C:\windows\system32\iesysprep.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\efscore.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\autoplay.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\ActionCenterCPL.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\wmpmde.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\vdsutil.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\systemcpl.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\sppnp.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\rtutils.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\rdpwsx.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\OobeFldr.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\ntlanman.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\dskquoui.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\DeviceCenter.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\bcdedit.exe
2011-07-14 19:18:30 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\sethc.exe
2011-07-14 19:18:30 ----A---- C:\windows\system32\rstrui.exe
2011-07-14 19:18:30 ----A---- C:\windows\system32\riched20.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\recdisc.exe
2011-07-14 19:18:30 ----A---- C:\windows\system32\ntprint.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\nshwfp.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\drivers\tdx.sys
2011-07-14 19:18:30 ----A---- C:\windows\system32\blackbox.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\bcdboot.exe
2011-07-14 19:18:29 ----A---- C:\windows\system32\wsqmcons.exe
2011-07-14 19:18:29 ----A---- C:\windows\system32\wmpsrcwp.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\nshipsec.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\nlaapi.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\netplwiz.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\NAPHLPR.DLL
2011-07-14 19:18:29 ----A---- C:\windows\system32\migisol.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\isoburn.exe
2011-07-14 19:18:29 ----A---- C:\windows\system32\httpapi.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\fms.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2011-07-14 19:18:29 ----A---- C:\windows\system32\dot3svc.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\cdosys.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\AxInstSv.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\AuxiliaryDisplayServices.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\asycfilt.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\activeds.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wvc.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wuwebv.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wtsapi32.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wlanmsm.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wimgapi.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wavemsp.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\tzutil.exe
2011-07-14 19:18:28 ----A---- C:\windows\system32\sysclass.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\ReAgent.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\provsvc.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\ocsetup.exe
2011-07-14 19:18:28 ----A---- C:\windows\system32\msftedit.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\dsuiext.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\drivers\ndproxy.sys
2011-07-14 19:18:28 ----A---- C:\windows\system32\dot3ui.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\dfrgui.exe
2011-07-14 19:18:28 ----A---- C:\windows\system32\appinfo.dll
2011-07-14 19:18:27 ----A---- C:\windows\twain_32.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\webcheck.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\twext.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\shdocvw.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\setupugc.exe
2011-07-14 19:18:27 ----A---- C:\windows\system32\qcap.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\qasf.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\occache.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\mstask.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\msfeedsbs.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\certprop.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\wwanconn.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\uxlib.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\ssText3d.scr
2011-07-14 19:18:26 ----A---- C:\windows\system32\srrstr.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\slwga.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\msvfw32.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\msrating.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\mciavi32.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\imm32.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\imgutil.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\audiodev.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\WPDShServiceObj.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\wmdrmsdk.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\wimserv.exe
2011-07-14 19:18:25 ----A---- C:\windows\system32\TSpkg.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\remotepg.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\rdpencom.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\raschap.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\QUTIL.DLL
2011-07-14 19:18:25 ----A---- C:\windows\system32\perfmon.exe
2011-07-14 19:18:25 ----A---- C:\windows\system32\nslookup.exe
2011-07-14 19:18:25 ----A---- C:\windows\system32\msscp.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\input.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\drmmgrtn.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\diskraid.exe
2011-07-14 19:18:25 ----A---- C:\windows\system32\DevicePairingFolder.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\clusapi.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\acppage.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\wmpdxm.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\WindowsAnytimeUpgradeResults.exe
2011-07-14 19:18:24 ----A---- C:\windows\system32\vpnikeapi.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\UserAccountControlSettings.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\sdrsvc.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\onexui.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\olepro32.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\odbccp32.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\ocsetapi.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\nltest.exe
2011-07-14 19:18:24 ----A---- C:\windows\system32\networkexplorer.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\NAPCRYPT.DLL
2011-07-14 19:18:24 ----A---- C:\windows\system32\browser.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\wpdwcn.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\vdsbas.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\sspisrv.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\runonce.exe
2011-07-14 19:18:23 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2011-07-14 19:18:23 ----A---- C:\windows\system32\msvidc32.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\msiexec.exe
2011-07-14 19:18:23 ----A---- C:\windows\system32\MFPlay.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\Mcx2Svc.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\logagent.exe
2011-07-14 19:18:23 ----A---- C:\windows\system32\iTVData.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\inseng.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\eapp3hst.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\dxdiagn.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\drivers\rmcast.sys
2011-07-14 19:18:23 ----A---- C:\windows\bfsvc.exe
2011-07-14 19:18:22 ----A---- C:\windows\system32\wudriver.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\wmpshell.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\wmdrmdev.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\unimdmat.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\tabcal.exe
2011-07-14 19:18:22 ----A---- C:\windows\system32\sqlcese30.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\shacct.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\rdpd3d.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\PnPUnattend.exe
2011-07-14 19:18:22 ----A---- C:\windows\system32\lsmproxy.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\iscsium.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\d3d10level9.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\Bubbles.scr
2011-07-14 19:18:22 ----A---- C:\windows\system32\bitsadmin.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\wwanprotdim.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\WUDFPlatform.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\WPDSp.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\WMPhoto.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\tsgqec.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\srvcli.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\Ribbons.scr
2011-07-14 19:18:21 ----A---- C:\windows\system32\QSVRMGMT.DLL
2011-07-14 19:18:21 ----A---- C:\windows\system32\PortableDeviceSyncProvider.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\PortableDeviceStatus.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\pdh.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\OpcServices.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\olethk32.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\odbctrac.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\ncryptui.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\Mystify.scr
2011-07-14 19:18:21 ----A---- C:\windows\system32\mprapi.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\MdSched.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\mapistub.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\mapi32.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\lpremove.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\logman.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\djoin.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\cscapi.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\ActionQueue.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\WMVSDECD.DLL
2011-07-14 19:18:20 ----A---- C:\windows\system32\wmdrmnet.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\WMADMOD.DLL
2011-07-14 19:18:20 ----A---- C:\windows\system32\WindowsAnytimeUpgrade.exe
2011-07-14 19:18:20 ----A---- C:\windows\system32\wiavideo.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\utildll.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-07-14 19:18:20 ----A---- C:\windows\system32\takeown.exe
2011-07-14 19:18:20 ----A---- C:\windows\system32\sqmapi.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\qdv.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\mshtmled.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\iyuv_32.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\imagehlp.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\fphc.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\EhStorAPI.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\dot3msm.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\avifil32.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\WUDFx.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\WUDFHost.exe
2011-07-14 19:18:19 ----A---- C:\windows\system32\wsnmp32.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\WMSPDMOD.DLL
2011-07-14 19:18:19 ----A---- C:\windows\system32\vfwwdm32.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\unattend.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\umb.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\sppinst.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\setupcln.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\RelPost.exe
2011-07-14 19:18:19 ----A---- C:\windows\system32\QCLIPROV.DLL
2011-07-14 19:18:19 ----A---- C:\windows\system32\pdhui.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\MuiUnattend.exe
2011-07-14 19:18:19 ----A---- C:\windows\system32\msyuv.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\msrle32.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\msnetobj.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\cmstp.exe
2011-07-14 19:18:19 ----A---- C:\windows\system32\cca.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\basesrv.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\AzSqlExt.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\wuauclt.exe
2011-07-14 19:18:18 ----A---- C:\windows\system32\wkscli.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\WavDest.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\tsbyuv.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\sppuinotify.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\spbcd.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\relog.exe
2011-07-14 19:18:18 ----A---- C:\windows\system32\PrintIsolationProxy.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\netiougc.exe
2011-07-14 19:18:18 ----A---- C:\windows\system32\msorcl32.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\iscsicli.exe
2011-07-14 19:18:18 ----A---- C:\windows\system32\iasrecst.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2011-07-14 19:18:18 ----A---- C:\windows\system32\drivers\ndisuio.sys
2011-07-14 19:18:17 ----A---- C:\windows\system32\wuapp.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\wmpps.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\WerFaultSecure.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\syssetup.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\setbcdlocale.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\secur32.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\secproc_ssp.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\resutils.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\rastapi.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\nrpsrv.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\netbtugc.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\mydocs.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\MultiDigiMon.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\itircl.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\FXSTIFF.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\diskpart.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\CertPolEng.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\amstream.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\wiarpc.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\tlscsp.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\RMActivate_ssp.exe
2011-07-14 19:18:16 ----A---- C:\windows\system32\ReAgentc.exe
2011-07-14 19:18:16 ----A---- C:\windows\system32\netutils.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\netapi32.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\muifontsetup.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\mobsync.exe
2011-07-14 19:18:16 ----A---- C:\windows\system32\mciqtz32.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\findstr.exe
2011-07-14 19:18:16 ----A---- C:\windows\system32\eappgnui.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\cabinet.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\wdiasqmmodule.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\unlodctr.exe
2011-07-14 19:18:15 ----A---- C:\windows\system32\sppc.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\spopk.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\shimgvw.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\repair-bde.exe
2011-07-14 19:18:15 ----A---- C:\windows\system32\rdprefdrvapi.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\netcfg.exe
2011-07-14 19:18:15 ----A---- C:\windows\system32\msdmo.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\manage-bde.exe
2011-07-14 19:18:15 ----A---- C:\windows\system32\luainstall.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\inetmib1.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\iccvid.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\HotStartUserAgent.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\drivers\usbrpm.sys
2011-07-14 19:18:15 ----A---- C:\windows\system32\drivers\tdi.sys
2011-07-14 19:18:15 ----A---- C:\windows\system32\drivers\CompositeBus.sys
2011-07-14 19:18:15 ----A---- C:\windows\system32\dosx.exe
2011-07-14 19:18:14 ----A---- C:\windows\system32\wups.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\UIRibbonRes.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\profprov.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\odbcconf.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\drivers\cdrom.sys
2011-07-14 19:18:14 ----A---- C:\windows\system32\browcli.dll

2011-07-14 19:18:13 ----A---- C:\windows\system32\perfts.dll
2011-07-14 19:18:13 ----A---- C:\windows\system32\msfeedssync.exe
2011-07-14 19:18:13 ----A---- C:\windows\system32\icaapi.dll
2011-07-14 19:18:13 ----A---- C:\windows\system32\FXSMON.dll
2011-07-14 19:18:13 ----A---- C:\windows\system32\elsTrans.dll
2011-07-14 19:18:13 ----A---- C:\windows\system32\drivers\tunnel.sys
2011-07-14 19:18:13 ----A---- C:\windows\system32\drivers\dfsc.sys
2011-07-14 19:18:12 ----A---- C:\windows\system32\wshbth.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\TRAPI.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\schedcli.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\RDPENCDD.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\napdsnap.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\LogonUI.exe
2011-07-14 19:18:12 ----A---- C:\windows\system32\dsauth.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\cscdll.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\bitsperf.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\wups2.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\wsdchngr.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\sscore.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\shgina.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\riched32.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\drivers\ndiswan.sys
2011-07-14 19:18:09 ----A---- C:\windows\system32\drivers\acpipmi.sys
2011-07-14 19:18:08 ----A---- C:\windows\system32\wshirda.dll
2011-07-14 19:18:08 ----A---- C:\windows\system32\rdpcfgex.dll
2011-07-14 19:18:08 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2011-07-14 19:18:08 ----A---- C:\windows\system32\drivers\hidusb.sys
2011-07-14 19:18:08 ----A---- C:\windows\system32\drivers\appid.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\spwmp.dll
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\USBCAMD2.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\USBCAMD.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\tdtcp.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\kbdhid.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\IPMIDrv.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\browseui.dll
2011-07-14 19:18:06 ----A---- C:\windows\system32\shunimpl.dll
2011-07-14 19:18:06 ----A---- C:\windows\system32\RDPREFDD.dll
2011-07-14 19:18:06 ----A---- C:\windows\system32\dxmasf.dll
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\wanarp.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\umbus.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\tdpipe.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\sffp_sd.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\scfilter.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\RDPCDD.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\HdAudio.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\hdaudbus.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\C_ISCII.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\wmploc.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDUS.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDUGHR1.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDTURME.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDTAJIK.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDSF.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDNEPR.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDMON.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDMAORI.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDLT1.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDINTEL.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDINORI.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDINKAN.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDGEO.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDBULG.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDBLR.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDBASH.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\tzres.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\spwizres.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\pifmgr.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\nlsbres.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDTUQ.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDTUF.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDSG.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDPO.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\kbdlk41a.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDINTAM.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDINMAR.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDINHIN.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDINBEN.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDGR1.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDGKL.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDCZ1.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\dpnaddr.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\BlbEvents.dll
2011-07-14 19:17:15 ----A---- C:\windows\system32\wmicmiplugin.dll
2011-07-14 19:17:15 ----A---- C:\windows\system32\wbemcomn.dll
2011-07-14 19:17:02 ----A---- C:\windows\system32\SmiEngine.dll
2011-07-14 19:16:59 ----A---- C:\windows\system32\wdscore.dll
2011-07-14 19:16:59 ----A---- C:\windows\system32\PkgMgr.exe
2011-07-14 19:16:40 ----A---- C:\windows\system32\drvstore.dll
2011-07-14 19:16:40 ----A---- C:\windows\system32\dpx.dll
2011-06-29 17:10:14 ----A---- C:\windows\system32\umpnpmgr.dll
2011-06-29 17:10:14 ----A---- C:\windows\system32\cfgmgr32.dll
2011-06-29 17:10:12 ----A---- C:\windows\system32\tquery.dll
2011-06-29 17:10:12 ----A---- C:\windows\system32\mssrch.dll
2011-06-29 17:10:11 ----A---- C:\windows\system32\SearchProtocolHost.exe
2011-06-29 17:10:11 ----A---- C:\windows\system32\SearchIndexer.exe
2011-06-29 17:10:11 ----A---- C:\windows\system32\SearchFilterHost.exe
2011-06-29 17:10:11 ----A---- C:\windows\system32\mssvp.dll
2011-06-29 17:10:11 ----A---- C:\windows\system32\mssphtb.dll
2011-06-29 17:10:11 ----A---- C:\windows\system32\mssph.dll
2011-06-29 17:10:11 ----A---- C:\windows\system32\msscntrs.dll

======List of files/folders modified in the last 1 month======

2011-07-24 19:12:00 ----RD---- C:\Program Files
2011-07-24 19:04:38 ----D---- C:\Windows
2011-07-24 19:00:20 ----SHD---- C:\System Volume Information
2011-07-24 18:56:40 ----D---- C:\windows\system32\config
2011-07-24 18:52:39 ----D---- C:\windows\System32
2011-07-24 18:52:38 ----D---- C:\windows\inf
2011-07-24 18:52:38 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-07-24 18:49:38 ----D---- C:\windows\tracing
2011-07-24 18:48:35 ----D---- C:\windows\Temp
2011-07-24 18:47:20 ----D---- C:\Users\Daniel\AppData\Roaming\Skype
2011-07-24 18:46:51 ----D---- C:\Program Files\Steam
2011-07-24 18:46:45 ----HD---- C:\ProgramData
2011-07-24 18:46:45 ----A---- C:\ProgramData\HPWALog.txt
2011-07-24 18:34:47 ----D---- C:\windows\system32\drivers\etc
2011-07-24 18:34:34 ----D---- C:\windows\Prefetch
2011-07-24 18:14:43 ----D---- C:\Program Files\Common Files
2011-07-21 15:03:07 ----D---- C:\windows\Tasks
2011-07-21 15:03:07 ----D---- C:\windows\system32\Tasks
2011-07-20 23:24:59 ----SHD---- C:\windows\Installer
2011-07-20 23:24:04 ----D---- C:\windows\winsxs
2011-07-20 19:16:28 ----D---- C:\windows\system32\catroot2
2011-07-17 17:54:49 ----D---- C:\windows\Microsoft.NET
2011-07-17 17:54:19 ----RSD---- C:\windows\assembly
2011-07-17 11:25:47 ----D---- C:\windows\rescache
2011-07-17 10:24:01 ----D---- C:\windows\system32\catroot
2011-07-16 21:07:30 ----D---- C:\Users\Daniel\AppData\Roaming\Audacity
2011-07-16 20:45:06 ----D---- C:\windows\system32\NDF
2011-07-16 10:58:29 ----D---- C:\windows\system32\DriverStore
2011-07-16 10:54:42 ----D---- C:\Program Files\Windows Mail
2011-07-16 10:54:40 ----D---- C:\Program Files\Windows Sidebar
2011-07-16 10:54:40 ----D---- C:\Program Files\Internet Explorer
2011-07-16 10:54:40 ----D---- C:\Program Files\DVD Maker
2011-07-16 10:54:39 ----D---- C:\Program Files\Windows Portable Devices
2011-07-16 10:54:39 ----D---- C:\Program Files\Windows Photo Viewer
2011-07-16 10:54:39 ----D---- C:\Program Files\Windows Media Player
2011-07-16 10:54:39 ----D---- C:\Program Files\Windows Journal
2011-07-16 10:54:37 ----D---- C:\windows\servicing
2011-07-16 10:54:37 ----D---- C:\windows\ehome
2011-07-16 10:54:37 ----D---- C:\Program Files\Windows Defender
2011-07-16 10:54:34 ----D---- C:\windows\system32\oobe
2011-07-16 10:54:34 ----D---- C:\windows\system32\en-US
2011-07-16 10:54:34 ----D---- C:\windows\system32\da-DK
2011-07-16 10:54:34 ----D---- C:\windows\PolicyDefinitions
2011-07-16 10:54:33 ----D---- C:\windows\system32\sysprep
2011-07-16 10:54:33 ----D---- C:\windows\system32\Setup
2011-07-16 10:54:33 ----D---- C:\windows\system32\migration
2011-07-16 10:54:33 ----D---- C:\windows\system32\cs-CZ
2011-07-16 10:54:33 ----D---- C:\windows\system32\cs
2011-07-16 10:54:33 ----D---- C:\windows\system32\AdvancedInstallers
2011-07-16 10:54:32 ----D---- C:\windows\system32\sppui
2011-07-16 10:54:32 ----D---- C:\windows\system32\manifeststore
2011-07-16 10:54:32 ----D---- C:\windows\system32\es-ES
2011-07-16 10:54:32 ----D---- C:\windows\system32\drivers\cs-CZ
2011-07-16 10:54:32 ----D---- C:\windows\system32\drivers
2011-07-16 10:54:31 ----D---- C:\windows\system32\wbem
2011-07-16 10:54:29 ----D---- C:\windows\system32\migwiz
2011-07-16 10:54:29 ----D---- C:\windows\system32\Dism
2011-07-16 10:54:17 ----RSD---- C:\windows\Fonts
2011-07-16 10:54:16 ----D---- C:\windows\AppPatch
2011-07-16 10:54:09 ----D---- C:\windows\system32\Boot
2011-07-16 10:50:01 ----A---- C:\windows\system32\msclmd.dll
2011-07-16 10:41:16 ----D---- C:\Program Files\Microsoft Office
2011-07-16 10:34:27 ----D---- C:\Program Files\Common Files\Steam
2011-07-16 00:38:27 ----A---- C:\windows\system32\MRT.exe
2011-07-16 00:36:15 ----D---- C:\ProgramData\Microsoft Help
2011-07-15 10:50:33 ----HD---- C:\Program Files\InstallShield Installation Information
2011-06-26 10:22:04 ----RD---- C:\Program Files\Skype
2011-06-26 10:22:02 ----D---- C:\ProgramData\Skype
2011-06-26 10:21:03 ----D---- C:\Users\Daniel\AppData\Roaming\skypePM
2011-06-25 18:16:34 ----D---- C:\ProgramData\Skype Extras

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-01-08 331288]
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2010-02-08 385184]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys [2010-02-08 160912]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2009-07-09 45200]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 MPFP;MPFP; C:\windows\System32\Drivers\Mpfp.sys [2009-04-09 130424]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2010-01-25 6282240]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\windows\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys [2010-02-08 152736]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2010-01-13 257568]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\windows\system32\DRIVERS\rtl8192se.sys [2010-01-20 996896]
R3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2010-01-29 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-01-22 234800]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-07-14 1035776]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-07 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys [2010-01-07 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-07 18472]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 23424]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 102912]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 101120]
S3 mfeapfk;McAfee Inc. mfeapfk; C:\windows\system32\drivers\mfeapfk.sys [2010-02-08 95728]
S3 mfebopk;McAfee Inc. mfebopk; C:\windows\system32\drivers\mfebopk.sys [2010-02-08 51720]
S3 mferkdet;McAfee Inc. mferkdet; C:\windows\system32\drivers\mferkdet.sys [2010-02-08 83912]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\aestsrv.exe [2009-03-03 81920]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 595232]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-25 92216]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-28 265272]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2010-01-12 635416]
R2 PDFProFiltSrv;PDFProFiltSrv; C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 srvbtcclient;srvbtcclient; C:\windows\update.5.0\svchost.exe [2011-07-24 340992]
R2 srviecheck;srviecheck; C:\windows\update.2\svchost.exe [2011-07-24 495616]
R2 srvsysdriver32;srvsysdriver32; C:\windows\sysdriver32.exe [2011-07-24 247296]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe [2010-01-29 229458]
R2 TeamViewer6;TeamViewer 6; C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R2 wxpdrivers;wxpdrivers; C:\windows\update.1\svchost.exe [2011-07-24 1174016]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2011-01-25 791608]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 McAfee SiteAdvisor Enterprise Service;McAfee SiteAdvisor Enterprise Service; C:\Program Files\McAfee\SiteAdvisor Enterprise\McSACore.exe []
S2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe []
S2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe []
S2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe []
S2 myAgtSvc;McAfee Virus and Spyware Protection Service; C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe /ServiceStart []
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-07-14 411432]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1343400]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------




DĚKUJI

Dobrý večer

Stahněte Rkill z jednoho z odkazů, pokud by ho vir blokoval, zkuste stahnout jiný

Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe

Rkill COM:
http://download.bleepingcomputer.com/grinler/rkill.com



Rkill PIF:
http://download.bleepingcomputer.com/grinler/rkill.pif

-spusťte ho a nechejte pracovat. Sám se ukončí.

- Ted nerestartujte počítač!



Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix
- přejmenujte combofix na potvůrka.com

motji píše:Dobrý večer

Stahněte Rkill z jednoho z odkazů, pokud by ho vir blokoval, zkuste stahnout jiný

Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe

Rkill COM:
http://download.bleepingcomputer.com/grinler/rkill.com



Rkill PIF:
http://download.bleepingcomputer.com/grinler/rkill.pif

-spusťte ho a nechejte pracovat. Sám se ukončí.

- Ted nerestartujte počítač!



Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix
- přejmenujte combofix na potvůrka.com

Dobrý večer ... Rkill jsem stáhl spustil a jelo to ... dále podle vašich pokynů jsem stáhl a spustil combofix ... bohužel jsem ale zapomněl na přejmenování ...

Vadí, že jsem zapoměl combofix přejmenovat na "potvurka.com"? Nebo jsem to měl přejmenovat až po použití combofixu ...

ZDE je můj LOG po použití combofixu:

ComboFix 11-07-24.01 - Daniel 24.07.2011 19:56:11.1.2 - x86
Spuštěný z: c:\users\Daniel\Desktop\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Thumbs.db
c:\users\Daniel\cookies.JPG
c:\users\Daniel\Kostky.exe
c:\windows\btc_client_iplist.txt
c:\windows\ddh_iplist.txt
c:\windows\front_ip_list.txt
c:\windows\iecheck_iplist.txt
c:\windows\info1
c:\windows\iplist.txt
c:\windows\l1rezerv.exe
c:\windows\loader2.exe_ok
c:\windows\phoenix.rar
c:\windows\proc_list1.log
c:\windows\rpcminer.rar
c:\windows\services32.exe
c:\windows\sysdriver32.exe
c:\windows\sysdriver32_.exe
c:\windows\system32\drivers\etc\HSTS~1
c:\windows\systemup.exe
c:\windows\Temp\2950809.exe
c:\windows\Temp\48514721-loader2.exe
c:\windows\Temp\8357422.exe
c:\windows\ufa.rar
c:\windows\update.1
c:\windows\update.1\svchost.exe
c:\windows\update.2
c:\windows\update.2\svchost.exe
c:\windows\update.5.0
c:\windows\update.5.0\svchost.exe
c:\windows\update.tray-9-0\svchost.exe
c:\windows\winlog-dirs.txt
c:\windows\winlog-ids.txt
c:\windows\winsetupapi.log
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_srviecheck
-------\Service_srvsysdriver32
-------\Service_wxpdrivers
-------\Service_srvbtcclient
-------\Service_srvbtcclient
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-06-24 do 2011-07-24 )))))))))))))))))))))))))))))))
.
.
2011-07-24 18:04 . 2011-07-24 18:10 -------- d-----w- c:\users\Daniel\AppData\Local\temp
2011-07-24 18:04 . 2011-07-24 18:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-07-24 17:54 . 2011-07-24 17:54 -------- d-----w- C:\32788R22FWJFW
2011-07-24 17:12 . 2011-07-24 17:12 -------- d-----w- C:\rsit
2011-07-24 17:12 . 2011-07-24 17:12 -------- d-----w- c:\program files\trend micro
2011-07-24 17:04 . 2011-07-24 17:04 -------- d-----w- c:\windows\ufa
2011-07-24 17:04 . 2011-07-24 17:04 -------- d-----w- c:\windows\rpcminer
2011-07-24 17:04 . 2011-07-24 17:04 -------- d-----w- c:\windows\phoenix
2011-07-24 16:35 . 2011-07-24 17:04 246272 ----a-w- c:\windows\unrar.exe
2011-07-24 16:31 . 2011-07-24 16:31 -------- d-----w- c:\windows\av_ico
2011-07-24 16:14 . 2011-07-24 18:04 -------- d--h--w- c:\windows\update.tray-9-0
2011-07-24 16:14 . 2011-07-24 16:14 -------- d--h--w- c:\windows\update.tray-9-0-lnk
2011-07-21 15:20 . 2011-07-21 15:20 -------- d-----w- c:\program files\YouTube Downloader
2011-07-20 21:29 . 2011-07-24 18:09 -------- d-----w- c:\users\Daniel\AppData\Local\PMB Files
2011-07-20 21:29 . 2011-07-20 21:29 -------- d-----w- c:\programdata\PMB Files
2011-07-20 21:29 . 2011-07-20 21:29 -------- d-----w- c:\program files\Pando Networks
2011-07-20 21:25 . 2011-07-20 21:25 -------- d--h--w- c:\windows\msdownld.tmp
2011-07-20 21:24 . 2011-07-20 21:24 -------- d-----w- c:\program files\AGEIA Technologies
2011-07-20 21:24 . 2011-07-20 21:24 -------- d-----w- c:\windows\system32\AGEIA
2011-07-20 21:24 . 2011-07-20 21:24 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2011-07-16 18:45 . 2011-07-16 18:45 -------- d-----w- c:\users\Daniel\AppData\Local\Diagnostics
2011-07-16 08:42 . 2011-07-16 08:42 -------- d-----w- c:\windows\system32\SPReview
2011-07-16 08:41 . 2011-07-16 08:41 -------- d-----w- c:\windows\system32\EventProviders
2011-07-14 17:19 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\system32\dfshim.dll
2011-07-14 17:18 . 2010-11-20 12:30 116096 ----a-w- c:\windows\system32\drivers\msdsm.sys
2011-07-14 17:17 . 2010-11-20 12:21 351232 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-07-14 17:17 . 2010-11-20 12:21 780288 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2011-07-14 17:17 . 2010-11-20 12:21 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2011-07-14 17:17 . 2010-11-20 12:19 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2011-07-14 17:17 . 2010-11-20 12:21 697344 ----a-w- c:\windows\system32\SmiEngine.dll
2011-07-14 17:16 . 2010-11-20 12:21 189952 ----a-w- c:\windows\system32\wdscore.dll
2011-07-14 17:16 . 2010-11-20 12:17 209920 ----a-w- c:\windows\system32\PkgMgr.exe
2011-07-14 17:16 . 2010-11-20 12:18 323072 ----a-w- c:\windows\system32\drvstore.dll
2011-07-14 17:16 . 2010-11-20 12:18 257024 ----a-w- c:\windows\system32\dpx.dll
2011-06-29 15:10 . 2011-05-24 10:44 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-06-29 15:10 . 2010-11-20 12:18 145920 ----a-w- c:\windows\system32\cfgmgr32.dll
2011-06-29 15:10 . 2011-05-04 04:34 1549312 ----a-w- c:\windows\system32\tquery.dll
2011-06-29 15:10 . 2011-05-04 04:32 1401344 ----a-w- c:\windows\system32\mssrch.dll
2011-06-29 15:10 . 2011-05-04 04:32 666624 ----a-w- c:\windows\system32\mssvp.dll
2011-06-29 15:10 . 2011-05-04 04:32 337408 ----a-w- c:\windows\system32\mssph.dll
2011-06-29 15:10 . 2011-05-04 04:32 197120 ----a-w- c:\windows\system32\mssphtb.dll
2011-06-29 15:10 . 2011-05-04 04:32 59392 ----a-w- c:\windows\system32\msscntrs.dll
2011-06-29 15:10 . 2011-05-04 04:28 86528 ----a-w- c:\windows\system32\SearchFilterHost.exe
2011-06-29 15:10 . 2011-05-04 04:28 427520 ----a-w- c:\windows\system32\SearchIndexer.exe
2011-06-29 15:10 . 2011-05-04 04:28 164352 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2011-06-29 05:13 . 2011-06-29 05:13 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-16 08:50 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-05-28 02:53 . 2011-06-16 17:36 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-05-03 04:30 . 2011-06-16 17:36 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 02:46 . 2011-06-16 17:36 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-04-29 02:46 . 2011-06-16 17:36 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-04-29 02:46 . 2011-06-16 17:36 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-04-27 02:17 . 2011-06-16 17:36 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-04-27 02:17 . 2011-06-16 17:36 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-04-27 02:17 . 2011-06-16 17:36 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1515576]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
"Steam"="c:\program files\Steam\steam.exe" [2011-02-21 1242448]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-06-15 15141768]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2011-07-20 3077528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-01-28 256056]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2010-01-08 186904]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2010-01-12 563736]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-01-22 1684776]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-09-01 499768]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-03-12 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-03-12 175640]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-03-12 166936]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2010-01-29 495708]
"PDFHook"="c:\program files\Nuance\PDF Professional 6\pdfpro6hook.exe" [2009-11-13 1277952]
"PDF6 Registry Controller"="c:\program files\Nuance\PDF Professional 6\RegistryController.exe" [2009-11-03 110880]
"Nuance PDF Reader-reminder"="c:\program files\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]
"NortonOnlineBackupReminder"="c:\program files\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" [2009-12-03 3331944]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-01-07 253672]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableSecureUIAPaths"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001
"DisableThumbnailCache"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 McAfee SiteAdvisor Enterprise Service;McAfee SiteAdvisor Enterprise Service;c:\program files\McAfee\SiteAdvisor Enterprise\McSACore.exe [x]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [x]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\program files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
R3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 23424]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 101120]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-02-08 83912]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1343400]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-02-08 160912]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\aestsrv.exe [2009-03-03 81920]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-25 92216]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-28 265272]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2010-01-12 635416]
S2 PDFProFiltSrv;PDFProFiltSrv;c:\program files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys [2010-01-20 996896]
S3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2010-01-30 05:45 73344]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 18:06 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2011-07-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4270715904-2616785641-2204161757-1001Core.job
- c:\users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-24 17:42]
.
2011-07-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4270715904-2616785641-2204161757-1001UA.job
- c:\users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-24 17:42]
.
2011-07-22 c:\windows\Tasks\HPCeeScheduleForDaniel.job
- c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.bing.com
mStart Page = hxxp://www.bing.com
IE: Append the content of the link to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Append the content of the selected links to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
IE: Append to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Create PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF file from the content of the link - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF files from the selected links - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Open with Nuance PDF Converter 6.0 - c:\program files\Nuance\PDF Professional 6\cnvres_eng.dll /100
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
Trusted Zone: siteadvisor.com\www
TCP: DhcpNameServer = 192.168.88.1 10.100.160.7 10.100.160.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-ISUSPM - c:\programdata\FLEXnet\Connect\11\ISUSPM.exe
HKLM-Run-McAfee Managed Services Tray - c:\program files\McAfee\Managed VirusScan\DesktopUI\XTray.Exe
HKLM-Run-wxpdrv - c:\windows\services32.exe
HKLM-Run-tray_ico - (no file)
HKLM-Run-tray_ico0 - c:\windows\update.tray-9-0\svchost.exe
HKLM-Run-tray_ico1 - (no file)
HKLM-Run-tray_ico2 - (no file)
HKLM-Run-tray_ico3 - (no file)
HKLM-Run-tray_ico4 - (no file)
HKLM-Run-sysdriver32.exe - c:\windows\sysdriver32.exe
HKLM-Run-sysdriver32_.exe - c:\windows\sysdriver32_.exe
HKLM-Run-l1rezerv.exe - c:\windows\l1rezerv.exe
HKLM-Run-systemup - c:\windows\systemup.exe
AddRemove-McAfee Managed Firewall - c:\program files\McAfee\Managed VirusScan\Agent\myinx
AddRemove-McAfee Personal Firewall Plus API - c:\program files\Common Files\McAfee\Installer\mcinst.exe
AddRemove-McAfeeBrowserProtection - c:\program files\McAfee\Managed VirusScan\Agent\myInx.exe
AddRemove-MISCSOFTWARE.COM Product Key Viewer Demo_is1 - c:\program files\Miscsoftware.com\Product Key Viewer\unins000.exe
AddRemove-MVS - c:\program files\McAfee\Managed VirusScan\Agent\myinx
AddRemove-Native Instruments Sibelius Player - c:\progra~1\NATIVE~1\SIBELI~1\UNWISE.EXE
AddRemove-Warcraft III - c:\windows\War3Unin.exe
AddRemove-{E92D47A1-D27D-430A-8368-0BAFD956507D} - c:\program files\InstallShield Installation Information\{E92D47A1-D27D-430A-8368-0BAFD956507D}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(4512)
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\servicing\TrustedInstaller.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe
c:\program files\Hewlett-Packard\Shared\hpqToaster.exe
c:\program files\Hewlett-Packard\Shared\hpCaslNotification.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
c:\windows\system32\DllHost.exe
.
**************************************************************************
.
Celkový čas: 2011-07-24 20:13:28 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-07-24 18:13
.
Před spuštěním: Volných bajtů: 411 899 637 760
Po spuštění: Volných bajtů: 412 304 089 088
.
- - End Of File - - 047B84E3B80B6AEF2FB16214FF9A2F7F


DanyCZ

Ne nevadí, combofix si s tou havětí poradil i tak.

Tohle znáte?
TCP: DhcpNameServer = 192.168.88.1 10.100.160.7 10.100.160.1

Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka
-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:




-po aplikaci na Vás vypadne další log,vložte ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci

Dobré odpoledne

Vše bylo uděláno podle Vašich pokynů ... a LOG
zveřejňuji ZDE:

ComboFix 11-07-25.02 - Daniel 25.07.2011 13:33:28.2.2 - x86
Spuštěný z: c:\users\Daniel\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Daniel\Desktop\CFScript.txt
.
FILE ::
"c:\windows\system32\FlashPlayerCPLApp.cpl"
"c:\windows\unrar.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\av_ico
c:\windows\av_ico\ico_mcafee_start.ico
c:\windows\ddh_iplist.txt
c:\windows\front_ip_list.txt
c:\windows\iecheck_iplist.txt
c:\windows\info1
c:\windows\iplist.txt
c:\windows\l1rezerv.exe
c:\windows\loader2.exe_ok
c:\windows\phoenix
c:\windows\phoenix\kernels\phatk\__init__.py
c:\windows\phoenix\kernels\phatk\__init__.pyc
c:\windows\phoenix\kernels\phatk\BFIPatcher.py
c:\windows\phoenix\kernels\phatk\kernel.cl
c:\windows\phoenix\kernels\poclbm\__init__.py
c:\windows\phoenix\kernels\poclbm\__init__.pyc
c:\windows\phoenix\kernels\poclbm\BFIPatcher.py
c:\windows\phoenix\kernels\poclbm\kernel.cl
c:\windows\phoenix\phoenix.exe
c:\windows\proc_list1.log
c:\windows\rpcminer
c:\windows\rpcminer\bitcoinminercuda_10.cubin
c:\windows\rpcminer\bitcoinminercuda_11.cubin
c:\windows\rpcminer\bitcoinminercuda_20.cubin
c:\windows\rpcminer\bitcoinmineropencl.cl
c:\windows\rpcminer\cudart32_32_16.dll
c:\windows\rpcminer\curllib.dll
c:\windows\rpcminer\libeay32.dll
c:\windows\rpcminer\libsasl.dll
c:\windows\rpcminer\openldap.dll
c:\windows\rpcminer\rpcminer-4way.exe
c:\windows\rpcminer\rpcminer-cpu.exe
c:\windows\rpcminer\rpcminer-cuda.exe
c:\windows\rpcminer\rpcminer-opencl.exe
c:\windows\rpcminer\ssleay32.dll
c:\windows\sysdriver32.exe
c:\windows\sysdriver32_.exe
c:\windows\system32\drivers\etc\HSTS~1
c:\windows\system32\FlashPlayerCPLApp.cpl
c:\windows\systemup.exe
c:\windows\TEMP\8767564.exe
c:\windows\ufa
c:\windows\ufa\ufa.exe
c:\windows\unrar.exe
c:\windows\update.2
c:\windows\update.2\svchost.exe
c:\windows\update.5.0
c:\windows\update.tray-9-0-lnk
c:\windows\update.tray-9-0-lnk\svchost.exe
c:\windows\update.tray-9-0
c:\windows\winsetupapi.log
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_srviecheck
-------\Service_srvsysdriver32
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-06-25 do 2011-07-25 )))))))))))))))))))))))))))))))
.
.
2011-07-25 11:41 . 2011-07-25 11:44 -------- d-----w- c:\users\Daniel\AppData\Local\temp
2011-07-24 17:12 . 2011-07-24 17:12 -------- d-----w- C:\rsit
2011-07-24 17:12 . 2011-07-24 17:12 -------- d-----w- c:\program files\trend micro
2011-07-21 15:20 . 2011-07-21 15:20 -------- d-----w- c:\program files\YouTube Downloader
2011-07-20 21:29 . 2011-07-25 11:44 -------- d-----w- c:\users\Daniel\AppData\Local\PMB Files
2011-07-20 21:29 . 2011-07-20 21:29 -------- d-----w- c:\programdata\PMB Files
2011-07-20 21:29 . 2011-07-20 21:29 -------- d-----w- c:\program files\Pando Networks
2011-07-20 21:25 . 2011-07-20 21:25 -------- d--h--w- c:\windows\msdownld.tmp
2011-07-20 21:24 . 2011-07-20 21:24 -------- d-----w- c:\program files\AGEIA Technologies
2011-07-20 21:24 . 2011-07-20 21:24 -------- d-----w- c:\windows\system32\AGEIA
2011-07-20 21:24 . 2011-07-20 21:24 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2011-07-16 18:45 . 2011-07-16 18:45 -------- d-----w- c:\users\Daniel\AppData\Local\Diagnostics
2011-07-16 08:42 . 2011-07-16 08:42 -------- d-----w- c:\windows\system32\SPReview
2011-07-16 08:41 . 2011-07-16 08:41 -------- d-----w- c:\windows\system32\EventProviders
2011-07-14 17:19 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\system32\dfshim.dll
2011-07-14 17:18 . 2010-11-20 12:30 116096 ----a-w- c:\windows\system32\drivers\msdsm.sys
2011-07-14 17:17 . 2010-11-20 12:21 351232 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-07-14 17:17 . 2010-11-20 12:21 780288 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2011-07-14 17:17 . 2010-11-20 12:21 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2011-07-14 17:17 . 2010-11-20 12:19 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2011-07-14 17:17 . 2010-11-20 12:21 697344 ----a-w- c:\windows\system32\SmiEngine.dll
2011-07-14 17:16 . 2010-11-20 12:21 189952 ----a-w- c:\windows\system32\wdscore.dll
2011-07-14 17:16 . 2010-11-20 12:17 209920 ----a-w- c:\windows\system32\PkgMgr.exe
2011-07-14 17:16 . 2010-11-20 12:18 323072 ----a-w- c:\windows\system32\drvstore.dll
2011-07-14 17:16 . 2010-11-20 12:18 257024 ----a-w- c:\windows\system32\dpx.dll
2011-06-29 15:10 . 2011-05-24 10:44 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-06-29 15:10 . 2010-11-20 12:18 145920 ----a-w- c:\windows\system32\cfgmgr32.dll
2011-06-29 15:10 . 2011-05-04 04:34 1549312 ----a-w- c:\windows\system32\tquery.dll
2011-06-29 15:10 . 2011-05-04 04:32 1401344 ----a-w- c:\windows\system32\mssrch.dll
2011-06-29 15:10 . 2011-05-04 04:32 666624 ----a-w- c:\windows\system32\mssvp.dll
2011-06-29 15:10 . 2011-05-04 04:32 337408 ----a-w- c:\windows\system32\mssph.dll
2011-06-29 15:10 . 2011-05-04 04:32 197120 ----a-w- c:\windows\system32\mssphtb.dll
2011-06-29 15:10 . 2011-05-04 04:32 59392 ----a-w- c:\windows\system32\msscntrs.dll
2011-06-29 15:10 . 2011-05-04 04:28 86528 ----a-w- c:\windows\system32\SearchFilterHost.exe
2011-06-29 15:10 . 2011-05-04 04:28 427520 ----a-w- c:\windows\system32\SearchIndexer.exe
2011-06-29 15:10 . 2011-05-04 04:28 164352 ----a-w- c:\windows\system32\SearchProtocolHost.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-16 08:50 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-05-28 02:53 . 2011-06-16 17:36 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-05-03 04:30 . 2011-06-16 17:36 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 02:46 . 2011-06-16 17:36 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-04-29 02:46 . 2011-06-16 17:36 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-04-29 02:46 . 2011-06-16 17:36 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-04-27 02:17 . 2011-06-16 17:36 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-04-27 02:17 . 2011-06-16 17:36 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-04-27 02:17 . 2011-06-16 17:36 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1515576]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
"Steam"="c:\program files\Steam\steam.exe" [2011-02-21 1242448]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-06-15 15141768]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2011-07-20 3077528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-01-28 256056]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2010-01-08 186904]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2010-01-12 563736]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-01-22 1684776]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-09-01 499768]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-03-12 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-03-12 175640]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-03-12 166936]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2010-01-29 495708]
"sysdriver32.exe"="c:\windows\sysdriver32.exe" [BU]
"sysdriver32_.exe"="c:\windows\sysdriver32_.exe" [BU]
"l1rezerv.exe"="c:\windows\l1rezerv.exe" [BU]
"systemup"="c:\windows\systemup.exe" [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableSecureUIAPaths"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 McAfee SiteAdvisor Enterprise Service;McAfee SiteAdvisor Enterprise Service;c:\program files\McAfee\SiteAdvisor Enterprise\McSACore.exe [x]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [x]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\program files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
R3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 23424]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 101120]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-02-08 83912]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1343400]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-02-08 160912]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\aestsrv.exe [2009-03-03 81920]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-25 92216]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-28 265272]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2010-01-12 635416]
S2 PDFProFiltSrv;PDFProFiltSrv;c:\program files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys [2010-01-20 996896]
S3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2010-01-30 05:45 73344]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 18:06 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2011-07-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4270715904-2616785641-2204161757-1001Core.job
- c:\users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-24 17:42]
.
2011-07-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4270715904-2616785641-2204161757-1001UA.job
- c:\users\Daniel\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-24 17:42]
.
2011-07-22 c:\windows\Tasks\HPCeeScheduleForDaniel.job
- c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]
.
.
------- Doplňkový sken -------
.
IE: Append the content of the link to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Append the content of the selected links to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
IE: Append to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Create PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF file from the content of the link - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF files from the selected links - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Open with Nuance PDF Converter 6.0 - c:\program files\Nuance\PDF Professional 6\cnvres_eng.dll /100
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
Trusted Zone: siteadvisor.com\www
TCP: DhcpNameServer = 192.168.88.1 10.100.160.7 10.100.160.1
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(5060)
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\servicing\TrustedInstaller.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Hewlett-Packard\Shared\hpqToaster.exe
c:\program files\Hewlett-Packard\Shared\hpCaslNotification.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\windows\system32\sppsvc.exe
c:\windows\system32\DllHost.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2011-07-25 13:47:53 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-07-25 11:47
ComboFix2.txt 2011-07-24 18:13
.
Před spuštěním: Volných bajtů: 411 950 325 760
Po spuštění: Volných bajtů: 411 855 577 088
.
- - End Of File - - 999F40105BC4BFD13F6E3F543EABDE98


JE VŠE V POŘÁDKU?

Děkuji za váš volný čas ...

DanyCZ

Není.

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

motji píše:Není.

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Dobrý den.
Vše jsem udělal, ale LOG se mi nikde nezobrazuje. Co s tím mám dělat?

DanyCZ

Pod záložkou protokoly není uložen?

motji píše:Pod záložkou protokoly není uložen?

Prve nebyl, udělal jsem to znovu, vše stejné a LOG tam nakonec byl:

Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org

Verze databáze: 7279

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

26.7.2011 12:11:39
mbam-log-2011-07-26 (12-11-31).txt

Typ kontroly: Úplný test (C:\|F:\|)
Testované objekty: 343600
Uplynulý čas: 43 minut, 57 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 3
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 1

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysdriver32.exe (Trojan.Agent) -> Value: sysdriver32.exe -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysdriver32_.exe (Trojan.Agent) -> Value: sysdriver32_.exe -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\l1rezerv.exe (Trojan.Agent) -> Value: l1rezerv.exe -> No action taken.

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
c:\Qoobox\quarantine\C\Windows\systemup.exe.vir (Trojan.Agent) -> No action taken.

V mbamu vše smažte a poprosím o nový log ze rsitu, večer něco domažeme.

LOG z Rsitu:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Daniel at 2011-07-26 14:18:35
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 393 GB (86%) free of 459 GB
Total RAM: 3000 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:18:41, on 26.7.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Steam\steam.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\windows\system32\SearchFilterHost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\rundll32.exe
C:\Users\Daniel\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Daniel\Downloads\RSIT.exe
C:\Program Files\trend micro\Daniel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100326202849.dll (file missing)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (file missing)
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O2 - BHO: ZeonIEEventHelper Class - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (file missing)
O3 - Toolbar: Nuance PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [systemup] "C:\windows\systemup.exe" stand
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Append the content of the link to existing PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Append the content of the selected links to existing PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
O8 - Extra context menu item: Append to existing PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Create PDF file - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: Create PDF file from the content of the link - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: Create PDF files from the selected links - res://C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Open with Nuance PDF Converter 6.0 - res://C:\Program Files\Nuance\PDF Professional 6\cnvres_eng.dll /100
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.siteadvisor.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.siteadvisor.com (HKLM)
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (file missing)
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (file missing)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\aestsrv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee SiteAdvisor Enterprise Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor Enterprise\McSACore.exe (file missing)
O23 - Service: McShield - Unknown owner - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe (file missing)
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe (file missing)
O23 - Service: McAfee Personal Firewall Service (MpfService) - Unknown owner - C:\Program Files\McAfee\MPF\MPFSrv.exe (file missing)
O23 - Service: McAfee Virus and Spyware Protection Service (myAgtSvc) - Unknown owner - C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: PDFProFiltSrv - Nuance Communications, Inc. - C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe

--
End of file - 12422 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-4270715904-2616785641-2204161757-1001Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-4270715904-2616785641-2204161757-1001UA.job
C:\windows\tasks\HPCeeScheduleForDaniel.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{551A852F-39A6-44A7-9C13-AFBEC9185A9D}]
PlusIEEventHelper Class - C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll [2009-02-06 249856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100326202849.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar BHO - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9}]
ZeonIEEventHelper Class - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26 475136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-04-14 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll []
{E3286BF1-E654-42FF-B4A6-5E111731DF6B} - Nuance PDF - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26 475136]
{8dcb7100-df86-4384-8842-8fa844297b3f} - @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-28 256056]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2010-01-12 563736]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-01-22 1684776]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-12 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-12 175640]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-12 166936]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"systemup"=C:\windows\systemup.exe stand []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Program Files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-02-10 1515576]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2010-01-22 2363392]
"Steam"=C:\Program Files\Steam\steam.exe [2011-02-21 1242448]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-06-15 15141768]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2011-07-20 3077528]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-01-25 225792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\windows\system32\webcheck.dll [2010-11-20 229376]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableSecureUIAPaths"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Windows\update.tray-9-0-lnk\svchost.exe"="C:\Windows\update.tray-9-0-lnk\svchost.exe:*:Enabled:C:\Windows\update.tray-9-0-lnk\svchost.exe"
"C:\windows\update.1\svchost.exe"="C:\windows\update.1\svchost.exe:*:Enabled:C:\windows\update.1\svchost.exe"
"C:\windows\update.2\svchost.exe"="C:\windows\update.2\svchost.exe:*:Enabled:C:\windows\update.2\svchost.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2011-07-26 10:41:01 ----D---- C:\Users\Daniel\AppData\Roaming\Malwarebytes
2011-07-26 10:40:59 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2011-07-26 10:40:58 ----D---- C:\ProgramData\Malwarebytes
2011-07-26 10:40:55 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-07-26 10:40:55 ----A---- C:\windows\system32\drivers\mbam.sys
2011-07-25 13:47:56 ----D---- C:\windows\temp
2011-07-25 13:47:54 ----A---- C:\ComboFix.txt
2011-07-25 13:47:23 ----SHD---- C:\$RECYCLE.BIN
2011-07-24 19:54:36 ----A---- C:\windows\zip.exe
2011-07-24 19:54:36 ----A---- C:\windows\SWSC.exe
2011-07-24 19:54:36 ----A---- C:\windows\SWREG.exe
2011-07-24 19:54:36 ----A---- C:\windows\sed.exe
2011-07-24 19:54:36 ----A---- C:\windows\PEV.exe
2011-07-24 19:54:36 ----A---- C:\windows\NIRCMD.exe
2011-07-24 19:54:36 ----A---- C:\windows\MBR.exe
2011-07-24 19:54:36 ----A---- C:\windows\grep.exe
2011-07-24 19:54:29 ----D---- C:\windows\ERDNT
2011-07-24 19:54:24 ----D---- C:\Qoobox
2011-07-24 19:12:00 ----D---- C:\rsit
2011-07-24 19:12:00 ----D---- C:\Program Files\trend micro
2011-07-21 17:20:07 ----D---- C:\Program Files\YouTube Downloader
2011-07-20 23:29:46 ----D---- C:\ProgramData\PMB Files
2011-07-20 23:29:33 ----D---- C:\Program Files\Pando Networks
2011-07-20 23:26:20 ----D---- C:\Users\Daniel\AppData\Roaming\Hi-Rez Studios
2011-07-20 23:26:08 ----A---- C:\windows\system32\XAudio2_7.dll
2011-07-20 23:26:08 ----A---- C:\windows\system32\XAPOFX1_5.dll
2011-07-20 23:26:07 ----A---- C:\windows\system32\xactengine3_7.dll
2011-07-20 23:26:07 ----A---- C:\windows\system32\d3dcsx_43.dll
2011-07-20 23:26:07 ----A---- C:\windows\system32\D3DCompiler_43.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\XAudio2_6.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\xactengine3_6.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\xactengine3_5.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\X3DAudio1_7.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\D3DX9_43.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\d3dx11_43.dll
2011-07-20 23:26:06 ----A---- C:\windows\system32\d3dx10_43.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\XAudio2_4.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\D3DX9_42.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\D3DX9_41.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\d3dx11_42.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\d3dcsx_42.dll
2011-07-20 23:26:05 ----A---- C:\windows\system32\D3DCompiler_42.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\XAudio2_3.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\XAPOFX1_2.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\xactengine3_4.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\X3DAudio1_6.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\D3DX9_40.dll
2011-07-20 23:26:04 ----A---- C:\windows\system32\D3DCompiler_40.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\XAudio2_2.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\XAPOFX1_1.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\xactengine3_3.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\xactengine3_2.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\X3DAudio1_5.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\d3dx10_39.dll
2011-07-20 23:26:03 ----A---- C:\windows\system32\D3DCompiler_39.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\XAudio2_1.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\XAPOFX1_0.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\xactengine3_1.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\X3DAudio1_4.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\D3DX9_39.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\d3dx10_38.dll
2011-07-20 23:26:02 ----A---- C:\windows\system32\D3DCompiler_38.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\XAudio2_0.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\xactengine3_0.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\X3DAudio1_3.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\D3DX9_38.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\D3DX9_37.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\d3dx10_37.dll
2011-07-20 23:26:01 ----A---- C:\windows\system32\D3DCompiler_37.dll
2011-07-20 23:25:07 ----HD---- C:\windows\msdownld.tmp
2011-07-20 23:25:06 ----D---- C:\windows\system32\directx
2011-07-20 23:24:53 ----D---- C:\windows\system32\AGEIA
2011-07-20 23:24:53 ----D---- C:\Program Files\AGEIA Technologies
2011-07-20 23:24:05 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-07-16 10:42:20 ----D---- C:\windows\system32\SPReview
2011-07-16 10:41:28 ----D---- C:\windows\system32\EventProviders
2011-07-14 19:51:55 ----A---- C:\windows\system32\fsquirt.exe
2011-07-14 19:51:55 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2011-07-14 19:51:55 ----A---- C:\windows\system32\drivers\bthport.sys
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-07-14 19:51:53 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-14 19:51:53 ----A---- C:\windows\system32\KernelBase.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-07-14 19:51:52 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-07-14 19:51:48 ----A---- C:\windows\system32\winsrv.dll
2011-07-14 19:51:48 ----A---- C:\windows\system32\kernel32.dll
2011-07-14 19:51:48 ----A---- C:\windows\system32\conhost.exe
2011-07-14 19:51:37 ----A---- C:\windows\system32\win32k.sys
2011-07-14 19:19:48 ----A---- C:\windows\system32\dfshim.dll
2011-07-14 19:19:44 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-07-14 19:19:44 ----A---- C:\windows\system32\mstscax.dll
2011-07-14 19:19:44 ----A---- C:\windows\system32\drivers\TsUsbFlt.sys
2011-07-14 19:19:40 ----A---- C:\windows\system32\d3d10warp.dll
2011-07-14 19:19:39 ----A---- C:\windows\system32\mfc40u.dll
2011-07-14 19:19:39 ----A---- C:\windows\system32\mfc40.dll
2011-07-14 19:19:38 ----A---- C:\windows\system32\sysmain.dll
2011-07-14 19:19:37 ----A---- C:\windows\system32\shell32.dll
2011-07-14 19:19:37 ----A---- C:\windows\system32\secproc_isv.dll
2011-07-14 19:19:36 ----A---- C:\windows\system32\secproc.dll
2011-07-14 19:19:36 ----A---- C:\windows\system32\RMActivate_isv.exe
2011-07-14 19:19:35 ----A---- C:\windows\system32\RMActivate.exe
2011-07-14 19:19:34 ----A---- C:\windows\system32\spwizui.dll
2011-07-14 19:19:34 ----A---- C:\windows\system32\mscoree.dll
2011-07-14 19:19:33 ----A---- C:\windows\system32\mf.dll
2011-07-14 19:19:32 ----A---- C:\windows\system32\mcupdate_GenuineIntel.dll
2011-07-14 19:19:32 ----A---- C:\windows\system32\CertEnroll.dll
2011-07-14 19:19:31 ----A---- C:\windows\system32\wmp.dll
2011-07-14 19:19:30 ----A---- C:\windows\system32\PresentationHostProxy.dll
2011-07-14 19:19:30 ----A---- C:\windows\system32\PresentationHost.exe
2011-07-14 19:19:30 ----A---- C:\windows\system32\drivers\msiscsi.sys
2011-07-14 19:19:30 ----A---- C:\windows\system32\drivers\hwpolicy.sys
2011-07-14 19:19:29 ----A---- C:\windows\system32\schedsvc.dll
2011-07-14 19:19:29 ----A---- C:\windows\system32\RacEngn.dll
2011-07-14 19:19:28 ----A---- C:\windows\system32\ntdll.dll
2011-07-14 19:19:28 ----A---- C:\windows\system32\AuthFWSnapin.dll
2011-07-14 19:19:27 ----A---- C:\windows\system32\rdpdd.dll
2011-07-14 19:19:26 ----A---- C:\windows\system32\qmgr.dll
2011-07-14 19:19:26 ----A---- C:\windows\system32\ExplorerFrame.dll
2011-07-14 19:19:25 ----A---- C:\windows\system32\wevtsvc.dll
2011-07-14 19:19:25 ----A---- C:\windows\system32\ole32.dll
2011-07-14 19:19:24 ----A---- C:\windows\system32\vssapi.dll
2011-07-14 19:19:24 ----A---- C:\windows\system32\SearchFolder.dll
2011-07-14 19:19:24 ----A---- C:\windows\system32\d3d9.dll
2011-07-14 19:19:23 ----A---- C:\windows\system32\taskschd.dll
2011-07-14 19:19:23 ----A---- C:\windows\system32\IKEEXT.DLL
2011-07-14 19:19:23 ----A---- C:\windows\system32\crypt32.dll
2011-07-14 19:19:22 ----A---- C:\windows\system32\wer.dll
2011-07-14 19:19:22 ----A---- C:\windows\system32\termsrv.dll
2011-07-14 19:19:22 ----A---- C:\windows\system32\spreview.exe
2011-07-14 19:19:22 ----A---- C:\windows\system32\spinstall.exe
2011-07-14 19:19:22 ----A---- C:\windows\system32\mstsc.exe
2011-07-14 19:19:22 ----A---- C:\windows\system32\certcli.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\rpcrt4.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\msxml6.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\lsasrv.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\gpsvc.dll
2011-07-14 19:19:21 ----A---- C:\windows\system32\dwmcore.dll
2011-07-14 19:19:20 ----A---- C:\windows\system32\wbengine.exe
2011-07-14 19:19:20 ----A---- C:\windows\system32\odbc32.dll
2011-07-14 19:19:20 ----A---- C:\windows\system32\mstime.dll
2011-07-14 19:19:20 ----A---- C:\windows\system32\MPSSVC.dll
2011-07-14 19:19:20 ----A---- C:\windows\system32\diagperf.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\WinSAT.exe
2011-07-14 19:19:19 ----A---- C:\windows\system32\TSWorkspace.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\tsmf.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\scavengeui.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\quartz.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\localspl.dll
2011-07-14 19:19:19 ----A---- C:\windows\system32\dot3api.dll
2011-07-14 19:19:18 ----A---- C:\windows\system32\winhttp.dll
2011-07-14 19:19:18 ----A---- C:\windows\system32\setupapi.dll
2011-07-14 19:19:18 ----A---- C:\windows\system32\iedkcs32.dll
2011-07-14 19:19:18 ----A---- C:\windows\system32\apphelp.dll
2011-07-14 19:19:17 ----A---- C:\windows\system32\VSSVC.exe
2011-07-14 19:19:17 ----A---- C:\windows\system32\netlogon.dll
2011-07-14 19:19:17 ----A---- C:\windows\system32\MSVidCtl.dll
2011-07-14 19:19:17 ----A---- C:\windows\system32\dbgeng.dll
2011-07-14 19:19:17 ----A---- C:\windows\system32\d3d11.dll
2011-07-14 19:19:16 ----A---- C:\windows\system32\winlogon.exe
2011-07-14 19:19:16 ----A---- C:\windows\system32\WindowsCodecs.dll
2011-07-14 19:19:16 ----A---- C:\windows\system32\user32.dll
2011-07-14 19:19:16 ----A---- C:\windows\system32\netcfgx.dll
2011-07-14 19:19:15 ----A---- C:\windows\system32\WsmSvc.dll
2011-07-14 19:19:15 ----A---- C:\windows\system32\WMVDECOD.DLL
2011-07-14 19:19:15 ----A---- C:\windows\system32\webio.dll
2011-07-14 19:19:15 ----A---- C:\windows\system32\Query.dll
2011-07-14 19:19:15 ----A---- C:\windows\system32\drivers\rdpwd.sys
2011-07-14 19:19:14 ----A---- C:\windows\system32\upnp.dll
2011-07-14 19:19:14 ----A---- C:\windows\system32\schannel.dll
2011-07-14 19:19:14 ----A---- C:\windows\system32\mmcndmgr.dll
2011-07-14 19:19:14 ----A---- C:\windows\system32\DShowRdpFilter.dll
2011-07-14 19:19:14 ----A---- C:\windows\system32\advapi32.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\netfxperf.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\msv1_0.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\msdrm.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\lsm.exe
2011-07-14 19:19:13 ----A---- C:\windows\system32\imapi2fs.dll
2011-07-14 19:19:13 ----A---- C:\windows\system32\authui.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\usp10.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\sppobjs.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\shlwapi.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\SessEnv.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\PortableDeviceApi.dll
2011-07-14 19:19:12 ----A---- C:\windows\system32\mcbuilder.exe
2011-07-14 19:19:11 ----A---- C:\windows\system32\xpsservices.dll
2011-07-14 19:19:11 ----A---- C:\windows\system32\winload.exe
2011-07-14 19:19:11 ----A---- C:\windows\system32\userenv.dll
2011-07-14 19:19:11 ----A---- C:\windows\system32\certmgr.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\WebClnt.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\sppwinob.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\iphlpsvc.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\comdlg32.dll
2011-07-14 19:19:10 ----A---- C:\windows\system32\audiosrv.dll
2011-07-14 19:19:09 ----A---- C:\windows\system32\rpcss.dll
2011-07-14 19:19:09 ----A---- C:\windows\system32\cmd.exe
2011-07-14 19:19:08 ----A---- C:\windows\system32\Wldap32.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\win32spl.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\propsys.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\mfds.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\framedynos.dll
2011-07-14 19:19:08 ----A---- C:\windows\system32\BFE.DLL
2011-07-14 19:19:07 ----A---- C:\windows\system32\wuaueng.dll
2011-07-14 19:19:07 ----A---- C:\windows\system32\samsrv.dll
2011-07-14 19:19:07 ----A---- C:\windows\system32\nlasvc.dll
2011-07-14 19:19:07 ----A---- C:\windows\system32\drivers\volsnap.sys
2011-07-14 19:19:07 ----A---- C:\windows\system32\drivers\netio.sys
2011-07-14 19:19:07 ----A---- C:\windows\system32\drivers\ndis.sys
2011-07-14 19:19:06 ----A---- C:\windows\system32\wucltux.dll
2011-07-14 19:19:06 ----A---- C:\windows\system32\winresume.exe
2011-07-14 19:19:06 ----A---- C:\windows\system32\werconcpl.dll
2011-07-14 19:19:06 ----A---- C:\windows\system32\profsvc.dll
2011-07-14 19:19:06 ----A---- C:\windows\system32\ncsi.dll
2011-07-14 19:19:06 ----A---- C:\windows\system32\azroles.dll
2011-07-14 19:19:05 ----A---- C:\windows\system32\themeui.dll
2011-07-14 19:19:05 ----A---- C:\windows\system32\taskeng.exe
2011-07-14 19:19:05 ----A---- C:\windows\system32\credui.dll
2011-07-14 19:19:04 ----A---- C:\windows\system32\spp.dll
2011-07-14 19:19:04 ----A---- C:\windows\system32\mswsock.dll
2011-07-14 19:19:04 ----A---- C:\windows\system32\drivers\http.sys
2011-07-14 19:19:04 ----A---- C:\windows\system32\dhcpcore.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\wintrust.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\taskcomp.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\NaturalLanguage6.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\msxml3.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\mfreadwrite.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\dxgi.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\dbghelp.dll
2011-07-14 19:19:03 ----A---- C:\windows\system32\basecsp.dll
2011-07-14 19:19:02 ----A---- C:\windows\system32\WinSATAPI.dll
2011-07-14 19:19:02 ----A---- C:\windows\system32\spoolsv.exe
2011-07-14 19:19:02 ----A---- C:\windows\system32\gdi32.dll
2011-07-14 19:19:02 ----A---- C:\windows\system32\evr.dll
2011-07-14 19:19:02 ----A---- C:\windows\system32\drivers\mrxdav.sys
2011-07-14 19:19:02 ----A---- C:\windows\system32\drivers\1394ohci.sys
2011-07-14 19:19:02 ----A---- C:\windows\system32\calc.exe
2011-07-14 19:19:01 ----A---- C:\windows\system32\vpnike.dll
2011-07-14 19:19:01 ----A---- C:\windows\system32\UIRibbon.dll
2011-07-14 19:19:01 ----A---- C:\windows\system32\srvsvc.dll
2011-07-14 19:19:01 ----A---- C:\windows\system32\sqlsrv32.dll
2011-07-14 19:19:01 ----A---- C:\windows\system32\QAGENTRT.DLL
2011-07-14 19:19:00 ----A---- C:\windows\system32\sxs.dll
2011-07-14 19:19:00 ----A---- C:\windows\system32\lpksetup.exe
2011-07-14 19:19:00 ----A---- C:\windows\system32\ie4uinit.exe
2011-07-14 19:19:00 ----A---- C:\windows\system32\fveapi.dll
2011-07-14 19:19:00 ----A---- C:\windows\system32\drivers\fvevol.sys
2011-07-14 19:19:00 ----A---- C:\windows\system32\cryptsvc.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\ws2_32.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\stobject.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\netshell.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\hgprint.dll
2011-07-14 19:18:59 ----A---- C:\windows\system32\drivers\rdbss.sys
2011-07-14 19:18:59 ----A---- C:\windows\system32\drivers\msdsm.sys
2011-07-14 19:18:58 ----A---- C:\windows\system32\prncache.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\printui.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\msi.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\inetpp.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\dps.dll
2011-07-14 19:18:58 ----A---- C:\windows\system32\comctl32.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\WSDApi.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\wmpeffects.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\rpchttp.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\net1.exe
2011-07-14 19:18:57 ----A---- C:\windows\system32\ci.dll
2011-07-14 19:18:57 ----A---- C:\windows\system32\aitagent.exe
2011-07-14 19:18:57 ----A---- C:\windows\system32\aepdu.dll
2011-07-14 19:18:56 ----A---- C:\windows\system32\FXSSVC.exe
2011-07-14 19:18:56 ----A---- C:\windows\system32\drivers\pci.sys
2011-07-14 19:18:55 ----A---- C:\windows\system32\vds.exe
2011-07-14 19:18:55 ----A---- C:\windows\system32\scansetting.dll
2011-07-14 19:18:54 ----A---- C:\windows\system32\WMVCORE.DLL
2011-07-14 19:18:54 ----A---- C:\windows\system32\wlangpui.dll
2011-07-14 19:18:54 ----A---- C:\windows\system32\MMDevAPI.dll
2011-07-14 19:18:54 ----A---- C:\windows\system32\davclnt.dll
2011-07-14 19:18:54 ----A---- C:\windows\system32\aaclient.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\wpdshext.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\webservices.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\t2embed.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\QSHVHOST.DLL
2011-07-14 19:18:53 ----A---- C:\windows\system32\pnidui.dll
2011-07-14 19:18:53 ----A---- C:\windows\system32\IPSECSVC.DLL
2011-07-14 19:18:53 ----A---- C:\windows\system32\drivers\termdd.sys
2011-07-14 19:18:53 ----A---- C:\windows\system32\consent.exe
2011-07-14 19:18:52 ----A---- C:\windows\system32\TsUsbGDCoInstaller.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\SyncCenter.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\sdengin2.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\netdiagfx.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\fde.dll
2011-07-14 19:18:52 ----A---- C:\windows\system32\drivers\sbp2port.sys
2011-07-14 19:18:51 ----A---- C:\windows\system32\wuapi.dll
2011-07-14 19:18:51 ----A---- C:\windows\system32\wscapi.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\wisptis.exe
2011-07-14 19:18:50 ----A---- C:\windows\system32\WinSCard.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\rdpcore.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\pla.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2011-07-14 19:18:50 ----A---- C:\windows\system32\msasn1.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\mcmde.dll
2011-07-14 19:18:50 ----A---- C:\windows\system32\drivers\vhdmp.sys
2011-07-14 19:18:49 ----A---- C:\windows\system32\WUDFSvc.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\winsta.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\wiaservc.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\setupcl.exe
2011-07-14 19:18:49 ----A---- C:\windows\system32\ntshrui.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\imapi2.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\iepeers.dll
2011-07-14 19:18:49 ----A---- C:\windows\system32\drivers\msahci.sys
2011-07-14 19:18:48 ----A---- C:\windows\system32\gameux.dll
2011-07-14 19:18:48 ----A---- C:\windows\system32\DXPTaskRingtone.dll
2011-07-14 19:18:48 ----A---- C:\windows\system32\aeinv.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\WMPEncEn.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\winmm.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\TabSvc.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\shsvcs.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\rasmans.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\onex.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\hbaapi.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\dwmredir.dll
2011-07-14 19:18:47 ----A---- C:\windows\system32\drivers\udfs.sys
2011-07-14 19:18:47 ----A---- C:\windows\system32\drivers\acpi.sys
2011-07-14 19:18:46 ----A---- C:\windows\system32\vaultsvc.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\samcli.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\proquota.exe
2011-07-14 19:18:46 ----A---- C:\windows\system32\netiohlp.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\Narrator.exe
2011-07-14 19:18:46 ----A---- C:\windows\system32\msutb.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\IPHLPAPI.DLL
2011-07-14 19:18:46 ----A---- C:\windows\system32\halmacpi.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\hal.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\bootres.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\autochk.exe
2011-07-14 19:18:46 ----A---- C:\windows\system32\autofmt.exe
2011-07-14 19:18:46 ----A---- C:\windows\system32\AudioSes.dll
2011-07-14 19:18:46 ----A---- C:\windows\system32\audiodg.exe
2011-07-14 19:18:45 ----A---- C:\windows\system32\wcncsvc.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\thumbcache.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\tcpipcfg.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\srchadmin.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\schtasks.exe
2011-07-14 19:18:45 ----A---- C:\windows\system32\regapi.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\powercpl.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\msinfo32.exe
2011-07-14 19:18:45 ----A---- C:\windows\system32\msihnd.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\mimefilt.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\ipsmsnap.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\framedyn.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\eapphost.dll
2011-07-14 19:18:45 ----A---- C:\windows\system32\drivers\winusb.sys
2011-07-14 19:18:45 ----A---- C:\windows\system32\drivers\volmgr.sys
2011-07-14 19:18:45 ----A---- C:\windows\system32\autoconv.exe
2011-07-14 19:18:44 ----A---- C:\windows\system32\umpo.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\sspicli.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\QAGENT.DLL
2011-07-14 19:18:44 ----A---- C:\windows\system32\netid.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\mscorier.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\DXP.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\drivers\partmgr.sys
2011-07-14 19:18:44 ----A---- C:\windows\system32\drivers\netbt.sys
2011-07-14 19:18:44 ----A---- C:\windows\system32\AuxiliaryDisplayCpl.dll
2011-07-14 19:18:44 ----A---- C:\windows\system32\actxprxy.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\wlanpref.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\wdc.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\Vault.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\untfs.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\StructuredQuery.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\sppsvc.exe
2011-07-14 19:18:43 ----A---- C:\windows\system32\sdclt.exe
2011-07-14 19:18:43 ----A---- C:\windows\system32\scesrv.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\rastls.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\nci.dll
2011-07-14 19:18:43 ----A---- C:\windows\system32\drivers\ataport.sys
2011-07-14 19:18:42 ----A---- C:\windows\system32\WMNetMgr.dll
2011-07-14 19:18:42 ----A---- C:\windows\system32\RpcRtRemote.dll
2011-07-14 19:18:42 ----A---- C:\windows\system32\Robocopy.exe
2011-07-14 19:18:42 ----A---- C:\windows\system32\ListSvc.dll
2011-07-14 19:18:42 ----A---- C:\windows\system32\licmgr10.dll
2011-07-14 19:18:42 ----A---- C:\windows\system32\DxpTaskSync.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\XpsRasterService.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\userinit.exe
2011-07-14 19:18:41 ----A---- C:\windows\system32\termmgr.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\taskmgr.exe
2011-07-14 19:18:41 ----A---- C:\windows\system32\sharemediacpl.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\puiobj.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\mtxclu.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\msdri.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\drivers\usbvideo.sys
2011-07-14 19:18:41 ----A---- C:\windows\system32\drivers\mpio.sys
2011-07-14 19:18:41 ----A---- C:\windows\system32\drivers\mountmgr.sys
2011-07-14 19:18:41 ----A---- C:\windows\system32\Display.dll
2011-07-14 19:18:41 ----A---- C:\windows\system32\DiagCpl.dll
2011-07-14 19:18:40 ----A---- C:\windows\system32\msdtctm.dll
2011-07-14 19:18:40 ----A---- C:\windows\system32\logoncli.dll
2011-07-14 19:18:40 ----A---- C:\windows\system32\eudcedit.exe
2011-07-14 19:18:40 ----A---- C:\windows\system32\drivers\scsiport.sys
2011-07-14 19:18:39 ----A---- C:\windows\system32\wpccpl.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\wiadefui.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\themecpl.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\sppcomapi.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\shsetup.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\SensorsCpl.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\rasppp.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\msconfig.exe
2011-07-14 19:18:39 ----A---- C:\windows\system32\FWPUCLNT.DLL
2011-07-14 19:18:39 ----A---- C:\windows\system32\FirewallControlPanel.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\dnscmmc.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\cabview.dll
2011-07-14 19:18:39 ----A---- C:\windows\system32\biocpl.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\tapisrv.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\scecli.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\PhotoScreensaver.scr
2011-07-14 19:18:38 ----A---- C:\windows\system32\mscories.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\mscms.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\localsec.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\hgcpl.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\fontext.dll
2011-07-14 19:18:38 ----A---- C:\windows\system32\drivers\rdyboost.sys
2011-07-14 19:18:38 ----A---- C:\windows\system32\drivers\ksecdd.sys
2011-07-14 19:18:37 ----A---- C:\windows\system32\wlanui.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\wkssvc.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\VAN.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\usercpl.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\srcore.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\SndVolSSO.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\qedit.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\prntvpt.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\PerfCenterCPL.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\netcenter.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\mprddm.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\mblctr.exe
2011-07-14 19:18:37 ----A---- C:\windows\system32\KMSVC.DLL
2011-07-14 19:18:37 ----A---- C:\windows\system32\iasacct.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\bcdsrv.dll
2011-07-14 19:18:37 ----A---- C:\windows\system32\batmeter.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\wpdbusenum.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\wksprt.exe
2011-07-14 19:18:36 ----A---- C:\windows\system32\w32tm.exe
2011-07-14 19:18:36 ----A---- C:\windows\system32\spwizeng.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\SndVol.exe
2011-07-14 19:18:36 ----A---- C:\windows\system32\qdvd.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\azroleui.dll
2011-07-14 19:18:36 ----A---- C:\windows\system32\accessibilitycpl.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\zipfldr.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\networkmap.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\netjoin.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\MSAC3ENC.DLL
2011-07-14 19:18:35 ----A---- C:\windows\system32\fdeploy.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\drivers\ks.sys
2011-07-14 19:18:35 ----A---- C:\windows\system32\cryptui.dll
2011-07-14 19:18:35 ----A---- C:\windows\system32\adsldp.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\wusa.exe
2011-07-14 19:18:34 ----A---- C:\windows\system32\sud.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\prnfldr.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\OnLineIDCpl.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\mspbda.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\MCEWMDRMNDBootstrap.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\Faultrep.dll
2011-07-14 19:18:34 ----A---- C:\windows\system32\ActionCenter.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\taskhost.exe
2011-07-14 19:18:33 ----A---- C:\windows\system32\taskbarcpl.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\slui.exe
2011-07-14 19:18:33 ----A---- C:\windows\system32\rdpcorekmts.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\photowiz.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\msieftp.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\MediaMetadataHandler.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\iprtrmgr.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\iasrad.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\halacpi.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\ftp.exe
2011-07-14 19:18:33 ----A---- C:\windows\system32\drivers\hidclass.sys
2011-07-14 19:18:33 ----A---- C:\windows\system32\dot3cfg.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\defaultlocationcpl.dll
2011-07-14 19:18:33 ----A---- C:\windows\system32\credssp.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\wpd_ci.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\syncui.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\sisbkup.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\shwebsvc.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\sdcpl.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\recovery.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\odbcjt32.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\ifsutil.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\ieUnatt.exe
2011-07-14 19:18:32 ----A---- C:\windows\system32\iesysprep.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\efscore.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\autoplay.dll
2011-07-14 19:18:32 ----A---- C:\windows\system32\ActionCenterCPL.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\wmpmde.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\vdsutil.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\systemcpl.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\sppnp.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\rtutils.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\rdpwsx.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\OobeFldr.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\ntlanman.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\dskquoui.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\DeviceCenter.dll
2011-07-14 19:18:31 ----A---- C:\windows\system32\bcdedit.exe
2011-07-14 19:18:30 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\sethc.exe
2011-07-14 19:18:30 ----A---- C:\windows\system32\rstrui.exe
2011-07-14 19:18:30 ----A---- C:\windows\system32\riched20.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\recdisc.exe
2011-07-14 19:18:30 ----A---- C:\windows\system32\ntprint.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\nshwfp.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\drivers\tdx.sys
2011-07-14 19:18:30 ----A---- C:\windows\system32\blackbox.dll
2011-07-14 19:18:30 ----A---- C:\windows\system32\bcdboot.exe
2011-07-14 19:18:29 ----A---- C:\windows\system32\wsqmcons.exe
2011-07-14 19:18:29 ----A---- C:\windows\system32\wmpsrcwp.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\nshipsec.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\nlaapi.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\netplwiz.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\NAPHLPR.DLL
2011-07-14 19:18:29 ----A---- C:\windows\system32\migisol.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\isoburn.exe
2011-07-14 19:18:29 ----A---- C:\windows\system32\httpapi.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\fms.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2011-07-14 19:18:29 ----A---- C:\windows\system32\dot3svc.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\cdosys.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\AxInstSv.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\AuxiliaryDisplayServices.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\asycfilt.dll
2011-07-14 19:18:29 ----A---- C:\windows\system32\activeds.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wvc.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wuwebv.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wtsapi32.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wlanmsm.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wimgapi.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\wavemsp.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\tzutil.exe
2011-07-14 19:18:28 ----A---- C:\windows\system32\sysclass.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\ReAgent.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\provsvc.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\ocsetup.exe
2011-07-14 19:18:28 ----A---- C:\windows\system32\msftedit.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\dsuiext.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\drivers\ndproxy.sys
2011-07-14 19:18:28 ----A---- C:\windows\system32\dot3ui.dll
2011-07-14 19:18:28 ----A---- C:\windows\system32\dfrgui.exe
2011-07-14 19:18:28 ----A---- C:\windows\system32\appinfo.dll
2011-07-14 19:18:27 ----A---- C:\windows\twain_32.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\webcheck.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\twext.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\shdocvw.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\setupugc.exe
2011-07-14 19:18:27 ----A---- C:\windows\system32\qcap.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\qasf.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\occache.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\mstask.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\msfeedsbs.dll
2011-07-14 19:18:27 ----A---- C:\windows\system32\certprop.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\wwanconn.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\uxlib.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\ssText3d.scr
2011-07-14 19:18:26 ----A---- C:\windows\system32\srrstr.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\slwga.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\msvfw32.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\msrating.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\mciavi32.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\imm32.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\imgutil.dll
2011-07-14 19:18:26 ----A---- C:\windows\system32\audiodev.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\WPDShServiceObj.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\wmdrmsdk.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\wimserv.exe
2011-07-14 19:18:25 ----A---- C:\windows\system32\TSpkg.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\remotepg.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\rdpencom.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\raschap.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\QUTIL.DLL
2011-07-14 19:18:25 ----A---- C:\windows\system32\perfmon.exe
2011-07-14 19:18:25 ----A---- C:\windows\system32\nslookup.exe
2011-07-14 19:18:25 ----A---- C:\windows\system32\msscp.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\input.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\drmmgrtn.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\diskraid.exe
2011-07-14 19:18:25 ----A---- C:\windows\system32\DevicePairingFolder.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\clusapi.dll
2011-07-14 19:18:25 ----A---- C:\windows\system32\acppage.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\wmpdxm.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\WindowsAnytimeUpgradeResults.exe
2011-07-14 19:18:24 ----A---- C:\windows\system32\vpnikeapi.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\UserAccountControlSettings.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\sdrsvc.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\onexui.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\olepro32.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\odbccp32.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\ocsetapi.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\nltest.exe
2011-07-14 19:18:24 ----A---- C:\windows\system32\networkexplorer.dll
2011-07-14 19:18:24 ----A---- C:\windows\system32\NAPCRYPT.DLL
2011-07-14 19:18:24 ----A---- C:\windows\system32\browser.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\wpdwcn.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\vdsbas.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\sspisrv.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\runonce.exe
2011-07-14 19:18:23 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2011-07-14 19:18:23 ----A---- C:\windows\system32\msvidc32.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\msiexec.exe
2011-07-14 19:18:23 ----A---- C:\windows\system32\MFPlay.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\Mcx2Svc.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\logagent.exe
2011-07-14 19:18:23 ----A---- C:\windows\system32\iTVData.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\inseng.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\eapp3hst.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\dxdiagn.dll
2011-07-14 19:18:23 ----A---- C:\windows\system32\drivers\rmcast.sys
2011-07-14 19:18:23 ----A---- C:\windows\bfsvc.exe
2011-07-14 19:18:22 ----A---- C:\windows\system32\wudriver.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\wmpshell.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\wmdrmdev.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\unimdmat.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\tabcal.exe
2011-07-14 19:18:22 ----A---- C:\windows\system32\sqlcese30.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\shacct.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\rdpd3d.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\PnPUnattend.exe
2011-07-14 19:18:22 ----A---- C:\windows\system32\lsmproxy.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\iscsium.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\d3d10level9.dll
2011-07-14 19:18:22 ----A---- C:\windows\system32\Bubbles.scr
2011-07-14 19:18:22 ----A---- C:\windows\system32\bitsadmin.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\wwanprotdim.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\WUDFPlatform.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\WPDSp.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\WMPhoto.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\tsgqec.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\srvcli.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\Ribbons.scr
2011-07-14 19:18:21 ----A---- C:\windows\system32\QSVRMGMT.DLL
2011-07-14 19:18:21 ----A---- C:\windows\system32\PortableDeviceSyncProvider.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\PortableDeviceStatus.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\pdh.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\OpcServices.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\olethk32.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\odbctrac.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\ncryptui.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\Mystify.scr
2011-07-14 19:18:21 ----A---- C:\windows\system32\mprapi.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\MdSched.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\mapistub.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\mapi32.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\lpremove.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\logman.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\djoin.exe
2011-07-14 19:18:21 ----A---- C:\windows\system32\cscapi.dll
2011-07-14 19:18:21 ----A---- C:\windows\system32\ActionQueue.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\WMVSDECD.DLL
2011-07-14 19:18:20 ----A---- C:\windows\system32\wmdrmnet.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\WMADMOD.DLL
2011-07-14 19:18:20 ----A---- C:\windows\system32\WindowsAnytimeUpgrade.exe
2011-07-14 19:18:20 ----A---- C:\windows\system32\wiavideo.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\utildll.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-07-14 19:18:20 ----A---- C:\windows\system32\takeown.exe
2011-07-14 19:18:20 ----A---- C:\windows\system32\sqmapi.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\qdv.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\mshtmled.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\iyuv_32.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\imagehlp.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\fphc.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\EhStorAPI.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\dot3msm.dll
2011-07-14 19:18:20 ----A---- C:\windows\system32\avifil32.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\WUDFx.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\WUDFHost.exe
2011-07-14 19:18:19 ----A---- C:\windows\system32\wsnmp32.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\WMSPDMOD.DLL
2011-07-14 19:18:19 ----A---- C:\windows\system32\vfwwdm32.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\unattend.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\umb.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\sppinst.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\setupcln.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\RelPost.exe
2011-07-14 19:18:19 ----A---- C:\windows\system32\QCLIPROV.DLL
2011-07-14 19:18:19 ----A---- C:\windows\system32\pdhui.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\MuiUnattend.exe
2011-07-14 19:18:19 ----A---- C:\windows\system32\msyuv.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\msrle32.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\msnetobj.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\cmstp.exe
2011-07-14 19:18:19 ----A---- C:\windows\system32\cca.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\basesrv.dll
2011-07-14 19:18:19 ----A---- C:\windows\system32\AzSqlExt.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\wuauclt.exe
2011-07-14 19:18:18 ----A---- C:\windows\system32\wkscli.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\WavDest.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\tsbyuv.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\sppuinotify.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\spbcd.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\relog.exe
2011-07-14 19:18:18 ----A---- C:\windows\system32\PrintIsolationProxy.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\netiougc.exe
2011-07-14 19:18:18 ----A---- C:\windows\system32\msorcl32.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\iscsicli.exe
2011-07-14 19:18:18 ----A---- C:\windows\system32\iasrecst.dll
2011-07-14 19:18:18 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2011-07-14 19:18:18 ----A---- C:\windows\system32\drivers\ndisuio.sys
2011-07-14 19:18:17 ----A---- C:\windows\system32\wuapp.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\wmpps.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\WerFaultSecure.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\syssetup.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\setbcdlocale.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\secur32.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\secproc_ssp.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\resutils.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\rastapi.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\nrpsrv.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\netbtugc.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\mydocs.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\MultiDigiMon.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\itircl.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\FXSTIFF.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\diskpart.exe
2011-07-14 19:18:17 ----A---- C:\windows\system32\CertPolEng.dll
2011-07-14 19:18:17 ----A---- C:\windows\system32\amstream.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\wiarpc.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\tlscsp.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\RMActivate_ssp.exe
2011-07-14 19:18:16 ----A---- C:\windows\system32\ReAgentc.exe
2011-07-14 19:18:16 ----A---- C:\windows\system32\netutils.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\netapi32.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\muifontsetup.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\mobsync.exe
2011-07-14 19:18:16 ----A---- C:\windows\system32\mciqtz32.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\findstr.exe
2011-07-14 19:18:16 ----A---- C:\windows\system32\eappgnui.dll
2011-07-14 19:18:16 ----A---- C:\windows\system32\cabinet.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\wdiasqmmodule.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\unlodctr.exe
2011-07-14 19:18:15 ----A---- C:\windows\system32\sppc.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\spopk.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\shimgvw.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\repair-bde.exe
2011-07-14 19:18:15 ----A---- C:\windows\system32\rdprefdrvapi.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\netcfg.exe
2011-07-14 19:18:15 ----A---- C:\windows\system32\msdmo.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\manage-bde.exe
2011-07-14 19:18:15 ----A---- C:\windows\system32\luainstall.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\inetmib1.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\iccvid.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\HotStartUserAgent.dll
2011-07-14 19:18:15 ----A---- C:\windows\system32\drivers\usbrpm.sys
2011-07-14 19:18:15 ----A---- C:\windows\system32\drivers\tdi.sys
2011-07-14 19:18:15 ----A---- C:\windows\system32\drivers\CompositeBus.sys
2011-07-14 19:18:15 ----A---- C:\windows\system32\dosx.exe
2011-07-14 19:18:14 ----A---- C:\windows\system32\wups.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\UIRibbonRes.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\profprov.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\odbcconf.dll
2011-07-14 19:18:14 ----A---- C:\windows\system32\drivers\cdrom.sys
2011-07-14 19:18:14 ----A---- C:\windows\system32\browcli.dll
2011-07-14 19:18:13 ----A---- C:\windows\system32\perfts.dll
2011-07-14 19:18:13 ----A---- C:\windows\system32\msfeedssync.exe
2011-07-14 19:18:13 ----A---- C:\windows\system32\icaapi.dll
2011-07-14 19:18:13 ----A---- C:\windows\system32\FXSMON.dll
2011-07-14 19:18:13 ----A---- C:\windows\system32\elsTrans.dll
2011-07-14 19:18:13 ----A---- C:\windows\system32\drivers\tunnel.sys
2011-07-14 19:18:13 ----A---- C:\windows\system32\drivers\dfsc.sys
2011-07-14 19:18:12 ----A---- C:\windows\system32\wshbth.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\TRAPI.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\schedcli.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\RDPENCDD.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\napdsnap.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\LogonUI.exe
2011-07-14 19:18:12 ----A---- C:\windows\system32\dsauth.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\cscdll.dll
2011-07-14 19:18:12 ----A---- C:\windows\system32\bitsperf.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\wups2.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\wsdchngr.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\sscore.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\shgina.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\riched32.dll
2011-07-14 19:18:09 ----A---- C:\windows\system32\drivers\ndiswan.sys
2011-07-14 19:18:09 ----A---- C:\windows\system32\drivers\acpipmi.sys
2011-07-14 19:18:08 ----A---- C:\windows\system32\wshirda.dll
2011-07-14 19:18:08 ----A---- C:\windows\system32\rdpcfgex.dll
2011-07-14 19:18:08 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2011-07-14 19:18:08 ----A---- C:\windows\system32\drivers\hidusb.sys
2011-07-14 19:18:08 ----A---- C:\windows\system32\drivers\appid.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\spwmp.dll
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\USBCAMD2.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\USBCAMD.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\tdtcp.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\kbdhid.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\drivers\IPMIDrv.sys
2011-07-14 19:18:07 ----A---- C:\windows\system32\browseui.dll
2011-07-14 19:18:06 ----A---- C:\windows\system32\shunimpl.dll
2011-07-14 19:18:06 ----A---- C:\windows\system32\RDPREFDD.dll
2011-07-14 19:18:06 ----A---- C:\windows\system32\dxmasf.dll
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\wanarp.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\umbus.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\tdpipe.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\sffp_sd.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\scfilter.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\RDPCDD.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\HdAudio.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\drivers\hdaudbus.sys
2011-07-14 19:18:06 ----A---- C:\windows\system32\C_ISCII.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\wmploc.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDUS.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDUGHR1.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDTURME.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDTAJIK.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDSF.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDNEPR.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDMON.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDMAORI.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDLT1.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDINTEL.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDINORI.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDINKAN.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDGEO.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDBULG.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDBLR.DLL
2011-07-14 19:18:05 ----A---- C:\windows\system32\KBDBASH.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\tzres.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\spwizres.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\pifmgr.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\nlsbres.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDTUQ.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDTUF.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDSG.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDPO.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\kbdlk41a.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDINTAM.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDINMAR.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDINHIN.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDINBEN.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDGR1.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDGKL.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\KBDCZ1.DLL
2011-07-14 19:18:04 ----A---- C:\windows\system32\dpnaddr.dll
2011-07-14 19:18:04 ----A---- C:\windows\system32\BlbEvents.dll
2011-07-14 19:17:15 ----A---- C:\windows\system32\wmicmiplugin.dll
2011-07-14 19:17:15 ----A---- C:\windows\system32\wbemcomn.dll
2011-07-14 19:17:02 ----A---- C:\windows\system32\SmiEngine.dll
2011-07-14 19:16:59 ----A---- C:\windows\system32\wdscore.dll
2011-07-14 19:16:59 ----A---- C:\windows\system32\PkgMgr.exe
2011-07-14 19:16:40 ----A---- C:\windows\system32\drvstore.dll
2011-07-14 19:16:40 ----A---- C:\windows\system32\dpx.dll
2011-06-29 17:10:14 ----A---- C:\windows\system32\umpnpmgr.dll
2011-06-29 17:10:14 ----A---- C:\windows\system32\cfgmgr32.dll
2011-06-29 17:10:12 ----A---- C:\windows\system32\tquery.dll
2011-06-29 17:10:12 ----A---- C:\windows\system32\mssrch.dll
2011-06-29 17:10:11 ----A---- C:\windows\system32\SearchProtocolHost.exe
2011-06-29 17:10:11 ----A---- C:\windows\system32\SearchIndexer.exe
2011-06-29 17:10:11 ----A---- C:\windows\system32\SearchFilterHost.exe
2011-06-29 17:10:11 ----A---- C:\windows\system32\mssvp.dll
2011-06-29 17:10:11 ----A---- C:\windows\system32\mssphtb.dll
2011-06-29 17:10:11 ----A---- C:\windows\system32\mssph.dll
2011-06-29 17:10:11 ----A---- C:\windows\system32\msscntrs.dll

======List of files/folders modified in the last 1 month======

2011-07-26 14:17:04 ----D---- C:\Users\Daniel\AppData\Roaming\Skype
2011-07-26 14:17:01 ----D---- C:\Program Files\Steam
2011-07-26 14:17:00 ----D---- C:\ProgramData
2011-07-26 14:17:00 ----A---- C:\ProgramData\HPWALog.txt
2011-07-26 14:16:50 ----D---- C:\windows\system32\config
2011-07-26 14:16:36 ----D---- C:\windows\system32\drivers
2011-07-26 14:15:58 ----D---- C:\windows\OEMCert
2011-07-26 14:10:32 ----D---- C:\windows\tracing
2011-07-26 10:40:55 ----RD---- C:\Program Files
2011-07-25 13:48:04 ----D---- C:\windows\System32
2011-07-25 13:48:04 ----D---- C:\windows\inf
2011-07-25 13:48:04 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-07-25 13:47:56 ----D---- C:\Windows
2011-07-25 13:44:35 ----A---- C:\windows\system.ini
2011-07-25 13:44:23 ----D---- C:\windows\system32\drivers\etc
2011-07-25 13:37:24 ----D---- C:\windows\AppPatch
2011-07-25 13:37:21 ----D---- C:\Program Files\Common Files
2011-07-24 19:55:45 ----SHD---- C:\System Volume Information
2011-07-24 18:34:34 ----D---- C:\windows\Prefetch
2011-07-21 15:03:07 ----D---- C:\windows\Tasks
2011-07-21 15:03:07 ----D---- C:\windows\system32\Tasks
2011-07-20 23:24:59 ----SHD---- C:\windows\Installer
2011-07-20 23:24:04 ----D---- C:\windows\winsxs
2011-07-20 19:16:28 ----D---- C:\windows\system32\catroot2
2011-07-17 17:54:49 ----D---- C:\windows\Microsoft.NET
2011-07-17 17:54:19 ----RSD---- C:\windows\assembly
2011-07-17 11:25:47 ----D---- C:\windows\rescache
2011-07-17 10:24:01 ----D---- C:\windows\system32\catroot
2011-07-16 21:07:30 ----D---- C:\Users\Daniel\AppData\Roaming\Audacity
2011-07-16 20:45:06 ----D---- C:\windows\system32\NDF
2011-07-16 10:58:29 ----D---- C:\windows\system32\DriverStore
2011-07-16 10:54:42 ----D---- C:\Program Files\Windows Mail
2011-07-16 10:54:40 ----D---- C:\Program Files\Windows Sidebar
2011-07-16 10:54:40 ----D---- C:\Program Files\Internet Explorer
2011-07-16 10:54:40 ----D---- C:\Program Files\DVD Maker
2011-07-16 10:54:39 ----D---- C:\Program Files\Windows Portable Devices
2011-07-16 10:54:39 ----D---- C:\Program Files\Windows Photo Viewer
2011-07-16 10:54:39 ----D---- C:\Program Files\Windows Media Player
2011-07-16 10:54:39 ----D---- C:\Program Files\Windows Journal
2011-07-16 10:54:37 ----D---- C:\windows\servicing
2011-07-16 10:54:37 ----D---- C:\windows\ehome
2011-07-16 10:54:37 ----D---- C:\Program Files\Windows Defender
2011-07-16 10:54:34 ----D---- C:\windows\system32\oobe
2011-07-16 10:54:34 ----D---- C:\windows\system32\en-US
2011-07-16 10:54:34 ----D---- C:\windows\system32\da-DK
2011-07-16 10:54:34 ----D---- C:\windows\PolicyDefinitions
2011-07-16 10:54:33 ----D---- C:\windows\system32\sysprep
2011-07-16 10:54:33 ----D---- C:\windows\system32\Setup
2011-07-16 10:54:33 ----D---- C:\windows\system32\migration
2011-07-16 10:54:33 ----D---- C:\windows\system32\cs-CZ
2011-07-16 10:54:33 ----D---- C:\windows\system32\cs
2011-07-16 10:54:33 ----D---- C:\windows\system32\AdvancedInstallers
2011-07-16 10:54:32 ----D---- C:\windows\system32\sppui
2011-07-16 10:54:32 ----D---- C:\windows\system32\manifeststore
2011-07-16 10:54:32 ----D---- C:\windows\system32\es-ES
2011-07-16 10:54:32 ----D---- C:\windows\system32\drivers\cs-CZ
2011-07-16 10:54:31 ----D---- C:\windows\system32\wbem
2011-07-16 10:54:29 ----D---- C:\windows\system32\migwiz
2011-07-16 10:54:29 ----D---- C:\windows\system32\Dism
2011-07-16 10:54:17 ----RSD---- C:\windows\Fonts
2011-07-16 10:54:09 ----D---- C:\windows\system32\Boot
2011-07-16 10:50:01 ----A---- C:\windows\system32\msclmd.dll
2011-07-16 10:41:16 ----D---- C:\Program Files\Microsoft Office
2011-07-16 10:34:27 ----D---- C:\Program Files\Common Files\Steam
2011-07-16 00:38:27 ----A---- C:\windows\system32\MRT.exe
2011-07-16 00:36:15 ----D---- C:\ProgramData\Microsoft Help
2011-07-15 10:50:33 ----HD---- C:\Program Files\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-01-08 331288]
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2010-02-08 385184]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys [2010-02-08 160912]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2009-07-09 45200]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 MPFP;MPFP; C:\windows\System32\Drivers\Mpfp.sys [2009-04-09 130424]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2010-01-25 6282240]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\windows\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys [2010-02-08 152736]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2010-01-13 257568]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\windows\system32\DRIVERS\rtl8192se.sys [2010-01-20 996896]
R3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2010-01-29 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-01-22 234800]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-07-14 1035776]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-07 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys [2010-01-07 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-07 18472]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 23424]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 102912]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 101120]
S3 mfeapfk;McAfee Inc. mfeapfk; C:\windows\system32\drivers\mfeapfk.sys [2010-02-08 95728]
S3 mfebopk;McAfee Inc. mfebopk; C:\windows\system32\drivers\mfebopk.sys [2010-02-08 51720]
S3 mferkdet;McAfee Inc. mferkdet; C:\windows\system32\drivers\mferkdet.sys [2010-02-08 83912]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\aestsrv.exe [2009-03-03 81920]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 595232]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-25 92216]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-28 265272]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2010-01-12 635416]
R2 PDFProFiltSrv;PDFProFiltSrv; C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\STacSV.exe [2010-01-29 229458]
R2 TeamViewer6;TeamViewer 6; C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2011-01-25 791608]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
S2 McAfee SiteAdvisor Enterprise Service;McAfee SiteAdvisor Enterprise Service; C:\Program Files\McAfee\SiteAdvisor Enterprise\McSACore.exe []
S2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe []
S2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe []
S2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe []
S2 myAgtSvc;McAfee Virus and Spyware Protection Service; C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe /ServiceStart []
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-07-14 411432]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1343400]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

DanyCZ

Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka
-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:




-po aplikaci na Vás vypadne další log,vložte ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci