Stránka 1 z 2

Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 16:30
od RJZ
Zdravím,
použil jsem ComboFix a poté odinstaloval. Vše šlo jak mělo. Po restartu PC a zapnutí větších programů (týká se hlavně her), načítají velice pomalu, někdy až 5 minut, záleží na velikosti. Vím, že jsem neměl ComboFix spouštět, ale jevilo se mi to jako jediná možnost, risk nebo zisk. Bohužel, teď už je pozdě nad tím breřet. Díky za pomoc.


Logfile of random's system information tool 1.09 (written by random/random)
Run by Mira at 2012-12-30 16:19:43
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 42 GB (42%) free of 100 GB
Total RAM: 4095 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:19:47, on 30.12.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Program Files\trend micro\Mira.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_ss ... 5b39aa0528
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
O4 - HKUS\S-1-5-21-1594668502-3118042696-3743973280-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1594668502-3118042696-3743973280-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe
O8 - Extra context menu item: Download with &Media Finder - C:\Program Files (x86)\Media Finder\hook.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASDR - Unknown owner - C:\Windows\SysWOW64\ASDR.exe
O23 - Service: ATK Fast User Switch Service (ATKFUSService) - Unknown owner - C:\Windows\system32\ATKFUSService.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11022 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe"
C:\Windows\system32\ATKFUSService.exe
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
"C:\Program Files\ASUS\GamerOSD\ATKFastUserSwitching.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
taskeng.exe {C06CDF5B-77D9-4E56-A5F7-B694DBFBBEDC}
"C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe" -b
C:\Windows\SysWOW64\ASDR.exe
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files\Microsoft Device Center\itype.exe"
"C:\Program Files\Microsoft Device Center\ipoint.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe"
"C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe"
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\AUDIODG.EXE 0x9e4
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=6020.d5a0b00.209943780 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 6020 "\\.\pipe\gecko-crash-server-pipe.6020" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe" --proxy-stub-channel=Flash5984.63ADB7B8.41 --host-broker-channel=Flash5984.63ADB7B8.18467 --host-pid=5984 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe" --channel=400.003EF518.1686837552 --proxy-stub-channel=Flash5984.63ADB7B8.41 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll" --host-npapi-version=27 --type=renderer
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
"C:\Users\Mira\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.104.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.110.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.116.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.118.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.132.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.138.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37]
"Description"=
"Path"=C:\Windows\SysWOW64\npdeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_135.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
NPOFFICE.DLL
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default\extensions\
ffxtlbr@babylon.com

C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default\searchplugins\
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}]
Plugin for Media Finder - C:\Users\Mira\AppData\Roaming\Media Finder\Extensions\IEPlugin64.dll [2011-12-07 414720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
Babylon toolbar helper - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll [2011-08-14 270960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-09-24 329712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-09-24 59376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2010-03-25 1548096]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll [2010-11-21 1054520]
{98889811-442D-49dd-99D7-DC866BE87DBC} - Babylon Toolbar - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll [2011-08-14 237680]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
"IntelliType Pro"=C:\Program Files\Microsoft Device Center\itype.exe [2012-06-26 1464928]
"IntelliPoint"=C:\Program Files\Microsoft Device Center\ipoint.exe [2012-06-26 2004584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2012-04-04 3521424]
"KiesPDLR"=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-04-04 21392]
"KiesHelper"=C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe [2012-04-04 954256]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Advanced SystemCare 5"=C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe [2011-12-29 620376]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe []
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-06-05 2171904]
"ASUSGamerOSD"=C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe [2009-07-30 380928]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2012-10-30 4297136]
"NBAgent"=C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2011-11-18 1492264]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-09-17 254896]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 16:36
od RJZ
.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2012-12-30 16:19:43 ----D---- C:\rsit
2012-12-29 19:07:56 ----SHD---- C:\$RECYCLE.BIN
2012-12-29 18:42:30 ----D---- C:\Windows\temp
2012-12-29 15:35:59 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-12-29 15:35:58 ----A---- C:\Windows\system32\drivers\netio.sys
2012-12-29 15:35:58 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-12-29 13:48:07 ----D---- C:\Program Files\trend micro
2012-12-29 13:16:06 ----D---- C:\Program Files (x86)\MSXML 4.0
2012-12-29 13:08:56 ----A---- C:\Windows\SYSWOW64\winver.exe
2012-12-29 13:08:56 ----A---- C:\Windows\SYSWOW64\user32.dll
2012-12-29 13:08:56 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2012-12-29 13:08:56 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2012-12-29 13:08:56 ----A---- C:\Windows\SYSWOW64\slmgr.vbs
2012-12-28 19:06:45 ----A---- C:\Windows\system32\MRT.exe
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\wextract.exe
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\url.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\occache.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\msrating.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\msls31.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\mshta.exe
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\inseng.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\icardie.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2012-12-28 19:00:56 ----A---- C:\Windows\SYSWOW64\admparse.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\wininet.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\urlmon.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2012-12-28 19:00:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2012-12-28 19:00:56 ----A---- C:\Windows\system32\pngfilt.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\occache.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\msrating.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\msls31.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\mshtmler.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\mshtml.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\mshta.exe
2012-12-28 19:00:56 ----A---- C:\Windows\system32\msfeedssync.exe
2012-12-28 19:00:56 ----A---- C:\Windows\system32\msfeedsbs.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\jscript9.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\jscript.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\imgutil.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-28 19:00:56 ----A---- C:\Windows\system32\ieui.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\iesysprep.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\iertutil.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\iepeers.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\ieframe.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\ieakui.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\ieaksie.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\ieakeng.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\IEAdvpack.dll
2012-12-28 19:00:56 ----A---- C:\Windows\system32\admparse.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\wextract.exe
2012-12-28 19:00:55 ----A---- C:\Windows\system32\webcheck.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\vbscript.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\url.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\licmgr10.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\inseng.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\iexpress.exe
2012-12-28 19:00:55 ----A---- C:\Windows\system32\iesetup.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\iernonce.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\iedkcs32.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\ieapfltr.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\ieapfltr.dat
2012-12-28 19:00:55 ----A---- C:\Windows\system32\ie4uinit.exe
2012-12-28 19:00:55 ----A---- C:\Windows\system32\icardie.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\dxtrans.dll
2012-12-28 19:00:55 ----A---- C:\Windows\system32\dxtmsft.dll
2012-12-28 18:48:32 ----D---- C:\Windows\system32\SPReview
2012-12-28 18:48:03 ----D---- C:\Windows\system32\EventProviders
2012-12-28 18:47:42 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-12-28 18:47:42 ----A---- C:\Windows\system32\atmlib.dll
2012-12-28 18:47:41 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-12-28 18:47:41 ----A---- C:\Windows\system32\atmfd.dll
2012-12-28 18:43:37 ----A---- C:\Windows\system32\imagehlp.dll
2012-12-28 18:43:37 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-12-28 18:43:36 ----A---- C:\Windows\SYSWOW64\wmi.dll
2012-12-28 18:43:36 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2012-12-28 18:43:36 ----A---- C:\Windows\system32\wmi.dll
2012-12-28 18:39:45 ----A---- C:\Windows\system32\netfxperf.dll
2012-12-28 18:39:45 ----A---- C:\Windows\system32\dfshim.dll
2012-12-28 18:39:39 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2012-12-28 18:39:36 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2012-12-28 18:39:36 ----A---- C:\Windows\system32\mstscax.dll
2012-12-28 18:39:36 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2012-12-28 18:39:36 ----A---- C:\Windows\system32\d3d10warp.dll
2012-12-28 18:39:33 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2012-12-28 18:39:31 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2012-12-28 18:39:31 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2012-12-28 18:39:31 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2012-12-28 18:39:31 ----A---- C:\Windows\system32\tssrvlic.dll
2012-12-28 18:39:31 ----A---- C:\Windows\system32\sysmain.dll
2012-12-28 18:39:30 ----A---- C:\Windows\system32\RDVGHelper.exe
2012-12-28 18:39:29 ----A---- C:\Windows\SYSWOW64\pmcsnap.dll
2012-12-28 18:39:29 ----A---- C:\Windows\system32\MSVidCtl.dll
2012-12-28 18:39:28 ----A---- C:\Windows\system32\wmp.dll
2012-12-28 18:39:27 ----A---- C:\Windows\system32\mscoree.dll
2012-12-28 18:39:27 ----A---- C:\Windows\system32\mmcndmgr.dll
2012-12-28 18:39:26 ----A---- C:\Windows\system32\secproc_isv.dll
2012-12-28 18:39:26 ----A---- C:\Windows\system32\RMActivate_isv.exe
2012-12-28 18:39:26 ----A---- C:\Windows\system32\mf.dll
2012-12-28 18:39:25 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2012-12-28 18:39:25 ----A---- C:\Windows\system32\xpsservices.dll
2012-12-28 18:39:25 ----A---- C:\Windows\system32\secproc.dll
2012-12-28 18:39:25 ----A---- C:\Windows\system32\RMActivate.exe
2012-12-28 18:39:24 ----A---- C:\Windows\SYSWOW64\secproc.dll
2012-12-28 18:39:24 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2012-12-28 18:39:24 ----A---- C:\Windows\system32\rpcrt4.dll
2012-12-28 18:39:23 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2012-12-28 18:39:23 ----A---- C:\Windows\SYSWOW64\PushPrinterConnections.exe
2012-12-28 18:39:23 ----A---- C:\Windows\SYSWOW64\ppcsnap.dll
2012-12-28 18:39:23 ----A---- C:\Windows\system32\schedsvc.dll
2012-12-28 18:39:23 ----A---- C:\Windows\system32\ole32.dll
2012-12-28 18:39:22 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2012-12-28 18:39:22 ----A---- C:\Windows\system32\spwizui.dll
2012-12-28 18:39:21 ----A---- C:\Windows\SYSWOW64\mf.dll
2012-12-28 18:39:21 ----A---- C:\Windows\system32\wevtsvc.dll
2012-12-28 18:39:21 ----A---- C:\Windows\system32\taskschd.dll
2012-12-28 18:39:21 ----A---- C:\Windows\system32\RacEngn.dll
2012-12-28 18:39:21 ----A---- C:\Windows\system32\esent.dll
2012-12-28 18:39:21 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-12-28 18:39:21 ----A---- C:\Windows\system32\diagperf.dll
2012-12-28 18:39:20 ----A---- C:\Windows\system32\vssapi.dll
2012-12-28 18:39:20 ----A---- C:\Windows\system32\ExplorerFrame.dll
2012-12-28 18:39:19 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2012-12-28 18:39:19 ----A---- C:\Windows\system32\UIRibbon.dll
2012-12-28 18:39:19 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2012-12-28 18:39:19 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2012-12-28 18:39:19 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2012-12-28 18:39:18 ----A---- C:\Windows\SYSWOW64\wmp.dll
2012-12-28 18:39:17 ----A---- C:\Windows\SYSWOW64\esent.dll
2012-12-28 18:39:17 ----A---- C:\Windows\system32\WsmSvc.dll
2012-12-28 18:39:17 ----A---- C:\Windows\system32\WMVCORE.DLL
2012-12-28 18:39:16 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2012-12-28 18:39:16 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2012-12-28 18:39:16 ----A---- C:\Windows\system32\rdpdd.dll
2012-12-28 18:39:16 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2012-12-28 18:39:16 ----A---- C:\Windows\system32\PresentationHost.exe
2012-12-28 18:39:15 ----A---- C:\Windows\system32\WinSAT.exe
2012-12-28 18:39:15 ----A---- C:\Windows\system32\spreview.exe
2012-12-28 18:39:15 ----A---- C:\Windows\system32\spinstall.exe
2012-12-28 18:39:15 ----A---- C:\Windows\system32\MPSSVC.dll
2012-12-28 18:39:15 ----A---- C:\Windows\system32\CertEnroll.dll
2012-12-28 18:39:14 ----A---- C:\Windows\system32\WMVDECOD.DLL
2012-12-28 18:39:14 ----A---- C:\Windows\system32\d3d9.dll
2012-12-28 18:39:13 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2012-12-28 18:39:13 ----A---- C:\Windows\system32\SearchFolder.dll
2012-12-28 18:39:13 ----A---- C:\Windows\system32\IKEEXT.DLL
2012-12-28 18:39:13 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2012-12-28 18:39:12 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2012-12-28 18:39:12 ----A---- C:\Windows\system32\VSSVC.exe
2012-12-28 18:39:12 ----A---- C:\Windows\system32\gpsvc.dll
2012-12-28 18:39:12 ----A---- C:\Windows\system32\dwmcore.dll
2012-12-28 18:39:11 ----A---- C:\Windows\SYSWOW64\rdvgumd32.dll
2012-12-28 18:39:11 ----A---- C:\Windows\system32\drivers\http.sys
2012-12-28 18:39:11 ----A---- C:\Windows\system32\dbgeng.dll
2012-12-28 18:39:10 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2012-12-28 18:39:10 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-12-28 18:39:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2012-12-28 18:39:09 ----A---- C:\Windows\system32\TSWorkspace.dll
2012-12-28 18:39:09 ----A---- C:\Windows\system32\termsrv.dll
2012-12-28 18:39:09 ----A---- C:\Windows\system32\qmgr.dll
2012-12-28 18:39:09 ----A---- C:\Windows\system32\gpprefcl.dll
2012-12-28 18:39:09 ----A---- C:\Windows\system32\audiosrv.dll
2012-12-28 18:39:09 ----A---- C:\Windows\system32\actxprxy.dll
2012-12-28 18:39:08 ----A---- C:\Windows\system32\mstsc.exe
2012-12-28 18:39:07 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2012-12-28 18:39:07 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2012-12-28 18:39:07 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2012-12-28 18:39:07 ----A---- C:\Windows\system32\winhttp.dll
2012-12-28 18:39:07 ----A---- C:\Windows\system32\QAGENTRT.DLL
2012-12-28 18:39:07 ----A---- C:\Windows\system32\propsys.dll
2012-12-28 18:39:07 ----A---- C:\Windows\system32\netlogon.dll
2012-12-28 18:39:07 ----A---- C:\Windows\system32\msv1_0.dll
2012-12-28 18:39:07 ----A---- C:\Windows\system32\imapi2fs.dll
2012-12-28 18:39:07 ----A---- C:\Windows\system32\d3d11.dll
2012-12-28 18:39:06 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2012-12-28 18:39:06 ----A---- C:\Windows\system32\wbengine.exe
2012-12-28 18:39:06 ----A---- C:\Windows\system32\setupapi.dll
2012-12-28 18:39:06 ----A---- C:\Windows\system32\rpcss.dll
2012-12-28 18:39:06 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2012-12-28 18:39:05 ----A---- C:\Windows\system32\werconcpl.dll
2012-12-28 18:39:05 ----A---- C:\Windows\system32\taskeng.exe
2012-12-28 18:39:05 ----A---- C:\Windows\system32\odbc32.dll
2012-12-28 18:39:05 ----A---- C:\Windows\system32\authui.dll
2012-12-28 18:39:04 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2012-12-28 18:39:04 ----A---- C:\Windows\system32\WSDApi.dll
2012-12-28 18:39:04 ----A---- C:\Windows\system32\user32.dll
2012-12-28 18:39:04 ----A---- C:\Windows\system32\drivers\nvstor.sys
2012-12-28 18:39:04 ----A---- C:\Windows\system32\dhcpcore.dll
2012-12-28 18:39:04 ----A---- C:\Windows\system32\certmgr.dll
2012-12-28 18:39:03 ----A---- C:\Windows\SYSWOW64\wer.dll
2012-12-28 18:39:03 ----A---- C:\Windows\SYSWOW64\certcli.dll
2012-12-28 18:39:03 ----A---- C:\Windows\system32\umrdp.dll
2012-12-28 18:39:03 ----A---- C:\Windows\system32\scavengeui.dll
2012-12-28 18:39:03 ----A---- C:\Windows\system32\LSCSHostPolicy.dll
2012-12-28 18:39:03 ----A---- C:\Windows\system32\drivers\tdx.sys
2012-12-28 18:39:03 ----A---- C:\Windows\system32\drivers\netbt.sys
2012-12-28 18:39:02 ----A---- C:\Windows\system32\tsmf.dll
2012-12-28 18:39:02 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2012-12-28 18:39:02 ----A---- C:\Windows\system32\ncsi.dll
2012-12-28 18:39:02 ----A---- C:\Windows\system32\msdrm.dll
2012-12-28 18:39:02 ----A---- C:\Windows\system32\drivers\nvraid.sys
2012-12-28 18:39:01 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2012-12-28 18:39:01 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2012-12-28 18:39:01 ----A---- C:\Windows\system32\shlwapi.dll
2012-12-28 18:39:01 ----A---- C:\Windows\system32\rdpshell.exe
2012-12-28 18:39:01 ----A---- C:\Windows\system32\netshell.dll
2012-12-28 18:39:01 ----A---- C:\Windows\system32\msdtctm.dll
2012-12-28 18:39:01 ----A---- C:\Windows\system32\framedynos.dll
2012-12-28 18:39:00 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2012-12-28 18:39:00 ----A---- C:\Windows\system32\ws2_32.dll
2012-12-28 18:39:00 ----A---- C:\Windows\system32\wmicmiplugin.dll
2012-12-28 18:39:00 ----A---- C:\Windows\system32\winlogon.exe
2012-12-28 18:39:00 ----A---- C:\Windows\system32\usp10.dll
2012-12-28 18:39:00 ----A---- C:\Windows\system32\nlasvc.dll
2012-12-28 18:39:00 ----A---- C:\Windows\system32\netcfgx.dll
2012-12-28 18:39:00 ----A---- C:\Windows\system32\appmgr.dll
2012-12-28 18:38:59 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2012-12-28 18:38:59 ----A---- C:\Windows\system32\wmpps.dll
2012-12-28 18:38:59 ----A---- C:\Windows\system32\Query.dll
2012-12-28 18:38:59 ----A---- C:\Windows\system32\mswsock.dll
2012-12-28 18:38:59 ----A---- C:\Windows\system32\lsm.exe
2012-12-28 18:38:59 ----A---- C:\Windows\system32\dxgi.dll
2012-12-28 18:38:59 ----A---- C:\Windows\system32\drvstore.dll
2012-12-28 18:38:59 ----A---- C:\Windows\system32\drivers\csc.sys
2012-12-28 18:38:59 ----A---- C:\Windows\system32\drivers\amdsata.sys
2012-12-28 18:38:59 ----A---- C:\Windows\system32\comdlg32.dll
2012-12-28 18:38:59 ----A---- C:\Windows\system32\apphelp.dll
2012-12-28 18:38:58 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2012-12-28 18:38:58 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2012-12-28 18:38:58 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2012-12-28 18:38:58 ----A---- C:\Windows\SYSWOW64\printmanagement.msc
2012-12-28 18:38:58 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2012-12-28 18:38:58 ----A---- C:\Windows\system32\wpdshext.dll
2012-12-28 18:38:58 ----A---- C:\Windows\system32\QAGENT.DLL
2012-12-28 18:38:58 ----A---- C:\Windows\system32\BFE.DLL
2012-12-28 18:38:58 ----A---- C:\Windows\system32\azroles.dll
2012-12-28 18:38:57 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2012-12-28 18:38:57 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2012-12-28 18:38:57 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2012-12-28 18:38:57 ----A---- C:\Windows\system32\Vault.dll
2012-12-28 18:38:57 ----A---- C:\Windows\system32\samsrv.dll
2012-12-28 18:38:57 ----A---- C:\Windows\system32\lpksetup.exe
2012-12-28 18:38:57 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2012-12-28 18:38:57 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2012-12-28 18:38:57 ----A---- C:\Windows\system32\cmd.exe
2012-12-28 18:38:56 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2012-12-28 18:38:56 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2012-12-28 18:38:56 ----A---- C:\Windows\system32\win32spl.dll
2012-12-28 18:38:56 ----A---- C:\Windows\system32\cscsvc.dll
2012-12-28 18:38:55 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2012-12-28 18:38:55 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2012-12-28 18:38:55 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2012-12-28 18:38:55 ----A---- C:\Windows\system32\WindowsCodecs.dll
2012-12-28 18:38:55 ----A---- C:\Windows\system32\WebClnt.dll
2012-12-28 18:38:55 ----A---- C:\Windows\system32\sxs.dll
2012-12-28 18:38:55 ----A---- C:\Windows\system32\rdpclip.exe
2012-12-28 18:38:55 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2012-12-28 18:38:54 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2012-12-28 18:38:54 ----A---- C:\Windows\SYSWOW64\upnp.dll
2012-12-28 18:38:54 ----A---- C:\Windows\SYSWOW64\Query.dll
2012-12-28 18:38:54 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll
2012-12-28 18:38:54 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2012-12-28 18:38:54 ----A---- C:\Windows\system32\Wldap32.dll
2012-12-28 18:38:54 ----A---- C:\Windows\system32\taskcomp.dll
2012-12-28 18:38:54 ----A---- C:\Windows\system32\mfds.dll
2012-12-28 18:38:54 ----A---- C:\Windows\system32\mcbuilder.exe
2012-12-28 18:38:54 ----A---- C:\Windows\system32\drivers\storport.sys
2012-12-28 18:38:54 ----A---- C:\Windows\system32\cscobj.dll
2012-12-28 18:38:53 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2012-12-28 18:38:53 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2012-12-28 18:38:53 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2012-12-28 18:38:53 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2012-12-28 18:38:53 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2012-12-28 18:38:53 ----A---- C:\Windows\system32\webservices.dll
2012-12-28 18:38:53 ----A---- C:\Windows\system32\SessEnv.dll
2012-12-28 18:38:53 ----A---- C:\Windows\system32\rdpendp.dll
2012-12-28 18:38:53 ----A---- C:\Windows\system32\pnidui.dll
2012-12-28 18:38:53 ----A---- C:\Windows\system32\ipsmsnap.dll
2012-12-28 18:38:53 ----A---- C:\Windows\system32\hgprint.dll
2012-12-28 18:38:52 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2012-12-28 18:38:52 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2012-12-28 18:38:52 ----A---- C:\Windows\SYSWOW64\authui.dll
2012-12-28 18:38:52 ----A---- C:\Windows\system32\winsta.dll
2012-12-28 18:38:52 ----A---- C:\Windows\system32\sqlsrv32.dll
2012-12-28 18:38:52 ----A---- C:\Windows\system32\spoolsv.exe
2012-12-28 18:38:52 ----A---- C:\Windows\system32\fveapi.dll
2012-12-28 18:38:52 ----A---- C:\Windows\system32\dot3api.dll
2012-12-28 18:38:51 ----A---- C:\Windows\SYSWOW64\usp10.dll
2012-12-28 18:38:51 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2012-12-28 18:38:51 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2012-12-28 18:38:51 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2012-12-28 18:38:51 ----A---- C:\Windows\system32\prncache.dll
2012-12-28 18:38:51 ----A---- C:\Windows\system32\mcmde.dll
2012-12-28 18:38:51 ----A---- C:\Windows\system32\gdi32.dll
2012-12-28 18:38:51 ----A---- C:\Windows\system32\drivers\volsnap.sys
2012-12-28 18:38:51 ----A---- C:\Windows\system32\drivers\msrpc.sys
2012-12-28 18:38:50 ----A---- C:\Windows\SYSWOW64\userenv.dll
2012-12-28 18:38:50 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2012-12-28 18:38:50 ----A---- C:\Windows\system32\WMNetMgr.dll
2012-12-28 18:38:50 ----A---- C:\Windows\system32\wlanpref.dll
2012-12-28 18:38:50 ----A---- C:\Windows\system32\vpnike.dll
2012-12-28 18:38:50 ----A---- C:\Windows\system32\userenv.dll
2012-12-28 18:38:50 ----A---- C:\Windows\system32\schtasks.exe
2012-12-28 18:38:49 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2012-12-28 18:38:49 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2012-12-28 18:38:49 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2012-12-28 18:38:49 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2012-12-28 18:38:49 ----A---- C:\Windows\system32\tspubwmi.dll
2012-12-28 18:38:49 ----A---- C:\Windows\system32\photowiz.dll
2012-12-28 18:38:49 ----A---- C:\Windows\system32\evr.dll
2012-12-28 18:38:49 ----A---- C:\Windows\system32\drivers\rdbss.sys
2012-12-28 18:38:49 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2012-12-28 18:38:48 ----A---- C:\Windows\SYSWOW64\cmd.exe
2012-12-28 18:38:48 ----A---- C:\Windows\system32\wmpmde.dll
2012-12-28 18:38:48 ----A---- C:\Windows\system32\WMPEncEn.dll
2012-12-28 18:38:48 ----A---- C:\Windows\system32\wmpeffects.dll
2012-12-28 18:38:48 ----A---- C:\Windows\system32\SyncCenter.dll
2012-12-28 18:38:48 ----A---- C:\Windows\system32\sppobjs.dll
2012-12-28 18:38:48 ----A---- C:\Windows\system32\IPSECSVC.DLL
2012-12-28 18:38:48 ----A---- C:\Windows\system32\FXSSVC.exe
2012-12-28 18:38:48 ----A---- C:\Windows\system32\framedyn.dll
2012-12-28 18:38:48 ----A---- C:\Windows\system32\AudioSes.dll
2012-12-28 18:38:48 ----A---- C:\Windows\system32\aepdu.dll
2012-12-28 18:38:47 ----A---- C:\Windows\system32\tscfgwmi.dll
2012-12-28 18:38:47 ----A---- C:\Windows\system32\srvsvc.dll
2012-12-28 18:38:47 ----A---- C:\Windows\system32\shsvcs.dll
2012-12-28 18:38:47 ----A---- C:\Windows\system32\rdpinit.exe
2012-12-28 18:38:47 ----A---- C:\Windows\system32\mfreadwrite.dll
2012-12-28 18:38:47 ----A---- C:\Windows\system32\aeinv.dll
2012-12-28 18:38:46 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2012-12-28 18:38:46 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2012-12-28 18:38:46 ----A---- C:\Windows\SYSWOW64\propsys.dll
2012-12-28 18:38:46 ----A---- C:\Windows\SYSWOW64\mfds.dll
2012-12-28 18:38:46 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2012-12-28 18:38:46 ----A---- C:\Windows\system32\WinSATAPI.dll
2012-12-28 18:38:46 ----A---- C:\Windows\system32\vmicsvc.exe
2012-12-28 18:38:46 ----A---- C:\Windows\system32\fde.dll
2012-12-28 18:38:45 ----A---- C:\Windows\SYSWOW64\rdpendp.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\stobject.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\netid.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\netdiagfx.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\localsec.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\iphlpsvc.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\inetpp.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\imapi2.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\drivers\vmbus.sys
2012-12-28 18:38:45 ----A---- C:\Windows\system32\drivers\udfs.sys
2012-12-28 18:38:45 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2012-12-28 18:38:45 ----A---- C:\Windows\system32\credui.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\cdd.dll
2012-12-28 18:38:45 ----A---- C:\Windows\system32\bcryptprimitives.dll
2012-12-28 18:38:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2012-12-28 18:38:44 ----A---- C:\Windows\SYSWOW64\azroles.dll
2012-12-28 18:38:44 ----A---- C:\Windows\SYSWOW64\appmgr.dll
2012-12-28 18:38:44 ----A---- C:\Windows\system32\tcpipcfg.dll
2012-12-28 18:38:44 ----A---- C:\Windows\system32\spp.dll
2012-12-28 18:38:44 ----A---- C:\Windows\system32\QSHVHOST.DLL
2012-12-28 18:38:44 ----A---- C:\Windows\system32\davclnt.dll
2012-12-28 18:38:44 ----A---- C:\Windows\system32\cscui.dll
2012-12-28 18:38:44 ----A---- C:\Windows\system32\biocpl.dll
2012-12-28 18:38:43 ----A---- C:\Windows\SYSWOW64\themeui.dll
2012-12-28 18:38:43 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2012-12-28 18:38:43 ----A---- C:\Windows\SYSWOW64\spp.dll
2012-12-28 18:38:43 ----A---- C:\Windows\SYSWOW64\credui.dll
2012-12-28 18:38:43 ----A---- C:\Windows\system32\scansetting.dll
2012-12-28 18:38:43 ----A---- C:\Windows\system32\profsvc.dll
2012-12-28 18:38:43 ----A---- C:\Windows\system32\printui.dll
2012-12-28 18:38:43 ----A---- C:\Windows\system32\pla.dll
2012-12-28 18:38:43 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2012-12-28 18:38:43 ----A---- C:\Windows\system32\mspbda.dll
2012-12-28 18:38:43 ----A---- C:\Windows\system32\msinfo32.exe
2012-12-28 18:38:43 ----A---- C:\Windows\system32\gameux.dll
2012-12-28 18:38:43 ----A---- C:\Windows\splwow64.exe
2012-12-28 18:38:42 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2012-12-28 18:38:42 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2012-12-28 18:38:42 ----A---- C:\Windows\system32\wusa.exe
2012-12-28 18:38:42 ----A---- C:\Windows\system32\wiaservc.dll
2012-12-28 18:38:42 ----A---- C:\Windows\system32\vds.exe
2012-12-28 18:38:42 ----A---- C:\Windows\system32\msdri.dll
2012-12-28 18:38:42 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2012-12-28 18:38:42 ----A---- C:\Windows\system32\aitagent.exe
2012-12-28 18:38:41 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2012-12-28 18:38:41 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2012-12-28 18:38:41 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2012-12-28 18:38:41 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2012-12-28 18:38:41 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2012-12-28 18:38:41 ----A---- C:\Windows\system32\XpsRasterService.dll
2012-12-28 18:38:41 ----A---- C:\Windows\system32\wisptis.exe
2012-12-28 18:38:41 ----A---- C:\Windows\system32\rpchttp.dll
2012-12-28 18:38:41 ----A---- C:\Windows\system32\PkgMgr.exe
2012-12-28 18:38:41 ----A---- C:\Windows\system32\mscms.dll
2012-12-28 18:38:41 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2012-12-28 18:38:41 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2012-12-28 18:38:41 ----A---- C:\Windows\system32\drivers\pci.sys
2012-12-28 18:38:41 ----A---- C:\Windows\system32\AdmTmpl.dll
2012-12-28 18:38:40 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2012-12-28 18:38:40 ----A---- C:\Windows\SYSWOW64\evr.dll
2012-12-28 18:38:40 ----A---- C:\Windows\system32\sppwinob.dll
2012-12-28 18:38:40 ----A---- C:\Windows\system32\ocsetup.exe
2012-12-28 18:38:40 ----A---- C:\Windows\system32\msi.dll
2012-12-28 18:38:40 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2012-12-28 18:38:39 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2012-12-28 18:38:39 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2012-12-28 18:38:39 ----A---- C:\Windows\SYSWOW64\calc.exe
2012-12-28 18:38:39 ----A---- C:\Windows\system32\wpdbusenum.dll
2012-12-28 18:38:39 ----A---- C:\Windows\system32\ocsetapi.dll
2012-12-28 18:38:39 ----A---- C:\Windows\system32\ntshrui.dll
2012-12-28 18:38:39 ----A---- C:\Windows\system32\eapp3hst.dll
2012-12-28 18:38:39 ----A---- C:\Windows\system32\DXP.dll
2012-12-28 18:38:39 ----A---- C:\Windows\system32\drivers\volmgr.sys
2012-12-28 18:38:39 ----A---- C:\Windows\system32\drivers\msdsm.sys
2012-12-28 18:38:39 ----A---- C:\Windows\system32\ci.dll
2012-12-28 18:38:38 ----A---- C:\Windows\system32\wcncsvc.dll
2012-12-28 18:38:38 ----A---- C:\Windows\system32\upnp.dll
2012-12-28 18:38:38 ----A---- C:\Windows\system32\Robocopy.exe
2012-12-28 18:38:38 ----A---- C:\Windows\system32\mprapi.dll
2012-12-28 18:38:38 ----A---- C:\Windows\system32\eapphost.dll
2012-12-28 18:38:37 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2012-12-28 18:38:37 ----A---- C:\Windows\SYSWOW64\sxs.dll
2012-12-28 18:38:37 ----A---- C:\Windows\system32\t2embed.dll
2012-12-28 18:38:37 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2012-12-28 18:38:36 ----A---- C:\Windows\SYSWOW64\netshell.dll
2012-12-28 18:38:36 ----A---- C:\Windows\system32\thumbcache.dll
2012-12-28 18:38:36 ----A---- C:\Windows\system32\hal.dll
2012-12-28 18:38:35 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2012-12-28 18:38:35 ----A---- C:\Windows\SYSWOW64\stobject.dll
2012-12-28 18:38:35 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2012-12-28 18:38:35 ----A---- C:\Windows\system32\scecli.dll
2012-12-28 18:38:35 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2012-12-28 18:38:35 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2012-12-28 18:38:35 ----A---- C:\Windows\system32\DxpTaskSync.dll
2012-12-28 18:38:35 ----A---- C:\Windows\system32\dwmredir.dll
2012-12-28 18:38:35 ----A---- C:\Windows\system32\drivers\fvevol.sys
2012-12-28 18:38:34 ----A---- C:\Windows\SYSWOW64\prncache.dll
2012-12-28 18:38:34 ----A---- C:\Windows\SYSWOW64\printui.dll
2012-12-28 18:38:34 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-12-28 18:38:34 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2012-12-28 18:38:34 ----A---- C:\Windows\system32\themeui.dll
2012-12-28 18:38:34 ----A---- C:\Windows\system32\scrptadm.dll
2012-12-28 18:38:34 ----A---- C:\Windows\system32\puiobj.dll
2012-12-28 18:38:34 ----A---- C:\Windows\system32\onex.dll
2012-12-28 18:38:34 ----A---- C:\Windows\system32\nlaapi.dll
2012-12-28 18:38:34 ----A---- C:\Windows\system32\msasn1.dll
2012-12-28 18:38:34 ----A---- C:\Windows\system32\iasrad.dll
2012-12-28 18:38:34 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2012-12-28 18:38:34 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2012-12-28 18:38:34 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2012-12-28 18:38:34 ----A---- C:\Windows\system32\drivers\amdxata.sys
2012-12-28 18:38:33 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2012-12-28 18:38:33 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2012-12-28 18:38:33 ----A---- C:\Windows\system32\aaclient.dll
2012-12-28 18:38:32 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2012-12-28 18:38:32 ----A---- C:\Windows\SYSWOW64\net1.exe
2012-12-28 18:38:31 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2012-12-28 18:38:31 ----A---- C:\Windows\system32\wlangpui.dll
2012-12-28 18:38:31 ----A---- C:\Windows\system32\wdc.dll
2012-12-28 18:38:31 ----A---- C:\Windows\system32\sdengin2.dll
2012-12-28 18:38:31 ----A---- C:\Windows\system32\scesrv.dll
2012-12-28 18:38:31 ----A---- C:\Windows\system32\rasmans.dll
2012-12-28 18:38:31 ----A---- C:\Windows\system32\msftedit.dll
2012-12-28 18:38:31 ----A---- C:\Windows\system32\drivers\usbport.sys
2012-12-28 18:38:30 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2012-12-28 18:38:30 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2012-12-28 18:38:30 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2012-12-28 18:38:30 ----A---- C:\Windows\system32\wscapi.dll
2012-12-28 18:38:30 ----A---- C:\Windows\system32\wiadefui.dll
2012-12-28 18:38:30 ----A---- C:\Windows\system32\VAN.dll
2012-12-28 18:38:30 ----A---- C:\Windows\system32\StructuredQuery.dll
2012-12-28 18:38:30 ----A---- C:\Windows\system32\SndVol.exe
2012-12-28 18:38:30 ----A---- C:\Windows\system32\samcli.dll
2012-12-28 18:38:30 ----A---- C:\Windows\system32\netcenter.dll
2012-12-28 18:38:30 ----A---- C:\Windows\system32\iasacct.dll
2012-12-28 18:38:30 ----A---- C:\Windows\system32\dskquoui.dll
2012-12-28 18:38:30 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2012-12-28 18:38:29 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2012-12-28 18:38:29 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2012-12-28 18:38:29 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2012-12-28 18:38:29 ----A---- C:\Windows\SYSWOW64\scrptadm.dll
2012-12-28 18:38:29 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2012-12-28 18:38:29 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2012-12-28 18:38:29 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2012-12-28 18:38:29 ----A---- C:\Windows\system32\TabSvc.dll
2012-12-28 18:38:29 ----A---- C:\Windows\system32\srchadmin.dll
2012-12-28 18:38:29 ----A---- C:\Windows\system32\regapi.dll
2012-12-28 18:38:29 ----A---- C:\Windows\system32\QUTIL.DLL
2012-12-28 18:38:29 ----A---- C:\Windows\system32\drivers\termdd.sys
2012-12-28 18:38:29 ----A---- C:\Windows\system32\consent.exe
2012-12-28 18:38:28 ----A---- C:\Windows\SYSWOW64\webservices.dll
2012-12-28 18:38:28 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2012-12-28 18:38:28 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2012-12-28 18:38:28 ----A---- C:\Windows\SYSWOW64\fde.dll
2012-12-28 18:38:28 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-12-28 18:38:28 ----A---- C:\Windows\system32\wksprt.exe
2012-12-28 18:38:28 ----A---- C:\Windows\system32\taskhost.exe
2012-12-28 18:38:28 ----A---- C:\Windows\system32\setupcl.exe
2012-12-28 18:38:28 ----A---- C:\Windows\system32\rastls.dll
2012-12-28 18:38:28 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-12-28 18:38:28 ----A---- C:\Windows\system32\drivers\msahci.sys
2012-12-28 18:38:27 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2012-12-28 18:38:27 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2012-12-28 18:38:27 ----A---- C:\Windows\SYSWOW64\cscobj.dll
2012-12-28 18:38:27 ----A---- C:\Windows\system32\tapisrv.dll
2012-12-28 18:38:27 ----A---- C:\Windows\system32\netiohlp.dll
2012-12-28 18:38:27 ----A---- C:\Windows\system32\mimefilt.dll
2012-12-28 18:38:27 ----A---- C:\Windows\system32\drivers\raspptp.sys
2012-12-28 18:38:27 ----A---- C:\Windows\system32\drivers\acpi.sys
2012-12-28 18:38:26 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2012-12-28 18:38:26 ----A---- C:\Windows\SYSWOW64\pla.dll
2012-12-28 18:38:26 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2012-12-28 18:38:26 ----A---- C:\Windows\system32\msconfig.exe
2012-12-28 18:38:26 ----A---- C:\Windows\system32\lsmproxy.dll
2012-12-28 18:38:26 ----A---- C:\Windows\system32\ListSvc.dll
2012-12-28 18:38:26 ----A---- C:\Windows\system32\hgcpl.dll
2012-12-28 18:38:26 ----A---- C:\Windows\system32\fdeploy.dll
2012-12-28 18:38:26 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2012-12-28 18:38:26 ----A---- C:\Windows\system32\drivers\ks.sys
2012-12-28 18:38:26 ----A---- C:\Windows\system32\clusapi.dll
2012-12-28 18:38:26 ----A---- C:\Windows\system32\basecsp.dll
2012-12-28 18:38:25 ----A---- C:\Windows\SYSWOW64\winsta.dll
2012-12-28 18:38:25 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2012-12-28 18:38:25 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2012-12-28 18:38:25 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2012-12-28 18:38:25 ----A---- C:\Windows\system32\mtxclu.dll
2012-12-28 18:38:25 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2012-12-28 18:38:25 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2012-12-28 18:38:24 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2012-12-28 18:38:24 ----A---- C:\Windows\SYSWOW64\gameux.dll
2012-12-28 18:38:24 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2012-12-28 18:38:24 ----A---- C:\Windows\system32\riched20.dll
2012-12-28 18:38:24 ----A---- C:\Windows\system32\dnscmmc.dll
2012-12-28 18:38:23 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2012-12-28 18:38:23 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2012-12-28 18:38:23 ----A---- C:\Windows\SYSWOW64\onex.dll
2012-12-28 18:38:23 ----A---- C:\Windows\system32\sharemediacpl.dll
2012-12-28 18:38:23 ----A---- C:\Windows\system32\RpcRtRemote.dll
2012-12-28 18:38:23 ----A---- C:\Windows\system32\powercpl.dll
2012-12-28 18:38:23 ----A---- C:\Windows\system32\logoncli.dll
2012-12-28 18:38:23 ----A---- C:\Windows\system32\drivers\usbehci.sys
2012-12-28 18:38:22 ----A---- C:\Windows\SYSWOW64\winmm.dll
2012-12-28 18:38:22 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2012-12-28 18:38:22 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2012-12-28 18:38:22 ----A---- C:\Windows\SYSWOW64\autochk.exe
2012-12-28 18:38:22 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2012-12-28 18:38:22 ----A---- C:\Windows\system32\themecpl.dll
2012-12-28 18:38:22 ----A---- C:\Windows\system32\SensorsCpl.dll
2012-12-28 18:38:22 ----A---- C:\Windows\system32\netjoin.dll
2012-12-28 18:38:22 ----A---- C:\Windows\system32\nci.dll
2012-12-28 18:38:22 ----A---- C:\Windows\system32\Narrator.exe
2012-12-28 18:38:22 ----A---- C:\Windows\system32\Faultrep.dll
2012-12-28 18:38:22 ----A---- C:\Windows\system32\eudcedit.exe
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\samcli.dll
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\regapi.dll
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\proquota.exe
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\msutb.dll
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2012-12-28 18:38:21 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2012-12-28 18:38:21 ----A---- C:\Windows\system32\wkssvc.dll
2012-12-28 18:38:21 ----A---- C:\Windows\system32\vpnikeapi.dll
2012-12-28 18:38:21 ----A---- C:\Windows\system32\sppcomapi.dll
2012-12-28 18:38:21 ----A---- C:\Windows\system32\comctl32.dll
2012-12-28 18:38:21 ----A---- C:\Windows\system32\cabview.dll
2012-12-28 18:38:21 ----A---- C:\Windows\system32\autochk.exe
2012-12-28 18:38:21 ----A---- C:\Windows\system32\autofmt.exe
2012-12-28 18:38:20 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2012-12-28 18:38:20 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2012-12-28 18:38:20 ----A---- C:\Windows\system32\shsetup.dll
2012-12-28 18:38:20 ----A---- C:\Windows\system32\nshipsec.dll
2012-12-28 18:38:20 ----A---- C:\Windows\system32\fms.dll
2012-12-28 18:38:20 ----A---- C:\Windows\system32\autoconv.exe
2012-12-28 18:38:20 ----A---- C:\Windows\system32\audiodg.exe
2012-12-28 18:38:19 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2012-12-28 18:38:19 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2012-12-28 18:38:19 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2012-12-28 18:38:19 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2012-12-28 18:38:19 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2012-12-28 18:38:19 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2012-12-28 18:38:19 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2012-12-28 18:38:19 ----A---- C:\Windows\system32\wpd_ci.dll
2012-12-28 18:38:19 ----A---- C:\Windows\system32\sdclt.exe
2012-12-28 18:38:19 ----A---- C:\Windows\system32\bcdsrv.dll
2012-12-28 18:38:18 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2012-12-28 18:38:18 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2012-12-28 18:38:18 ----A---- C:\Windows\system32\wwanconn.dll
2012-12-28 18:38:18 ----A---- C:\Windows\system32\wlanui.dll
2012-12-28 18:38:18 ----A---- C:\Windows\system32\prntvpt.dll
2012-12-28 18:38:18 ----A---- C:\Windows\system32\mscorier.dll
2012-12-28 18:38:18 ----A---- C:\Windows\system32\drivers\winusb.sys
2012-12-28 18:38:18 ----A---- C:\Windows\system32\drivers\wanarp.sys
2012-12-28 18:38:18 ----A---- C:\Windows\system32\drivers\scsiport.sys
2012-12-28 18:38:17 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2012-12-28 18:38:17 ----A---- C:\Windows\SYSWOW64\netid.dll
2012-12-28 18:38:17 ----A---- C:\Windows\system32\SmiEngine.dll
2012-12-28 18:38:17 ----A---- C:\Windows\system32\rdpsign.exe
2012-12-28 18:38:17 ----A---- C:\Windows\system32\qedit.dll
2012-12-28 18:38:17 ----A---- C:\Windows\system32\mprddm.dll
2012-12-28 18:38:17 ----A---- C:\Windows\system32\fontext.dll
2012-12-28 18:38:17 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2012-12-28 18:38:17 ----A---- C:\Windows\system32\dps.dll
2012-12-28 18:38:17 ----A---- C:\Windows\system32\Display.dll
2012-12-28 18:38:17 ----A---- C:\Windows\system32\AxInstSv.dll
2012-12-28 18:38:16 ----A---- C:\Windows\SYSWOW64\wdc.dll
2012-12-28 18:38:16 ----A---- C:\Windows\SYSWOW64\untfs.dll
2012-12-28 18:38:16 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2012-12-28 18:38:16 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2012-12-28 18:38:16 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2012-12-28 18:38:16 ----A---- C:\Windows\system32\wmpsrcwp.dll
2012-12-28 18:38:16 ----A---- C:\Windows\system32\mblctr.exe
2012-12-28 18:38:16 ----A---- C:\Windows\system32\drivers\hidclass.sys
2012-12-28 18:38:16 ----A---- C:\Windows\system32\credssp.dll
2012-12-28 18:38:16 ----A---- C:\Windows\system32\batmeter.dll
2012-12-28 18:38:15 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2012-12-28 18:38:15 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2012-12-28 18:38:15 ----A---- C:\Windows\SYSWOW64\Vault.dll
2012-12-28 18:38:15 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2012-12-28 18:38:15 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2012-12-28 18:38:15 ----A---- C:\Windows\SYSWOW64\rastls.dll
2012-12-28 18:38:15 ----A---- C:\Windows\SYSWOW64\nci.dll
2012-12-28 18:38:15 ----A---- C:\Windows\system32\usercpl.dll
2012-12-28 18:38:15 ----A---- C:\Windows\system32\rtutils.dll
2012-12-28 18:38:15 ----A---- C:\Windows\system32\DiagCpl.dll
2012-12-28 18:38:15 ----A---- C:\Windows\system32\bootres.dll
2012-12-28 18:38:14 ----A---- C:\Windows\system32\wpccpl.dll
2012-12-28 18:38:14 ----A---- C:\Windows\system32\sppsvc.exe
2012-12-28 18:38:14 ----A---- C:\Windows\system32\provsvc.dll
2012-12-28 18:38:14 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2012-12-28 18:38:13 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2012-12-28 18:38:13 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2012-12-28 18:38:13 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2012-12-28 18:38:13 ----A---- C:\Windows\SYSWOW64\Display.dll
2012-12-28 18:38:13 ----A---- C:\Windows\system32\SndVolSSO.dll
2012-12-28 18:38:13 ----A---- C:\Windows\system32\rasppp.dll
2012-12-28 18:38:13 ----A---- C:\Windows\system32\dxdiagn.dll
2012-12-28 18:38:13 ----A---- C:\Windows\system32\drivers\winhv.sys
2012-12-28 18:38:13 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2012-12-28 18:38:13 ----A---- C:\Windows\system32\dot3cfg.dll
2012-12-28 18:38:12 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2012-12-28 18:38:12 ----A---- C:\Windows\SYSWOW64\userinit.exe
2012-12-28 18:38:12 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2012-12-28 18:38:12 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2012-12-28 18:38:12 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2012-12-28 18:38:12 ----A---- C:\Windows\system32\taskmgr.exe
2012-12-28 18:38:12 ----A---- C:\Windows\system32\shdocvw.dll
2012-12-28 18:38:12 ----A---- C:\Windows\system32\prnfldr.dll
2012-12-28 18:38:12 ----A---- C:\Windows\system32\hbaapi.dll
2012-12-28 18:38:12 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2012-12-28 18:38:11 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2012-12-28 18:38:11 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2012-12-28 18:38:11 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2012-12-28 18:38:11 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2012-12-28 18:38:11 ----A---- C:\Windows\SYSWOW64\cabview.dll
2012-12-28 18:38:11 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2012-12-28 18:38:11 ----A---- C:\Windows\system32\untfs.dll
2012-12-28 18:38:11 ----A---- C:\Windows\system32\proquota.exe
2012-12-28 18:38:11 ----A---- C:\Windows\system32\pdh.dll
2012-12-28 18:38:11 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2012-12-28 18:38:11 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2012-12-28 18:38:11 ----A---- C:\Windows\system32\drivers\ataport.sys
2012-12-28 18:38:10 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2012-12-28 18:38:10 ----A---- C:\Windows\system32\userinit.exe
2012-12-28 18:38:10 ----A---- C:\Windows\system32\accessibilitycpl.dll
2012-12-28 18:38:09 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2012-12-28 18:38:09 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2012-12-28 18:38:09 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2012-12-28 18:38:09 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2012-12-28 18:38:09 ----A---- C:\Windows\system32\zipfldr.dll
2012-12-28 18:38:09 ----A---- C:\Windows\system32\slui.exe
2012-12-28 18:38:09 ----A---- C:\Windows\system32\msieftp.dll
2012-12-28 18:38:09 ----A---- C:\Windows\system32\drivers\storvsc.sys
2012-12-28 18:38:09 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2012-12-28 18:38:08 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2012-12-28 18:38:08 ----A---- C:\Windows\SYSWOW64\scecli.dll
2012-12-28 18:38:08 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2012-12-28 18:38:08 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2012-12-28 18:38:08 ----A---- C:\Windows\system32\sud.dll
2012-12-28 18:38:08 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2012-12-28 18:38:07 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2012-12-28 18:38:07 ----A---- C:\Windows\SYSWOW64\mscories.dll
2012-12-28 18:38:07 ----A---- C:\Windows\SYSWOW64\mscms.dll
2012-12-28 18:38:07 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2012-12-28 18:38:07 ----A---- C:\Windows\SYSWOW64\localsec.dll
2012-12-28 18:38:07 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2012-12-28 18:38:07 ----A---- C:\Windows\SYSWOW64\fontext.dll
2012-12-28 18:38:07 ----A---- C:\Windows\system32\taskbarcpl.dll
2012-12-28 18:38:07 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2012-12-28 18:38:07 ----A---- C:\Windows\system32\networkmap.dll
2012-12-28 18:38:07 ----A---- C:\Windows\system32\dot3svc.dll
2012-12-28 18:38:07 ----A---- C:\Windows\system32\DeviceCenter.dll
2012-12-28 18:38:07 ----A---- C:\Windows\system32\cryptui.dll
2012-12-28 18:38:07 ----A---- C:\Windows\system32\ActionCenter.dll
2012-12-28 18:38:06 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2012-12-28 18:38:06 ----A---- C:\Windows\SYSWOW64\VAN.dll
2012-12-28 18:38:06 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2012-12-28 18:38:06 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2012-12-28 18:38:06 ----A---- C:\Windows\SYSWOW64\qedit.dll
2012-12-28 18:38:06 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2012-12-28 18:38:06 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2012-12-28 18:38:06 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2012-12-28 18:38:06 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2012-12-28 18:38:06 ----A---- C:\Windows\system32\twext.dll
2012-12-28 18:38:06 ----A---- C:\Windows\system32\srcore.dll
2012-12-28 18:38:06 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-12-28 18:38:05 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2012-12-28 18:38:05 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2012-12-28 18:38:05 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2012-12-28 18:38:05 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\uxlib.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\tzutil.exe
2012-12-28 18:38:05 ----A---- C:\Windows\system32\sisbkup.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\recovery.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\OobeFldr.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\isoburn.exe
2012-12-28 18:38:05 ----A---- C:\Windows\system32\efscore.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\dsuiext.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\cca.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\bcdedit.exe
2012-12-28 18:38:05 ----A---- C:\Windows\system32\azroleui.dll
2012-12-28 18:38:05 ----A---- C:\Windows\system32\asycfilt.dll
2012-12-28 18:38:04 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2012-12-28 18:38:04 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2012-12-28 18:38:04 ----A---- C:\Windows\system32\syncui.dll
2012-12-28 18:38:04 ----A---- C:\Windows\system32\sdcpl.dll
2012-12-28 18:38:03 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2012-12-28 18:38:03 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2012-12-28 18:38:03 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2012-12-28 18:38:03 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2012-12-28 18:38:03 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\systemcpl.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\sysclass.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\shwebsvc.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\recdisc.exe
2012-12-28 18:38:03 ----A---- C:\Windows\system32\netplwiz.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\ncryptui.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\httpapi.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\fvecpl.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2012-12-28 18:38:03 ----A---- C:\Windows\system32\drivers\mpio.sys
2012-12-28 18:38:03 ----A---- C:\Windows\system32\certcli.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\autoplay.dll
2012-12-28 18:38:03 ----A---- C:\Windows\system32\appinfo.dll
2012-12-28 18:38:02 ----A---- C:\Windows\SYSWOW64\wusa.exe
2012-12-28 18:38:02 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2012-12-28 18:38:02 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2012-12-28 18:38:02 ----A---- C:\Windows\system32\wlanmsm.dll
2012-12-28 18:38:02 ----A---- C:\Windows\system32\sdrsvc.dll
2012-12-28 18:38:02 ----A---- C:\Windows\system32\msvidc32.dll
2012-12-28 18:38:02 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2012-12-28 18:38:02 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2012-12-28 18:38:01 ----A---- C:\Windows\SYSWOW64\sud.dll
2012-12-28 18:38:01 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2012-12-28 18:38:01 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2012-12-28 18:38:01 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2012-12-28 18:38:01 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2012-12-28 18:38:01 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2012-12-28 18:38:01 ----A---- C:\Windows\SYSWOW64\credssp.dll
2012-12-28 18:38:01 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2012-12-28 18:38:01 ----A---- C:\Windows\system32\vdsutil.dll
2012-12-28 18:38:01 ----A---- C:\Windows\system32\termmgr.dll
2012-12-28 18:38:01 ----A---- C:\Windows\system32\spwizeng.dll
2012-12-28 18:38:01 ----A---- C:\Windows\system32\MFPlay.dll
2012-12-28 18:38:00 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2012-12-28 18:38:00 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2012-12-28 18:38:00 ----A---- C:\Windows\SYSWOW64\ftp.exe
2012-12-28 18:38:00 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2012-12-28 18:38:00 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2012-12-28 18:38:00 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2012-12-28 18:38:00 ----A---- C:\Windows\system32\sethc.exe
2012-12-28 18:38:00 ----A---- C:\Windows\system32\rstrui.exe
2012-12-28 18:38:00 ----A---- C:\Windows\system32\ReAgent.dll
2012-12-28 18:38:00 ----A---- C:\Windows\system32\ntlanman.dll
2012-12-28 18:38:00 ----A---- C:\Windows\system32\msscp.dll
2012-12-28 18:37:59 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2012-12-28 18:37:59 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2012-12-28 18:37:59 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2012-12-28 18:37:59 ----A---- C:\Windows\SYSWOW64\efscore.dll
2012-12-28 18:37:59 ----A---- C:\Windows\system32\wwanprotdim.dll
2012-12-28 18:37:59 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2012-12-28 18:37:59 ----A---- C:\Windows\system32\tsgqec.dll
2012-12-28 18:37:59 ----A---- C:\Windows\system32\ssText3d.scr
2012-12-28 18:37:59 ----A---- C:\Windows\system32\sqlcese30.dll
2012-12-28 18:37:59 ----A---- C:\Windows\system32\rdpd3d.dll
2012-12-28 18:37:59 ----A---- C:\Windows\system32\iTVData.dll
2012-12-28 18:37:59 ----A---- C:\Windows\system32\iprtrmgr.dll
2012-12-28 18:37:59 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2012-12-28 18:37:58 ----A---- C:\Windows\SYSWOW64\syncui.dll
2012-12-28 18:37:58 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2012-12-28 18:37:58 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2012-12-28 18:37:58 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2012-12-28 18:37:58 ----A---- C:\Windows\system32\wmdrmsdk.dll
2012-12-28 18:37:58 ----A---- C:\Windows\system32\srvcli.dll
2012-12-28 18:37:58 ----A---- C:\Windows\system32\slwga.dll
2012-12-28 18:37:58 ----A---- C:\Windows\system32\iyuv_32.dll
2012-12-28 18:37:58 ----A---- C:\Windows\system32\drmmgrtn.dll
2012-12-28 18:37:58 ----A---- C:\Windows\system32\drivers\vmstorfl.sys
2012-12-28 18:37:57 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2012-12-28 18:37:57 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2012-12-28 18:37:57 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2012-12-28 18:37:57 ----A---- C:\Windows\system32\msiexec.exe
2012-12-28 18:37:56 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2012-12-28 18:37:56 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2012-12-28 18:37:56 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2012-12-28 18:37:56 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2012-12-28 18:37:56 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2012-12-28 18:37:56 ----A---- C:\Windows\system32\wavemsp.dll
2012-12-28 18:37:56 ----A---- C:\Windows\system32\ntprint.dll
2012-12-28 18:37:56 ----A---- C:\Windows\system32\nslookup.exe
2012-12-28 18:37:56 ----A---- C:\Windows\system32\NAPHLPR.DLL
2012-12-28 18:37:56 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2012-12-28 18:37:56 ----A---- C:\Windows\system32\acppage.dll
2012-12-28 18:37:55 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2012-12-28 18:37:55 ----A---- C:\Windows\SYSWOW64\sethc.exe
2012-12-28 18:37:55 ----A---- C:\Windows\SYSWOW64\riched20.dll
2012-12-28 18:37:55 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2012-12-28 18:37:55 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2012-12-28 18:37:55 ----A---- C:\Windows\SYSWOW64\migisol.dll
2012-12-28 18:37:55 ----A---- C:\Windows\SYSWOW64\fms.dll
2012-12-28 18:37:55 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2012-12-28 18:37:55 ----A---- C:\Windows\SYSWOW64\activeds.dll
2012-12-28 18:37:55 ----A---- C:\Windows\system32\TSpkg.dll
2012-12-28 18:37:55 ----A---- C:\Windows\system32\srrstr.dll
2012-12-28 18:37:55 ----A---- C:\Windows\system32\sppnp.dll
2012-12-28 18:37:55 ----A---- C:\Windows\system32\certprop.dll
2012-12-28 18:37:55 ----A---- C:\Windows\system32\bcdboot.exe
2012-12-28 18:37:54 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2012-12-28 18:37:54 ----A---- C:\Windows\SYSWOW64\dpx.dll
2012-12-28 18:37:54 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2012-12-28 18:37:54 ----A---- C:\Windows\system32\wkscli.dll
2012-12-28 18:37:54 ----A---- C:\Windows\system32\remotepg.dll
2012-12-28 18:37:54 ----A---- C:\Windows\system32\PresentationSettings.exe
2012-12-28 18:37:54 ----A---- C:\Windows\system32\networkexplorer.dll
2012-12-28 18:37:54 ----A---- C:\Windows\system32\cabinet.dll
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2012-12-28 18:37:53 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2012-12-28 18:37:53 ----A---- C:\Windows\system32\wsnmp32.dll
2012-12-28 18:37:53 ----A---- C:\Windows\system32\wmpdxm.dll
2012-12-28 18:37:53 ----A---- C:\Windows\system32\WinSCard.dll
2012-12-28 18:37:53 ----A---- C:\Windows\system32\net1.exe
2012-12-28 18:37:53 ----A---- C:\Windows\system32\ftp.exe
2012-12-28 18:37:53 ----A---- C:\Windows\system32\dfrgui.exe
2012-12-28 18:37:52 ----A---- C:\Windows\SYSWOW64\wvc.dll
2012-12-28 18:37:52 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2012-12-28 18:37:52 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2012-12-28 18:37:52 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2012-12-28 18:37:52 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2012-12-28 18:37:52 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2012-12-28 18:37:52 ----A---- C:\Windows\system32\wvc.dll
2012-12-28 18:37:52 ----A---- C:\Windows\system32\wsqmcons.exe
2012-12-28 18:37:52 ----A---- C:\Windows\system32\wmdrmdev.dll
2012-12-28 18:37:52 ----A---- C:\Windows\system32\WerFaultSecure.exe
2012-12-28 18:37:52 ----A---- C:\Windows\system32\blackbox.dll
2012-12-28 18:37:51 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2012-12-28 18:37:51 ----A---- C:\Windows\SYSWOW64\twext.dll
2012-12-28 18:37:51 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2012-12-28 18:37:51 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2012-12-28 18:37:51 ----A---- C:\Windows\SYSWOW64\mstask.dll
2012-12-28 18:37:51 ----A---- C:\Windows\SYSWOW64\AdmTmpl.dll
2012-12-28 18:37:51 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2012-12-28 18:37:51 ----A---- C:\Windows\system32\msyuv.dll
2012-12-28 18:37:51 ----A---- C:\Windows\system32\mfps.dll
2012-12-28 18:37:51 ----A---- C:\Windows\system32\mapistub.dll
2012-12-28 18:37:51 ----A---- C:\Windows\system32\mapi32.dll
2012-12-28 18:37:51 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2012-12-28 18:37:50 ----A---- C:\Windows\twain_32.dll
2012-12-28 18:37:50 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2012-12-28 18:37:50 ----A---- C:\Windows\SYSWOW64\qcap.dll
2012-12-28 18:37:50 ----A---- C:\Windows\SYSWOW64\qasf.dll
2012-12-28 18:37:50 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-12-28 18:37:50 ----A---- C:\Windows\system32\unimdmat.dll
2012-12-28 18:37:50 ----A---- C:\Windows\system32\OpcServices.dll
2012-12-28 18:37:50 ----A---- C:\Windows\system32\msrle32.dll
2012-12-28 18:37:50 ----A---- C:\Windows\system32\Bubbles.scr
2012-12-28 18:37:49 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2012-12-28 18:37:49 ----A---- C:\Windows\SYSWOW64\ssText3d.scr
2012-12-28 18:37:49 ----A---- C:\Windows\SYSWOW64\slwga.dll
2012-12-28 18:37:49 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2012-12-28 18:37:49 ----A---- C:\Windows\system32\tsbyuv.dll
2012-12-28 18:37:49 ----A---- C:\Windows\system32\seclogon.dll
2012-12-28 18:37:49 ----A---- C:\Windows\system32\Ribbons.scr
2012-12-28 18:37:49 ----A---- C:\Windows\system32\Mystify.scr
2012-12-28 18:37:49 ----A---- C:\Windows\system32\iscsium.dll
2012-12-28 18:37:49 ----A---- C:\Windows\system32\ifsutil.dll
2012-12-28 18:37:49 ----A---- C:\Windows\system32\drivers\umbus.sys
2012-12-28 18:37:49 ----A---- C:\Windows\system32\diskraid.exe
2012-12-28 18:37:48 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2012-12-28 18:37:48 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2012-12-28 18:37:48 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2012-12-28 18:37:48 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2012-12-28 18:37:48 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2012-12-28 18:37:48 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2012-12-28 18:37:48 ----A---- C:\Windows\system32\wmpshell.dll
2012-12-28 18:37:48 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2012-12-28 18:37:48 ----A---- C:\Windows\system32\rdpencom.dll
2012-12-28 18:37:48 ----A---- C:\Windows\system32\perfmon.exe
2012-12-28 18:37:48 ----A---- C:\Windows\system32\muifontsetup.dll
2012-12-28 18:37:48 ----A---- C:\Windows\system32\d3d10level9.dll
2012-12-28 18:37:47 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2012-12-28 18:37:47 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2012-12-28 18:37:47 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2012-12-28 18:37:47 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2012-12-28 18:37:47 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2012-12-28 18:37:47 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2012-12-28 18:37:47 ----A---- C:\Windows\SYSWOW64\msscp.dll
2012-12-28 18:37:47 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2012-12-28 18:37:47 ----A---- C:\Windows\SYSWOW64\acppage.dll
2012-12-28 18:37:47 ----A---- C:\Windows\system32\umb.dll
2012-12-28 18:37:47 ----A---- C:\Windows\system32\tlscsp.dll
2012-12-28 18:37:47 ----A---- C:\Windows\system32\qasf.dll
2012-12-28 18:37:47 ----A---- C:\Windows\system32\netutils.dll
2012-12-28 18:37:47 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2012-12-28 18:37:47 ----A---- C:\Windows\system32\FXSAPI.dll
2012-12-28 18:37:47 ----A---- C:\Windows\system32\dbghelp.dll
2012-12-28 18:37:47 ----A---- C:\Windows\system32\AzSqlExt.dll
2012-12-28 18:37:47 ----A---- C:\Windows\system32\ActionQueue.dll
2012-12-28 18:37:46 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2012-12-28 18:37:46 ----A---- C:\Windows\SYSWOW64\raschap.dll
2012-12-28 18:37:46 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2012-12-28 18:37:46 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2012-12-28 18:37:46 ----A---- C:\Windows\SYSWOW64\input.dll
2012-12-28 18:37:46 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2012-12-28 18:37:46 ----A---- C:\Windows\system32\wiavideo.dll
2012-12-28 18:37:46 ----A---- C:\Windows\system32\runonce.exe
2012-12-28 18:37:46 ----A---- C:\Windows\system32\raschap.dll
2012-12-28 18:37:46 ----A---- C:\Windows\bfsvc.exe
2012-12-28 18:37:45 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2012-12-28 18:37:45 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2012-12-28 18:37:45 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2012-12-28 18:37:45 ----A---- C:\Windows\SYSWOW64\onexui.dll
2012-12-28 18:37:45 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2012-12-28 18:37:45 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2012-12-28 18:37:45 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2012-12-28 18:37:45 ----A---- C:\Windows\system32\wpdwcn.dll
2012-12-28 18:37:45 ----A---- C:\Windows\system32\WMVSDECD.DLL
2012-12-28 18:37:45 ----A---- C:\Windows\system32\WMADMOD.DLL
2012-12-28 18:37:45 ----A---- C:\Windows\system32\vdsbas.dll
2012-12-28 18:37:45 ----A---- C:\Windows\system32\syssetup.dll
2012-12-28 18:37:45 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2012-12-28 18:37:45 ----A---- C:\Windows\system32\MdSched.exe
2012-12-28 18:37:45 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2012-12-28 18:37:44 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2012-12-28 18:37:44 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2012-12-28 18:37:44 ----A---- C:\Windows\SYSWOW64\runonce.exe
2012-12-28 18:37:44 ----A---- C:\Windows\SYSWOW64\logagent.exe
2012-12-28 18:37:44 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2012-12-28 18:37:44 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2012-12-28 18:37:44 ----A---- C:\Windows\system32\nltest.exe
2012-12-28 18:37:44 ----A---- C:\Windows\system32\mstask.dll
2012-12-28 18:37:44 ----A---- C:\Windows\system32\Mcx2Svc.dll
2012-12-28 18:37:44 ----A---- C:\Windows\system32\drivers\rmcast.sys
2012-12-28 18:37:44 ----A---- C:\Windows\system32\bitsadmin.exe
2012-12-28 18:37:43 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2012-12-28 18:37:43 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2012-12-28 18:37:43 ----A---- C:\Windows\SYSWOW64\shacct.dll
2012-12-28 18:37:43 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2012-12-28 18:37:43 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2012-12-28 18:37:43 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2012-12-28 18:37:43 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2012-12-28 18:37:43 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2012-12-28 18:37:43 ----A---- C:\Windows\system32\wmdrmnet.dll
2012-12-28 18:37:43 ----A---- C:\Windows\system32\vss_ps.dll
2012-12-28 18:37:43 ----A---- C:\Windows\system32\tabcal.exe
2012-12-28 18:37:43 ----A---- C:\Windows\system32\shacct.dll
2012-12-28 18:37:43 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2012-12-28 18:37:43 ----A---- C:\Windows\system32\logman.exe
2012-12-28 18:37:43 ----A---- C:\Windows\system32\cscapi.dll
2012-12-28 18:37:42 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2012-12-28 18:37:42 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2012-12-28 18:37:42 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2012-12-28 18:37:42 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2012-12-28 18:37:42 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2012-12-28 18:37:42 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2012-12-28 18:37:42 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2012-12-28 18:37:42 ----A---- C:\Windows\system32\WPDSp.dll
2012-12-28 18:37:42 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2012-12-28 18:37:42 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2012-12-28 18:37:42 ----A---- C:\Windows\system32\secproc_ssp.dll
2012-12-28 18:37:42 ----A---- C:\Windows\system32\qcap.dll
2012-12-28 18:37:42 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2012-12-28 18:37:42 ----A---- C:\Windows\system32\msnetobj.dll
2012-12-28 18:37:42 ----A---- C:\Windows\system32\CscMig.dll
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\pdh.dll
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\logman.exe
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2012-12-28 18:37:41 ----A---- C:\Windows\SYSWOW64\Bubbles.scr
2012-12-28 18:37:41 ----A---- C:\Windows\system32\vmictimeprovider.dll
2012-12-28 18:37:41 ----A---- C:\Windows\system32\spbcd.dll
2012-12-28 18:37:41 ----A---- C:\Windows\system32\qdv.dll
2012-12-28 18:37:41 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\utildll.dll
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\Ribbons.scr
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\Mystify.scr
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2012-12-28 18:37:40 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2012-12-28 18:37:40 ----A---- C:\Windows\system32\WMPhoto.dll
2012-12-28 18:37:40 ----A---- C:\Windows\system32\takeown.exe
2012-12-28 18:37:40 ----A---- C:\Windows\system32\PnPUnattend.exe
2012-12-28 18:37:40 ----A---- C:\Windows\system32\fphc.dll
2012-12-28 18:37:40 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2012-12-28 18:37:40 ----A---- C:\Windows\system32\dot3ui.dll
2012-12-28 18:37:40 ----A---- C:\Windows\system32\amstream.dll
2012-12-28 18:37:39 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2012-12-28 18:37:39 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2012-12-28 18:37:39 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2012-12-28 18:37:39 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2012-12-28 18:37:39 ----A---- C:\Windows\SYSWOW64\takeown.exe
2012-12-28 18:37:39 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2012-12-28 18:37:39 ----A---- C:\Windows\SYSWOW64\fphc.dll
2012-12-28 18:37:39 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2012-12-28 18:37:39 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2012-12-28 18:37:39 ----A---- C:\Windows\system32\vfwwdm32.dll
2012-12-28 18:37:39 ----A---- C:\Windows\system32\shimgvw.dll
2012-12-28 18:37:39 ----A---- C:\Windows\system32\QCLIPROV.DLL
2012-12-28 18:37:39 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2012-12-28 18:37:39 ----A---- C:\Windows\system32\EhStorAPI.dll
2012-12-28 18:37:39 ----A---- C:\Windows\system32\djoin.exe
2012-12-28 18:37:38 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2012-12-28 18:37:38 ----A---- C:\Windows\SYSWOW64\qdv.dll
2012-12-28 18:37:38 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2012-12-28 18:37:38 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2012-12-28 18:37:38 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2012-12-28 18:37:38 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2012-12-28 18:37:38 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2012-12-28 18:37:38 ----A---- C:\Windows\SYSWOW64\cca.dll
2012-12-28 18:37:38 ----A---- C:\Windows\system32\WUDFx.dll
2012-12-28 18:37:38 ----A---- C:\Windows\system32\WUDFHost.exe
2012-12-28 18:37:38 ----A---- C:\Windows\system32\WavDest.dll
2012-12-28 18:37:38 ----A---- C:\Windows\system32\nrpsrv.dll
2012-12-28 18:37:38 ----A---- C:\Windows\system32\iasrecst.dll
2012-12-28 18:37:38 ----A---- C:\Windows\system32\cmstp.exe
2012-12-28 18:37:38 ----A---- C:\Windows\system32\CertPolEng.dll
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2012-12-28 18:37:37 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2012-12-28 18:37:37 ----A---- C:\Windows\system32\sscore.dll
2012-12-28 18:37:37 ----A---- C:\Windows\system32\relog.exe
2012-12-28 18:37:37 ----A---- C:\Windows\system32\mydocs.dll
2012-12-28 18:37:37 ----A---- C:\Windows\system32\MultiDigiMon.exe
2012-12-28 18:37:37 ----A---- C:\Windows\system32\KMSVC.DLL
2012-12-28 18:37:37 ----A---- C:\Windows\system32\iscsicli.exe
2012-12-28 18:37:37 ----A---- C:\Windows\system32\fdProxy.dll
2012-12-28 18:37:37 ----A---- C:\Windows\system32\drivers\usbser.sys
2012-12-28 18:37:37 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2012-12-28 18:37:37 ----A---- C:\Windows\system32\drivers\pacer.sys
2012-12-28 18:37:37 ----A---- C:\Windows\system32\diskpart.exe
2012-12-28 18:37:36 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2012-12-28 18:37:36 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2012-12-28 18:37:36 ----A---- C:\Windows\SYSWOW64\relog.exe
2012-12-28 18:37:36 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2012-12-28 18:37:36 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2012-12-28 18:37:36 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2012-12-28 18:37:36 ----A---- C:\Windows\system32\mobsync.exe
2012-12-28 18:37:36 ----A---- C:\Windows\system32\itircl.dll
2012-12-28 18:37:36 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2012-12-28 18:37:36 ----A---- C:\Windows\system32\BdeHdCfg.exe
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\resutils.dll
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\itircl.dll
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2012-12-28 18:37:35 ----A---- C:\Windows\SYSWOW64\amstream.dll
2012-12-28 18:37:35 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2012-12-28 18:37:35 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2012-12-28 18:37:35 ----A---- C:\Windows\system32\msdmo.dll
2012-12-28 18:37:35 ----A---- C:\Windows\system32\dot3msm.dll
2012-12-28 18:37:34 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2012-12-28 18:37:34 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2012-12-28 18:37:34 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2012-12-28 18:37:34 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2012-12-28 18:37:34 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2012-12-28 18:37:34 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2012-12-28 18:37:34 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2012-12-28 18:37:34 ----A---- C:\Windows\system32\qprocess.exe
2012-12-28 18:37:34 ----A---- C:\Windows\system32\mciqtz32.dll
2012-12-28 18:37:34 ----A---- C:\Windows\system32\choice.exe
2012-12-28 18:37:34 ----A---- C:\Windows\system32\FXSTIFF.dll
2012-12-28 18:37:34 ----A---- C:\Windows\system32\findstr.exe
2012-12-28 18:37:34 ----A---- C:\Windows\system32\eappgnui.dll
2012-12-28 18:37:33 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2012-12-28 18:37:33 ----A---- C:\Windows\SYSWOW64\netutils.dll
2012-12-28 18:37:33 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2012-12-28 18:37:33 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2012-12-28 18:37:33 ----A---- C:\Windows\SYSWOW64\findstr.exe
2012-12-28 18:37:33 ----A---- C:\Windows\system32\sppc.dll
2012-12-28 18:37:33 ----A---- C:\Windows\system32\schedcli.dll
2012-12-28 18:37:33 ----A---- C:\Windows\system32\onexui.dll
2012-12-28 18:37:33 ----A---- C:\Windows\system32\luainstall.dll
2012-12-28 18:37:33 ----A---- C:\Windows\system32\chglogon.exe
2012-12-28 18:37:33 ----A---- C:\Windows\system32\drivers\tunnel.sys
2012-12-28 18:37:33 ----A---- C:\Windows\system32\drivers\dfsc.sys
2012-12-28 18:37:32 ----A---- C:\Windows\SYSWOW64\sppc.dll
2012-12-28 18:37:32 ----A---- C:\Windows\SYSWOW64\spopk.dll
2012-12-28 18:37:32 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2012-12-28 18:37:32 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2012-12-28 18:37:32 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2012-12-28 18:37:32 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2012-12-28 18:37:32 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2012-12-28 18:37:32 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2012-12-28 18:37:32 ----A---- C:\Windows\system32\spopk.dll
2012-12-28 18:37:32 ----A---- C:\Windows\system32\repair-bde.exe
2012-12-28 18:37:32 ----A---- C:\Windows\system32\RDPENCDD.dll
2012-12-28 18:37:32 ----A---- C:\Windows\system32\qappsrv.exe
2012-12-28 18:37:32 ----A---- C:\Windows\system32\manage-bde.exe
2012-12-28 18:37:32 ----A---- C:\Windows\system32\inetmib1.dll
2012-12-28 18:37:31 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2012-12-28 18:37:31 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2012-12-28 18:37:31 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2012-12-28 18:37:31 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2012-12-28 18:37:31 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-12-28 18:37:31 ----A---- C:\Windows\system32\vmstorfltres.dll
2012-12-28 18:37:31 ----A---- C:\Windows\system32\vmicres.dll
2012-12-28 18:37:31 ----A---- C:\Windows\system32\tskill.exe
2012-12-28 18:37:31 ----A---- C:\Windows\system32\tsdiscon.exe
2012-12-28 18:37:31 ----A---- C:\Windows\system32\tscon.exe
2012-12-28 18:37:31 ----A---- C:\Windows\system32\shadow.exe
2012-12-28 18:37:31 ----A---- C:\Windows\system32\rwinsta.exe
2012-12-28 18:37:31 ----A---- C:\Windows\system32\profprov.dll
2012-12-28 18:37:31 ----A---- C:\Windows\system32\odbcconf.dll
2012-12-28 18:37:31 ----A---- C:\Windows\system32\logoff.exe
2012-12-28 18:37:31 ----A---- C:\Windows\system32\chgusr.exe
2012-12-28 18:37:31 ----A---- C:\Windows\system32\chgport.exe
2012-12-28 18:37:31 ----A---- C:\Windows\system32\FXSMON.dll
2012-12-28 18:37:31 ----A---- C:\Windows\system32\fixmapi.exe
2012-12-28 18:37:30 ----A---- C:\Windows\SYSWOW64\wups.dll
2012-12-28 18:37:30 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2012-12-28 18:37:30 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2012-12-28 18:37:30 ----A---- C:\Windows\system32\wshbth.dll
2012-12-28 18:37:30 ----A---- C:\Windows\system32\vmbusres.dll
2012-12-28 18:37:30 ----A---- C:\Windows\system32\UIRibbonRes.dll
2012-12-28 18:37:30 ----A---- C:\Windows\system32\TRAPI.dll
2012-12-28 18:37:30 ----A---- C:\Windows\system32\elsTrans.dll
2012-12-28 18:37:30 ----A---- C:\Windows\system32\drivers\tdi.sys
2012-12-28 18:37:29 ----A---- C:\Windows\SYSWOW64\perfts.dll
2012-12-28 18:37:29 ----A---- C:\Windows\SYSWOW64\imm32.dll
2012-12-28 18:37:29 ----A---- C:\Windows\system32\reset.exe
2012-12-28 18:37:29 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2012-12-28 18:37:29 ----A---- C:\Windows\system32\query.exe
2012-12-28 18:37:29 ----A---- C:\Windows\system32\napdsnap.dll
2012-12-28 18:37:29 ----A---- C:\Windows\system32\LogonUI.exe
2012-12-28 18:37:29 ----A---- C:\Windows\system32\change.exe
2012-12-28 18:37:29 ----A---- C:\Windows\system32\FXSUNATD.exe
2012-12-28 18:37:29 ----A---- C:\Windows\system32\dsauth.dll
2012-12-28 18:37:28 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2012-12-28 18:37:28 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2012-12-28 18:37:28 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2012-12-28 18:37:28 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2012-12-28 18:37:28 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2012-12-28 18:37:28 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2012-12-28 18:37:28 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2012-12-28 18:37:28 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2012-12-28 18:37:28 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2012-12-28 18:37:28 ----A---- C:\Windows\system32\cscdll.dll
2012-12-28 18:37:28 ----A---- C:\Windows\system32\bitsperf.dll

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 16:37
od RJZ
2012-12-28 18:37:27 ----A---- C:\Windows\SYSWOW64\sscore.dll
2012-12-28 18:37:27 ----A---- C:\Windows\system32\wsdchngr.dll
2012-12-28 18:37:27 ----A---- C:\Windows\system32\shgina.dll
2012-12-28 18:37:27 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2012-12-28 18:37:26 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2012-12-28 18:37:26 ----A---- C:\Windows\SYSWOW64\shgina.dll
2012-12-28 18:37:26 ----A---- C:\Windows\SYSWOW64\riched32.dll
2012-12-28 18:37:26 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2012-12-28 18:37:25 ----A---- C:\Windows\system32\wshirda.dll
2012-12-28 18:37:25 ----A---- C:\Windows\system32\drivers\hidusb.sys
2012-12-28 18:37:25 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2012-12-28 18:37:25 ----A---- C:\Windows\system32\drivers\appid.sys
2012-12-28 18:37:24 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2012-12-28 18:37:24 ----A---- C:\Windows\system32\vmbuspipe.dll
2012-12-28 18:37:24 ----A---- C:\Windows\system32\spwmp.dll
2012-12-28 18:37:24 ----A---- C:\Windows\system32\riched32.dll
2012-12-28 18:37:24 ----A---- C:\Windows\system32\rdpcfgex.dll
2012-12-28 18:37:24 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2012-12-28 18:37:24 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2012-12-28 18:37:24 ----A---- C:\Windows\system32\browseui.dll
2012-12-28 18:37:23 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2012-12-28 18:37:23 ----A---- C:\Windows\SYSWOW64\browseui.dll
2012-12-28 18:37:23 ----A---- C:\Windows\system32\VmdCoinstall.dll
2012-12-28 18:37:23 ----A---- C:\Windows\system32\VmbusCoinstaller.dll
2012-12-28 18:37:23 ----A---- C:\Windows\system32\IcCoinstall.dll
2012-12-28 18:37:23 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2012-12-28 18:37:23 ----A---- C:\Windows\system32\C_ISCII.DLL
2012-12-28 18:37:22 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2012-12-28 18:37:22 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2012-12-28 18:37:22 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2012-12-28 18:37:22 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2012-12-28 18:37:22 ----A---- C:\Windows\system32\shunimpl.dll
2012-12-28 18:37:22 ----A---- C:\Windows\system32\dxmasf.dll
2012-12-28 18:37:22 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-12-28 18:37:22 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-12-28 18:37:22 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2012-12-28 18:37:22 ----A---- C:\Windows\system32\drivers\scfilter.sys
2012-12-28 18:37:22 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2012-12-28 18:37:22 ----A---- C:\Windows\system32\drivers\cdrom.sys
2012-12-28 18:37:21 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2012-12-28 18:37:21 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDTUQ.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDTUF.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDSG.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDSF.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDPO.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDNEPR.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\kbdlk41a.dll
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDINTAM.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDINBEN.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDGR1.DLL
2012-12-28 18:37:21 ----A---- C:\Windows\system32\KBDGKL.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\system32\wmploc.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\system32\KBDGEO.DLL
2012-12-28 18:37:20 ----A---- C:\Windows\system32\KBDCZ1.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\spwizres.dll
2012-12-28 18:37:19 ----A---- C:\Windows\system32\pifmgr.dll
2012-12-28 18:37:19 ----A---- C:\Windows\system32\nlsbres.dll
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDUS.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDTURME.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDMON.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDMAORI.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDLT1.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDINTEL.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDINORI.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDINMAR.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDINKAN.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDINHIN.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDBULG.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDBLR.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\KBDBASH.DLL
2012-12-28 18:37:19 ----A---- C:\Windows\system32\drivers\vms3cap.sys
2012-12-28 18:37:18 ----A---- C:\Windows\system32\drivers\VMBusHID.sys
2012-12-28 18:37:18 ----A---- C:\Windows\system32\BlbEvents.dll
2012-12-28 18:36:57 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2012-12-28 18:36:57 ----A---- C:\Windows\system32\dpx.dll
2012-12-28 18:36:52 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2012-12-28 18:36:43 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2012-12-28 18:35:43 ----A---- C:\Windows\system32\wbemcomn.dll
2012-12-28 18:35:39 ----A---- C:\Windows\system32\sqmapi.dll
2012-12-28 18:33:37 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-12-28 18:33:35 ----A---- C:\Windows\system32\shell32.dll
2012-12-28 18:33:24 ----A---- C:\Windows\system32\KernelBase.dll
2012-12-28 18:33:23 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2012-12-28 18:33:23 ----A---- C:\Windows\system32\winsrv.dll
2012-12-28 18:33:23 ----A---- C:\Windows\system32\kernel32.dll
2012-12-28 18:33:23 ----A---- C:\Windows\system32\conhost.exe
2012-12-28 18:33:22 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2012-12-28 18:33:19 ----A---- C:\Windows\SYSWOW64\wow32.dll
2012-12-28 18:33:19 ----A---- C:\Windows\SYSWOW64\setup16.exe
2012-12-28 18:33:19 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2012-12-28 18:33:19 ----A---- C:\Windows\system32\wow64win.dll
2012-12-28 18:33:19 ----A---- C:\Windows\system32\wow64cpu.dll
2012-12-28 18:33:19 ----A---- C:\Windows\system32\wow64.dll
2012-12-28 18:33:19 ----A---- C:\Windows\system32\ntvdm64.dll
2012-12-28 18:33:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-28 18:33:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-28 18:33:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2012-12-28 18:33:15 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-12-28 18:33:15 ----A---- C:\Windows\SYSWOW64\instnm.exe
2012-12-28 18:33:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-12-28 18:33:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2012-12-28 18:33:14 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-12-28 18:33:14 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-12-28 18:33:14 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-12-28 18:33:14 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-28 18:33:14 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-28 18:33:14 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-12-28 18:33:13 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-12-28 18:33:12 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-12-28 18:33:11 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-12-28 18:33:10 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-12-28 18:33:10 ----A---- C:\Windows\SYSWOW64\user.exe
2012-12-28 18:32:49 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-12-28 18:32:49 ----A---- C:\Windows\system32\tzres.dll
2012-12-28 18:32:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-12-28 18:32:04 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-12-28 18:32:03 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-12-28 18:32:01 ----A---- C:\Windows\system32\rdpudd.dll
2012-12-28 18:32:01 ----A---- C:\Windows\system32\rdpcorets.dll
2012-12-28 18:32:01 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-12-28 18:32:01 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2012-12-28 18:31:59 ----A---- C:\Windows\system32\msxml3.dll
2012-12-28 18:31:58 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-12-28 18:31:58 ----A---- C:\Windows\system32\msxml6.dll
2012-12-28 18:31:57 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-12-28 18:31:57 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-12-28 18:31:57 ----A---- C:\Windows\system32\msxml3r.dll
2012-12-28 18:31:55 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2012-12-28 18:31:55 ----A---- C:\Windows\system32\schannel.dll
2012-12-28 18:31:55 ----A---- C:\Windows\system32\ncrypt.dll
2012-12-28 18:31:55 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-12-28 18:31:55 ----A---- C:\Windows\system32\drivers\cng.sys
2012-12-28 18:31:54 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-12-28 18:31:54 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-12-28 18:31:53 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-12-28 18:31:53 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-12-28 18:31:51 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-12-28 18:31:51 ----A---- C:\Windows\system32\DWrite.dll
2012-12-28 18:31:48 ----A---- C:\Windows\system32\win32k.sys
2012-12-28 18:31:44 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-12-28 18:31:44 ----A---- C:\Windows\system32\rdpwsx.dll
2012-12-28 18:31:44 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-12-28 18:31:43 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2012-12-28 18:31:43 ----A---- C:\Windows\system32\wintrust.dll
2012-12-28 18:31:42 ----A---- C:\Windows\system32\drivers\afd.sys
2012-12-28 18:31:41 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2012-12-28 18:31:41 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2012-12-28 18:31:41 ----A---- C:\Windows\system32\dpnet.dll
2012-12-28 18:31:41 ----A---- C:\Windows\system32\dpnaddr.dll
2012-12-28 18:10:21 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2012-12-28 18:10:21 ----A---- C:\Windows\system32\kerberos.dll
2012-12-28 18:10:20 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-12-28 18:10:19 ----A---- C:\Windows\SYSWOW64\synceng.dll
2012-12-28 18:10:19 ----A---- C:\Windows\system32\synceng.dll
2012-12-28 18:10:07 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-12-28 18:10:04 ----A---- C:\Windows\system32\cdosys.dll
2012-12-28 18:09:51 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-12-28 18:09:51 ----A---- C:\Windows\system32\crypt32.dll
2012-12-28 18:09:50 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-12-28 18:09:50 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2012-12-28 18:09:50 ----A---- C:\Windows\system32\cryptsvc.dll
2012-12-28 18:09:50 ----A---- C:\Windows\system32\cryptnet.dll
2012-12-28 18:09:04 ----A---- C:\Windows\system32\localspl.dll
2012-12-28 18:09:02 ----A---- C:\Windows\system32\msvcrt.dll
2012-12-28 18:09:01 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2012-12-28 18:09:00 ----A---- C:\Windows\system32\netapi32.dll
2012-12-28 18:09:00 ----A---- C:\Windows\system32\browser.dll
2012-12-28 18:09:00 ----A---- C:\Windows\system32\browcli.dll
2012-12-28 18:08:59 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-12-28 18:08:59 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-12-28 17:57:35 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2012-12-28 17:57:35 ----A---- C:\Windows\system32\rdpcore.dll
2012-12-28 17:57:35 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-12-28 17:00:23 ----D---- C:\Program Files (x86)\StepMania
2012-12-28 15:59:12 ----A---- C:\Windows\system32\wups2.dll
2012-12-28 15:59:12 ----A---- C:\Windows\system32\wucltux.dll
2012-12-28 15:59:12 ----A---- C:\Windows\system32\wuauclt.exe
2012-12-28 15:59:11 ----A---- C:\Windows\system32\wuaueng.dll
2012-12-28 15:59:02 ----A---- C:\Windows\system32\wups.dll
2012-12-28 15:59:02 ----A---- C:\Windows\system32\wudriver.dll
2012-12-28 15:59:02 ----A---- C:\Windows\system32\wuapi.dll
2012-12-28 15:58:53 ----A---- C:\Windows\system32\wuwebv.dll
2012-12-28 15:58:53 ----A---- C:\Windows\system32\wuapp.exe
2012-12-09 14:18:48 ----D---- C:\Users\Mira\AppData\Roaming\Jízdní řád ČD
2012-12-09 14:18:48 ----D---- C:\Program Files\Jízdní řád ČD
2012-12-07 23:12:05 ----D---- C:\Program Files (x86)\Mozilla Firefox
2012-12-05 19:32:50 ----D---- C:\Users\Mira\AppData\Roaming\Theta

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 16:38
od RJZ
======List of files/folders modified in the last 1 month======

2012-12-30 16:18:49 ----D---- C:\Windows\System32
2012-12-30 16:18:49 ----D---- C:\Windows\inf
2012-12-30 16:18:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-30 14:06:53 ----D---- C:\ProgramData\NVIDIA
2012-12-30 14:05:57 ----D---- C:\Windows\system32\config
2012-12-30 14:05:17 ----D---- C:\Windows
2012-12-30 13:43:22 ----D---- C:\Windows\rescache
2012-12-29 19:34:34 ----SHD---- C:\Windows\Installer
2012-12-29 19:34:12 ----SHD---- C:\System Volume Information
2012-12-29 19:30:49 ----RSD---- C:\Windows\assembly
2012-12-29 19:29:54 ----D---- C:\Windows\system32\catroot2
2012-12-29 19:29:28 ----D---- C:\Windows\Logs
2012-12-29 19:23:48 ----D---- C:\Users\Mira\AppData\Roaming\DAEMON Tools Lite
2012-12-29 19:17:56 ----D---- C:\ProgramData
2012-12-29 19:05:23 ----D---- C:\Windows\system32\drivers
2012-12-29 18:51:17 ----D---- C:\Windows\Microsoft.NET
2012-12-29 18:44:54 ----A---- C:\Windows\system.ini
2012-12-29 18:44:35 ----D---- C:\Windows\system32\drivers\etc
2012-12-29 18:35:28 ----D---- C:\Windows\SYSWOW64\drivers
2012-12-29 18:35:28 ----D---- C:\Windows\SysWOW64
2012-12-29 18:35:28 ----D---- C:\Windows\AppPatch
2012-12-29 18:35:27 ----D---- C:\Program Files (x86)\Common Files
2012-12-29 17:49:17 ----D---- C:\Windows\Panther
2012-12-29 17:49:16 ----D---- C:\Windows\debug
2012-12-29 17:39:26 ----RD---- C:\Program Files (x86)
2012-12-29 17:39:16 ----D---- C:\Program Files (x86)\Origin Games
2012-12-29 17:31:14 ----D---- C:\Windows\winsxs
2012-12-29 15:52:28 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-12-29 15:29:10 ----D---- C:\Windows\Tasks
2012-12-29 15:29:10 ----D---- C:\Windows\system32\wfp
2012-12-29 15:29:09 ----D---- C:\Windows\system32\wbem
2012-12-29 15:28:10 ----D---- C:\Windows\system32\DriverStore
2012-12-29 15:27:51 ----D---- C:\Users\Mira\AppData\Roaming\GHISLER
2012-12-29 15:27:51 ----D---- C:\ProgramData\Origin
2012-12-29 15:27:51 ----D---- C:\ProgramData\McAfee Security Scan
2012-12-29 15:27:45 ----D---- C:\Windows\registration
2012-12-29 14:50:00 ----D---- C:\Boot
2012-12-29 13:50:51 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-12-29 13:48:07 ----RD---- C:\Program Files
2012-12-29 13:44:42 ----D---- C:\Windows\SYSWOW64\en-US
2012-12-29 13:44:42 ----D---- C:\Windows\system32\en-US
2012-12-29 13:26:54 ----D---- C:\Windows\system32\catroot
2012-12-28 19:44:41 ----D---- C:\Windows\Prefetch
2012-12-28 19:38:49 ----D---- C:\Program Files (x86)\Windows Sidebar
2012-12-28 19:38:49 ----D---- C:\Program Files (x86)\Windows Portable Devices
2012-12-28 19:38:49 ----D---- C:\Program Files (x86)\Windows Media Player
2012-12-28 19:38:49 ----D---- C:\Program Files (x86)\Windows Mail
2012-12-28 19:38:48 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2012-12-28 19:38:47 ----D---- C:\Windows\servicing
2012-12-28 19:38:47 ----D---- C:\Program Files\Windows Sidebar
2012-12-28 19:38:47 ----D---- C:\Program Files\Windows Portable Devices
2012-12-28 19:38:47 ----D---- C:\Program Files\Windows Photo Viewer
2012-12-28 19:38:47 ----D---- C:\Program Files\Windows Media Player
2012-12-28 19:38:47 ----D---- C:\Program Files\Windows Mail
2012-12-28 19:38:47 ----D---- C:\Program Files\Windows Journal
2012-12-28 19:38:47 ----D---- C:\Program Files\Windows Defender
2012-12-28 19:38:47 ----D---- C:\Program Files\DVD Maker
2012-12-28 19:38:47 ----D---- C:\Program Files\Common Files\System
2012-12-28 19:38:46 ----D---- C:\Windows\ehome
2012-12-28 19:38:41 ----SHD---- C:\Windows\BitLockerDiscoveryVolumeContents
2012-12-28 19:38:41 ----D---- C:\Windows\SYSWOW64\da-DK
2012-12-28 19:38:40 ----D---- C:\Windows\SYSWOW64\sk-SK
2012-12-28 19:38:40 ----D---- C:\Windows\SYSWOW64\oobe
2012-12-28 19:38:40 ----D---- C:\Windows\SYSWOW64\migration
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\wbem
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\sppui
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\Setup
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\migwiz
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\manifeststore
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\es-ES
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\en
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\Dism
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\cs
2012-12-28 19:38:39 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2012-12-28 19:38:25 ----D---- C:\Windows\system32\da-DK
2012-12-28 19:38:25 ----D---- C:\Windows\PolicyDefinitions
2012-12-28 19:38:24 ----D---- C:\Windows\system32\sk-SK
2012-12-28 19:38:23 ----D---- C:\Windows\system32\sppui
2012-12-28 19:38:23 ----D---- C:\Windows\system32\Setup
2012-12-28 19:38:23 ----D---- C:\Windows\system32\oobe
2012-12-28 19:38:23 ----D---- C:\Windows\system32\migration
2012-12-28 19:38:23 ----D---- C:\Windows\system32\manifeststore
2012-12-28 19:38:23 ----D---- C:\Windows\system32\es-ES
2012-12-28 19:38:23 ----D---- C:\Windows\system32\drivers\UMDF
2012-12-28 19:38:23 ----D---- C:\Windows\system32\drivers\en-US
2012-12-28 19:38:23 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-12-28 19:38:23 ----D---- C:\Windows\system32\cs-CZ
2012-12-28 19:38:23 ----D---- C:\Windows\system32\cs
2012-12-28 19:38:23 ----D---- C:\Windows\system32\AdvancedInstallers
2012-12-28 19:38:22 ----D---- C:\Windows\system32\migwiz
2012-12-28 19:38:22 ----D---- C:\Windows\system32\Dism
2012-12-28 19:38:07 ----RSD---- C:\Windows\Fonts
2012-12-28 19:37:55 ----D---- C:\Windows\system32\Boot
2012-12-28 19:37:48 ----D---- C:\Windows\system32\wdi
2012-12-28 19:34:58 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2012-12-28 19:34:58 ----A---- C:\Windows\system32\msclmd.dll
2012-12-28 19:23:28 ----D---- C:\Program Files\Internet Explorer
2012-12-28 19:23:28 ----D---- C:\Program Files (x86)\Internet Explorer
2012-12-28 18:46:37 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-12-28 18:44:53 ----D---- C:\Program Files\NVIDIA Corporation
2012-12-28 18:42:48 ----D---- C:\Windows\SoftwareDistribution
2012-12-28 09:07:11 ----D---- C:\Windows\system32\Tasks
2012-12-27 09:48:47 ----D---- C:\Users\Mira\AppData\Roaming\ICQ
2012-12-24 05:28:54 ----D---- C:\Windows\Minidump
2012-12-12 20:45:12 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-12-08 19:02:45 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2012-12-06 13:21:55 ----D---- C:\Windows\system32\NDF
2012-12-05 19:30:22 ----D---- C:\Windows\SYSWOW64\directx
2012-12-01 10:37:27 ----D---- C:\Users\Mira\AppData\Roaming\Origin
2012-12-01 10:37:24 ----D---- C:\Program Files (x86)\Origin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 mv61xx;mv61xx; C:\Windows\system32\DRIVERS\mv61xx.sys [2009-05-11 178728]
R0 NBVol;Nero Backup Volume Filter Driver; C:\Windows\system32\DRIVERS\NBVol.sys [2011-12-01 72240]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\Windows\system32\DRIVERS\NBVolUp.sys [2011-12-01 15920]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-09-07 834544]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2007-12-17 14392]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2012-07-03 19600]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 54072]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 984144]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 370288]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 59728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 EIO64;EIO Driver; C:\Windows\system32\DRIVERS\EIO64.sys [2010-09-07 16384]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
R3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\Windows\system32\drivers\asusgsb.sys [2009-02-17 17792]
R3 atkdisplf;ASUS Kernel Mode Enhanced Driver; C:\Windows\system32\drivers\ATKDispLowFilter.sys [2009-02-17 39424]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-01-17 188224]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2012-06-26 46176]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-05-22 215040]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-06-02 1207808]
R3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-13 73984]
R4 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [2010-02-22 23680]
S3 a03uyj23;a03uyj23; C:\Windows\system32\drivers\a03uyj23.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2011-01-20 20552]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2011-01-20 16392]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Virtual COM Driver; C:\Windows\system32\DRIVERS\usbser.sys [2010-11-20 32768]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5; C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2011-12-29 497496]
R2 ASDR;ASDR; C:\Windows\SysWOW64\ASDR.exe [2009-07-27 61440]
R2 ATKFUSService;ATK Fast User Switch Service; C:\Windows\system32\ATKFUSService.exe [2009-12-01 63488]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-10-30 44808]
R2 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE [2007-12-17 163840]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE [2007-01-11 126464]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-10 1258856]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-01-23 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-09-09 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-12 250808]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-09-09 136176]
S3 ICQ Service;ICQ Service; C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [2010-11-21 247608]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe [2012-09-05 234776]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-12-07 115168]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-02-06 1255736]
S4 avast! Firewall;avast! Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe []
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 16:40
od Rudy
CF není utilita pro laiky. Navíc ani log RSIT není kompletní. Zkuste toto:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte na Search
Proběhne skenováni a pak se objeví log, který sem vložte.

Pokud jste nesmazal soubor c:\combofix.txt, zkopírujte sem jeho obsah.

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 16:46
od RJZ
Adwcleaner:

# AdwCleaner v2.007 - Logfile created 12/30/2012 at 16:45:44
# Updated 06/11/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Mira - MIRA-PC
# Boot Mode : Normal
# Running from : C:\Users\Mira\Desktop\AdwCleaner.exe
# Option [Search]


***** [Services] *****

Found : ICQ Service

***** [Files / Folders] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
File Found : C:\user.js
File Found : C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default\searchplugins\icqplugin.xml
Folder Found : C:\Program Files (x86)\BabylonToolbar
Folder Found : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Found : C:\Program Files (x86)\ICQ6Toolbar
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\ICQ\ICQToolbar
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Folder Found : C:\ProgramData\Trymedia
Folder Found : C:\Users\Mira\AppData\Local\Babylon
Folder Found : C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Folder Found : C:\Users\Mira\AppData\LocalLow\BabylonToolbar
Folder Found : C:\Users\Mira\AppData\LocalLow\boost_interprocess
Folder Found : C:\Users\Mira\AppData\Roaming\Babylon
Folder Found : C:\Users\Mira\AppData\Roaming\Media Finder
Folder Found : C:\Users\Mira\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Folder Found : C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default\extensions\ffxtlbr@babylon.com

***** [Registry] *****

Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\MediaFinder
Key Found : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Found : HKLM\Software\Babylon
Key Found : HKLM\Software\BabylonToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\AppID\{3F39D17D-50C7-4AC4-A63A-CDF6CDBD0C61}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Found : HKLM\SOFTWARE\Classes\AppID\IEPlugin.DLL
Key Found : HKLM\SOFTWARE\Classes\b
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Found : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Found : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Found : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Found : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Found : HKLM\SOFTWARE\Classes\IEPlugin.IEWebHook
Key Found : HKLM\SOFTWARE\Classes\IEPlugin.IEWebHook.1
Key Found : HKLM\SOFTWARE\Classes\MF
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{71E3A30E-9444-49D9-ABDB-B4B531D0BBA3}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AE9908C1-3400-4B10-9061-C6C04D96E3D2}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ICQToolbar
Key Found : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Found : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AE9908C1-3400-4B10-9061-C6C04D96E3D2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Found : HKU\S-1-5-21-1594668502-3118042696-3743973280-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKU\S-1-5-21-1594668502-3118042696-3743973280-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?babsrc=HP_ss&affID=111015&mntrId=38db35ca000000000000485b39aa0528
[HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd

-\\ Mozilla Firefox v17.0.1 (cs)

Profile name : default
File : C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default\prefs.js

Found : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Found : user_pref("extensions.BabylonToolbar_i.babExt", "");
Found : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=111015");
Found : user_pref("extensions.BabylonToolbar_i.hardId", "38db35ca000000000000485b39aa0528");
Found : user_pref("extensions.BabylonToolbar_i.id", "38db35ca000000000000485b39aa0528");
Found : user_pref("extensions.BabylonToolbar_i.instlDay", "15439");
Found : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Found : user_pref("extensions.BabylonToolbar_i.newTab", false);
Found : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Found : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Found : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Found : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Found : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Found : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Found : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1717:50:14");
Found : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [13433 octets] - [30/12/2012 16:45:44]

########## EOF - C:\AdwCleaner[R1].txt - [13494 octets] ##########

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 16:50
od RJZ

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 16:52
od tuvok07
On chtěl log z toho combofixu

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 16:54
od RJZ
tuvok07 píše:On chtěl log z toho combofixu
Bohužel po odinstalování combofixu smazán taktéž. Psal, že RSIT není kompletní tak jsem ho poslal znovu.

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 17:34
od Rudy
Spusťte znovu ADWCleaner a klikněte na >Delete<. Vložte nový log.

Ano, chtěl jsem log z toho CF, co jste dělal před tím, než se vám PC zpomalil.

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 17:37
od RJZ
# AdwCleaner v2.007 - Logfile created 12/30/2012 at 17:34:54
# Updated 06/11/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Mira - MIRA-PC
# Boot Mode : Normal
# Running from : C:\Users\Mira\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : ICQ Service

***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
File Deleted : C:\user.js
File Deleted : C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default\searchplugins\icqplugin.xml
Folder Deleted : C:\Program Files (x86)\BabylonToolbar
Folder Deleted : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Users\Mira\AppData\Local\Babylon
Folder Deleted : C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Folder Deleted : C:\Users\Mira\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\Mira\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Mira\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Mira\AppData\Roaming\Media Finder
Folder Deleted : C:\Users\Mira\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Folder Deleted : C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default\extensions\ffxtlbr@babylon.com

***** [Registry] *****

Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\MediaFinder
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3F39D17D-50C7-4AC4-A63A-CDF6CDBD0C61}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Deleted : HKLM\SOFTWARE\Classes\AppID\IEPlugin.DLL
Key Deleted : HKLM\SOFTWARE\Classes\b
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Deleted : HKLM\SOFTWARE\Classes\IEPlugin.IEWebHook
Key Deleted : HKLM\SOFTWARE\Classes\IEPlugin.IEWebHook.1
Key Deleted : HKLM\SOFTWARE\Classes\MF
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{71E3A30E-9444-49D9-ABDB-B4B531D0BBA3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AE9908C1-3400-4B10-9061-C6C04D96E3D2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AE9908C1-3400-4B10-9061-C6C04D96E3D2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?babsrc=HP_ss&affID=111015&mntrId=38db35ca000000000000485b39aa0528 --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - ICQ Search] = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd --> hxxp://www.google.com

-\\ Mozilla Firefox v17.0.1 (cs)

Profile name : default
File : C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default\prefs.js

C:\Users\Mira\AppData\Roaming\Mozilla\Firefox\Profiles\s5er3hvk.default\user.js ... Deleted !

Deleted : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=111015");
Deleted : user_pref("extensions.BabylonToolbar_i.hardId", "38db35ca000000000000485b39aa0528");
Deleted : user_pref("extensions.BabylonToolbar_i.id", "38db35ca000000000000485b39aa0528");
Deleted : user_pref("extensions.BabylonToolbar_i.instlDay", "15439");
Deleted : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Deleted : user_pref("extensions.BabylonToolbar_i.newTab", false);
Deleted : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Deleted : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Deleted : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Deleted : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1717:50:14");
Deleted : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [13522 octets] - [30/12/2012 16:45:44]
AdwCleaner[S1].txt - [13671 octets] - [30/12/2012 17:34:54]

########## EOF - C:\AdwCleaner[S1].txt - [13732 octets] ##########

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 17:38
od RJZ
Rudy píše:Spusťte znovu ADWCleaner a klikněte na >Delete<. Vložte nový log.

Ano, chtěl jsem log z toho CF, co jste dělal před tím, než se vám PC zpomalil.
Bohužel, log CF nemám.

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 17:41
od Rudy

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 17:46
od RJZ
Rudy píše:OK. Dejte nový log RSIT: http://forum.viry.cz/viewtopic.php?f=13&t=105895 .
Sem se to nevešlo, tak je zde: http://leteckaposta.cz/904232764

Re: Pomalé spouštění programů po použití ComboFix

Napsal: 30 pro 2012 18:00
od Rudy
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.