VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Windows update

https://forum.viry.cz:443/viewtopic.php?t=125938

Stránka 1 z 2

Windows update

Napsal: 20 lis 2012 14:06
od martinb01
Dobrý den ve spolek,
potřeboval bych pomoc. Dostal jsem již používaný ntb a nemůžu se dostat do windows update. Nelze nalézt aktualizace. Hází to hlášku: "Služba windows update nyní nemůže vyhledat aktualizace,protože tato služba není spuštěna"
Ale služba spuštěna je a spouští se automaticky.
Děkuji za pomoc

Re: Windows update

Napsal: 20 lis 2012 16:36
od vyosek
Zdravim :)

:arrow: Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=105895

:arrow: Stahnete Farbar Service Scanner http://download.bleepingcomputer.com/farbar/FSS.exe
  • Ulozte nejlepe na Plochu
  • U vsech polozek udelejte zatrzitko (tim je oznacite pro skenovani)
  • Kliknete na Scan
  • Po dokonceni skenu se objevi log FSS.txt ten sem vlozte

Re: Windows update

Napsal: 20 lis 2012 17:11
od martinb01
Logfile of random's system information tool 1.09 (written by random/random)
Run by Huang li nguen at 2012-11-20 17:01:38
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 84 GB (70%) free of 119 GB
Total RAM: 4095 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:01:44, on 20.11.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Windows Live\Toolbar\wltuser.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_110_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\trend micro\Huang li nguen.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Setwallpaper] c:\programdata\SetWallpaper.cmd
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [EPSON B42WD Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGKE.EXE /FU "C:\Windows\TEMP\E_SA13E.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Windows\SysWOW64\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9850 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
C:\Windows\SysWOW64\nvSCPAPISvr.exe
C:\Windows\system32\nvvsvc.exe -session -first
"taskhost.exe"
taskeng.exe {36CFE299-6A0E-423E-95DC-742FA31DFA8D}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
ATKOSD.exe
KBFiltr.exe
WDC.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" MySyncFolder
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:4880 CREDAT:71937
"C:\Program Files (x86)\Windows Live\Toolbar\wltuser.exe" -Embedding
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_110_ActiveX.exe -Embedding
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:4880 CREDAT:268548
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Huang li nguen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4D3C3UFD\RSITx64[1].exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ASUS WebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2009-12-24 1736704]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-12-11 16414824]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2009-09-30 621440]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-01 323584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPSON B42WD Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGKE.EXE [2010-01-12 224768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-03-23 3054136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-12-21 9639424]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2009-10-27 6998656]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2009-08-20 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Setwallpaper"=c:\programdata\SetWallpaper.cmd []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FancyStart daemon.lnk - C:\Windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe
SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe

C:\Users\Huang li nguen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.3.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

Re: Windows update

Napsal: 20 lis 2012 17:26
od martinb01
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-11-20 17:01:38 ----D---- C:\rsit
2012-11-20 17:01:38 ----D---- C:\Program Files\trend micro
2012-11-20 15:46:34 ----D---- C:\Users\Huang li nguen\AppData\Roaming\Google
2012-11-20 14:32:15 ----D---- C:\Users\Huang li nguen\AppData\Roaming\ParetoLogic
2012-11-20 14:32:15 ----D---- C:\Users\Huang li nguen\AppData\Roaming\DriverCure
2012-11-20 14:32:03 ----D---- C:\ProgramData\ParetoLogic
2012-11-20 13:05:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2012-11-20 13:05:02 ----A---- C:\Windows\system32\drivers\aswSP.sys
2012-11-20 13:04:59 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2012-11-20 13:04:58 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2012-11-20 13:04:56 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2012-11-20 13:04:50 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2012-11-20 13:04:50 ----A---- C:\Windows\system32\aswBoot.exe
2012-11-20 13:04:31 ----A---- C:\Windows\avastSS.scr
2012-11-20 13:04:30 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2012-11-20 13:04:17 ----D---- C:\ProgramData\AVAST Software
2012-11-20 13:04:17 ----D---- C:\Program Files\AVAST Software
2012-11-19 16:37:26 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2012-11-19 14:07:19 ----D---- C:\Program Files\CCleaner
2012-11-19 14:04:52 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-11-19 14:04:49 ----D---- C:\Windows\system32\Macromed
2012-11-19 13:56:02 ----D---- C:\Windows\system32\log
2012-11-19 13:47:11 ----D---- C:\Windows\system32\SPReview
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\mstask.dll
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\mscories.dll
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2012-11-19 12:51:29 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\mstime.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\msdri.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\mprddm.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\mobsync.exe
2012-11-19 12:51:29 ----A---- C:\Windows\system32\KernelBase.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\kernel32.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\KBDBLR.DLL
2012-11-19 12:51:29 ----A---- C:\Windows\system32\itircl.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\iphlpsvc.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\inseng.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\inetmib1.dll
2012-11-19 12:51:29 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2012-11-19 12:51:29 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2012-11-19 12:51:28 ----A---- C:\Windows\SYSWOW64\raschap.dll
2012-11-19 12:51:28 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2012-11-19 12:51:28 ----A---- C:\Windows\SYSWOW64\qedit.dll
2012-11-19 12:51:28 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2012-11-19 12:51:28 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2012-11-19 12:51:28 ----A---- C:\Windows\SYSWOW64\logagent.exe
2012-11-19 12:51:28 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\sbe.dll
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\samcli.dll
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\propsys.dll
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2012-11-19 12:51:27 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\sdcpl.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\Ribbons.scr
2012-11-19 12:51:27 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2012-11-19 12:51:27 ----A---- C:\Windows\system32\RDPENCDD.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\printui.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\pnidui.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\pifmgr.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\ntdll.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\nslookup.exe
2012-11-19 12:51:27 ----A---- C:\Windows\system32\nlasvc.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\nlaapi.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\netshell.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\netlogon.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\netjoin.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\msxml6.dll
2012-11-19 12:51:27 ----A---- C:\Windows\system32\drivers\scsiport.sys
2012-11-19 12:51:26 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2012-11-19 12:51:26 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2012-11-19 12:51:26 ----A---- C:\Windows\system32\ncsi.dll
2012-11-19 12:51:26 ----A---- C:\Windows\system32\MultiDigiMon.exe
2012-11-19 12:51:25 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2012-11-19 12:51:25 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2012-11-19 12:51:25 ----A---- C:\Windows\system32\OobeFldr.dll
2012-11-19 12:51:25 ----A---- C:\Windows\system32\odbctrac.dll
2012-11-19 12:51:24 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2012-11-19 12:51:23 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2012-11-19 12:51:23 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2012-11-19 12:51:23 ----A---- C:\Windows\system32\drivers\nvstor.sys
2012-11-19 12:51:23 ----A---- C:\Windows\system32\drivers\nvraid.sys
2012-11-19 12:51:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-11-19 12:51:22 ----A---- C:\Windows\system32\CertPolEng.dll
2012-11-19 12:51:22 ----A---- C:\Windows\system32\certcli.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\cmd.exe
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\authui.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2012-11-19 12:51:21 ----A---- C:\Windows\SYSWOW64\activeds.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2012-11-19 12:51:21 ----A---- C:\Windows\system32\drivers\cdrom.sys
2012-11-19 12:51:21 ----A---- C:\Windows\system32\drivers\appid.sys
2012-11-19 12:51:21 ----A---- C:\Windows\system32\drivers\amdxata.sys
2012-11-19 12:51:21 ----A---- C:\Windows\system32\drivers\amdsata.sys
2012-11-19 12:51:21 ----A---- C:\Windows\system32\diagperf.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\dbghelp.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\dbgeng.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\d3d9.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\d3d10level9.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\consent.exe
2012-11-19 12:51:21 ----A---- C:\Windows\system32\conhost.exe
2012-11-19 12:51:21 ----A---- C:\Windows\system32\comdlg32.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\certmgr.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\cdd.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\bcdsrv.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\bcdedit.exe
2012-11-19 12:51:21 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\authui.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\appinfo.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\aepdu.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\aeinv.dll
2012-11-19 12:51:21 ----A---- C:\Windows\system32\acppage.dll
2012-11-19 12:51:20 ----A---- C:\Windows\system32\ftp.exe
2012-11-19 12:51:20 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2012-11-19 12:51:19 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2012-11-19 12:51:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-11-19 12:51:19 ----A---- C:\Windows\SYSWOW64\evr.dll
2012-11-19 12:51:19 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2012-11-19 12:51:19 ----A---- C:\Windows\system32\imapi2fs.dll
2012-11-19 12:51:19 ----A---- C:\Windows\system32\iepeers.dll
2012-11-19 12:51:19 ----A---- C:\Windows\system32\ieframe.dll
2012-11-19 12:51:19 ----A---- C:\Windows\system32\elsTrans.dll
2012-11-19 12:51:19 ----A---- C:\Windows\system32\drivers\http.sys
2012-11-19 12:51:19 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2012-11-19 12:51:19 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2012-11-19 12:51:19 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2012-11-19 12:51:18 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2012-11-19 12:51:18 ----A---- C:\Windows\system32\Display.dll
2012-11-19 12:51:17 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2012-11-19 12:51:17 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2012-11-19 12:51:17 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2012-11-19 12:51:17 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2012-11-19 12:51:17 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2012-11-19 12:51:17 ----A---- C:\Windows\system32\thumbcache.dll
2012-11-19 12:51:17 ----A---- C:\Windows\system32\taskschd.dll
2012-11-19 12:51:17 ----A---- C:\Windows\system32\tabcal.exe
2012-11-19 12:51:17 ----A---- C:\Windows\system32\SearchFolder.dll
2012-11-19 12:51:17 ----A---- C:\Windows\system32\Faultrep.dll
2012-11-19 12:51:17 ----A---- C:\Windows\system32\ExplorerFrame.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\wvc.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\spp.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2012-11-19 12:51:15 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\wwanconn.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\wucltux.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\wsqmcons.exe
2012-11-19 12:51:15 ----A---- C:\Windows\system32\wpdwcn.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\wpd_ci.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\WMVDECOD.DLL
2012-11-19 12:51:15 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2012-11-19 12:51:15 ----A---- C:\Windows\system32\wmpeffects.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\wmdrmnet.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\wmdrmdev.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\WMADMOD.DLL
2012-11-19 12:51:15 ----A---- C:\Windows\system32\wkssvc.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\winhttp.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\sysmain.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\sysclass.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\srchadmin.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\sqmapi.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\sppsvc.exe
2012-11-19 12:51:15 ----A---- C:\Windows\system32\spp.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\shwebsvc.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\shell32.dll
2012-11-19 12:51:15 ----A---- C:\Windows\system32\drivers\storport.sys
2012-11-19 12:51:14 ----A---- C:\Windows\system32\wsdchngr.dll
2012-11-19 12:51:14 ----A---- C:\Windows\system32\ws2_32.dll
2012-11-19 12:51:14 ----A---- C:\Windows\system32\userinit.exe
2012-11-19 12:51:14 ----A---- C:\Windows\system32\drivers\volsnap.sys
2012-11-19 12:51:13 ----A---- C:\Windows\twain_32.dll
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\wdc.dll
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\untfs.dll
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\shacct.dll
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2012-11-19 12:51:13 ----A---- C:\Windows\SYSWOW64\secproc.dll
2012-11-19 12:51:13 ----A---- C:\Windows\system32\WerFaultSecure.exe
2012-11-19 12:51:13 ----A---- C:\Windows\system32\webio.dll
2012-11-19 12:51:13 ----A---- C:\Windows\system32\VSSVC.exe
2012-11-19 12:51:13 ----A---- C:\Windows\system32\vssapi.dll
2012-11-19 12:51:13 ----A---- C:\Windows\system32\vss_ps.dll
2012-11-19 12:51:13 ----A---- C:\Windows\system32\umb.dll
2012-11-19 12:51:13 ----A---- C:\Windows\system32\drivers\umbus.sys
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\logman.exe
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2012-11-19 12:51:11 ----A---- C:\Windows\SYSWOW64\itircl.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\OpcServices.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\ole32.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\netutils.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\mscorier.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2012-11-19 12:51:11 ----A---- C:\Windows\system32\mimefilt.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\mfps.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\MFPlay.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\mfds.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\mf.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\Mcx2Svc.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\mblctr.exe
2012-11-19 12:51:11 ----A---- C:\Windows\system32\luainstall.dll
2012-11-19 12:51:11 ----A---- C:\Windows\system32\LogonUI.exe
2012-11-19 12:51:11 ----A---- C:\Windows\system32\KBDUS.DLL
2012-11-19 12:51:11 ----A---- C:\Windows\system32\KBDTUF.DLL
2012-11-19 12:51:11 ----A---- C:\Windows\system32\KBDINBEN.DLL
2012-11-19 12:51:11 ----A---- C:\Windows\system32\KBDGKL.DLL
2012-11-19 12:51:11 ----A---- C:\Windows\system32\IPSECSVC.DLL
2012-11-19 12:51:10 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\credui.dll
2012-11-19 12:51:09 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\netapi32.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2012-11-19 12:51:09 ----A---- C:\Windows\system32\muifontsetup.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\msvidc32.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\msrle32.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\mspbda.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\msfeedssync.exe
2012-11-19 12:51:09 ----A---- C:\Windows\system32\msfeedsbs.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\msdrm.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\msdmo.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\choice.exe
2012-11-19 12:51:09 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2012-11-19 12:51:09 ----A---- C:\Windows\system32\drivers\msdsm.sys
2012-11-19 12:51:09 ----A---- C:\Windows\system32\dot3cfg.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\d3d11.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\d2d1.dll
2012-11-19 12:51:09 ----A---- C:\Windows\system32\cryptsvc.dll
2012-11-19 12:51:08 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2012-11-19 12:51:08 ----A---- C:\Windows\SYSWOW64\autochk.exe
2012-11-19 12:51:08 ----A---- C:\Windows\system32\diskraid.exe
2012-11-19 12:51:08 ----A---- C:\Windows\system32\asycfilt.dll
2012-11-19 12:51:08 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2012-11-19 12:51:07 ----A---- C:\Windows\SYSWOW64\imm32.dll
2012-11-19 12:51:07 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2012-11-19 12:51:07 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-11-19 12:51:07 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2012-11-19 12:51:07 ----A---- C:\Windows\SYSWOW64\cabview.dll
2012-11-19 12:51:07 ----A---- C:\Windows\SYSWOW64\Bubbles.scr
2012-11-19 12:51:07 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-11-19 12:51:07 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2012-11-19 12:51:07 ----A---- C:\Windows\system32\imapi2.dll
2012-11-19 12:51:07 ----A---- C:\Windows\system32\iasrad.dll
2012-11-19 12:51:07 ----A---- C:\Windows\system32\iasacct.dll
2012-11-19 12:51:07 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2012-11-19 12:51:07 ----A---- C:\Windows\system32\fveapi.dll
2012-11-19 12:51:07 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2012-11-19 12:51:07 ----A---- C:\Windows\system32\drivers\fvevol.sys
2012-11-19 12:51:07 ----A---- C:\Windows\system32\cca.dll
2012-11-19 12:51:07 ----A---- C:\Windows\system32\Bubbles.scr
2012-11-19 12:51:07 ----A---- C:\Windows\system32\apphelp.dll
2012-11-19 12:51:06 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2012-11-19 12:51:06 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2012-11-19 12:51:06 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2012-11-19 12:51:06 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2012-11-19 12:51:06 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2012-11-19 12:51:06 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\tquery.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\themeui.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\fde.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\explorer.exe
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\esent.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2012-11-19 12:51:05 ----A---- C:\Windows\SYSWOW64\efscore.dll
2012-11-19 12:51:05 ----A---- C:\Windows\system32\UIRibbonRes.dll
2012-11-19 12:51:05 ----A---- C:\Windows\system32\UIRibbon.dll
2012-11-19 12:51:05 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2012-11-19 12:51:05 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2012-11-19 12:51:05 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2012-11-19 12:51:05 ----A---- C:\Windows\system32\tsmf.dll
2012-11-19 12:51:05 ----A---- C:\Windows\system32\TRAPI.dll
2012-11-19 12:51:05 ----A---- C:\Windows\system32\fontext.dll
2012-11-19 12:51:05 ----A---- C:\Windows\system32\FntCache.dll
2012-11-19 12:51:05 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2012-11-19 12:51:01 ----A---- C:\Windows\SYSWOW64\t2em/bed.dll
2012-11-19 12:51:01 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2012-11-19 12:51:01 ----A---- C:\Windows\system32\taskbarcpl.dll
2012-11-19 12:51:01 ----A---- C:\Windows\system32\takeown.exe
2012-11-19 12:51:01 ----A---- C:\Windows\system32\t2embed.dll
2012-11-19 12:51:01 ----A---- C:\Windows\system32\syssetup.dll
2012-11-19 12:51:00 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2012-11-19 12:51:00 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2012-11-19 12:51:00 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2012-11-19 12:51:00 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2012-11-19 12:51:00 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2012-11-19 12:51:00 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2012-11-19 12:51:00 ----A---- C:\Windows\SYSWOW64\winmm.dll
2012-11-19 12:51:00 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2012-11-19 12:51:00 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2012-11-19 12:51:00 ----A---- C:\Windows\system32\XpsRasterService.dll
2012-11-19 12:51:00 ----A---- C:\Windows\system32\wvc.dll
2012-11-19 12:51:00 ----A---- C:\Windows\system32\wuwebv.dll
2012-11-19 12:51:00 ----A---- C:\Windows\system32\wusa.exe
2012-11-19 12:51:00 ----A---- C:\Windows\system32\wuapp.exe
2012-11-19 12:51:00 ----A---- C:\Windows\system32\wow64win.dll
2012-11-19 12:51:00 ----A---- C:\Windows\system32\wow64cpu.dll
2012-11-19 12:51:00 ----A---- C:\Windows\system32\WMNetMgr.dll
2012-11-19 12:51:00 ----A---- C:\Windows\system32\WinSAT.exe
2012-11-19 12:51:00 ----A---- C:\Windows\system32\termsrv.dll
2012-11-19 12:51:00 ----A---- C:\Windows\system32\taskmgr.exe

Re: Windows update

Napsal: 20 lis 2012 17:33
od vyosek
Postupne mi sem ten log nasypne

Re: Windows update

Napsal: 20 lis 2012 17:38
od martinb01
2012-11-19 12:50:59 ----A---- C:\Windows\system32\wsnmp32.dll
2012-11-19 12:50:59 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2012-11-19 12:50:59 ----A---- C:\Windows\system32\wpdshext.dll
2012-11-19 12:50:59 ----A---- C:\Windows\system32\wow64.dll
2012-11-19 12:50:59 ----A---- C:\Windows\system32\WMVSDECD.DLL
2012-11-19 12:50:58 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2012-11-19 12:50:58 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2012-11-19 12:50:58 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2012-11-19 12:50:58 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2012-11-19 12:50:58 ----A---- C:\Windows\SYSWOW64\user32.dll
2012-11-19 12:50:58 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-11-19 12:50:58 ----A---- C:\Windows\SYSWOW64\upnp.dll
2012-11-19 12:50:58 ----A---- C:\Windows\system32\wdc.dll
2012-11-19 12:50:58 ----A---- C:\Windows\system32\usp10.dll
2012-11-19 12:50:58 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2012-11-19 12:50:58 ----A---- C:\Windows\system32\drivers\wanarp.sys
2012-11-19 12:50:58 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2012-11-19 12:50:58 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2012-11-19 12:50:56 ----A---- C:\Windows\system32\win32spl.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\sud.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\slwga.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\Ribbons.scr
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\relog.exe
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\rastls.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\quartz.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\qcap.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\pla.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2012-11-19 12:50:54 ----A---- C:\Windows\SYSWOW64\pdh.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\SyncCenter.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\StructuredQuery.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\spwizui.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\spreview.exe
2012-11-19 12:50:54 ----A---- C:\Windows\system32\sppwinob.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\sppcomapi.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\spoolsv.exe
2012-11-19 12:50:54 ----A---- C:\Windows\system32\spinstall.exe
2012-11-19 12:50:54 ----A---- C:\Windows\system32\SmiEngine.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\slui.exe
2012-11-19 12:50:54 ----A---- C:\Windows\system32\schedsvc.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\scesrv.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\scansetting.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\runonce.exe
2012-11-19 12:50:54 ----A---- C:\Windows\system32\rtutils.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\Robocopy.exe
2012-11-19 12:50:54 ----A---- C:\Windows\system32\riched32.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\riched20.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\regapi.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\rdpdd.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\rasmans.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\qdv.dll
2012-11-19 12:50:54 ----A---- C:\Windows\system32\perfmon.exe
2012-11-19 12:50:54 ----A---- C:\Windows\system32\drivers\rdbss.sys
2012-11-19 12:50:54 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2012-11-19 12:50:54 ----A---- C:\Windows\splwow64.exe
2012-11-19 12:50:53 ----A---- C:\Windows\system32\srrstr.dll
2012-11-19 12:50:53 ----A---- C:\Windows\system32\shunimpl.dll
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\migisol.dll
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\inseng.dll
2012-11-19 12:50:52 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2012-11-19 12:50:52 ----A---- C:\Windows\system32\sharemediacpl.dll
2012-11-19 12:50:52 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2012-11-19 12:50:52 ----A---- C:\Windows\system32\mcbuilder.exe
2012-11-19 12:50:52 ----A---- C:\Windows\system32\manage-bde.exe
2012-11-19 12:50:52 ----A---- C:\Windows\system32\lsasrv.dll
2012-11-19 12:50:52 ----A---- C:\Windows\system32\lpksetup.exe
2012-11-19 12:50:52 ----A---- C:\Windows\system32\logman.exe
2012-11-19 12:50:52 ----A---- C:\Windows\system32\localspl.dll
2012-11-19 12:50:52 ----A---- C:\Windows\system32\KMSVC.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\KBDSG.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\KBDNEPR.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\kbdlk41a.dll
2012-11-19 12:50:52 ----A---- C:\Windows\system32\KBDINKAN.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\KBDINHIN.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\KBDBULG.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\iTVData.dll
2012-11-19 12:50:52 ----A---- C:\Windows\system32\iprtrmgr.dll
2012-11-19 12:50:52 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\IKEEXT.DLL
2012-11-19 12:50:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-11-19 12:50:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-11-19 12:50:52 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2012-11-19 12:50:52 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2012-11-19 12:50:51 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2012-11-19 12:50:51 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2012-11-19 12:50:51 ----A---- C:\Windows\SYSWOW64\netshell.dll
2012-11-19 12:50:51 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2012-11-19 12:50:51 ----A---- C:\Windows\system32\odbc32.dll
2012-11-19 12:50:51 ----A---- C:\Windows\system32\nrpsrv.dll
2012-11-19 12:50:51 ----A---- C:\Windows\system32\netid.dll
2012-11-19 12:50:51 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-11-19 12:50:51 ----A---- C:\Windows\system32\drivers\netbt.sys
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\ole32.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\nci.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\credssp.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2012-11-19 12:50:50 ----A---- C:\Windows\SYSWOW64\calc.exe
2012-11-19 12:50:50 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\PnPUnattend.exe
2012-11-19 12:50:50 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\nlsbres.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\NAPHLPR.DLL
2012-11-19 12:50:50 ----A---- C:\Windows\system32\napdsnap.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\Mystify.scr
2012-11-19 12:50:50 ----A---- C:\Windows\system32\mswsock.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\msv1_0.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\mstask.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\msscp.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\msnetobj.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\msiexec.exe
2012-11-19 12:50:50 ----A---- C:\Windows\system32\msftedit.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\msfeeds.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\mscoree.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\mscms.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\MPSSVC.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-11-19 12:50:50 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2012-11-19 12:50:50 ----A---- C:\Windows\system32\drivers\mpio.sys
2012-11-19 12:50:50 ----A---- C:\Windows\system32\drivers\dfsc.sys
2012-11-19 12:50:50 ----A---- C:\Windows\system32\drivers\cng.sys
2012-11-19 12:50:50 ----A---- C:\Windows\system32\dhcpcore.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\cryptui.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\clusapi.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\certprop.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\CertEnroll.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\cabview.dll
2012-11-19 12:50:50 ----A---- C:\Windows\system32\browseui.dll
2012-11-19 12:50:49 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2012-11-19 12:50:49 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2012-11-19 12:50:49 ----A---- C:\Windows\SYSWOW64\acppage.dll
2012-11-19 12:50:49 ----A---- C:\Windows\system32\drivers\acpi.sys
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\ftp.exe
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\findstr.exe
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\dpx.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2012-11-19 12:50:48 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\tlscsp.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\hgprint.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\hgcpl.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\gdi32.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\FXSUNATD.exe
2012-11-19 12:50:48 ----A---- C:\Windows\system32\FXSSVC.exe
2012-11-19 12:50:48 ----A---- C:\Windows\system32\FXSMON.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\fphc.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\fms.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\eudcedit.exe
2012-11-19 12:50:48 ----A---- C:\Windows\system32\esent.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\EncDec.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\DxpTaskSync.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\DXP.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\drmmgrtn.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\drivers\hidusb.sys
2012-11-19 12:50:48 ----A---- C:\Windows\system32\drivers\hidclass.sys
2012-11-19 12:50:48 ----A---- C:\Windows\system32\dot3ui.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\diskpart.exe
2012-11-19 12:50:48 ----A---- C:\Windows\system32\BlbEvents.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\blackbox.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\biocpl.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\BFE.DLL
2012-11-19 12:50:48 ----A---- C:\Windows\system32\bcryptprimitives.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\basecsp.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\AxInstSv.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2012-11-19 12:50:48 ----A---- C:\Windows\system32\autochk.exe
2012-11-19 12:50:48 ----A---- C:\Windows\bfsvc.exe
2012-11-19 12:50:47 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2012-11-19 12:50:47 ----A---- C:\Windows\SYSWOW64\takeown.exe
2012-11-19 12:50:47 ----A---- C:\Windows\system32\upnp.dll
2012-11-19 12:50:47 ----A---- C:\Windows\system32\untfs.dll
2012-11-19 12:50:47 ----A---- C:\Windows\system32\themecpl.dll
2012-11-19 12:50:47 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-11-19 12:50:47 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2012-11-19 12:50:47 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2012-11-19 12:50:47 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2012-11-19 12:50:46 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2012-11-19 12:50:46 ----A---- C:\Windows\SYSWOW64\twext.dll
2012-11-19 12:50:46 ----A---- C:\Windows\SYSWOW64\stobject.dll
2012-11-19 12:50:46 ----A---- C:\Windows\system32\tzutil.exe
2012-11-19 12:50:46 ----A---- C:\Windows\system32\twext.dll
2012-11-19 12:50:46 ----A---- C:\Windows\system32\sspisrv.dll
2012-11-19 12:50:46 ----A---- C:\Windows\system32\sspicli.dll
2012-11-19 12:50:46 ----A---- C:\Windows\system32\drivers\udfs.sys
2012-11-19 12:50:46 ----A---- C:\Windows\system32\drivers\tunnel.sys
2012-11-19 12:50:46 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2012-11-19 12:50:45 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2012-11-19 12:50:45 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\wmpsrcwp.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\WMPhoto.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\wmdrmsdk.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\wlanmsm.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\wlangpui.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\wkscli.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\wintrust.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\winlogon.exe
2012-11-19 12:50:45 ----A---- C:\Windows\system32\wininet.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\WindowsCodecs.dll
2012-11-19 12:50:45 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2012-11-19 12:50:44 ----A---- C:\Windows\SYSWOW64\wusa.exe
2012-11-19 12:50:44 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2012-11-19 12:50:44 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2012-11-19 12:50:44 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2012-11-19 12:50:44 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2012-11-19 12:50:44 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2012-11-19 12:50:44 ----A---- C:\Windows\system32\wwanprotdim.dll
2012-11-19 12:50:44 ----A---- C:\Windows\system32\wups.dll
2012-11-19 12:50:44 ----A---- C:\Windows\system32\wudriver.dll
2012-11-19 12:50:44 ----A---- C:\Windows\system32\wuapi.dll
2012-11-19 12:50:44 ----A---- C:\Windows\system32\WsmSvc.dll
2012-11-19 12:50:44 ----A---- C:\Windows\system32\WSDApi.dll
2012-11-19 12:50:44 ----A---- C:\Windows\system32\WPDSp.dll
2012-11-19 12:50:44 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2012-11-19 12:50:42 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2012-11-19 12:50:42 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2012-11-19 12:50:42 ----A---- C:\Windows\SYSWOW64\wer.dll
2012-11-19 12:50:42 ----A---- C:\Windows\SYSWOW64\webservices.dll
2012-11-19 12:50:42 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2012-11-19 12:50:42 ----A---- C:\Windows\SYSWOW64\Vault.dll
2012-11-19 12:50:42 ----A---- C:\Windows\SYSWOW64\userinit.exe
2012-11-19 12:50:42 ----A---- C:\Windows\SYSWOW64\userenv.dll
2012-11-19 12:50:42 ----A---- C:\Windows\system32\wiadefui.dll
2012-11-19 12:50:42 ----A---- C:\Windows\system32\wevtsvc.dll
2012-11-19 12:50:42 ----A---- C:\Windows\system32\werconcpl.dll
2012-11-19 12:50:42 ----A---- C:\Windows\system32\webservices.dll
2012-11-19 12:50:42 ----A---- C:\Windows\system32\vfwwdm32.dll
2012-11-19 12:50:42 ----A---- C:\Windows\system32\vdsutil.dll
2012-11-19 12:50:42 ----A---- C:\Windows\system32\vds.exe
2012-11-19 12:50:42 ----A---- C:\Windows\system32\VAN.dll
2012-11-19 12:50:41 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2012-11-19 12:50:41 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2012-11-19 12:50:41 ----A---- C:\Windows\system32\wcncsvc.dll
2012-11-19 12:50:41 ----A---- C:\Windows\system32\wavemsp.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\scecli.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2012-11-19 12:50:40 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\srcore.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\sqlcese30.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\sppnp.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\schannel.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\shsvcs.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\secur32.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\scecli.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\rstrui.exe
2012-11-19 12:50:40 ----A---- C:\Windows\system32\rpcrt4.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2012-11-19 12:50:40 ----A---- C:\Windows\system32\relog.exe
2012-11-19 12:50:40 ----A---- C:\Windows\system32\rastls.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\raschap.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\RacEngn.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\Query.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\qmgr.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\QCLIPROV.DLL
2012-11-19 12:50:40 ----A---- C:\Windows\system32\QAGENTRT.DLL
2012-11-19 12:50:40 ----A---- C:\Windows\system32\QAGENT.DLL
2012-11-19 12:50:40 ----A---- C:\Windows\system32\proquota.exe
2012-11-19 12:50:40 ----A---- C:\Windows\system32\propsys.dll
2012-11-19 12:50:40 ----A---- C:\Windows\system32\drivers\scfilter.sys
2012-11-19 12:50:40 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2012-11-19 12:50:39 ----A---- C:\Windows\SYSWOW64\mfds.dll
2012-11-19 12:50:39 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2012-11-19 12:50:39 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2012-11-19 12:50:39 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2012-11-19 12:50:39 ----A---- C:\Windows\system32\spopk.dll
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\netid.dll
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\mf.dll
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\system32\ntlanman.dll
2012-11-19 12:50:38 ----A---- C:\Windows\system32\netplwiz.dll
2012-11-19 12:50:38 ----A---- C:\Windows\system32\netfxperf.dll
2012-11-19 12:50:38 ----A---- C:\Windows\system32\mmcndmgr.dll
2012-11-19 12:50:38 ----A---- C:\Windows\system32\logoncli.dll
2012-11-19 12:50:38 ----A---- C:\Windows\system32\KBDSF.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\system32\KBDPO.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\system32\KBDMON.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\system32\KBDINMAR.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\system32\KBDGEO.DLL
2012-11-19 12:50:38 ----A---- C:\Windows\system32\iyuv_32.dll
2012-11-19 12:50:37 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2012-11-19 12:50:37 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2012-11-19 12:50:37 ----A---- C:\Windows\SYSWOW64\onexui.dll
2012-11-19 12:50:37 ----A---- C:\Windows\system32\ocsetup.exe
2012-11-19 12:50:36 ----A---- C:\Windows\SYSWOW64\onex.dll
2012-11-19 12:50:36 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2012-11-19 12:50:36 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2012-11-19 12:50:36 ----A---- C:\Windows\SYSWOW64\occache.dll
2012-11-19 12:50:36 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2012-11-19 12:50:36 ----A---- C:\Windows\SYSWOW64\msrating.dll
2012-11-19 12:50:36 ----A---- C:\Windows\system32\odbcconf.dll
2012-11-19 12:50:36 ----A---- C:\Windows\system32\ocsetapi.dll
2012-11-19 12:50:36 ----A---- C:\Windows\system32\ntshrui.dll
2012-11-19 12:50:36 ----A---- C:\Windows\system32\msieftp.dll
2012-11-19 12:50:35 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2012-11-19 12:50:35 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2012-11-19 12:50:35 ----A---- C:\Windows\system32\mssphtb.dll
2012-11-19 12:50:35 ----A---- C:\Windows\system32\msasn1.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\Mystify.scr
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\certcli.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2012-11-19 12:50:34 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\net1.exe
2012-11-19 12:50:34 ----A---- C:\Windows\system32\ncryptui.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\mydocs.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\msyuv.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\mstsc.exe
2012-11-19 12:50:34 ----A---- C:\Windows\system32\mssvp.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\mssrch.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2012-11-19 12:50:34 ----A---- C:\Windows\system32\drivers\afd.sys
2012-11-19 12:50:34 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2012-11-19 12:50:34 ----A---- C:\Windows\system32\DeviceCenter.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\davclnt.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\d3d10warp.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\cmstp.exe
2012-11-19 12:50:34 ----A---- C:\Windows\system32\cfgmgr32.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\cdosys.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\browser.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\bcdboot.exe
2012-11-19 12:50:34 ----A---- C:\Windows\system32\actxprxy.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\ActionQueue.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\ActionCenter.dll
2012-11-19 12:50:34 ----A---- C:\Windows\system32\accessibilitycpl.dll
2012-11-19 12:50:33 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2012-11-19 12:50:33 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2012-11-19 12:50:33 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2012-11-19 12:50:33 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2012-11-19 12:50:33 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2012-11-19 12:50:33 ----A---- C:\Windows\system32\hal.dll
2012-11-19 12:50:33 ----A---- C:\Windows\system32\gpsvc.dll
2012-11-19 12:50:33 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2012-11-19 12:50:33 ----A---- C:\Windows\system32\cabinet.dll
2012-11-19 12:50:33 ----A---- C:\Windows\system32\autoplay.dll
2012-11-19 12:50:33 ----A---- C:\Windows\system32\autofmt.exe
2012-11-19 12:50:32 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2012-11-19 12:50:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-11-19 12:50:32 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2012-11-19 12:50:32 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2012-11-19 12:50:32 ----A---- C:\Windows\SYSWOW64\Display.dll
2012-11-19 12:50:32 ----A---- C:\Windows\system32\inetpp.dll
2012-11-19 12:50:32 ----A---- C:\Windows\system32\evr.dll
2012-11-19 12:50:32 ----A---- C:\Windows\system32\efscore.dll
2012-11-19 12:50:32 ----A---- C:\Windows\system32\dwmredir.dll
2012-11-19 12:50:32 ----A---- C:\Windows\system32\dsauth.dll
2012-11-19 12:50:32 ----A---- C:\Windows\system32\drvstore.dll
2012-11-19 12:50:32 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-11-19 12:50:32 ----A---- C:\Windows\system32\dot3svc.dll
2012-11-19 12:50:32 ----A---- C:\Windows\system32\dot3msm.dll
2012-11-19 12:50:32 ----A---- C:\Windows\system32\dot3api.dll
2012-11-19 12:50:32 ----A---- C:\Windows\explorer.exe
2012-11-19 12:50:31 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2012-11-19 12:50:31 ----A---- C:\Windows\SYSWOW64\fontext.dll
2012-11-19 12:50:31 ----A---- C:\Windows\system32\fde.dll
2012-11-19 12:50:30 ----A---- C:\Windows\system32\syncui.dll
2012-11-19 12:50:29 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2012-11-19 12:50:29 ----A---- C:\Windows\SYSWOW64\ssText3d.scr
2012-11-19 12:50:29 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2012-11-19 12:50:29 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2012-11-19 12:50:29 ----A---- C:\Windows\SYSWOW64\sppc.dll
2012-11-19 12:50:29 ----A---- C:\Windows\system32\tquery.dll
2012-11-19 12:50:29 ----A---- C:\Windows\system32\tcpipcfg.dll
2012-11-19 12:50:29 ----A---- C:\Windows\system32\srvcli.dll
2012-11-19 12:50:29 ----A---- C:\Windows\system32\SndVolSSO.dll
2012-11-19 12:50:29 ----A---- C:\Windows\system32\SndVol.exe
2012-11-19 12:50:29 ----A---- C:\Windows\system32\drivers\tdx.sys
2012-11-19 12:50:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-11-19 12:50:28 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2012-11-19 12:50:28 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2012-11-19 12:50:28 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2012-11-19 12:50:28 ----A---- C:\Windows\system32\WinSCard.dll
2012-11-19 12:50:28 ----A---- C:\Windows\system32\WebClnt.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\utildll.dll
2012-11-19 12:50:26 ----A---- C:\Windows\SYSWOW64\usp10.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\wmpdxm.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\wbengine.exe
2012-11-19 12:50:26 ----A---- C:\Windows\system32\wbemcomn.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\vpnikeapi.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\vpnike.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\Vault.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\urlmon.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\tzres.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\tsbyuv.dll
2012-11-19 12:50:26 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\riched32.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\riched20.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\qdv.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\qasf.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\proquota.exe
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2012-11-19 12:50:24 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\schtasks.exe
2012-11-19 12:50:24 ----A---- C:\Windows\system32\schedcli.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\shlwapi.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\shdocvw.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\shacct.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\setupapi.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\SensorsCpl.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\secproc_ssp.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\rpchttp.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2012-11-19 12:50:24 ----A---- C:\Windows\system32\recovery.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\rdpcore.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\QUTIL.DLL
2012-11-19 12:50:24 ----A---- C:\Windows\system32\quartz.dll
2012-11-19 12:50:24 ----A---- C:\Windows\system32\prncache.dll
2012-11-19 12:50:23 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2012-11-19 12:50:23 ----A---- C:\Windows\system32\MdSched.exe
2012-11-19 12:50:23 ----A---- C:\Windows\system32\mciqtz32.dll
2012-11-19 12:50:23 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2012-11-19 12:50:23 ----A---- C:\Windows\system32\lsmproxy.dll
2012-11-19 12:50:22 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2012-11-19 12:50:22 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\localsec.dll
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\SYSWOW64\input.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\netiohlp.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\netcfgx.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\netcenter.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\msxml3.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\MSVidCtl.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\ListSvc.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\licmgr10.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\KBDTURME.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\system32\KBDMAORI.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\system32\KBDINTAM.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\system32\KBDGR1.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\system32\KBDCZ1.DLL
2012-11-19 12:50:21 ----A---- C:\Windows\system32\isoburn.exe
2012-11-19 12:50:21 ----A---- C:\Windows\system32\iscsium.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\iscsicli.exe
2012-11-19 12:50:21 ----A---- C:\Windows\system32\imagehlp.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\iasrecst.dll
2012-11-19 12:50:21 ----A---- C:\Windows\system32\httpapi.dll
2012-11-19 12:50:20 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2012-11-19 12:50:20 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2012-11-19 12:50:20 ----A---- C:\Windows\system32\mtxclu.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\netutils.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\msscp.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2012-11-19 12:50:19 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2012-11-19 12:50:19 ----A---- C:\Windows\system32\ntprint.dll
2012-11-19 12:50:19 ----A---- C:\Windows\system32\nltest.exe
2012-11-19 12:50:19 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2012-11-19 12:50:19 ----A---- C:\Windows\system32\msi.dll
2012-11-19 12:50:19 ----A---- C:\Windows\system32\msdtctm.dll
2012-11-19 12:50:19 ----A---- C:\Windows\system32\mprapi.dll
2012-11-19 12:50:19 ----A---- C:\Windows\system32\drivers\msahci.sys
2012-11-19 12:50:19 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2012-11-19 12:50:19 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2012-11-19 12:50:19 ----A---- C:\Windows\system32\cmd.exe
2012-11-19 12:50:19 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2012-11-19 12:50:19 ----A---- C:\Windows\system32\bootres.dll
2012-11-19 12:50:18 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2012-11-19 12:50:18 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2012-11-19 12:50:18 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2012-11-19 12:50:18 ----A---- C:\Windows\system32\drivers\ataport.sys
2012-11-19 12:50:18 ----A---- C:\Windows\system32\crypt32.dll
2012-11-19 12:50:18 ----A---- C:\Windows\system32\credui.dll
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\fphc.dll
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\azroles.dll
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2012-11-19 12:50:17 ----A---- C:\Windows\SYSWOW64\amstream.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\hbaapi.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\gameux.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\framedynos.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\framedyn.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\fdProxy.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\eapphost.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\eappgnui.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\eapp3hst.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\dxmasf.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\dxgi.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\dxdiagn.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\DWrite.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\bitsperf.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\batmeter.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\AzSqlExt.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\azroles.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\autoconv.exe
2012-11-19 12:50:17 ----A---- C:\Windows\system32\audiosrv.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\AudioSes.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\audiodg.exe
2012-11-19 12:50:17 ----A---- C:\Windows\system32\amstream.dll
2012-11-19 12:50:17 ----A---- C:\Windows\system32\aitagent.exe
2012-11-19 12:50:16 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2012-11-19 12:50:16 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2012-11-19 12:50:16 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2012-11-19 12:50:16 ----A---- C:\Windows\system32\dpx.dll
2012-11-19 12:50:16 ----A---- C:\Windows\system32\djoin.exe
2012-11-19 12:50:16 ----A---- C:\Windows\system32\dfshim.dll
2012-11-19 12:50:15 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-11-19 12:50:15 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2012-11-19 12:50:15 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2012-11-19 12:50:15 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2012-11-19 12:50:15 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2012-11-19 12:50:15 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2012-11-19 12:50:15 ----A---- C:\Windows\system32\user32.dll
2012-11-19 12:50:15 ----A---- C:\Windows\system32\unimdmat.dll
2012-11-19 12:50:15 ----A---- C:\Windows\system32\taskhost.exe
2012-11-19 12:50:15 ----A---- C:\Windows\system32\taskeng.exe
2012-11-19 12:50:15 ----A---- C:\Windows\system32\taskcomp.dll
2012-11-19 12:50:15 ----A---- C:\Windows\system32\TabSvc.dll
2012-11-19 12:50:15 ----A---- C:\Windows\system32\odbccp32.dll
2012-11-19 12:50:15 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2012-11-19 12:50:15 ----A---- C:\Windows\system32\drivers\termdd.sys
2012-11-19 12:50:15 ----A---- C:\Windows\system32\dps.dll
2012-11-19 12:50:14 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2012-11-19 12:50:14 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2012-11-19 12:50:14 ----A---- C:\Windows\SYSWOW64\sscore.dll
2012-11-19 12:50:14 ----A---- C:\Windows\system32\ssText3d.scr
2012-11-19 12:50:14 ----A---- C:\Windows\system32\spwmp.dll
2012-11-19 12:50:14 ----A---- C:\Windows\system32\sppobjs.dll
2012-11-19 12:50:13 ----A---- C:\Windows\SYSWOW64\sxs.dll
2012-11-19 12:50:13 ----A---- C:\Windows\SYSWOW64\spopk.dll
2012-11-19 12:50:13 ----A---- C:\Windows\system32\sud.dll
2012-11-19 12:50:12 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2012-11-19 12:50:12 ----A---- C:\Windows\SYSWOW64\syncui.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\resutils.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\regapi.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2012-11-19 12:50:11 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\xpsservices.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\WUDFx.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\WUDFHost.exe
2012-11-19 12:50:11 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\wshbth.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\WMVCORE.DLL
2012-11-19 12:50:11 ----A---- C:\Windows\system32\wmpmde.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\wmploc.DLL
2012-11-19 12:50:11 ----A---- C:\Windows\system32\wmp.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\Wldap32.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\wlanui.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\wlanpref.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\wisptis.exe
2012-11-19 12:50:11 ----A---- C:\Windows\system32\winsta.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\WinSATAPI.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\webcheck.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\WavDest.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\vdsbas.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\ReAgent.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\rdpd3d.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\rasppp.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2012-11-19 12:50:11 ----A---- C:\Windows\system32\QSHVHOST.DLL
2012-11-19 12:50:11 ----A---- C:\Windows\system32\qasf.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\puiobj.dll
2012-11-19 12:50:11 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-11-19 12:50:11 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-11-19 12:50:11 ----A---- C:\Windows\system32\drivers\volmgr.sys
2012-11-19 12:50:11 ----A---- C:\Windows\system32\drivers\raspptp.sys
2012-11-19 12:50:10 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2012-11-19 12:50:10 ----A---- C:\Windows\system32\remotepg.dll
2012-11-19 12:50:10 ----A---- C:\Windows\system32\rdpwsx.dll
2012-11-19 12:50:10 ----A---- C:\Windows\system32\PkgMgr.exe
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\runonce.exe
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\prncache.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\printui.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\perfts.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2012-11-19 12:50:09 ----A---- C:\Windows\SYSWOW64\mscms.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\shimgvw.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\shgina.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\setupcl.exe
2012-11-19 12:50:09 ----A---- C:\Windows\system32\SessEnv.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\secproc.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\scavengeui.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\samsrv.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\samcli.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\RpcRtRemote.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\RMActivate.exe
2012-11-19 12:50:09 ----A---- C:\Windows\system32\provsvc.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\prnfldr.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\PresentationHost.exe
2012-11-19 12:50:09 ----A---- C:\Windows\system32\powercpl.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\pla.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\photowiz.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\pdh.dll
2012-11-19 12:50:09 ----A---- C:\Windows\system32\msconfig.exe
2012-11-19 12:50:09 ----A---- C:\Windows\system32\drivers\rmcast.sys
2012-11-19 12:50:09 ----A---- C:\Windows\system32\drivers\pci.sys
2012-11-19 12:50:09 ----A---- C:\Windows\system32\drivers\pacer.sys
2012-11-19 12:50:08 ----A---- C:\Windows\SYSWOW64\shgina.dll
2012-11-19 12:50:08 ----A---- C:\Windows\system32\slwga.dll
2012-11-19 12:50:08 ----A---- C:\Windows\system32\sisbkup.dll
2012-11-19 12:50:08 ----A---- C:\Windows\system32\shsetup.dll
2012-11-19 12:50:08 ----A---- C:\Windows\system32\sethc.exe
2012-11-19 12:50:08 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\wmp.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\winsta.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\sethc.exe
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2012-11-19 12:50:07 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2012-11-19 12:50:07 ----A---- C:\Windows\system32\wmpshell.dll
2012-11-19 12:50:07 ----A---- C:\Windows\system32\wmpps.dll
2012-11-19 12:50:07 ----A---- C:\Windows\system32\WMPEncEn.dll
2012-11-19 12:50:07 ----A---- C:\Windows\system32\wmicmiplugin.dll
2012-11-19 12:50:07 ----A---- C:\Windows\system32\wksprt.exe
2012-11-19 12:50:07 ----A---- C:\Windows\system32\mshtmled.dll
2012-11-19 12:50:07 ----A---- C:\Windows\system32\azroleui.dll
2012-11-19 12:50:07 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2012-11-19 12:50:06 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-11-19 12:50:06 ----A---- C:\Windows\system32\TSpkg.dll
2012-11-19 12:50:06 ----A---- C:\Windows\system32\tsgqec.dll
2012-11-19 12:50:06 ----A---- C:\Windows\system32\sxs.dll
2012-11-19 12:50:06 ----A---- C:\Windows\system32\stobject.dll
2012-11-19 12:50:06 ----A---- C:\Windows\system32\sscore.dll
2012-11-19 12:50:06 ----A---- C:\Windows\system32\spbcd.dll
2012-11-19 12:50:06 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2012-11-19 12:50:05 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2012-11-19 12:50:05 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2012-11-19 12:50:05 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2012-11-19 12:50:05 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2012-11-19 12:50:05 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2012-11-19 12:50:05 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2012-11-19 12:50:05 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2012-11-19 12:50:05 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2012-11-19 12:50:05 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\themeui.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\termmgr.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\tapisrv.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\systemcpl.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\srvsvc.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\sqlsrv32.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\spwizres.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\spwizeng.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\sppc.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\prntvpt.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2012-11-19 12:50:05 ----A---- C:\Windows\system32\onexui.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\onex.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\nshipsec.dll
2012-11-19 12:50:05 ----A---- C:\Windows\system32\drivers\tdi.sys
2012-11-19 12:50:04 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2012-11-19 12:50:04 ----A---- C:\Windows\system32\seclogon.dll
2012-11-19 12:50:04 ----A---- C:\Windows\system32\sdrsvc.dll
2012-11-19 12:50:04 ----A---- C:\Windows\system32\sdengin2.dll
2012-11-19 12:50:04 ----A---- C:\Windows\system32\sdclt.exe
2012-11-19 12:50:04 ----A---- C:\Windows\system32\networkexplorer.dll
2012-11-19 12:50:03 ----A---- C:\Windows\system32\repair-bde.exe
2012-11-19 12:50:03 ----A---- C:\Windows\system32\recdisc.exe
2012-11-19 12:50:03 ----A---- C:\Windows\system32\networkmap.dll
2012-11-19 12:50:02 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2012-11-19 12:50:02 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2012-11-19 12:50:02 ----A---- C:\Windows\SYSWOW64\Query.dll
2012-11-19 12:50:02 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\sbe.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\rpcss.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\RMActivate_isv.exe
2012-11-19 12:50:02 ----A---- C:\Windows\system32\rdpencom.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\rdpcfgex.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\qedit.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\qdvd.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\qcap.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\profsvc.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\profprov.dll
2012-11-19 12:50:02 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2012-11-19 12:50:02 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-11-19 12:50:00 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2012-11-19 12:50:00 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2012-11-19 12:50:00 ----A---- C:\Windows\system32\wscapi.dll
2012-11-19 12:50:00 ----A---- C:\Windows\system32\wpdbusenum.dll
2012-11-19 12:50:00 ----A---- C:\Windows\system32\wpccpl.dll
2012-11-19 12:49:54 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2012-11-19 12:49:54 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2012-11-19 12:49:54 ----A---- C:\Windows\system32\wuaueng.dll
2012-11-19 12:49:54 ----A---- C:\Windows\system32\wuauclt.exe
2012-11-19 12:49:54 ----A---- C:\Windows\system32\wshirda.dll
2012-11-19 12:49:53 ----A---- C:\Windows\SYSWOW64\wups.dll
2012-11-19 12:49:53 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2012-11-19 12:49:53 ----A---- C:\Windows\SYSWOW64\mstime.dll
2012-11-19 12:49:53 ----A---- C:\Windows\system32\wups2.dll
2012-11-19 12:49:53 ----A---- C:\Windows\system32\mstscax.dll
2012-11-19 12:49:53 ----A---- C:\Windows\system32\drivers\msrpc.sys
2012-11-19 12:49:52 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-11-19 12:49:52 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2012-11-19 12:49:52 ----A---- C:\Windows\SYSWOW64\net1.exe
2012-11-19 12:49:52 ----A---- C:\Windows\SYSWOW64\msutb.dll
2012-11-19 12:49:52 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2012-11-19 12:49:52 ----A---- C:\Windows\system32\secproc_isv.dll
2012-11-19 12:49:52 ----A---- C:\Windows\system32\msinfo32.exe
2012-11-19 12:49:52 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2012-11-19 12:49:51 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2012-11-19 12:49:51 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2012-11-19 12:49:51 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2012-11-19 12:49:51 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2012-11-19 12:49:51 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2012-11-19 12:49:51 ----A---- C:\Windows\system32\netdiagfx.dll
2012-11-19 12:49:51 ----A---- C:\Windows\system32\nci.dll
2012-11-19 12:49:51 ----A---- C:\Windows\system32\Narrator.exe
2012-11-19 12:49:51 ----A---- C:\Windows\system32\drivers\netio.sys
2012-11-19 12:49:51 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2012-11-19 12:49:51 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-11-19 12:49:50 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2012-11-19 12:49:50 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2012-11-19 12:49:50 ----A---- C:\Windows\system32\lsm.exe
2012-11-19 12:49:50 ----A---- C:\Windows\system32\localsec.dll
2012-11-19 12:49:50 ----A---- C:\Windows\system32\ipsmsnap.dll
2012-11-19 12:49:50 ----A---- C:\Windows\system32\drivers\ks.sys
2012-11-19 12:49:50 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2012-11-19 12:49:50 ----A---- C:\Windows\system32\aaclient.dll
2012-11-19 12:49:49 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2012-11-19 12:49:49 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2012-11-19 12:49:49 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2012-11-19 12:49:49 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2012-11-19 12:49:49 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2012-11-19 12:49:49 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2012-11-19 12:49:49 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2012-11-19 12:49:49 ----A---- C:\Windows\system32\KBDTUQ.DLL
2012-11-19 12:49:49 ----A---- C:\Windows\system32\KBDLT1.DLL
2012-11-19 12:49:49 ----A---- C:\Windows\system32\KBDBASH.DLL
2012-11-19 12:49:48 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2012-11-19 12:49:48 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2012-11-19 12:49:48 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2012-11-19 12:49:48 ----A---- C:\Windows\SYSWOW64\VAN.dll
2012-11-19 12:49:48 ----A---- C:\Windows\system32\wiaservc.dll
2012-11-19 12:49:48 ----A---- C:\Windows\system32\uxlib.dll
2012-11-19 12:49:48 ----A---- C:\Windows\system32\userenv.dll
2012-11-19 12:49:48 ----A---- C:\Windows\system32\KBDINTEL.DLL
2012-11-19 12:49:48 ----A---- C:\Windows\system32\KBDINORI.DLL
2012-11-19 12:49:47 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2012-11-19 12:49:47 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2012-11-19 12:49:47 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2012-11-19 12:49:47 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2012-11-19 12:49:47 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2012-11-19 12:49:47 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2012-11-19 12:49:47 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2012-11-19 12:49:47 ----A---- C:\Windows\system32\wiavideo.dll
2012-11-19 12:49:47 ----A---- C:\Windows\system32\usercpl.dll
2012-11-19 12:49:47 ----A---- C:\Windows\system32\TSWorkspace.dll
2012-11-19 12:49:47 ----A---- C:\Windows\system32\mfreadwrite.dll
2012-11-19 12:49:47 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2012-11-19 12:49:47 ----A---- C:\Windows\system32\mcmde.dll
2012-11-19 12:49:47 ----A---- C:\Windows\system32\mapistub.dll
2012-11-19 12:49:47 ----A---- C:\Windows\system32\mapi32.dll
2012-11-19 12:49:47 ----A---- C:\Windows\system32\DiagCpl.dll
2012-11-19 12:49:46 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2012-11-19 12:49:46 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2012-11-19 12:49:46 ----A---- C:\Windows\SYSWOW64\cca.dll
2012-11-19 12:49:46 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2012-11-19 12:49:46 ----A---- C:\Windows\SYSWOW64\browseui.dll
2012-11-19 12:49:46 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2012-11-19 12:49:46 ----A---- C:\Windows\system32\dwmcore.dll
2012-11-19 12:49:46 ----A---- C:\Windows\system32\dsuiext.dll
2012-11-19 12:49:46 ----A---- C:\Windows\system32\dskquoui.dll
2012-11-19 12:49:46 ----A---- C:\Windows\system32\dpnaddr.dll
2012-11-19 12:49:46 ----A---- C:\Windows\system32\dnscmmc.dll
2012-11-19 12:49:46 ----A---- C:\Windows\system32\dfrgui.exe
2012-11-19 12:49:46 ----A---- C:\Windows\system32\ci.dll
2012-11-19 12:49:46 ----A---- C:\Windows\system32\C_ISCII.DLL
2012-11-19 12:49:46 ----A---- C:\Windows\system32\browcli.dll
2012-11-19 12:49:46 ----A---- C:\Windows\system32\bitsadmin.exe
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\gameux.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\fms.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2012-11-19 12:49:45 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\zipfldr.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\ifsutil.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\iertutil.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\iedkcs32.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\FXSTIFF.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\FXSAPI.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\fixmapi.exe
2012-11-19 12:49:45 ----A---- C:\Windows\system32\findstr.exe
2012-11-19 12:49:45 ----A---- C:\Windows\system32\fdeploy.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\EhStorAPI.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2012-11-19 12:49:45 ----A---- C:\Windows\system32\cscdll.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\cscapi.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\credssp.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\CPFilters.dll
2012-11-19 12:49:45 ----A---- C:\Windows\system32\comctl32.dll
2012-11-19 12:46:49 ----D---- C:\Windows\system32\EventProviders

======List of files/folders modified in the last 1 month======

2012-11-20 17:01:38 ----RD---- C:\Program Files
2012-11-20 15:53:55 ----D---- C:\Windows\system32\config
2012-11-20 15:47:07 ----RD---- C:\Program Files (x86)
2012-11-20 15:47:07 ----D---- C:\Windows\system32\Tasks
2012-11-20 15:47:03 ----D---- C:\Windows\Tasks
2012-11-20 15:47:01 ----D---- C:\Program Files (x86)\Common Files
2012-11-20 15:46:36 ----HD---- C:\ProgramData
2012-11-20 15:46:36 ----D---- C:\Program Files (x86)\Google
2012-11-20 15:46:34 ----SHD---- C:\Windows\Installer
2012-11-20 15:46:14 ----SD---- C:\Users\Huang li nguen\AppData\Roaming\Microsoft
2012-11-20 15:46:00 ----SHD---- C:\System Volume Information
2012-11-20 15:44:14 ----A---- C:\Windows\system32\AutoRunFilter.ini
2012-11-20 15:44:02 ----D---- C:\Windows\Temp
2012-11-20 15:43:54 ----A---- C:\Windows\system32\ServiceFilter.ini
2012-11-20 15:43:16 ----D---- C:\ProgramData\NVIDIA
2012-11-20 13:05:03 ----D---- C:\Windows\system32\drivers
2012-11-20 13:04:50 ----D---- C:\Windows\SysWOW64
2012-11-20 13:04:50 ----D---- C:\Windows\System32
2012-11-20 13:04:31 ----D---- C:\Windows
2012-11-20 12:55:40 ----D---- C:\Windows\system32\DriverStore
2012-11-20 12:55:40 ----D---- C:\Windows\system32\catroot
2012-11-20 12:55:40 ----D---- C:\Windows\inf
2012-11-20 12:55:26 ----D---- C:\Windows\system32\drivers\etc
2012-11-20 10:49:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-11-19 16:42:19 ----D---- C:\ProgramData\Microsoft Help
2012-11-19 16:42:13 ----RSD---- C:\Windows\assembly
2012-11-19 16:40:40 ----D---- C:\Program Files (x86)\MSBuild
2012-11-19 16:40:09 ----SD---- C:\ProgramData\Microsoft
2012-11-19 15:42:10 ----D---- C:\Windows\system32\LogFiles
2012-11-19 14:27:53 ----D---- C:\Windows\Microsoft.NET
2012-11-19 14:12:22 ----D---- C:\Windows\Downloaded Program Files
2012-11-19 14:08:14 ----D---- C:\Windows\Panther
2012-11-19 14:08:14 ----D---- C:\Windows\ModemLogs
2012-11-19 14:08:14 ----D---- C:\Windows\Logs
2012-11-19 14:08:14 ----D---- C:\Windows\debug
2012-11-19 13:58:57 ----D---- C:\Windows\winsxs
2012-11-19 13:58:51 ----SHD---- C:\Boot
2012-11-19 13:52:45 ----D---- C:\Program Files (x86)\Windows Sidebar
2012-11-19 13:52:45 ----D---- C:\Program Files (x86)\Windows Portable Devices
2012-11-19 13:52:45 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2012-11-19 13:52:45 ----D---- C:\Program Files (x86)\Windows Media Player
2012-11-19 13:52:45 ----D---- C:\Program Files (x86)\Windows Mail
2012-11-19 13:52:45 ----D---- C:\Program Files (x86)\Internet Explorer
2012-11-19 13:52:44 ----D---- C:\Program Files\Windows Sidebar
2012-11-19 13:52:44 ----D---- C:\Program Files\Windows Mail
2012-11-19 13:52:44 ----D---- C:\Program Files\DVD Maker
2012-11-19 13:52:43 ----D---- C:\Program Files\Windows Portable Devices
2012-11-19 13:52:43 ----D---- C:\Program Files\Windows Photo Viewer
2012-11-19 13:52:43 ----D---- C:\Program Files\Windows Media Player
2012-11-19 13:52:43 ----D---- C:\Program Files\Windows Journal
2012-11-19 13:52:43 ----D---- C:\Program Files\Internet Explorer
2012-11-19 13:52:42 ----D---- C:\Windows\servicing
2012-11-19 13:52:42 ----D---- C:\Windows\ehome
2012-11-19 13:52:42 ----D---- C:\Program Files\Windows Defender
2012-11-19 13:52:34 ----D---- C:\Windows\SYSWOW64\Setup
2012-11-19 13:52:34 ----D---- C:\Windows\SYSWOW64\oobe
2012-11-19 13:52:34 ----D---- C:\Windows\SYSWOW64\migration
2012-11-19 13:52:34 ----D---- C:\Windows\SYSWOW64\da-DK
2012-11-19 13:52:34 ----D---- C:\Windows\SYSWOW64\cs
2012-11-19 13:52:34 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2012-11-19 13:52:33 ----D---- C:\Windows\SYSWOW64\wbem
2012-11-19 13:52:33 ----D---- C:\Windows\SYSWOW64\sppui
2012-11-19 13:52:33 ----D---- C:\Windows\SYSWOW64\migwiz
2012-11-19 13:52:33 ----D---- C:\Windows\SYSWOW64\manifeststore
2012-11-19 13:52:33 ----D---- C:\Windows\SYSWOW64\es-ES
2012-11-19 13:52:33 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-11-19 13:52:32 ----D---- C:\Windows\SYSWOW64\Dism
2012-11-19 13:52:20 ----D---- C:\Windows\system32\Setup
2012-11-19 13:52:20 ----D---- C:\Windows\system32\oobe
2012-11-19 13:52:20 ----D---- C:\Windows\system32\migration
2012-11-19 13:52:20 ----D---- C:\Windows\system32\en-US
2012-11-19 13:52:20 ----D---- C:\Windows\system32\da-DK
2012-11-19 13:52:20 ----D---- C:\Windows\system32\cs-CZ
2012-11-19 13:52:20 ----D---- C:\Windows\system32\cs
2012-11-19 13:52:20 ----D---- C:\Windows\system32\AdvancedInstallers
2012-11-19 13:52:20 ----D---- C:\Windows\PolicyDefinitions
2012-11-19 13:52:19 ----D---- C:\Windows\system32\sppui
2012-11-19 13:52:19 ----D---- C:\Windows\system32\manifeststore
2012-11-19 13:52:19 ----D---- C:\Windows\system32\es-ES
2012-11-19 13:52:19 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-11-19 13:52:18 ----D---- C:\Windows\system32\wbem
2012-11-19 13:52:14 ----D---- C:\Windows\system32\migwiz
2012-11-19 13:52:14 ----D---- C:\Windows\system32\Dism
2012-11-19 13:52:04 ----RSD---- C:\Windows\Fonts
2012-11-19 13:52:01 ----D---- C:\Windows\AppPatch
2012-11-19 13:51:46 ----D---- C:\Windows\system32\Boot
2012-11-19 13:37:36 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2012-11-19 13:37:36 ----A---- C:\Windows\system32\msclmd.dll
2012-11-19 13:31:15 ----D---- C:\Windows\system32\catroot2
2012-11-18 20:57:28 ----D---- C:\Windows\Prefetch

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2009-06-29 240672]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 54072]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 984144]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 370288]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 59728]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-12-22 2229280]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2009-08-21 84512]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-29 28704]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-08-18 236544]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-12 1799680]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 29696]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 117248]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 114304]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-09-17 359552]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-11-10 96896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-12-11 392296]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Windows\SysWOW64\nvSCPAPISvr.exe [2009-12-11 239208]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-03-23 135664]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-03-23 135664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-27 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-03-27 1255736]

-----------------EOF-----------------

Takhle je to komplet

Re: Windows update

Napsal: 20 lis 2012 17:40
od martinb01
A tady log z Farbaru

Farbar Service Scanner Version: 09-11-2012
Ran by Huang li nguen (administrator) on 20-11-2012 at 17:39:51
Running from "C:\Users\Huang li nguen\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-11-19 12:50] - [2010-11-20 01:23] - 0499712 ____A (Microsoft Corporation) D31DC7A16DEA4A9BAF179F3D6FBDB38C

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-11-19 12:50] - [2010-11-20 05:33] - 1924480 ____A (Microsoft Corporation) 509383E505C973ED7534A06B3D19688D

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Děkuji

Re: Windows update

Napsal: 20 lis 2012 17:58
od vyosek
:arrow: Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
:arrow: Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe
  • Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
  • Pokud mate Win XP spustte pod uctem Spravce\Administratora
  • Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
  • Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
  • Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
  • Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
  • Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
  • Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
  • Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

Re: Windows update

Napsal: 21 lis 2012 11:18
od martinb01
Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/21/2012 11:16:44 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\SysWOW64\ACEngSvr.exe (PID: 2936) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\Huang li nguen\Desktop\rkill\rkill-11-21-2012-11-16-50.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 11/21/2012 11:17:00 AM
Execution time: 0 hours(s), 0 minute(s), and 16 seconds(s)

Re: Windows update

Napsal: 21 lis 2012 11:27
od vyosek
Fajn, soupnete tam ComboFix

Re: Windows update

Napsal: 21 lis 2012 11:35
od martinb01
ComboFix 12-11-21.01 - Huang li nguen 21.11.2012 11:26:24.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4095.2848 [GMT 1:00]
Spuštěný z: c:\users\Huang li nguen\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\FullRemove.exe
c:\windows\msvcr71.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-10-21 do 2012-11-21 )))))))))))))))))))))))))))))))
.
.
2012-11-21 10:30 . 2012-11-21 10:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-20 16:01 . 2012-11-20 16:01 -------- d-----w- C:\rsit
2012-11-20 16:01 . 2012-11-20 16:01 -------- d-----w- c:\program files\trend micro
2012-11-20 14:39 . 2012-11-20 14:39 -------- d-----w- c:\users\Huang li nguen\AppData\Local\ElevatedDiagnostics
2012-11-20 13:32 . 2012-11-20 13:32 -------- d-----w- c:\users\Huang li nguen\AppData\Roaming\ParetoLogic
2012-11-20 13:32 . 2012-11-20 13:32 -------- d-----w- c:\users\Huang li nguen\AppData\Roaming\DriverCure
2012-11-20 13:32 . 2012-11-20 14:47 -------- d-----w- c:\programdata\ParetoLogic
2012-11-20 12:05 . 2012-10-30 22:51 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-11-20 12:05 . 2012-10-30 22:51 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-11-20 12:04 . 2012-10-15 16:59 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-11-20 12:04 . 2012-10-30 22:51 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-11-20 12:04 . 2012-10-30 22:51 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-11-20 12:04 . 2012-10-30 22:51 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-11-20 12:04 . 2012-10-30 22:50 285328 ----a-w- c:\windows\system32\aswBoot.exe
2012-11-20 12:04 . 2012-10-30 22:51 41224 ----a-w- c:\windows\avastSS.scr
2012-11-20 12:04 . 2012-10-30 22:50 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-11-20 12:04 . 2012-11-20 12:04 -------- d-----w- c:\programdata\AVAST Software
2012-11-20 12:04 . 2012-11-20 12:04 -------- d-----w- c:\program files\AVAST Software
2012-11-19 15:37 . 2012-11-19 15:37 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2012-11-19 15:37 . 2012-11-19 15:37 -------- d-----w- c:\users\Huang li nguen\AppData\Local\Microsoft Help
2012-11-19 13:07 . 2012-11-19 13:07 -------- d-----w- c:\program files\CCleaner
2012-11-19 13:04 . 2012-11-19 13:04 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-19 13:04 . 2012-11-19 13:04 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-11-19 13:04 . 2012-11-19 13:04 -------- d-----w- c:\windows\system32\Macromed
2012-11-19 12:56 . 2012-11-19 12:56 -------- d-----w- c:\windows\system32\log
2012-11-19 12:47 . 2012-11-19 12:47 -------- d-----w- c:\windows\system32\SPReview
2012-11-19 11:54 . 2010-11-20 04:32 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\rdpwd.sys.mui
2012-11-19 11:54 . 2010-11-20 04:26 3584 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbflt.sys.mui
2012-11-19 11:54 . 2010-11-20 04:32 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\GAGP30KX.SYS.mui
2012-11-19 11:53 . 2010-11-20 04:32 4608 ----a-w- c:\windows\system32\drivers\cs-CZ\kbdclass.sys.mui
2012-11-19 11:50 . 2010-11-20 04:27 67072 ----a-w- c:\windows\system32\wsnmp32.dll
2012-11-19 11:49 . 2010-11-20 04:27 2420736 ----a-w- c:\windows\system32\wuaueng.dll
2012-11-19 11:46 . 2012-11-19 11:46 -------- d-----w- c:\windows\system32\EventProviders
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-19 12:37 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-11-19 12:37 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2009-10-27 6998656]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2009-08-20 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
c:\users\Huang li nguen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.3.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
FancyStart daemon.lnk - c:\windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe [2010-3-23 12862]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-3-23 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 29696]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 114304]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-27 1255736]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2009-09-17 359552]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\windows\SysWOW64\nvSCPAPISvr.exe [2009-12-11 239208]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-08-18 236544]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-11-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-23 13:12]
.
2012-11-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-23 13:12]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ASUS WebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2009-12-24 1736704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-12-11 16414824]
"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2009-09-30 621440]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-09-01 323584]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 172.75.100.200
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-Setwallpaper - c:\programdata\SetWallpaper.cmd
Toolbar-Locked - (no file)
AddRemove-ASUS_Screensaver - c:\windows\system32\ASUS_Screensaver.scr
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-11-21 11:32:58
ComboFix-quarantined-files.txt 2012-11-21 10:32
.
Před spuštěním: Volných bajtů: 87 540 285 440
Po spuštění: Volných bajtů: 87 049 973 760
.
- - End Of File - - AFB6C67E4697EBDA5CA60C1FBCE062BE

Re: Windows update

Napsal: 21 lis 2012 13:04
od vyosek
Nastala nejaka zmena?

Re: Windows update

Napsal: 21 lis 2012 13:52
od martinb01
Bohužel. Stále stejná hláška.

Re: Windows update

Napsal: 21 lis 2012 13:53
od vyosek
:arrow: Stahnete Service Repair http://kb.eset.com/library/ESET/KB%20Te ... Repair.exe
  • Ulozte nejlepe na Plochu
  • Spustte a potvrdte Yes abyste potvrdil reinstalaci sluzeb
  • Nasledne kliknutim na Yes potvrdte restart PC
  • Na Plose vznikne slozka CC Support, najdete tam log SvcRepair.txt - mel by byt CC Support\Logs\SvcRepair.txt - vlozte mi jej sem

Re: Windows update

Napsal: 21 lis 2012 14:01
od martinb01
Log Opened: 2012-11-21 @ 13:56:29
13:56:29 - -----------------
13:56:29 - | Begin Logging |
13:56:29 - -----------------
13:56:29 - Fix started on a WIN_7 X64 computer
13:56:29 - Prep in progress. Please Wait.
13:56:30 - Prep complete
13:56:30 - Repairing Services Now. Please wait...
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Win7\BFE.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\SubLayer>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\Provider>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\Filter>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\BootTime\Filter>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\BootTime>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Win7\BITS.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Performance>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Win7\iphlpsvc.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Teredo>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Teredo\{FA88062C-9A61-4C1E-AC45-7143F8F01AAD}>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Teredo>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Isatap\{8AD2FB26-F91E-44F1-9B24-3C0AE56C9CE0}>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Isatap>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\IPHTTPS>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Interfaces>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\config>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Win7\MpsSvc.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\Teredo>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\RPC-EPMap>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\IPTLSOut>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\IPTLSIn>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\DHCP>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Win7\SharedAccess.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static\System>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable\System>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\GloballyOpenPorts>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\AuthorizedApplications>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Epoch2>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Epoch>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\FirewallRules>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Win7\WinDefend.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\TriggerInfo\0>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\TriggerInfo>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Win7\wscsvc.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Win7\wuauserv.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv>

SetACL finished successfully.
13:56:32 - Services Repair Complete.
13:56:35 - Reboot Initiated
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz