VIRY.CZ

Prosím o radu: start Windows XP končí u obrazovky s logem, jako když se stále načítají, ale nic... Nouzový režim lze spustit. Při restartu se ale někdy nedostane ani přes detekci IDE drives, pomůže hard reset (vypnutí PC). Joavše to vzniklo po aktualizaci na SP3. Díky!
RSIT zde: musím natřikrát, do 60000 znaků se nevejdu...

Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2010-01-09 23:49:56
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 29 GB (18%) free of 156 GB
Total RAM: 1023 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:50:00, on 9.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Programs\RSIT.exe
C:\ANTIVIR\Administrator.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CTCheck] C:\Program Files\Creative\ZEN Media Explorer\CTCheck.exe
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 2970307171
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://www.creative.com/softwareupdate/ ... TSUEng.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/ ... /CTPID.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe

--
End of file - 5187 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-01 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"mmtask"=C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe [2005-05-03 53248]
"RemoteControl"=C:\Program Files\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"DAEMON Tools-1033"=C:\Program Files\D-Tools\daemon.exe [2003-12-27 81920]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-11-01 148888]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2006-07-06 282624]
"CTCheck"=C:\Program Files\Creative\ZEN Media Explorer\CTCheck.exe [2007-11-06 397312]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2008-12-13 1797880]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2009-03-09 37888]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-24 98304]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2010-01-07 1394000]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-11-17 577536]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\CTFMON.EXE [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Reader Speed Launch.lnk - C:\Program Files\Acrobat 7.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-11-25 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WB]
C:\Program Files\Object Desktop\ThemeManager\fastload.dll [2001-12-20 24576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Curse\CurseClient.exe"="C:\Program Files\Curse\CurseClient.exe:*:Enabled:Curse Client"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\HRY\TmNationsForever\TmForever.exe"="C:\HRY\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-01-09 23:49:56 ----D---- C:\rsit
2010-01-09 23:46:10 ----D---- C:\WINDOWS\LastGood
2010-01-09 23:26:26 ----R---- C:\WINDOWS\avrack.ini
2010-01-09 23:26:26 ----D---- C:\Program Files\Realtek Sound Manager
2010-01-09 23:26:26 ----D---- C:\Program Files\AvRack
2010-01-09 23:26:17 ----D---- C:\Program Files\Realtek AC97
2010-01-09 23:13:31 ----D---- C:\WINDOWS\LastGood.Tmp
2010-01-09 23:01:07 ----D---- C:\Avenger
2010-01-09 22:54:51 ----D---- C:\Documents and Settings\Administrator.DOMINIK.003\Data aplikací\Macromedia
2010-01-09 22:54:04 ----D---- C:\Documents and Settings\Administrator.DOMINIK.003\Data aplikací\Mozilla
2010-01-09 22:46:39 ----D---- C:\Documents and Settings\Administrator.DOMINIK.003\Data aplikací\Malwarebytes
2010-01-09 22:46:34 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-01-09 22:46:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-01-09 22:44:12 ----D---- C:\Documents and Settings\Administrator.DOMINIK.003\Data aplikací\Adobe
2010-01-09 22:32:00 ----A---- C:\WINDOWS\ntbtlog.txt
2010-01-09 19:48:59 ----ASH---- C:\Documents and Settings\Administrator.DOMINIK.003\Data aplikací\desktop.ini
2010-01-09 19:48:58 ----SD---- C:\Documents and Settings\Administrator.DOMINIK.003\Data aplikací\Microsoft
2010-01-09 13:30:26 ----D---- C:\WINDOWS\Prefetch
2010-01-09 11:23:21 ----D---- C:\WINDOWS\system32\cs-cz
2010-01-09 11:23:20 ----D---- C:\WINDOWS\system32\cs
2010-01-09 11:23:20 ----D---- C:\WINDOWS\system32\bits
2010-01-09 11:23:20 ----D---- C:\WINDOWS\l2schemas
2010-01-09 11:21:12 ----D---- C:\WINDOWS\ServicePackFiles
2010-01-08 18:28:23 ----D---- C:\WINDOWS\network diagnostic
2010-01-08 18:27:12 ----A---- C:\WINDOWS\system32\bthserv.dll
2010-01-08 18:27:12 ----A---- C:\WINDOWS\system32\bthci.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\xpsp1res.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\xpob2res.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\sdhcinst.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\ir50_qcx.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\ir50_qc.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\ir50_32.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\ir41_qcx.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\ir41_qc.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\hccoin.dll
2010-01-08 18:27:11 ----A---- C:\WINDOWS\system32\fsquirt.exe
2010-01-08 18:27:10 ----A---- C:\WINDOWS\system32\wshbth.dll
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\wscntfy.exe
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\pnrpnsp.dll
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\pidgen.dll
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\p2pgasvc.dll
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\logman.exe
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\kbdukx.dll
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\extmgr.dll
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\encdec.dll
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\dsprpres.dll
2010-01-08 18:27:06 ----A---- C:\WINDOWS\system32\dpcdll.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\w3ssl.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\sbeio.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\sbe.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\p2psvc.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\p2pgraph.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\msftedit.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\kbdsmsno.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\kbdmlt47.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\kbdfi1.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-01-08 18:27:05 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-01-08 18:27:04 ----A---- C:\WINDOWS\system32\smbinst.exe
2010-01-08 18:27:04 ----A---- C:\WINDOWS\system32\proxycfg.exe
2010-01-08 18:27:04 ----A---- C:\WINDOWS\system32\msdadiag.dll
2010-01-08 18:27:04 ----A---- C:\WINDOWS\system32\ieencode.dll
2010-01-08 18:27:04 ----A---- C:\WINDOWS\system32\httpapi.dll
2010-01-08 18:27:04 ----A---- C:\WINDOWS\system32\fwcfg.dll
2010-01-08 18:27:04 ----A---- C:\WINDOWS\system32\d3d9.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\xmlprovi.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\xmlprov.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\wscsvc.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\winshfhc.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\winhttp.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\winbrand.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\twext.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\spnpinst.exe
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\powercfg.exe
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\mssap.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\kbdsmsfi.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\kbdinmal.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\kbdinbe1.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\cmsetacl.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\btpanui.dll
2010-01-08 18:27:02 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\strmfilt.dll
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\p2p.dll
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\kbdno1.dll
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\kbdmlt48.dll
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\kbdmaori.dll
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\kbdinben.dll
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\encapi.dll
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\blastcln.exe
2010-01-08 18:27:01 ----A---- C:\WINDOWS\system32\auditusr.exe
2010-01-08 18:26:43 ----A---- C:\WINDOWS\twain_32.dll
2010-01-08 18:26:43 ----A---- C:\WINDOWS\regedit.exe
2010-01-08 18:26:43 ----A---- C:\WINDOWS\hh.exe
2010-01-08 18:26:43 ----A---- C:\WINDOWS\explorer.exe
2010-01-08 18:26:42 ----A---- C:\WINDOWS\winhlp32.exe
2010-01-08 18:26:42 ----A---- C:\WINDOWS\system32\adsldp.dll
2010-01-08 18:26:42 ----A---- C:\WINDOWS\system32\admparse.dll
2010-01-08 18:26:42 ----A---- C:\WINDOWS\system32\actxprxy.dll
2010-01-08 18:26:42 ----A---- C:\WINDOWS\system32\actmovie.exe
2010-01-08 18:26:42 ----A---- C:\WINDOWS\system32\activeds.dll
2010-01-08 18:26:42 ----A---- C:\WINDOWS\system32\aclui.dll
2010-01-08 18:26:42 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-01-08 18:26:42 ----A---- C:\WINDOWS\system32\6to4svc.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\camocx.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\cabview.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\cabinet.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\browsewm.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\browseui.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\browser.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\browselc.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\bidispl.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\batt.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\batmeter.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\basesrv.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\avifil32.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\autolfn.exe
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\autofmt.exe
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\authz.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\audiosrv.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\attrib.exe
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\atmlib.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\atmfd.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\atmadm.exe
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\atl.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\at.exe
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\asycfilt.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\apphelp.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\amstream.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\alrsvc.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\alg.exe
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\ahui.exe
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\advpack.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\adsnt.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\adsmsext.dll
2010-01-08 18:26:41 ----A---- C:\WINDOWS\system32\adsldpc.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\cisvc.exe
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\ciodm.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\cic.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\certmgr.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\certcli.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\cdosys.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\cdfview.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-01-08 18:26:40 ----A---- C:\WINDOWS\system32\capesnpn.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cryptnet.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cryptext.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cryptdll.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\crypt32.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\credui.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\corpol.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\conime.exe
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\confmsp.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\comuid.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\comres.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\compstui.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\compatui.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\colbact.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cnbjmon.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cmutil.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cmstp.exe
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cmmon32.exe
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cmdl32.exe
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cmdial32.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cmcfg32.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\clusapi.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\clipsrv.exe
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cliconfg.exe
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cliconfg.dll
2010-01-08 18:26:39 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2010-01-08 18:26:38 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2010-01-08 18:26:38 ----A---- C:\WINDOWS\system32\d3d8.dll
2010-01-08 18:26:38 ----A---- C:\WINDOWS\system32\ctfmon.exe
2010-01-08 18:26:38 ----A---- C:\WINDOWS\system32\csrss.exe
2010-01-08 18:26:38 ----A---- C:\WINDOWS\system32\cscui.dll
2010-01-08 18:26:38 ----A---- C:\WINDOWS\system32\cscript.exe
2010-01-08 18:26:38 ----A---- C:\WINDOWS\system32\cscdll.dll
2010-01-08 18:26:38 ----A---- C:\WINDOWS\system32\cryptui.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\devmgr.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\devenum.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\defrag.exe
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\ddrawex.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\ddraw.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\ddeshare.exe
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\dciman32.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\dbnmpntw.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\dbnetlib.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\dbghelp.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\davclnt.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\datime.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\dataclen.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\danim.dll
2010-01-08 18:26:37 ----A---- C:\WINDOWS\system32\d3dim700.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmstyle.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmserver.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmscript.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmremote.exe
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmloader.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmime.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmdlgs.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmcompos.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmband.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dmadmin.exe
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dllhost.exe
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dispex.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\diskpart.exe
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\diskcopy.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dinput8.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dinput.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\digest.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\diantz.exe
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dhcpmon.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dgnet.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dfsshlex.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dfrgui.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dfrgsnap.dll
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dfrgntfs.exe
2010-01-08 18:26:36 ----A---- C:\WINDOWS\system32\dfrgfat.exe
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dsdmo.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\ds32gt.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\drprov.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpvvox.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpvsetup.exe
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpvoice.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpvacm.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpnet.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dplayx.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\docprop2.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dnsapi.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dmutil.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dmusic.dll
2010-01-08 18:26:35 ----A---- C:\WINDOWS\system32\dmsynth.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dxdiag.exe
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dx8vb.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dx7vb.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dwwin.exe
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dvdupgrd.exe
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\duser.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dumprep.exe
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dswave.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dsuiext.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dssenh.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dssec.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dsquery.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dsprop.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dsound3d.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dsound.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dskquoui.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dskquota.dll
2010-01-08 18:26:34 ----A---- C:\WINDOWS\system32\dsdmoprp.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\gdi32.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\framebuf.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\forcedos.exe
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\fontview.exe
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\fontsub.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\fontext.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\fldrclnr.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\findstr.exe
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\filemgmt.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\feclient.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\faultrep.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\exts.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\extrac32.exe
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\expsrv.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\eventlog.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\eudcedit.exe
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\esent.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\es.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\ersvc.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\els.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\dxtrans.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2010-01-08 18:26:33 ----A---- C:\WINDOWS\system32\dxmasf.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\iccvid.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\iasrad.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\htui.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\hotplug.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\hnetwiz.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\hlink.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\hid.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\hhsetup.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\help.exe
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\h323msp.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\grpconv.exe
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\gpkrsrc.dll
2010-01-08 18:26:32 ----A---- C:\WINDOWS\system32\glu32.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\initpki.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\inetres.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\inetppui.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\inetpp.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\inetmib1.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\imm32.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\imgutil.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\imeshare.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\imapi.exe
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\ils.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\igmpagnt.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\ifmon.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\iexpress.exe
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\iesetup.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\iernonce.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\iepeers.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\ieaksie.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\ieakeng.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\idq.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\icmp.dll
2010-01-08 18:26:31 ----A---- C:\WINDOWS\system32\icm32.dll

rsit2:
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\jgdw400.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\iyuv_32.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ixsso.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\itss.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\itircl.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\isign32.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipxwan.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipxroute.exe
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipv6mon.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipv6.exe
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipsmsnap.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipsecsvc.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipsecsnp.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ippromon.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipmontr.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\iphlpapi.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\ipconfig.exe
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\inseng.dll
2010-01-08 18:26:30 ----A---- C:\WINDOWS\system32\input.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\mciqtz32.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\mciavi32.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\mcastmib.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\makecab.exe
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\magnify.exe
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\lsass.exe
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\lprhelp.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\lpk.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\logonui.exe
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\localui.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\localsec.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\loadperf.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\lmrt.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\linkinfo.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\licmgr10.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\licdll.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\keymgr.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\kerberos.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\kd1394.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\kbdnec.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\jsproxy.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\jscript.dll
2010-01-08 18:26:29 ----A---- C:\WINDOWS\system32\jgpl400.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mmcbase.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mmc.exe
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mlang.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mimefilt.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\miglibnt.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\midimap.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mfcsubs.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mfc42u.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mfc42.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mfc40u.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mf3216.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mdminst.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mciwave.dll
2010-01-08 18:26:28 ----A---- C:\WINDOWS\system32\mciseq.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mscms.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\msasn1.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\msapsspc.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\msafd.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\msacm32.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mprdim.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mprapi.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mpr.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\moricons.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\more.com
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\modemui.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mobsync.exe
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mobsync.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-01-08 18:26:27 ----A---- C:\WINDOWS\system32\mmcshext.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msexch40.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msdxmlc.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msdmo.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msdart.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msctfp.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msctf.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\mscpxl32.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\mscpx32r.dll
2010-01-08 18:26:26 ----A---- C:\WINDOWS\system32\msconf.dll
2010-01-08 18:26:25 ----A---- C:\WINDOWS\system32\mshta.exe
2010-01-08 18:26:25 ----A---- C:\WINDOWS\system32\msgina.dll
2010-01-08 18:26:25 ----A---- C:\WINDOWS\system32\msexcl40.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msorc32r.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msnsspc.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msltus40.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\mslbui.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msjtes40.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msjter40.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msjint40.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msjetoledb40.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msjet40.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msisip.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msimtf.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msimsg.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msimg32.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msihnd.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msiexec.exe
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msieftp.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msidle.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msident.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\msi.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\mshtmler.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-01-08 18:26:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\mstlsapi.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\mstime.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\mstext40.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\mstask.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\msrle32.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\msrepl40.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\msrd3x40.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\msrd2x40.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\msrating.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\msprivs.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\mspbde40.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\mspatcha.dll
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-01-08 18:26:23 ----A---- C:\WINDOWS\system32\msorcl32.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msxml.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msxbde40.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\mswstr10.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\mswsock.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\mswdat10.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msw3prt.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msvidctl.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msvfw32.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msvcrt40.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msvcrt.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msvcp60.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msvcirt.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msvbvm60.dll
2010-01-08 18:26:22 ----A---- C:\WINDOWS\system32\msutb.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\netid.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\netdde.exe
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\netcfgx.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\netapi32.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\net1.exe
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\net.exe
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\nddenb32.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\nddeapir.exe
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\nddeapi.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\narrator.exe
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\mydocs.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\mtxclu.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\msyuv.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\msxml3.dll
2010-01-08 18:26:21 ----A---- C:\WINDOWS\system32\msxml2.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\ntmsdba.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\ntmsapi.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\ntmarta.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\ntlanman.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\ntdsapi.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\npptools.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\notepad.exe
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\nlhtml.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\newdev.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netui1.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netui0.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netstat.exe
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netshell.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netsh.exe
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netsetup.exe
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netrap.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netplwiz.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netman.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\system32\netlogon.dll
2010-01-08 18:26:20 ----A---- C:\WINDOWS\notepad.exe
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odtext32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odpdx32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odfox32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odexl32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\oddbse32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbctrac.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbcjt32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbcji32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbcint.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbccu32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbccr32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbccp32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbcconf.exe
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbcconf.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbcbcp.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbcad32.exe
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\odbc32.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\ocmanage.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\occache.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\objsel.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\oakley.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\ntshrui.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\ntmssvc.dll
2010-01-08 18:26:19 ----A---- C:\WINDOWS\system32\ntmsmgr.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\profmap.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\powrprof.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\polstore.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\pngfilt.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\pjlmon.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\ping.exe
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\pid.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\photowiz.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\perfproc.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\perfos.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\perfnet.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\perfmon.exe
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\perfdisk.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\pdh.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\pautoenr.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\packager.exe
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\osuninst.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\osk.exe
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\opengl32.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\olepro32.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\oleprn.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\oledlg.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\olecli32.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\ole32.dll
2010-01-08 18:26:18 ----A---- C:\WINDOWS\system32\offfilt.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\quartz.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\qedwipes.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\qedit.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\qdvd.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\qdv.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\qcap.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\pstorsvc.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\pstorec.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\psbase.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\psapi.dll
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\proquota.exe
2010-01-08 18:26:17 ----A---- C:\WINDOWS\system32\progman.exe
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\regapi.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\reg.exe
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rdpdd.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rcp.exe
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rcimlby.exe
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rcbdyctl.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rastls.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rassapi.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rasppp.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rasphone.exe
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rasmans.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\raschap.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-01-08 18:26:16 ----A---- C:\WINDOWS\system32\query.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\scesrv.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\scecli.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\sccsccp.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\scarddlg.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\runonce.exe
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rundll32.exe
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rtutils.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rtipxmib.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rtcshare.exe
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rsvpsp.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rsmps.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rsh.exe
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rsaenh.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rpcss.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\riched20.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\rexec.exe
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\resutils.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\regwizc.dll
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\regsvr32.exe
2010-01-08 18:26:15 ----A---- C:\WINDOWS\system32\regsvc.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\sfc_os.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\sfc.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\setup.exe
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\sethc.exe
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\sensapi.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\sens.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\sendmail.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\sendcmsg.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\security.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\secur32.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\seclogon.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\sdbinst.exe
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\scrrun.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\scrobj.dll
2010-01-08 18:26:14 ----A---- C:\WINDOWS\system32\sclgntfy.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shsvcs.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shscrap.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shrpubw.exe
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shmgrate.exe
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shmedia.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shlwapi.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shimgvw.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shimeng.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shgina.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shfolder.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shell32.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shdocvw.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\shdoclc.dll
2010-01-08 18:26:13 ----A---- C:\WINDOWS\system32\sfcfiles.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\srclient.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\sqlunirl.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\spoolsv.exe
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\spoolss.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\spider.exe
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\sort.exe
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\snmpsnap.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\snmpapi.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\smlogsvc.exe
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\smlogcfg.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\slbiop.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\slayerxp.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\skeys.exe
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\sigverif.exe
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\sigtab.dll
2010-01-08 18:26:12 ----A---- C:\WINDOWS\system32\shutdown.exe
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\synceng.dll
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\sxs.dll
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\svchost.exe
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\strmdll.dll
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\storprop.dll
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\stobject.dll
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\stimon.exe
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\sti_ci.dll
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\sti.dll
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\stclient.dll
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2010-01-08 18:26:11 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2010-01-08 18:26:10 ----A---- C:\WINDOWS\system32\taskmgr.exe
2010-01-08 18:26:10 ----A---- C:\WINDOWS\system32\tapisrv.dll
2010-01-08 18:26:10 ----A---- C:\WINDOWS\system32\tapi32.dll
2010-01-08 18:26:10 ----A---- C:\WINDOWS\system32\tapi3.dll
2010-01-08 18:26:10 ----A---- C:\WINDOWS\system32\t2embed.dll
2010-01-08 18:26:10 ----A---- C:\WINDOWS\system32\sysocmgr.exe
2010-01-08 18:26:10 ----A---- C:\WINDOWS\system32\syncui.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\uniplat.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\unimdmat.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\umandlg.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\udhisapi.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\txflog.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\tsddd.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\trkwks.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\tree.com
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\tracert.exe
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\tourstart.exe
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\themeui.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\termmgr.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\telnet.exe
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\tcpmon.dll
2010-01-08 18:26:09 ----A---- C:\WINDOWS\system32\tcpmib.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\w32time.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\vssvc.exe
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\vssapi.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\version.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\verifier.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\vdmredir.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\vdmdbg.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\vbscript.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\vbajet32.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\uxtheme.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\utilman.exe
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\usp10.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\userenv.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\user32.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\usbui.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\usbmon.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\url.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\ups.exe
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\upnpui.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\upnphost.dll
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\upnpcont.exe
2010-01-08 18:26:08 ----A---- C:\WINDOWS\system32\upnp.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\winmm.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\winlogon.exe
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\winipsec.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wininet.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wiavideo.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wiashext.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wiaservc.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wiascr.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wiadss.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wiadefui.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wextract.exe
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\webvw.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\webcheck.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\webclnt.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wdigest.dll
2010-01-08 18:26:07 ----A---- C:\WINDOWS\system32\wavemsp.dll
2010-01-08 18:26:06 ----A---- C:\WINDOWS\system32\winver.exe
2010-01-08 18:26:06 ----A---- C:\WINDOWS\system32\wintrust.dll
2010-01-08 18:26:06 ----A---- C:\WINDOWS\system32\winsta.dll
2010-01-08 18:26:06 ----A---- C:\WINDOWS\system32\winsrv.dll
2010-01-08 18:26:06 ----A---- C:\WINDOWS\system32\winscard.dll
2010-01-08 18:26:06 ----A---- C:\WINDOWS\system32\winrnr.dll
2010-01-08 18:26:06 ----A---- C:\WINDOWS\system32\winntbbu.dll
2010-01-08 18:26:05 ----A---- C:\WINDOWS\system32\wow32.dll
2010-01-08 18:26:05 ----A---- C:\WINDOWS\system32\wmstream.dll
2010-01-08 18:26:05 ----A---- C:\WINDOWS\system32\wmsdmoe.dll
2010-01-08 18:26:05 ----A---- C:\WINDOWS\system32\wmpui.dll
2010-01-08 18:26:05 ----A---- C:\WINDOWS\system32\wmpcore.dll
2010-01-08 18:26:05 ----A---- C:\WINDOWS\system32\wmpcd.dll
2010-01-08 18:26:05 ----A---- C:\WINDOWS\system32\wmi.dll
2010-01-08 18:26:05 ----A---- C:\WINDOWS\system32\wlnotify.dll
2010-01-08 18:26:05 ----A---- C:\WINDOWS\system32\wldap32.dll
2010-01-08 18:26:04 ----A---- C:\WINDOWS\system32\ws2help.dll
2010-01-08 18:26:04 ----A---- C:\WINDOWS\system32\ws2_32.dll
2010-01-08 18:26:04 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2010-01-08 18:26:04 ----A---- C:\WINDOWS\system32\wpabaln.exe
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\zipfldr.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\xcopy.exe
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\xactsrv.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wzcsvc.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wzcsapi.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wzcdlg.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wtsapi32.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wstdecod.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wsock32.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wshtcpip.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wshrm.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wship6.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wshext.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wshcon.dll
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\wscript.exe
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\cmd.exe
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\cacls.exe
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\autochk.exe
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\autoconv.exe
2010-01-08 18:26:03 ----A---- C:\WINDOWS\system32\advapi32.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\rasauto.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\rasapi32.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\printui.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\perfctrs.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\olecnv32.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\oleaut32.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\nwprovau.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\ntvdm.exe
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\ntprint.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\ntdll.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\nslookup.exe
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\msv1_0.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\msgsvc.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\lsasrv.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\locator.exe
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\localspl.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\kernel32.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\imagehlp.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\ftp.exe
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\format.com
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\csrsrv.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\comdlg32.dll
2010-01-08 18:26:02 ----A---- C:\WINDOWS\system32\comctl32.dll
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\schannel.dll
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\services.exe
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\scardsvr.exe
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\savedump.exe
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\samsrv.dll
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\samlib.dll
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\rshx32.dll
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\rastapi.dll
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\rasman.dll
2010-01-08 18:26:01 ----A---- C:\WINDOWS\system32\rasdlg.dll
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\wkssvc.dll
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\win32spl.dll
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\userinit.exe
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\untfs.dll
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\ulib.dll
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\syssetup.dll
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\srvsvc.dll
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\smss.exe
2010-01-08 18:26:00 ----A---- C:\WINDOWS\system32\setupapi.dll
2010-01-08 18:25:56 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2010-01-08 18:25:56 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2010-01-08 18:25:56 ----A---- C:\WINDOWS\system32\HAL.DLL
2010-01-08 18:25:47 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-01-08 18:25:44 ----D---- C:\WINDOWS\EHome
2010-01-08 18:07:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-01-08 18:05:50 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2010-01-08 18:05:49 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2010-01-08 18:05:49 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2009-12-25 14:59:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\Oemdspif.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ativcoxx.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\atitvo32.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\atipdlxx.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\atiok3x2.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\atioglxx.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ATIODE.exe
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\atimpc32.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\atikvmag.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\atiiiexx.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ATIDEMGX.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ATIDDC.DLL
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\aticalrt.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\aticaldd.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\aticalcl.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\atibtmon.exe
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ati3duag.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ati2evxx.exe
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ati2evxx.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ati2edxx.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2009-12-25 14:55:36 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2009-12-25 14:55:19 ----D---- C:\Program Files\ATI
2009-12-25 14:55:04 ----D---- C:\Program Files\ATI Technologies
2009-12-25 14:54:21 ----D---- C:\ATI
2009-12-25 00:09:16 ----D---- C:\Program Files\AVIConverter

rsit3:
======List of files/folders modified in the last 1 months======

2010-01-09 23:49:57 ----D---- C:\ANTIVIR
2010-01-09 23:46:11 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-01-09 23:46:11 ----D---- C:\WINDOWS\system32
2010-01-09 23:46:10 ----D---- C:\WINDOWS\temp
2010-01-09 23:46:10 ----D---- C:\WINDOWS
2010-01-09 23:36:05 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-09 23:35:12 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-09 23:31:16 ----D---- C:\WINDOWS\inf
2010-01-09 23:26:57 ----D---- C:\WINDOWS\system32\drivers
2010-01-09 23:26:26 ----D---- C:\Program Files
2010-01-09 23:25:45 ----D---- C:\Programs
2010-01-09 23:05:52 ----D---- C:\Program Files\Mozilla Firefox
2010-01-09 23:01:07 ----D---- C:\WINDOWS\Debug
2010-01-09 19:51:20 ----SHD---- C:\RECYCLER
2010-01-09 19:51:20 ----D---- C:\WINDOWS\Minidump
2010-01-09 19:48:58 ----D---- C:\Documents and Settings
2010-01-09 13:35:59 ----SHD---- C:\WINDOWS\Installer
2010-01-09 13:35:59 ----HD---- C:\Config.Msi
2010-01-09 13:35:18 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-01-09 13:35:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-01-09 13:33:11 ----D---- C:\WINDOWS\system32\CatRoot
2010-01-09 13:30:01 ----D---- C:\WINDOWS\system32\wbem
2010-01-09 13:30:01 ----D---- C:\WINDOWS\system32\Setup
2010-01-09 13:30:01 ----D---- C:\WINDOWS\AppPatch
2010-01-09 13:30:01 ----D---- C:\Program Files\Internet Explorer
2010-01-09 13:30:00 ----D---- C:\WINDOWS\Fonts
2010-01-09 13:28:28 ----D---- C:\WINDOWS\security
2010-01-09 13:28:23 ----D---- C:\Program Files\McAfee Security Scan
2010-01-09 13:26:56 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-01-09 13:24:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\_comodo_
2010-01-09 11:23:38 ----D---- C:\WINDOWS\WinSxS
2010-01-09 11:23:33 ----D---- C:\Program Files\Messenger
2010-01-09 11:23:32 ----DC---- C:\WINDOWS\system32\dllcache
2010-01-09 11:23:31 ----D---- C:\WINDOWS\ime
2010-01-09 11:23:31 ----D---- C:\WINDOWS\Help
2010-01-09 11:23:21 ----D---- C:\WINDOWS\system32\usmt
2010-01-09 11:23:20 ----D---- C:\WINDOWS\PeerNet
2010-01-09 11:23:20 ----D---- C:\Program Files\Movie Maker
2010-01-09 11:21:06 ----D---- C:\WINDOWS\system32\Restore
2010-01-09 11:21:06 ----D---- C:\WINDOWS\system32\npp
2010-01-09 11:21:05 ----D---- C:\WINDOWS\msagent
2010-01-09 11:21:04 ----D---- C:\WINDOWS\srchasst
2010-01-09 11:21:03 ----D---- C:\Program Files\NetMeeting
2010-01-09 11:21:02 ----D---- C:\WINDOWS\system32\Com
2010-01-09 11:21:00 ----D---- C:\Program Files\Windows NT
2010-01-09 11:21:00 ----D---- C:\Program Files\Windows Media Player
2010-01-09 11:20:59 ----D---- C:\Program Files\Outlook Express
2010-01-09 11:20:57 ----D---- C:\Program Files\Common Files\System
2010-01-09 11:20:40 ----D---- C:\WINDOWS\system32\oobe
2010-01-09 11:20:38 ----D---- C:\WINDOWS\system
2010-01-08 18:06:43 ----D---- C:\WINDOWS\SoftwareDistribution
2009-12-25 15:39:38 ----RD---- C:\DOMINIK
2009-12-25 15:17:25 ----D---- C:\Program Files\VLC player
2009-12-25 15:04:53 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-12-25 14:59:14 ----D---- C:\WINDOWS\system32\config
2009-12-25 14:57:06 ----D---- C:\WINDOWS\assembly
2009-12-25 14:53:54 ----A---- C:\WINDOWS\system32\wpa.bak
2009-12-25 14:21:14 ----D---- C:\Program Files\NVIDIA Corporation
2009-12-25 14:21:14 ----D---- C:\Program Files\Common Files
2009-12-22 02:16:20 ----A---- C:\WINDOWS\ModemLog_Motorola USB Modem.txt
2009-12-20 00:13:35 ----D---- C:\Program Files\MediaCoder
2009-12-17 23:19:44 ----D---- C:\HRY

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2008-12-13 31504]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-04-06 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-04-06 12928]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
S1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2008-12-13 101776]
S2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-12-24 278984]
S2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-12-24 25416]
S2 SVKP;SVKP; \??\C:\WINDOWS\system32\SVKP.sys []
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2007-03-08 4027840]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-11-25 4463104]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 k510bus;Sony Ericsson K510 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\k510bus.sys [2006-02-17 58288]
S3 k510mdfl;Sony Ericsson K510 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\k510mdfl.sys [2007-07-20 8336]
S3 k510mdm;Sony Ericsson K510 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\k510mdm.sys [2007-07-20 94064]
S3 k510mgmt;Sony Ericsson K510 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\k510mgmt.sys [2006-02-17 85408]
S3 k510obex;Sony Ericsson K510 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\k510obex.sys [2006-02-17 83344]
S3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys []
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 nvax;Service for NVIDIA(R) nForce(TM) Audio Enumerator; C:\WINDOWS\system32\drivers\nvax.sys [2005-04-13 53376]
S3 nvnforce;Service for NVIDIA(R) nForce(TM) Audio; C:\WINDOWS\system32\drivers\nvapu.sys [2005-04-13 414464]
S3 o1394bul;o1394bul; \??\C:\DOCUME~1\Dominik1\LOCALS~1\Temp\o1394bul.sys []
S3 Ser2pl;MAT Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2003-07-16 43264]
S3 sony_ssm.sys;sony_ssm.sys; \??\C:\DOCUME~1\Dominik1\LOCALS~1\Temp\sony_ssm.sys []
S3 StMp3Rec;Player Recovery Device Control Driver; C:\WINDOWS\System32\Drivers\StMp3Rec.sys [2005-05-13 68204]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;Motorola A1000 USB Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-13 26112]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-11-25 602112]
S2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2008-12-13 618232]
S2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.exe [1999-12-13 44032]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-11-01 152984]
S2 UserAccess7;SecuROM User Access Service (V7); C:\WINDOWS\system32\UAService7.exe [2008-06-28 122880]
S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]

-----------------EOF-----------------

Dobré ranko

zkoušel jste odinstalovat sp3, případně obnovu systému jste zkoušel?

windows máte legální a sp3 jste stahoval z microsoftu?

avenger jste použil na co?

Dobré ráno až teď... SP3 z MS Update, orig. Avenger? Nic mi to neříká... Včera pouze mbam, našel adware a trojan (ale nevím co, nechal jsem to smazat). A právě že odinstalovat sp3 nejde, ohlásí to ke konci chybu. Jo a ani asi neproběhla celá instalace sp3, ke konci se to seklo i při instalaci a musel jsem res, takže je mi divné, že se to teď hlásí jako sp3. Nejde ani návrat k bodu obnovení. Díky!

Můžete se podívat, co je v této složce?
2010-01-09 23:01:07 ----D---- C:\Avenger

Vy jste pak ještě něco instaloval?
2010-01-09 23:26:26 ----D---- C:\Program Files\Realtek Sound Manager

Nemohl se problém objevit až pak?

Obnova nejde proč? Nebyla zapnutá?

Stáhněte SystemLook
http://jpshortstuff.247fixes.com/SystemLook.exe

-uložte ho na plochu a spustte.
-do okénka zkopírujte

Kód: Vybrat vše

:filefind
winlogon.exe
userinit.exe

-klikněte na Look, proběhne sken, na konci se zobrazí log, jehož obsah zkopírujete sem

nestahoval jste nějaký crack / keygen?

Zkuste sp3 odinstalovat tímto
http://support.microsoft.com/kb/290301/cs

Ale předtím si zazálohujte důležitá data z počítače.Všechno jsou to docela velké zásahy do systému a nevím co to udělá

Takže , motji, moc díky za podporu! C:Avenger je prázdná složka, Realtek je HD Audio driver, který jsem tam doinstaloval (výměna grafárny a chybná odinstalace i audio driveru, ale to bylo už před 14D a fachalo to), chtělo ho to před tímhle problémem, i po něm, driver to sice už nevyžaduje, ale v system/hardware je stejně HD audio problémové. Tu odinstalačku MS nelze použít v nouzovém režimu. Log look je tu:
SystemLook v1.0 by jpshortstuff (29.08.09)
Log created at 11:36 on 10/01/2010 by Administrator (Administrator - Elevation successful)

No Context: Kód:

========== filefind ==========

Searching for "winlogon.exe"
C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe -----c 502272 bytes [10:16 09/01/2010] [12:00 18/08/2004] 221C29AE1B4CC61D11D8B27DE78B2307
C:\WINDOWS\ServicePackFiles\i386\winlogon.exe ------ 507904 bytes [03:22 14/04/2008] [03:22 14/04/2008] CDDB1F8E1AEA356F3AD106F2CF9B7FEA
C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\winlogon.exe --a--- 507904 bytes [03:22 14/04/2008] [03:22 14/04/2008] CDDB1F8E1AEA356F3AD106F2CF9B7FEA
C:\WINDOWS\system32\winlogon.exe --a--- 507904 bytes [17:26 08/01/2010] [03:22 14/04/2008] CDDB1F8E1AEA356F3AD106F2CF9B7FEA

Searching for "userinit.exe"
C:\WINDOWS\$NtServicePackUninstall$\userinit.exe -----c 24576 bytes [10:16 09/01/2010] [12:00 18/08/2004] 836F7960362FF95C5D49E40B891F2CFC
C:\WINDOWS\ServicePackFiles\i386\userinit.exe ------ 26112 bytes [03:22 14/04/2008] [03:22 14/04/2008] 7DC1830F22E7D275B438127B68030239
C:\WINDOWS\SoftwareDistribution\Download\44c8256673ca0542cb198384f8131b68\userinit.exe --a--- 26112 bytes [03:22 14/04/2008] [03:22 14/04/2008] 7DC1830F22E7D275B438127B68030239
C:\WINDOWS\system32\userinit.exe --a--- 26112 bytes [17:26 08/01/2010] [03:22 14/04/2008] 7DC1830F22E7D275B438127B68030239

-=End Of File=-

Já jsem vycházela z data
2010-01-09 23:26:26 ----D---- C:\Program Files\Realtek Sound Manager
to rozhodně není před 14 dny

já to vidím bledě

, když Vám nejde ani obnova systému ani odinstalovat sp3 a blbne toho víc, asi bych systém přeinstalovala

, co Vy na to?

Můžeme zkusit combofix, ale nemyslím si, že by tohle byla chyba virů

, a jestli už máte nabořený systém, mohl by ho zrušit uplně

. Opravná instalace také nic nevyřeší, protože tam furt bude viset ten sp3

Ještě otestujte na www.virustotal.com
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\userinit.exe
Do okénka zkopírujte cestu k souboru , pokud napíše, že soubor byl už testován, dejte otestovat znovu.
Sem vložte link s výsledky.

Uff, motji, tak teď jsem zkusil bod obnovy, a ono to naběhlo!!! Díky za telepatickou pomoc!!!
BTW: ani keygen ani crack, před 14D jsem vyměňoval tu grafiku, včera jsem instaloval ten audio driver.
A tohle jsem našel, kdyby někdo podobně "zahaproval" s sp3:
http://support.microsoft.com/default.aspx/kb/943144
Já vím, s viry to moc nesouvisí...
Moc vám děkuju za péči, jinak je to teda podle logů a vás už čistý?

Tak tento odkaz jsme nenašla

Logy vypadali v pořádku, můžete sem log ze rsitu dát pro jistotu znovu.
Po obnově systému je všechno ok? Do windows se dostanete i v normálním režimu? Nemáte náhodou notebook?

Je to desktop, právě že to naběhlo v bodu obnovení v normálním režimu, jde všecko. A ten bod obnovení před tou aktualizací na sp3 jsem včera zkoušel opakovaně, a marně. Je možný, že by rsit anebo look něco zkorigovaly? Ale ty snad jenom scanujou, že? Anebo si to potřebovalo přes noc odpočinout... Anebo fakt telepatie...

Ne, určitě nic nemohly zkorigovat

..asi fakt telepatie

VIRY.CZ

PC start končí u loga Windows

PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows

Re: PC start končí u loga Windows