VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu logu.Rootkit,Konficker..Díky

https://forum.viry.cz:443/viewtopic.php?t=97925

Stránka 1 z 1

Prosím o kontrolu logu.Rootkit,Konficker..Díky

Napsal: 20 úno 2010 17:36
od salis331
Po měsíci bez pripojení jsem se marně snažil o aktualizace,změněné nastavení brány ikony na ploše,procesy ktere jsem tam nikdy neviděl,Defender se vypína a nestahuje aktualizace,AVG ,Dr.web nic nenašli,používam Superantispywere,určitě si za to můžu sám,Naneštěstí zítra odjiždím a venku to s netem nemám nijak snadné,Budu rád za každou radu.Díky
Log se zde nevleze,vložím Txt...

Re: Prosím o kontrolu logu.Rootkit,Konficker..Díky

Napsal: 20 úno 2010 19:20
od Rudy
Dejte log z RSIT: http://viry.cz/forum/viewtopic.php?f=24&t=81939 .

Re: Prosím o kontrolu logu.Rootkit,Konficker..Díky

Napsal: 02 bře 2010 09:23
od salis331
Vkládam tedy log z rsit,díky..Logfile of random's system information tool 1.06 (written by random/random)
Run by Šalis at 2010-03-02 09:19:56
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 56 GB (37%) free of 153 GB
Total RAM: 3070 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:20:38, on 2.3.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

End of file - 8085 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1118820279-2686567435-2704455506-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1118820279-2686567435-2704455506-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-08-04 1586472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2010-01-22 520192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-01-22 1484056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2009-11-25 1230080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-05-04 255600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-22 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-05-04 255600]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2009-11-25 1230080]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2010-01-22 520192]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"CLMLServer"=C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [2008-07-19 104936]
"HControlUser"=C:\Program Files\ATK Hotkey\HcontrolUser.exe [2008-01-12 98304]
"ATKOSD2"=C:\Program Files\ATKOSD2\ATKOSD2.exe [2008-01-23 7766016]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-08-12 6265376]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-08-17 102400]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2009-05-04 3054136]
"ASUS Camera ScreenSaver"=C:\Windows\AsScrProlog.exe [2009-05-04 47672]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-12-03 35184]
"Skytel"=C:\Windows\Skytel.exe [2008-08-12 1833504]
"P2Go_Menu"=C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2008-06-14 210216]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"Google Update"=C:\Users\Šalis\AppData\Local\Google\Update\GoogleUpdate.exe [2010-01-22 135664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\Windows\System32\avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2010-01-22 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-02-20 20:43:47 ----SHD---- C:\Config.Msi
2010-02-20 20:21:24 ----N---- C:\Windows\system32\MpSigStub.exe
2010-02-20 13:45:38 ----D---- C:\Program Files\Windows Live Safety Center
2010-02-19 16:24:11 ----D---- C:\rsit
2010-02-18 19:50:42 ----D---- C:\Users\Šalis\AppData\Roaming\AVG9
2010-02-18 19:30:23 ----SHD---- C:\$RECYCLE.BIN
2010-02-18 19:30:20 ----D---- C:\Windows\temp
2010-02-18 19:19:02 ----D---- C:\ComboFix
2010-02-18 07:59:31 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-02-18 07:59:31 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-02-18 00:43:23 ----D---- C:\Windows\Profiles
2010-02-15 02:01:48 ----D---- C:\Program Files\Ubisoft
2010-02-15 00:58:58 ----D---- C:\ProgramData\WindowsSearch
2010-02-13 13:05:32 ----A---- C:\Windows\system32\UIAnimation.dll
2010-02-13 13:05:31 ----A---- C:\Windows\system32\UIRibbonRes.dll
2010-02-13 13:05:31 ----A---- C:\Windows\system32\UIRibbon.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\XpsRasterService.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\WMPhoto.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2010-02-13 13:04:35 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\dxdiagn.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\dxdiag.exe
2010-02-13 13:04:35 ----A---- C:\Windows\system32\d3d10warp.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\d2d1.dll
2010-02-13 13:04:35 ----A---- C:\Windows\system32\cdd.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\xpsservices.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\XpsPrint.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\OpcServices.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\FntCache.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\dxgi.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\DWrite.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\d3d11.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\d3d10level9.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\d3d10core.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\d3d10_1core.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\d3d10_1.dll
2010-02-13 13:04:34 ----A---- C:\Windows\system32\d3d10.dll
2010-02-13 13:04:09 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2010-02-13 13:04:09 ----A---- C:\Windows\system32\wpdbusenum.dll
2010-02-13 13:04:09 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2010-02-13 13:04:09 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2010-02-13 13:04:07 ----A---- C:\Windows\system32\WPDSp.dll
2010-02-13 13:04:07 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2010-02-13 13:04:07 ----A---- C:\Windows\system32\wpdshext.dll
2010-02-13 13:04:07 ----A---- C:\Windows\system32\wpd_ci.dll
2010-02-13 13:04:07 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2010-02-13 13:04:07 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2010-02-13 13:04:07 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2010-02-13 13:04:07 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-02-13 13:03:25 ----A---- C:\Windows\system32\UIAutomationCore.dll
2010-02-13 13:03:25 ----A---- C:\Windows\system32\oleaccrc.dll
2010-02-13 13:03:25 ----A---- C:\Windows\system32\oleacc.dll
2010-02-13 12:26:54 ----A---- C:\Windows\system32\tsbyuv.dll
2010-02-13 12:26:54 ----A---- C:\Windows\system32\quartz.dll
2010-02-13 12:26:54 ----A---- C:\Windows\system32\msyuv.dll
2010-02-13 12:26:54 ----A---- C:\Windows\system32\msvidc32.dll
2010-02-13 12:26:54 ----A---- C:\Windows\system32\msvfw32.dll
2010-02-13 12:26:54 ----A---- C:\Windows\system32\msrle32.dll
2010-02-13 12:26:54 ----A---- C:\Windows\system32\mciavi32.dll
2010-02-13 12:26:54 ----A---- C:\Windows\system32\iyuv_32.dll
2010-02-13 12:26:54 ----A---- C:\Windows\system32\avifil32.dll
2010-02-08 20:48:18 ----D---- C:\Windows\system32\eu-ES
2010-02-08 20:48:18 ----D---- C:\Windows\system32\ca-ES
2010-02-08 20:48:15 ----D---- C:\Windows\system32\vi-VN
2010-02-08 20:33:51 ----D---- C:\Windows\system32\EventProviders
2010-02-08 20:31:12 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2010-02-08 20:31:07 ----A---- C:\Windows\system32\SLsvc.exe
2010-02-08 20:31:07 ----A---- C:\Windows\system32\SLCExt.dll
2010-02-08 20:31:05 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2010-02-08 20:31:05 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2010-02-08 20:31:03 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2010-02-08 20:30:58 ----A---- C:\Windows\system32\mssrch.dll
2010-02-08 20:30:54 ----A---- C:\Windows\system32\tquery.dll
2010-02-08 20:30:49 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-02-08 20:30:49 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2010-02-08 20:30:48 ----A---- C:\Windows\system32\scavenge.dll
2010-02-08 20:30:48 ----A---- C:\Windows\system32\RMActivate.exe
2010-02-08 20:30:47 ----A---- C:\Windows\system32\msi.dll
2010-02-08 20:30:47 ----A---- C:\Windows\system32\imapi2fs.dll
2010-02-08 20:30:45 ----A---- C:\Windows\system32\WscEapPr.dll
2010-02-08 20:30:45 ----A---- C:\Windows\system32\wcnwiz2.dll
2010-02-08 20:30:45 ----A---- C:\Windows\system32\sysmain.dll
2010-02-08 20:30:45 ----A---- C:\Windows\system32\secproc_isv.dll
2010-02-08 20:30:44 ----A---- C:\Windows\system32\icardagt.exe
2010-02-08 20:30:44 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2010-02-08 20:30:43 ----A---- C:\Windows\system32\spreview.exe
2010-02-08 20:30:43 ----A---- C:\Windows\system32\spinstall.exe
2010-02-08 20:30:43 ----A---- C:\Windows\system32\EhStorShell.dll
2010-02-08 20:30:43 ----A---- C:\Windows\system32\drmv2clt.dll
2010-02-08 20:30:42 ----A---- C:\Windows\system32\spwizui.dll
2010-02-08 20:30:42 ----A---- C:\Windows\system32\shell32.dll
2010-02-08 20:30:42 ----A---- C:\Windows\system32\secproc.dll
2010-02-08 20:30:42 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2010-02-08 20:30:41 ----A---- C:\Windows\system32\p2psvc.dll
2010-02-08 20:30:40 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-02-08 20:30:40 ----A---- C:\Windows\system32\mssvp.dll
2010-02-08 20:30:39 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2010-02-08 20:30:39 ----A---- C:\Windows\system32\mscoree.dll
2010-02-08 20:30:38 ----A---- C:\Windows\system32\mssphtb.dll
2010-02-08 20:30:38 ----A---- C:\Windows\system32\mssph.dll
2010-02-08 20:30:37 ----A---- C:\Windows\system32\imapi2.dll
2010-02-08 20:30:36 ----A---- C:\Windows\system32\sdohlp.dll
2010-02-08 20:30:35 ----A---- C:\Windows\system32\IMJP10K.DLL
2010-02-08 20:30:35 ----A---- C:\Windows\system32\esent.dll
2010-02-08 20:30:34 ----A---- C:\Windows\system32\DevicePairing.dll
2010-02-08 20:30:30 ----A---- C:\Windows\system32\wevtsvc.dll
2010-02-08 20:30:30 ----A---- C:\Windows\system32\sperror.dll
2010-02-08 20:30:30 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-02-08 20:30:30 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-02-08 20:30:30 ----A---- C:\Windows\system32\korwbrkr.dll
2010-02-08 20:30:29 ----A---- C:\Windows\system32\SLC.dll
2010-02-08 20:30:29 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-02-08 20:30:28 ----A---- C:\Windows\system32\msshsq.dll
2010-02-08 20:30:25 ----A---- C:\Windows\system32\msjet40.dll
2010-02-08 20:30:25 ----A---- C:\Windows\system32\MPSSVC.dll
2010-02-08 20:30:24 ----A---- C:\Windows\system32\Query.dll
2010-02-08 20:30:24 ----A---- C:\Windows\system32\qmgr.dll
2010-02-08 20:30:23 ----A---- C:\Windows\system32\srchadmin.dll
2010-02-08 20:30:23 ----A---- C:\Windows\system32\P2PGraph.dll
2010-02-08 20:30:23 ----A---- C:\Windows\system32\ole32.dll
2010-02-08 20:30:23 ----A---- C:\Windows\system32\ntdll.dll
2010-02-08 20:30:23 ----A---- C:\Windows\system32\msexch40.dll
2010-02-08 20:30:23 ----A---- C:\Windows\system32\IasMigReader.exe
2010-02-08 20:30:23 ----A---- C:\Windows\system32\diagperf.dll
2010-02-08 20:30:22 ----A---- C:\Windows\system32\winload.exe
2010-02-08 20:30:22 ----A---- C:\Windows\system32\uDWM.dll
2010-02-08 20:30:22 ----A---- C:\Windows\system32\mmc.exe
2010-02-08 20:30:22 ----A---- C:\Windows\system32\mblctr.exe
2010-02-08 20:30:22 ----A---- C:\Windows\system32\EncDec.dll
2010-02-08 20:30:22 ----A---- C:\Windows\system32\dfsr.exe
2010-02-08 20:30:21 ----A---- C:\Windows\system32\riched20.dll
2010-02-08 20:30:21 ----A---- C:\Windows\system32\IasMigPlugin.dll
2010-02-08 20:30:21 ----A---- C:\Windows\system32\fdBth.dll
2010-02-08 20:30:20 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-02-08 20:30:20 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-02-08 20:30:20 ----A---- C:\Windows\system32\RacEngn.dll
2010-02-08 20:30:20 ----A---- C:\Windows\system32\milcore.dll
2010-02-08 20:30:20 ----A---- C:\Windows\system32\kernel32.dll
2010-02-08 20:30:20 ----A---- C:\Windows\system32\EhStorAPI.dll
2010-02-08 20:30:20 ----A---- C:\Windows\system32\CertEnroll.dll
2010-02-08 20:30:19 ----A---- C:\Windows\system32\spoolss.dll
2010-02-08 20:30:19 ----A---- C:\Windows\system32\schedsvc.dll
2010-02-08 20:30:19 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2010-02-08 20:30:18 ----A---- C:\Windows\system32\msvcp60.dll
2010-02-08 20:30:18 ----A---- C:\Windows\system32\msjtes40.dll
2010-02-08 20:30:18 ----A---- C:\Windows\system32\infocardapi.dll
2010-02-08 20:30:18 ----A---- C:\Windows\system32\gpedit.dll
2010-02-08 20:30:18 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2010-02-08 20:30:17 ----A---- C:\Windows\system32\WinSAT.exe
2010-02-08 20:30:17 ----A---- C:\Windows\system32\es.dll
2010-02-08 20:30:16 ----A---- C:\Windows\system32\PresentationSettings.exe
2010-02-08 20:30:15 ----A---- C:\Windows\system32\mstext40.dll
2010-02-08 20:30:15 ----A---- C:\Windows\system32\Magnify.exe
2010-02-08 20:30:15 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2010-02-08 20:30:15 ----A---- C:\Windows\system32\advapi32.dll
2010-02-08 20:30:14 ----A---- C:\Windows\system32\WebClnt.dll
2010-02-08 20:30:13 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2010-02-08 20:30:13 ----A---- C:\Windows\system32\vssapi.dll
2010-02-08 20:30:13 ----A---- C:\Windows\system32\slwmi.dll
2010-02-08 20:30:13 ----A---- C:\Windows\system32\msxbde40.dll
2010-02-08 20:30:13 ----A---- C:\Windows\system32\msexcl40.dll
2010-02-08 20:30:13 ----A---- C:\Windows\system32\comsvcs.dll
2010-02-08 20:30:13 ----A---- C:\Windows\system32\authui.dll
2010-02-08 20:30:12 ----A---- C:\Windows\system32\PresentationHost.exe
2010-02-08 20:30:12 ----A---- C:\Windows\system32\newdev.dll
2010-02-08 20:30:12 ----A---- C:\Windows\system32\NetProjW.dll
2010-02-08 20:30:12 ----A---- C:\Windows\system32\msrepl40.dll
2010-02-08 20:30:11 ----A---- C:\Windows\system32\rpcss.dll
2010-02-08 20:30:11 ----A---- C:\Windows\system32\propsys.dll
2010-02-08 20:30:11 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2010-02-08 20:30:11 ----A---- C:\Windows\system32\iasrecst.dll
2010-02-08 20:30:11 ----A---- C:\Windows\system32\gpsvc.dll
2010-02-08 20:30:11 ----A---- C:\Windows\system32\eudcedit.exe
2010-02-08 20:30:11 ----A---- C:\Windows\system32\crypt32.dll
2010-02-08 20:30:11 ----A---- C:\Windows\explorer.exe
2010-02-08 20:30:10 ----A---- C:\Windows\system32\setupapi.dll
2010-02-08 20:30:10 ----A---- C:\Windows\system32\mspbde40.dll
2010-02-08 20:30:10 ----A---- C:\Windows\system32\d3d9.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\wevtapi.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\shlwapi.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\photowiz.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\nlhtml.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\msrd3x40.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\msltus40.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\msdtctm.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\mfc42.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\EhStorAuthn.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\davclnt.dll
2010-02-08 20:30:09 ----A---- C:\Windows\system32\browseui.dll
2010-02-08 20:30:08 ----A---- C:\Windows\system32\user32.dll
2010-02-08 20:30:07 ----A---- C:\Windows\system32\win32spl.dll
2010-02-08 20:30:07 ----A---- C:\Windows\system32\WcnNetsh.dll
2010-02-08 20:30:07 ----A---- C:\Windows\system32\SLCommDlg.dll
2010-02-08 20:30:07 ----A---- C:\Windows\system32\samsrv.dll
2010-02-08 20:30:07 ----A---- C:\Windows\system32\oleaut32.dll
2010-02-08 20:30:07 ----A---- C:\Windows\system32\IKEEXT.DLL
2010-02-08 20:30:07 ----A---- C:\Windows\system32\ci.dll
2010-02-08 20:30:06 ----A---- C:\Windows\system32\xmlfilter.dll
2010-02-08 20:30:06 ----A---- C:\Windows\system32\netshell.dll
2010-02-08 20:30:06 ----A---- C:\Windows\system32\mswstr10.dll
2010-02-08 20:30:06 ----A---- C:\Windows\system32\compcln.exe
2010-02-08 20:30:06 ----A---- C:\Windows\system32\audiosrv.dll
2010-02-08 20:30:06 ----A---- C:\Windows\system32\apds.dll
2010-02-08 20:30:05 ----A---- C:\Windows\system32\QAGENTRT.DLL
2010-02-08 20:30:05 ----A---- C:\Windows\system32\msvcrt.dll
2010-02-08 20:30:05 ----A---- C:\Windows\system32\msctf.dll
2010-02-08 20:30:05 ----A---- C:\Windows\system32\gdi32.dll
2010-02-08 20:30:05 ----A---- C:\Windows\system32\emdmgmt.dll
2010-02-08 20:30:04 ----A---- C:\Windows\system32\VSSVC.exe
2010-02-08 20:30:04 ----A---- C:\Windows\system32\SLUI.exe
2010-02-08 20:30:04 ----A---- C:\Windows\system32\mfc42u.dll
2010-02-08 20:30:04 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-02-08 20:30:03 ----A---- C:\Windows\system32\sqlsrv32.dll
2010-02-08 20:30:03 ----A---- C:\Windows\system32\msrd2x40.dll
2010-02-08 20:30:03 ----A---- C:\Windows\system32\eapphost.dll
2010-02-08 20:30:02 ----A---- C:\Windows\system32\winresume.exe
2010-02-08 20:30:02 ----A---- C:\Windows\system32\wevtutil.exe
2010-02-08 20:30:02 ----A---- C:\Windows\system32\shdocvw.dll
2010-02-08 20:30:02 ----A---- C:\Windows\system32\propdefs.dll
2010-02-08 20:30:02 ----A---- C:\Windows\system32\odbc32.dll
2010-02-08 20:30:02 ----A---- C:\Windows\system32\dbgeng.dll
2010-02-08 20:30:01 ----A---- C:\Windows\system32\WsmSvc.dll
2010-02-08 20:30:01 ----A---- C:\Windows\system32\usp10.dll
2010-02-08 20:30:01 ----A---- C:\Windows\system32\swprv.dll
2010-02-08 20:30:01 ----A---- C:\Windows\system32\mssitlb.dll
2010-02-08 20:30:01 ----A---- C:\Windows\system32\mmcndmgr.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\Wldap32.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\wcnwiz.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\vds.exe
2010-02-08 20:30:00 ----A---- C:\Windows\system32\netlogon.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\msscb.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\msctfp.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\fdBthProxy.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\evr.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\drvinst.exe
2010-02-08 20:30:00 ----A---- C:\Windows\system32\devmgr.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2010-02-08 20:30:00 ----A---- C:\Windows\system32\BFE.DLL
2010-02-08 20:30:00 ----A---- C:\Windows\system32\adsldpc.dll
2010-02-08 20:29:59 ----A---- C:\Windows\system32\WMVSDECD.DLL
2010-02-08 20:29:59 ----A---- C:\Windows\system32\services.exe
2010-02-08 20:29:58 ----A---- C:\Windows\system32\wercon.exe
2010-02-08 20:29:58 ----A---- C:\Windows\system32\mimefilt.dll
2010-02-08 20:29:58 ----A---- C:\Windows\system32\comdlg32.dll
2010-02-08 20:29:58 ----A---- C:\Windows\system32\adtschema.dll
2010-02-08 20:29:57 ----A---- C:\Windows\system32\wcncsvc.dll
2010-02-08 20:29:57 ----A---- C:\Windows\system32\taskeng.exe
2010-02-08 20:29:57 ----A---- C:\Windows\system32\rtffilt.dll
2010-02-08 20:29:57 ----A---- C:\Windows\system32\reg.exe
2010-02-08 20:29:57 ----A---- C:\Windows\system32\mswdat10.dll
2010-02-08 20:29:57 ----A---- C:\Windows\system32\msjter40.dll
2010-02-08 20:29:57 ----A---- C:\Windows\system32\msdtcprx.dll
2010-02-08 20:29:57 ----A---- C:\Windows\system32\msdrm.dll
2010-02-08 20:29:57 ----A---- C:\Windows\system32\ipsmsnap.dll
2010-02-08 20:29:57 ----A---- C:\Windows\system32\certcli.dll
2010-02-08 20:29:56 ----A---- C:\Windows\system32\WMNetMgr.dll
2010-02-08 20:29:56 ----A---- C:\Windows\system32\w32time.dll
2010-02-08 20:29:56 ----A---- C:\Windows\system32\umpnpmgr.dll
2010-02-08 20:29:56 ----A---- C:\Windows\system32\IPSECSVC.DLL
2010-02-08 20:29:56 ----A---- C:\Windows\system32\dnsapi.dll
2010-02-08 20:29:56 ----A---- C:\Windows\system32\certutil.exe
2010-02-08 20:29:55 ----A---- C:\Windows\system32\TsWpfWrp.exe
2010-02-08 20:29:55 ----A---- C:\Windows\system32\rsaenh.dll
2010-02-08 20:29:55 ----A---- C:\Windows\system32\msstrc.dll
2010-02-08 20:29:55 ----A---- C:\Windows\system32\msshooks.dll
2010-02-08 20:29:55 ----A---- C:\Windows\system32\msscntrs.dll
2010-02-08 20:29:55 ----A---- C:\Windows\system32\msihnd.dll
2010-02-08 20:29:55 ----A---- C:\Windows\system32\MMDevAPI.dll
2010-02-08 20:29:55 ----A---- C:\Windows\system32\bthserv.dll
2010-02-08 20:29:55 ----A---- C:\Windows\system32\bcrypt.dll
2010-02-08 20:29:54 ----A---- C:\Windows\system32\netapi32.dll
2010-02-08 20:29:54 ----A---- C:\Windows\system32\mtxclu.dll
2010-02-08 20:29:54 ----A---- C:\Windows\system32\mscories.dll
2010-02-08 20:29:54 ----A---- C:\Windows\system32\inetpp.dll
2010-02-08 20:29:54 ----A---- C:\Windows\system32\inetcomm.dll
2010-02-08 20:29:54 ----A---- C:\Windows\system32\hidserv.dll
2010-02-08 20:29:54 ----A---- C:\Windows\system32\fundisc.dll
2010-02-08 20:29:54 ----A---- C:\Windows\system32\dfshim.dll
2010-02-08 20:29:54 ----A---- C:\Windows\system32\cryptsvc.dll
2010-02-08 20:29:53 ----A---- C:\Windows\system32\wmicmiplugin.dll
2010-02-08 20:29:53 ----A---- C:\Windows\system32\termsrv.dll
2010-02-08 20:29:53 ----A---- C:\Windows\system32\profsvc.dll
2010-02-08 20:29:53 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2010-02-08 20:29:52 ----A---- C:\Windows\system32\wdc.dll
2010-02-08 20:29:52 ----A---- C:\Windows\system32\shsvcs.dll
2010-02-08 20:29:52 ----A---- C:\Windows\system32\msiexec.exe
2010-02-08 20:29:52 ----A---- C:\Windows\system32\imapi.dll
2010-02-08 20:29:52 ----A---- C:\Windows\system32\iassdo.dll
2010-02-08 20:29:52 ----A---- C:\Windows\system32\chsbrkr.dll
2010-02-08 20:29:51 ----A---- C:\Windows\system32\rasmans.dll
2010-02-08 20:29:50 ----A---- C:\Windows\system32\spoolsv.exe
2010-02-08 20:29:50 ----A---- C:\Windows\system32\pnidui.dll
2010-02-08 20:29:50 ----A---- C:\Windows\system32\icardres.dll
2010-02-08 20:29:49 ----A---- C:\Windows\system32\wersvc.dll
2010-02-08 20:29:49 ----A---- C:\Windows\system32\slmgr.vbs
2010-02-08 20:29:49 ----A---- C:\Windows\system32\scrrun.dll
2010-02-08 20:29:49 ----A---- C:\Windows\system32\PSHED.DLL
2010-02-08 20:29:49 ----A---- C:\Windows\system32\autofmt.exe
2010-02-08 20:29:48 ----A---- C:\Windows\system32\pidgenx.dll
2010-02-08 20:29:48 ----A---- C:\Windows\system32\pdh.dll
2010-02-08 20:29:48 ----A---- C:\Windows\system32\dhcpcsvc.dll
2010-02-08 20:29:48 ----A---- C:\Windows\system32\CertEnrollUI.dll
2010-02-08 20:29:48 ----A---- C:\Windows\system32\azroles.dll
2010-02-08 20:29:47 ----A---- C:\Windows\system32\wmpmde.dll
2010-02-08 20:29:47 ----A---- C:\Windows\system32\winlogon.exe
2010-02-08 20:29:47 ----A---- C:\Windows\system32\SyncCenter.dll
2010-02-08 20:29:46 ----A---- C:\Windows\system32\SLUINotify.dll
2010-02-08 20:29:46 ----A---- C:\Windows\system32\msjetoledb40.dll
2010-02-08 20:29:46 ----A---- C:\Windows\system32\comuid.dll
2010-02-08 20:29:46 ----A---- C:\Windows\system32\certmgr.dll
2010-02-08 20:29:45 ----A---- C:\Windows\system32\wisptis.exe
2010-02-08 20:29:45 ----A---- C:\Windows\system32\untfs.dll
2010-02-08 20:29:45 ----A---- C:\Windows\system32\taskcomp.dll
2010-02-08 20:29:45 ----A---- C:\Windows\system32\spp.dll
2010-02-08 20:29:45 ----A---- C:\Windows\system32\sethc.exe
2010-02-08 20:29:45 ----A---- C:\Windows\system32\scrobj.dll
2010-02-08 20:29:45 ----A---- C:\Windows\system32\rtutils.dll
2010-02-08 20:29:45 ----A---- C:\Windows\system32\ncrypt.dll
2010-02-08 20:29:45 ----A---- C:\Windows\system32\kd1394.dll
2010-02-08 20:29:45 ----A---- C:\Windows\system32\iassam.dll
2010-02-08 20:29:45 ----A---- C:\Windows\system32\dwm.exe
2010-02-08 20:29:45 ----A---- C:\Windows\system32\autochk.exe
2010-02-08 20:29:44 ----A---- C:\Windows\system32\winsrv.dll
2010-02-08 20:29:44 ----A---- C:\Windows\system32\printui.dll
2010-02-08 20:29:44 ----A---- C:\Windows\system32\iasnap.dll
2010-02-08 20:29:44 ----A---- C:\Windows\system32\autoconv.exe
2010-02-08 20:29:43 ----A---- C:\Windows\system32\kdcom.dll
2010-02-08 20:29:43 ----A---- C:\Windows\system32\cscript.exe
2010-02-08 20:29:42 ----A---- C:\Windows\system32\wow32.dll
2010-02-08 20:29:42 ----A---- C:\Windows\system32\winmm.dll
2010-02-08 20:29:42 ----A---- C:\Windows\system32\userenv.dll
2010-02-08 20:29:42 ----A---- C:\Windows\system32\RelMon.dll
2010-02-08 20:29:42 ----A---- C:\Windows\system32\rdpencom.dll
2010-02-08 20:29:42 ----A---- C:\Windows\system32\osk.exe
2010-02-08 20:29:42 ----A---- C:\Windows\system32\onex.dll
2010-02-08 20:29:42 ----A---- C:\Windows\system32\mswsock.dll
2010-02-08 20:29:42 ----A---- C:\Windows\system32\kdusb.dll
2010-02-08 20:29:42 ----A---- C:\Windows\system32\basecsp.dll
2010-02-08 20:29:42 ----A---- C:\Windows\system32\audiodg.exe
2010-02-08 20:29:41 ----A---- C:\Windows\system32\WinSCard.dll
2010-02-08 20:29:41 ----A---- C:\Windows\system32\WerFaultSecure.exe
2010-02-08 20:29:41 ----A---- C:\Windows\system32\spcmsg.dll
2010-02-08 20:29:41 ----A---- C:\Windows\system32\offfilt.dll
2010-02-08 20:29:41 ----A---- C:\Windows\system32\msftedit.dll
2010-02-08 20:29:41 ----A---- C:\Windows\system32\dnsrslvr.dll
2010-02-08 20:29:40 ----A---- C:\Windows\system32\wsepno.dll
2010-02-08 20:29:40 ----A---- C:\Windows\system32\WerFault.exe
2010-02-08 20:29:40 ----A---- C:\Windows\system32\Utilman.exe
2010-02-08 20:29:40 ----A---- C:\Windows\system32\stobject.dll
2010-02-08 20:29:40 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-02-08 20:29:40 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-02-08 20:29:40 ----A---- C:\Windows\system32\mfplat.dll
2010-02-08 20:29:40 ----A---- C:\Windows\system32\diskraid.exe
2010-02-08 20:29:40 ----A---- C:\Windows\system32\apphelp.dll
2010-02-08 20:29:39 ----A---- C:\Windows\system32\wiaservc.dll
2010-02-08 20:29:39 ----A---- C:\Windows\system32\sysclass.dll
2010-02-08 20:29:39 ----A---- C:\Windows\system32\SndVol.exe
2010-02-08 20:29:39 ----A---- C:\Windows\system32\prnntfy.dll
2010-02-08 20:29:39 ----A---- C:\Windows\system32\odbccp32.dll
2010-02-08 20:29:39 ----A---- C:\Windows\system32\msnetobj.dll
2010-02-08 20:29:39 ----A---- C:\Windows\system32\mscms.dll
2010-02-08 20:29:39 ----A---- C:\Windows\system32\mcmde.dll
2010-02-08 20:29:39 ----A---- C:\Windows\system32\adsmsext.dll
2010-02-08 20:29:38 ----A---- C:\Windows\system32\wscript.exe
2010-02-08 20:29:38 ----A---- C:\Windows\system32\wscntfy.dll
2010-02-08 20:29:38 ----A---- C:\Windows\system32\ulib.dll
2010-02-08 20:29:38 ----A---- C:\Windows\system32\rastapi.dll
2010-02-08 20:29:38 ----A---- C:\Windows\system32\pnpsetup.dll
2010-02-08 20:29:38 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2010-02-08 20:29:38 ----A---- C:\Windows\system32\iasdatastore.dll
2010-02-08 20:29:38 ----A---- C:\Windows\system32\dsound.dll
2010-02-08 20:29:38 ----A---- C:\Windows\system32\cryptui.dll
2010-02-08 20:29:37 ----A---- C:\Windows\system32\fdProxy.dll
2010-02-08 20:29:36 ----A---- C:\Windows\system32\ipsecsnp.dll
2010-02-08 20:29:35 ----A---- C:\Windows\system32\wscsvc.dll
2010-02-08 20:29:35 ----A---- C:\Windows\system32\WMVENCOD.DLL
2010-02-08 20:29:35 ----A---- C:\Windows\system32\wlangpui.dll
2010-02-08 20:29:35 ----A---- C:\Windows\system32\vdsdyn.dll
2010-02-08 20:29:35 ----A---- C:\Windows\system32\rasapi32.dll
2010-02-08 20:29:35 ----A---- C:\Windows\system32\ntprint.dll
2010-02-08 20:29:35 ----A---- C:\Windows\system32\logman.exe
2010-02-08 20:29:35 ----A---- C:\Windows\system32\iashlpr.dll
2010-02-08 20:29:35 ----A---- C:\Windows\system32\gpapi.dll
2010-02-08 20:29:35 ----A---- C:\Windows\system32\diskpart.exe
2010-02-08 20:29:35 ----A---- C:\Windows\system32\brcpl.dll
2010-02-08 20:29:34 ----A---- C:\Windows\system32\zipfldr.dll
2010-02-08 20:29:34 ----A---- C:\Windows\system32\wusa.exe
2010-02-08 20:29:34 ----A---- C:\Windows\system32\wshext.dll
2010-02-08 20:29:34 ----A---- C:\Windows\system32\wpccpl.dll
2010-02-08 20:29:34 ----A---- C:\Windows\system32\regsvc.dll
2010-02-08 20:29:34 ----A---- C:\Windows\system32\netcenter.dll
2010-02-08 20:29:34 ----A---- C:\Windows\system32\mscorier.dll
2010-02-08 20:29:34 ----A---- C:\Windows\system32\iasrad.dll
2010-02-08 20:29:34 ----A---- C:\Windows\system32\findstr.exe
2010-02-08 20:29:33 ----A---- C:\Windows\system32\wsnmp32.dll
2010-02-08 20:29:33 ----A---- C:\Windows\system32\wer.dll
2010-02-08 20:29:33 ----A---- C:\Windows\system32\themecpl.dll
2010-02-08 20:29:33 ----A---- C:\Windows\system32\rasdlg.dll
2010-02-08 20:29:33 ----A---- C:\Windows\system32\iassvcs.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\uxsms.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\srvsvc.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\slcc.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\scansetting.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\powrprof.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\powercpl.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\ntmarta.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\networkmap.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\msutb.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\mstsc.exe
2010-02-08 20:29:31 ----A---- C:\Windows\system32\mstlsapi.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\mssprxy.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\iasads.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\iasacct.dll
2010-02-08 20:29:31 ----A---- C:\Windows\system32\authz.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\usercpl.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\themeui.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\systemcpl.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\sud.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\samlib.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\qdvd.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\pcaui.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\newdev.exe
2010-02-08 20:29:30 ----A---- C:\Windows\system32\mmci.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\dot3svc.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\connect.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\autoplay.dll
2010-02-08 20:29:30 ----A---- C:\Windows\system32\accessibilitycpl.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\wscisvif.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\wpcao.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\wlanpref.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\vdsutil.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\tapisrv.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\scksp.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\scesrv.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\rpchttp.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\rekeywiz.exe
2010-02-08 20:29:29 ----A---- C:\Windows\system32\regapi.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\psisdecd.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\oleprn.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\msinfo32.exe
2010-02-08 20:29:29 ----A---- C:\Windows\system32\mpr.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\imm32.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\iaspolcy.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\feclient.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\Faultrep.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\dot3msm.dll
2010-02-08 20:29:29 ----A---- C:\Windows\system32\DeviceEject.exe
2010-02-08 20:29:29 ----A---- C:\Windows\system32\AudioSes.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\TSTheme.exe
2010-02-08 20:29:28 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\spwinsat.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\sdclt.exe
2010-02-08 20:29:28 ----A---- C:\Windows\system32\scecli.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\rasplap.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\rasgcw.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\qedit.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\PnPUnattend.exe
2010-02-08 20:29:28 ----A---- C:\Windows\system32\pnpui.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\perfdisk.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\ncryptui.dll
2010-02-08 20:29:28 ----A---- C:\Windows\system32\hdwwiz.exe
2010-02-08 20:29:28 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2010-02-08 20:29:28 ----A---- C:\Windows\system32\dpapimig.exe
2010-02-08 20:29:28 ----A---- C:\Windows\system32\cmmon32.exe
2010-02-08 20:29:28 ----A---- C:\Windows\system32\certreq.exe
2010-02-08 20:29:27 ----A---- C:\Windows\system32\wiaaut.dll
2010-02-08 20:29:27 ----A---- C:\Windows\system32\whealogr.dll
2010-02-08 20:29:27 ----A---- C:\Windows\system32\tcpmon.dll
2010-02-08 20:29:27 ----A---- C:\Windows\system32\srcore.dll
2010-02-08 20:29:27 ----A---- C:\Windows\system32\SnippingTool.exe
2010-02-08 20:29:27 ----A---- C:\Windows\system32\SCardSvr.dll
2010-02-08 20:29:27 ----A---- C:\Windows\system32\raschap.dll
2010-02-08 20:29:27 ----A---- C:\Windows\system32\MSVidCtl.dll
2010-02-08 20:29:27 ----A---- C:\Windows\system32\fontext.dll
2010-02-08 20:29:27 ----A---- C:\Windows\system32\fdWSD.dll
2010-02-08 20:29:27 ----A---- C:\Windows\system32\conime.exe
2010-02-08 20:29:27 ----A---- C:\Windows\system32\cmdial32.dll
2010-02-08 20:29:26 ----A---- C:\Windows\system32\WMVXENCD.DLL
2010-02-08 20:29:26 ----A---- C:\Windows\system32\wlanui.dll
2010-02-08 20:29:26 ----A---- C:\Windows\system32\rasppp.dll
2010-02-08 20:29:26 ----A---- C:\Windows\system32\PnPutil.exe
2010-02-08 20:29:25 ----A---- C:\Windows\system32\shwebsvc.dll
2010-02-08 20:29:25 ----A---- C:\Windows\system32\dsprop.dll
2010-02-08 20:29:25 ----A---- C:\Windows\system32\dimsroam.dll
2010-02-08 20:29:24 ----A---- C:\Windows\system32\shsetup.dll
2010-02-08 20:29:24 ----A---- C:\Windows\system32\rasmontr.dll
2010-02-08 20:29:24 ----A---- C:\Windows\system32\oobefldr.dll
2010-02-08 20:29:24 ----A---- C:\Windows\system32\modemui.dll
2010-02-08 20:29:23 ----A---- C:\Windows\system32\wmdrmsdk.dll
2010-02-08 20:29:23 ----A---- C:\Windows\system32\mscandui.dll
2010-02-08 20:29:23 ----A---- C:\Windows\system32\chtbrkr.dll
2010-02-08 20:29:23 ----A---- C:\Windows\system32\dataclen.dll
2010-02-08 20:29:22 ----A---- C:\Windows\system32\WSDMon.dll
2010-02-08 20:29:22 ----A---- C:\Windows\system32\wmpeffects.dll
2010-02-08 20:29:22 ----A---- C:\Windows\system32\wlgpclnt.dll
2010-02-08 20:29:22 ----A---- C:\Windows\system32\smss.exe
2010-02-08 20:29:22 ----A---- C:\Windows\system32\rdpwsx.dll
2010-02-08 20:29:22 ----A---- C:\Windows\system32\netplwiz.dll
2010-02-08 20:29:22 ----A---- C:\Windows\system32\credui.dll
2010-02-08 20:29:22 ----A---- C:\Windows\system32\certprop.dll
2010-02-08 20:29:22 ----A---- C:\Windows\system32\blackbox.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\wscapi.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\wpcsvc.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\thawbrkr.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\softkbd.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\sendmail.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\networkexplorer.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\msscp.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\msimtf.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\logagent.exe
2010-02-08 20:29:21 ----A---- C:\Windows\system32\InkEd.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\ifmon.dll
2010-02-08 20:29:21 ----A---- C:\Windows\system32\gpresult.exe
2010-02-08 20:29:21 ----A---- C:\Windows\system32\cipher.exe
2010-02-08 20:29:20 ----A---- C:\Windows\system32\puiapi.dll
2010-02-08 20:29:20 ----A---- C:\Windows\system32\olepro32.dll
2010-02-08 20:29:20 ----A---- C:\Windows\system32\msctfui.dll
2010-02-08 20:29:20 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2010-02-08 20:29:20 ----A---- C:\Windows\system32\input.dll
2010-02-08 20:29:20 ----A---- C:\Windows\system32\drmmgrtn.dll
2010-02-08 20:29:20 ----A---- C:\Windows\system32\dmsynth.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\wshbth.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\version.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\SLLUA.exe
2010-02-08 20:29:19 ----A---- C:\Windows\system32\msjint40.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\msisip.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\mprapi.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\l2nacp.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\ftp.exe
2010-02-08 20:29:19 ----A---- C:\Windows\system32\fdSSDP.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\fc.exe
2010-02-08 20:29:19 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\eapp3hst.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\dmusic.dll
2010-02-08 20:29:19 ----A---- C:\Windows\system32\cscapi.dll
2010-02-08 20:29:18 ----A---- C:\Windows\system32\wsdchngr.dll
2010-02-08 20:29:18 ----A---- C:\Windows\system32\Storprop.dll
2010-02-08 20:29:18 ----A---- C:\Windows\system32\SMBHelperClass.dll
2010-02-08 20:29:18 ----A---- C:\Windows\system32\rasdial.exe
2010-02-08 20:29:18 ----A---- C:\Windows\system32\rasdiag.dll
2010-02-08 20:29:18 ----A---- C:\Windows\system32\ipconfig.exe
2010-02-08 20:29:18 ----A---- C:\Windows\system32\fdWCN.dll
2010-02-08 20:29:18 ----A---- C:\Windows\system32\eappcfg.dll
2010-02-08 20:29:18 ----A---- C:\Windows\system32\dot3cfg.dll
2010-02-08 20:29:18 ----A---- C:\Windows\system32\cscdll.dll
2010-02-08 20:29:18 ----A---- C:\Windows\system32\bthudtask.exe
2010-02-08 20:29:18 ----A---- C:\Windows\system32\bthci.dll
2010-02-08 20:29:17 ----A---- C:\Windows\system32\tscupgrd.exe
2010-02-08 20:29:17 ----A---- C:\Windows\system32\slcinst.dll
2010-02-08 20:29:17 ----A---- C:\Windows\system32\PNPXAssoc.dll
2010-02-08 20:29:17 ----A---- C:\Windows\system32\ocsetup.exe
2010-02-08 20:29:17 ----A---- C:\Windows\system32\nslookup.exe
2010-02-08 20:29:17 ----A---- C:\Windows\system32\networkitemfactory.dll
2010-02-08 20:29:17 ----A---- C:\Windows\system32\mmcico.dll
2010-02-08 20:29:17 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2010-02-08 20:29:17 ----A---- C:\Windows\system32\hbaapi.dll
2010-02-08 20:29:17 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2010-02-08 20:29:17 ----A---- C:\Windows\system32\fdeploy.dll
2010-02-08 20:29:17 ----A---- C:\Windows\system32\eappgnui.dll
2010-02-08 20:29:16 ----A---- C:\Windows\system32\iscsilog.dll
2010-02-08 20:29:16 ----A---- C:\Windows\system32\gpupdate.exe
2010-02-08 20:29:16 ----A---- C:\Windows\system32\csrstub.exe
2010-02-08 20:29:16 ----A---- C:\Windows\system32\cbsra.exe
2010-02-08 20:29:16 ----A---- C:\Windows\system32\bitsigd.dll
2010-02-08 20:29:15 ----A---- C:\Windows\system32\vdmdbg.dll
2010-02-08 20:29:15 ----A---- C:\Windows\system32\odbcconf.dll
2010-02-08 20:29:15 ----A---- C:\Windows\system32\NcdProp.dll
2010-02-08 20:29:14 ----A---- C:\Windows\system32\winrnr.dll
2010-02-08 20:29:14 ----A---- C:\Windows\system32\slwga.dll
2010-02-08 20:29:14 ----A---- C:\Windows\system32\midimap.dll
2010-02-08 20:29:14 ----A---- C:\Windows\system32\inetppui.dll
2010-02-08 20:29:11 ----A---- C:\Windows\system32\msimsg.dll
2010-02-08 20:29:11 ----A---- C:\Windows\system32\f3ahvoas.dll
2010-02-08 20:28:41 ----A---- C:\Windows\system32\SmiEngine.dll
2010-02-08 20:28:23 ----A---- C:\Windows\system32\wdscore.dll
2010-02-08 20:28:23 ----A---- C:\Windows\system32\PkgMgr.exe
2010-02-08 20:27:36 ----A---- C:\Windows\system32\drvstore.dll
2010-02-08 14:29:31 ----A---- C:\Windows\system32\winhttp.dll
2010-02-05 19:36:57 ----D---- C:\Program Files\VirtualDJ

======List of files/folders modified in the last 1 months======

2010-03-02 09:20:36 ----D---- C:\Program Files\trend micro
2010-03-02 09:20:05 ----D---- C:\Windows\Prefetch
2010-03-02 09:04:24 ----D---- C:\Users\Šalis\AppData\Roaming\Skype
2010-03-01 14:39:15 ----D---- C:\Windows\system32\drivers
2010-03-01 11:55:16 ----RD---- C:\Program Files
2010-02-28 20:51:29 ----A---- C:\Windows\system32\acovcnt.exe
2010-02-28 17:56:52 ----SD---- C:\Users\Šalis\AppData\Roaming\Microsoft
2010-02-28 08:51:09 ----SHD---- C:\System Volume Information
2010-02-28 06:40:06 ----D---- C:\Windows\system32\LogFiles
2010-02-28 06:39:58 ----D---- C:\Windows
2010-02-27 22:21:02 ----D---- C:\Users\Šalis\AppData\Roaming\uTorrent
2010-02-27 22:13:40 ----D---- C:\Windows\Debug
2010-02-27 13:41:16 ----D---- C:\Windows\System32
2010-02-27 13:41:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-02-27 13:41:15 ----D---- C:\Windows\inf
2010-02-20 20:44:03 ----SHD---- C:\Windows\Installer
2010-02-20 20:43:52 ----D---- C:\Program Files\Common Files\microsoft shared
2010-02-20 20:31:26 ----D---- C:\Program Files\DAEMON Tools Lite
2010-02-20 20:16:19 ----D---- C:\Windows\system32\Msdtc
2010-02-20 20:16:16 ----D---- C:\Windows\system32\wbem
2010-02-20 20:15:24 ----D---- C:\Windows\system32\config
2010-02-20 20:15:13 ----D---- C:\Windows\Tasks
2010-02-20 20:15:13 ----D---- C:\Windows\system32\spool
2010-02-20 20:15:13 ----D---- C:\Windows\system32\catroot2
2010-02-20 20:15:13 ----D---- C:\Program Files\Windows Defender
2010-02-20 20:15:12 ----RSD---- C:\Windows\Fonts
2010-02-20 20:15:12 ----D---- C:\Users\Šalis\AppData\Roaming\Winamp
2010-02-20 20:15:12 ----D---- C:\Users\Šalis\AppData\Roaming\streamripper
2010-02-20 20:15:12 ----D---- C:\Users\Šalis\AppData\Roaming\LangSoft
2010-02-20 20:15:12 ----D---- C:\Users\Šalis\AppData\Roaming\GHISLER
2010-02-20 20:15:11 ----D---- C:\ProgramData\P4G
2010-02-20 20:15:10 ----D---- C:\Windows\registration
2010-02-20 13:45:38 ----SD---- C:\Windows\Downloaded Program Files
2010-02-19 01:34:47 ----D---- C:\Windows\system32\Tasks
2010-02-19 00:43:14 ----D---- C:\Program Files\SUPERAntiSpyware
2010-02-18 19:38:42 ----A---- C:\Windows\TRNCOM.INI
2010-02-18 19:28:44 ----A---- C:\Windows\system.ini
2010-02-18 19:26:15 ----D---- C:\Windows\AppPatch
2010-02-18 19:26:14 ----D---- C:\Program Files\Common Files
2010-02-18 08:34:13 ----D---- C:\Windows\winsxs
2010-02-18 07:59:01 ----D---- C:\Windows\system32\catroot
2010-02-18 01:01:54 ----HD---- C:\Program Files\InstallShield Installation Information
2010-02-17 18:27:57 ----AD---- C:\ProgramData\Temp
2010-02-16 22:08:25 ----D---- C:\TRANSLAT
2010-02-16 15:31:12 ----D---- C:\Windows\Minidump
2010-02-15 02:18:24 ----D---- C:\ProgramData
2010-02-15 02:17:07 ----RSD---- C:\Windows\assembly
2010-02-15 02:15:14 ----A---- C:\Windows\system32\PnkBstrB.exe
2010-02-15 02:15:07 ----A---- C:\Windows\system32\PnkBstrA.exe
2010-02-15 02:15:07 ----A---- C:\Windows\system32\pbsvc.exe
2010-02-13 17:59:01 ----D---- C:\Windows\system32\RTCOM
2010-02-13 17:10:21 ----D---- C:\Windows\system32\WDI
2010-02-13 16:02:08 ----D---- C:\ProgramData\Microsoft Help
2010-02-13 16:01:08 ----D---- C:\Windows\Microsoft.NET
2010-02-13 16:00:58 ----D---- C:\Program Files\Microsoft Works
2010-02-13 15:59:22 ----A---- C:\Windows\win.ini
2010-02-13 13:32:31 ----D---- C:\Windows\rescache
2010-02-13 13:15:16 ----D---- C:\Windows\system32\cs-CZ
2010-02-13 13:15:13 ----D---- C:\Program Files\Windows Portable Devices
2010-02-13 13:15:09 ----D---- C:\Windows\system32\zh-TW
2010-02-13 13:15:09 ----D---- C:\Windows\system32\zh-HK
2010-02-13 13:15:09 ----D---- C:\Windows\system32\zh-CN
2010-02-13 13:15:09 ----D---- C:\Windows\system32\uk-UA
2010-02-13 13:15:09 ----D---- C:\Windows\system32\tr-TR
2010-02-13 13:15:09 ----D---- C:\Windows\system32\th-TH
2010-02-13 13:15:09 ----D---- C:\Windows\system32\sv-SE
2010-02-13 13:15:09 ----D---- C:\Windows\system32\sr-Latn-CS
2010-02-13 13:15:09 ----D---- C:\Windows\system32\sl-SI
2010-02-13 13:15:09 ----D---- C:\Windows\system32\sk-SK
2010-02-13 13:15:09 ----D---- C:\Windows\system32\pt-PT
2010-02-13 13:15:09 ----D---- C:\Windows\system32\pt-BR
2010-02-13 13:15:09 ----D---- C:\Windows\system32\pl-PL
2010-02-13 13:15:09 ----D---- C:\Windows\system32\nl-NL
2010-02-13 13:15:09 ----D---- C:\Windows\system32\lv-LV
2010-02-13 13:15:09 ----D---- C:\Windows\system32\lt-LT
2010-02-13 13:15:09 ----D---- C:\Windows\system32\ko-KR
2010-02-13 13:15:09 ----D---- C:\Windows\system32\ja-JP
2010-02-13 13:15:09 ----D---- C:\Windows\system32\it-IT
2010-02-13 13:15:09 ----D---- C:\Windows\system32\hu-HU
2010-02-13 13:15:09 ----D---- C:\Windows\system32\hr-HR
2010-02-13 13:15:09 ----D---- C:\Windows\system32\he-IL
2010-02-13 13:15:09 ----D---- C:\Windows\system32\fr-FR
2010-02-13 13:15:09 ----D---- C:\Windows\system32\fi-FI
2010-02-13 13:15:09 ----D---- C:\Windows\system32\et-EE
2010-02-13 13:15:09 ----D---- C:\Windows\system32\es-ES
2010-02-13 13:15:09 ----D---- C:\Windows\system32\el-GR
2010-02-13 13:15:09 ----D---- C:\Windows\system32\de-DE
2010-02-13 13:15:09 ----D---- C:\Windows\system32\bg-BG
2010-02-13 13:15:09 ----D---- C:\Windows\system32\ar-SA
2010-02-13 13:15:08 ----D---- C:\Windows\system32\ru-RU
2010-02-13 13:15:08 ----D---- C:\Windows\system32\ro-RO
2010-02-13 13:15:08 ----D---- C:\Windows\system32\nb-NO
2010-02-13 13:15:08 ----D---- C:\Windows\system32\en-US
2010-02-13 13:15:08 ----D---- C:\Windows\system32\da-DK
2010-02-13 13:15:06 ----D---- C:\Program Files\Windows Mail
2010-02-08 20:55:25 ----D---- C:\ProgramData\NVIDIA
2010-02-08 20:54:11 ----D---- C:\Boot
2010-02-08 20:48:57 ----D---- C:\Program Files\Windows Sidebar
2010-02-08 20:48:57 ----D---- C:\Program Files\Windows Calendar
2010-02-08 20:48:57 ----D---- C:\Program Files\Movie Maker
2010-02-08 20:48:57 ----D---- C:\Program Files\Internet Explorer
2010-02-08 20:48:56 ----D---- C:\Program Files\Windows Photo Gallery
2010-02-08 20:48:56 ----D---- C:\Program Files\Windows Media Player
2010-02-08 20:48:56 ----D---- C:\Program Files\Windows Journal
2010-02-08 20:48:56 ----D---- C:\Program Files\Windows Collaboration
2010-02-08 20:48:56 ----D---- C:\Program Files\Common Files\System
2010-02-08 20:48:54 ----D---- C:\Windows\servicing
2010-02-08 20:48:54 ----D---- C:\Windows\ehome
2010-02-08 20:48:48 ----D---- C:\Windows\system32\XPSViewer
2010-02-08 20:48:48 ----D---- C:\Windows\system32\oobe
2010-02-08 20:48:48 ----D---- C:\Windows\system32\migration
2010-02-08 20:48:48 ----D---- C:\Windows\IME
2010-02-08 20:48:47 ----D---- C:\Windows\system32\AdvancedInstallers
2010-02-08 20:48:46 ----D---- C:\Windows\system32\setup
2010-02-08 20:48:46 ----D---- C:\Windows\system32\cs
2010-02-08 20:48:45 ----D---- C:\Windows\system32\SLUI
2010-02-08 20:48:45 ----D---- C:\Windows\system32\manifeststore
2010-02-08 20:48:43 ----D---- C:\Windows\system32\migwiz
2010-02-08 20:48:15 ----D---- C:\Windows\system32\Boot
2010-02-08 15:55:51 ----D---- C:\Program Files\Microsoft Silverlight
2010-02-08 14:24:36 ----D---- C:\Users\Šalis\AppData\Roaming\skypePM
2010-02-03 12:18:51 ----D---- C:\Program Files\Ashampoo

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2010-01-22 333192]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2010-01-22 28424]
R1 AvgTdiX;AVG Free Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2010-01-22 360584]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-19 12872]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [2010-02-19 66632]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-07-24 13880]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2007-08-03 20936]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2008-03-21 1203776]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-09-05 1183744]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 CRFILTER;USB Mass Storage Filter; C:\Windows\system32\DRIVERS\CRFILTER.sys [2008-04-07 6656]
R3 DCamUSBET;USB2.0 1.3M UVC WebCam; C:\Windows\system32\DRIVERS\etDevice.sys [2007-09-06 474624]
R3 FiltUSBET;ET USB Device Lower Filter; C:\Windows\system32\DRIVERS\etFilter.sys [2008-02-05 206464]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-08-12 2159384]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2008-06-03 15928]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-21 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2008-07-08 1050656]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2008-06-25 44064]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-07-02 9786752]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2008-07-22 15872]
R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [2010-02-19 12872]
R3 ScanUSBET;ET USB Still Image Capture Device; C:\Windows\system32\DRIVERS\etScan.sys [2008-01-31 6528]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-08-17 190512]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S1 SRTSP;SRTSP; \??\C:\Windows\system32\drivers\NIS\1000000.07D\SRTSP.SYS []
S1 SRTSPX;SRTSPX; \??\C:\Windows\system32\drivers\NIS\1000000.07D\SRTSPX.SYS []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 55264]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.SYS []
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.SYS []
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2007-11-06 34064]
S3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-02 1010560]
S3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2006-11-02 194048]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-10-03 94208]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-01-22 285392]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-11-20 73728]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-07-02 211488]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-02-15 66872]
R2 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2010-02-15 107832]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2007-08-03 125496]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
S3 ElevatorService;ElevatorService; C:\Program Files\RipTiger\ElevatorService.exe [2009-02-11 180224]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-04 156656]
S3 HM;HM; C:\Users\ALIS~1\AppData\Local\Temp\HM.exe []
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2007-11-06 92792]
S4 Norton Internet Security;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe /s Norton Internet Security /m C:\Program Files\Norton Internet Security\Engine\16.0.0.125\diMaster.dll /prefetch:1 []

-----------------EOF-----------------

Re: Prosím o kontrolu logu.Rootkit,Konficker..Díky

Napsal: 02 bře 2010 09:26
od salis331
Musel jsem ten log rozdělit,tak doufam,že se v tom vyznáte :shock: ..Děkuji moc..
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\ATK Hotkey\HControlUser.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Windows\AsScrPro.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Šalis\Desktop\RSIT.exe
C:\Program Files\trend micro\Šalis.exe
C:\Windows\system32\DllHost.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [HControlUser] "C:\Program Files\ATK Hotkey\HcontrolUser.exe"
O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\AsScrProlog.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [P2Go_Menu] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Šalis\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\System32\avgrsstx.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: ElevatorService - Unknown owner - C:\Program Files\RipTiger\ElevatorService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HM - Unknown owner - C:\Users\ALIS~1\AppData\Local\Temp\HM.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe

--

Re: Prosím o kontrolu logu.Rootkit,Konficker..Díky

Napsal: 02 bře 2010 18:46
od Rudy
Žádný rootkit, ani jiný šmejd, nevidím. Pro jistotu dejte log z Combofix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

Re: Prosím o kontrolu logu.Rootkit,Konficker..Díky

Napsal: 20 bře 2010 18:25
od salis331
Zdravím Vás a děkuji mnohokráte,za moment podpořím Vaše fórum.Děláte záslužnou práci..Takže Combofix proběhl,restartoval Pc,zřejmě něco vymazal..Vkládám tedy Log.. ComboFix 10-03-19.08 - Šalis 20.03.2010 18:03:48.6.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3070.1965 [GMT 1:00]
Spuštěný z: c:\users\Šalis\Desktop\ComboFix.exe
SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\acovcnt.exe
c:\windows\system32\Connect.dll

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-02-20 do 2010-03-20 )))))))))))))))))))))))))))))))
.

2010-03-20 17:08 . 2010-03-20 17:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-03-20 13:10 . 2010-03-20 13:10 515848 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-03-19 12:35 . 2010-02-12 10:32 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-03-19 12:32 . 2010-02-20 23:06 24064 ----a-w- c:\windows\system32\nshhttp.dll
2010-03-19 12:32 . 2010-02-20 20:53 411648 ----a-w- c:\windows\system32\drivers\http.sys
2010-03-19 12:32 . 2010-02-20 23:05 30720 ----a-w- c:\windows\system32\httpapi.dll
2010-03-19 12:26 . 2010-03-19 12:26 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-03-02 09:09 . 2010-01-25 12:00 471552 ----a-w- c:\windows\system32\secproc_isv.dll
2010-03-02 09:09 . 2010-01-25 12:00 471552 ----a-w- c:\windows\system32\secproc.dll
2010-03-02 09:09 . 2010-01-25 08:21 526336 ----a-w- c:\windows\system32\RMActivate_isv.exe
2010-03-02 09:09 . 2010-01-25 12:00 152576 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2010-03-02 09:09 . 2010-01-25 12:00 152064 ----a-w- c:\windows\system32\secproc_ssp.dll
2010-03-02 09:09 . 2010-01-25 11:58 332288 ----a-w- c:\windows\system32\msdrm.dll
2010-03-02 09:09 . 2010-01-25 08:21 346624 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2010-03-02 09:09 . 2010-01-25 08:21 518144 ----a-w- c:\windows\system32\RMActivate.exe
2010-03-02 09:09 . 2010-01-25 08:21 347136 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2010-03-02 09:00 . 2010-01-23 09:26 2048 ----a-w- c:\windows\system32\tzres.dll
2010-03-02 08:59 . 2010-01-06 15:39 1696256 ----a-w- c:\windows\system32\gameux.dll
2010-03-02 08:59 . 2010-01-06 15:38 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2010-03-02 08:59 . 2010-01-06 13:30 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2010-03-01 13:39 . 2010-03-01 13:39 14336 ----a-w- c:\windows\system32\drivers\PN31Snoop.sys
2010-02-20 19:21 . 2010-02-24 09:16 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-20 12:45 . 2010-02-20 13:00 -------- d-----w- c:\program files\Windows Live Safety Center
2010-02-19 23:47 . 2010-02-19 23:47 3604480 ----a-w- c:\windows\system32\GPhotos.scr
2010-02-19 15:24 . 2010-03-02 08:30 -------- d-----w- C:\rsit

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-20 17:01 . 2010-01-22 10:02 31871 ----a-w- c:\programdata\nvModes.dat
2010-03-19 13:59 . 2009-06-22 20:27 -------- d-----w- c:\program files\CCleaner
2010-03-19 12:37 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-03-19 12:36 . 2009-05-03 22:59 -------- d-----w- c:\programdata\Microsoft Help
2010-03-19 12:26 . 2010-01-22 01:52 242696 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-03-19 12:26 . 2010-01-22 01:51 29512 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-03-19 12:25 . 2010-01-22 01:51 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-03-16 18:47 . 2008-04-17 10:34 598832 ----a-w- c:\windows\system32\perfh005.dat
2010-03-16 18:47 . 2008-04-17 10:34 119586 ----a-w- c:\windows\system32\perfc005.dat
2010-03-02 08:20 . 2009-08-10 21:29 -------- d-----w- c:\program files\trend micro
2010-02-24 11:52 . 2010-02-05 18:36 -------- d-----w- c:\program files\VirtualDJ
2010-02-20 19:31 . 2009-11-11 18:02 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-02-20 19:15 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2010-02-20 19:15 . 2009-05-03 23:55 -------- d-----w- c:\programdata\P4G
2010-02-18 23:43 . 2009-06-22 20:33 -------- d-----w- c:\program files\SUPERAntiSpyware
2010-02-18 00:01 . 2009-05-03 23:13 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-02-15 01:15 . 2010-01-22 09:52 22328 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-02-15 01:15 . 2010-01-22 09:51 107832 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-02-15 01:15 . 2010-01-22 09:51 66872 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-02-15 01:15 . 2010-01-22 09:51 2250024 ----a-w- c:\windows\system32\pbsvc.exe
2010-02-15 01:01 . 2010-02-15 01:01 -------- d-----w- c:\program files\Ubisoft
2010-02-14 23:58 . 2010-02-14 23:58 -------- d-----w- c:\programdata\WindowsSearch
2010-02-13 15:00 . 2009-05-03 23:05 -------- d-----w- c:\program files\Microsoft Works
2010-02-13 12:15 . 2009-10-29 17:32 -------- d-----w- c:\program files\Windows Portable Devices
2010-02-13 12:15 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2010-02-13 12:14 . 2010-02-13 12:14 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2010-02-08 19:55 . 2009-05-04 00:04 -------- d-----w- c:\programdata\NVIDIA
2010-02-08 19:48 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2010-02-08 19:48 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2010-02-08 19:48 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2010-02-08 19:48 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2010-02-08 19:48 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2010-02-08 14:55 . 2009-06-24 19:45 -------- d-----w- c:\program files\Microsoft Silverlight
2010-02-03 11:18 . 2009-06-24 17:20 -------- d-----w- c:\program files\Ashampoo
2010-01-31 12:07 . 2010-01-22 18:27 -------- d-----w- c:\program files\Common Files\LightScribe
2010-01-31 11:47 . 2010-01-31 11:34 -------- d-----w- c:\programdata\Tarma Installer
2010-01-31 08:01 . 2009-06-22 19:52 -------- d-----w- c:\program files\Webteh
2010-01-29 11:43 . 2010-01-22 10:08 -------- d-----w- c:\program files\ICQ6Toolbar
2010-01-29 11:43 . 2009-05-03 23:52 -------- d-----w- c:\program files\ATKGFNEX
2010-01-29 11:43 . 2009-05-03 23:28 -------- d-----w- c:\program files\ATK Hotkey
2010-01-29 11:40 . 2010-01-22 09:30 -------- d-----w- c:\programdata\LangSoft
2010-01-29 11:40 . 2009-06-22 20:02 -------- d-----w- c:\program files\Winamp
2010-01-29 11:40 . 2009-05-03 23:55 -------- d-----w- c:\program files\P4G
2010-01-29 11:40 . 2009-05-03 23:50 -------- d-----w- c:\program files\Wireless Console 2
2010-01-29 11:40 . 2010-01-22 10:06 -------- d-----w- c:\program files\ICQ6.5
2010-01-29 11:40 . 2010-01-22 17:01 -------- d-----w- c:\program files\ScanSoft
2010-01-29 11:40 . 2010-01-22 16:54 -------- d-----w- c:\program files\Microsoft AutoRoute
2010-01-29 11:40 . 2010-01-22 10:33 -------- d-----w- c:\program files\ffdshow
2010-01-24 19:42 . 2010-01-24 19:42 -------- d-----w- c:\program files\Network Stumbler
2010-01-23 00:05 . 2010-01-13 19:49 -------- d-----w- c:\program files\Vypínač na dobrou noc
2010-01-22 21:08 . 2010-01-22 18:48 -------- d-----w- c:\program files\LightScribe Diagnostic Utility
2010-01-22 18:22 . 2010-01-22 18:22 -------- d-----w- c:\programdata\LightScribe
2010-01-22 17:59 . 2010-01-17 04:27 -------- d-----w- c:\program files\Streamripper
2010-01-22 16:59 . 2009-05-03 23:13 -------- d-----w- c:\program files\Common Files\InstallShield
2010-01-22 16:07 . 2009-05-03 23:14 -------- d-----w- c:\programdata\CyberLink
2010-01-22 11:33 . 2009-06-26 16:10 -------- d-----w- c:\program files\RipTiger
2010-01-22 11:24 . 2009-10-24 08:16 -------- d-----w- c:\program files\Combined Community Codec Pack
2010-01-22 10:33 . 2010-01-22 10:21 -------- d-----w- c:\program files\WinPcap
2010-01-22 10:29 . 2010-01-22 10:29 48 ---ha-w- c:\programdata\ezsidmv.dat
2010-01-22 10:27 . 2010-01-22 10:27 -------- d-----w- c:\program files\Common Files\Skype
2010-01-22 10:27 . 2009-06-22 22:05 -------- d-----r- c:\program files\Skype
2010-01-22 10:27 . 2010-01-22 10:27 -------- d-----w- c:\programdata\Skype
2010-01-22 10:21 . 2009-06-26 16:15 -------- d-----w- c:\program files\FLVCodec
2010-01-22 10:08 . 2010-01-22 10:08 -------- d-----w- c:\programdata\ICQ
2010-01-22 09:59 . 2010-01-22 09:59 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-01-22 09:32 . 2010-01-22 09:31 520192 ----a-w- c:\programdata\LangSoft\WebIE.dll
2010-01-22 09:32 . 2010-01-22 09:31 356352 ----a-w- c:\programdata\LangSoft\TrnOutl.dll
2010-01-22 09:32 . 2010-01-22 09:31 299008 ----a-w- c:\programdata\LangSoft\TrnWord.dll
2010-01-22 09:11 . 2010-01-22 09:11 -------- d-----w- c:\programdata\ashampoo
2010-01-22 09:11 . 2010-01-22 09:11 -------- d-----w- c:\programdata\page
2010-01-22 09:08 . 2010-01-22 09:08 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-01-22 09:07 . 2010-01-22 09:07 -------- d-----w- c:\programdata\DAEMON Tools Lite
2010-01-22 09:03 . 2010-01-22 09:04 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-01-22 07:34 . 2009-05-03 23:16 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2010-01-22 02:19 . 2010-01-22 01:51 -------- d-----w- c:\programdata\AVG Security Toolbar
2010-01-22 02:19 . 2010-01-22 01:30 -------- d-----w- c:\program files\mozilla.org
2010-01-22 01:51 . 2010-01-22 01:51 -------- d-----w- c:\programdata\avg9
2010-01-22 01:30 . 2010-01-22 01:30 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2010-01-22 01:30 . 2010-01-22 01:30 335 ----a-w- c:\windows\nsreg.dat
2010-01-22 01:30 . 2010-01-22 01:30 8138 ----a-w- c:\windows\mozver.dat
2010-01-22 01:28 . 2010-01-22 01:28 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-01-22 01:23 . 2009-06-24 15:16 -------- d-----w- c:\program files\VistaCodecPack
2010-01-22 01:23 . 2009-06-22 20:12 -------- d-----w- c:\program files\uTorrent
2010-01-22 01:17 . 2009-09-26 09:38 -------- d-----w- c:\program files\mp3DirectCut
2010-01-22 01:17 . 2009-08-08 16:32 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-01-22 01:14 . 2009-09-19 21:57 -------- d-----w- c:\program files\MSECache
2010-01-22 01:14 . 2009-07-23 22:55 -------- d-----w- c:\program files\Winamp3
2010-01-22 01:14 . 2009-05-03 23:40 -------- d-----w- c:\program files\Realtek
2010-01-22 01:14 . 2009-12-11 22:00 -------- d-----w- c:\program files\Java
2010-01-22 01:14 . 2009-05-03 23:16 -------- d-----w- c:\program files\Google
2010-01-22 01:14 . 2010-01-15 20:06 -------- d-----w- c:\program files\AviSynth 2.5
2010-01-22 01:14 . 2009-10-24 08:30 -------- d-----w- c:\program files\AVG
2010-01-21 23:37 . 2010-01-21 23:34 -------- d-----w- c:\program files\Microsoft
2010-01-21 23:37 . 2010-01-21 23:34 -------- d-----w- c:\program files\Windows Live
2010-01-21 23:35 . 2010-01-21 23:35 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-01-21 23:34 . 2010-01-21 23:34 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-01-21 23:33 . 2010-01-21 23:33 -------- d-----w- c:\program files\Common Files\Windows Live
2010-01-21 23:31 . 2010-01-21 23:31 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-20 13:22 . 2010-01-19 22:10 -------- d-----w- c:\program files\Top Password
2010-01-06 15:38 . 2010-03-02 08:59 173056 ----a-w- c:\windows\AppPatch\AcXtrnal.dll
2009-05-03 23:15 . 2009-05-03 23:15 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 1230080]

[HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2009-11-25 12:01 1230080 ----a-w- c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 1230080]

[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-11-25 1230080]

[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"Google Update"="c:\users\Šalis\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-01-22 135664]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"CLMLServer"="c:\program files\CyberLink\Power2Go\CLMLSvc.exe" [2008-07-19 104936]
"HControlUser"="c:\program files\ATK Hotkey\HcontrolUser.exe" [2008-01-12 98304]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2008-01-23 7766016]
"RtHDVCpl"="RtHDVCpl.exe" [2008-08-12 6265376]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-08-17 102400]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2009-05-04 3054136]
"ASUS Camera ScreenSaver"="c:\windows\AsScrProlog.exe" [2009-05-04 47672]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-12-03 35184]
"Skytel"="Skytel.exe" [2008-08-12 1833504]
"P2Go_Menu"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2010-01-22 02:19 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):98,eb,47,7f,f8,a8,ca,01

R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-01-22 691696]
R3 ElevatorService;ElevatorService;c:\program files\RipTiger\ElevatorService.exe [2009-02-11 180224]
R3 HM;HM;c:\users\ALIS~1\AppData\Local\Temp\HM.exe [x]
R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-06 34064]
R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [2010-02-18 12872]
R4 Norton Internet Security;Norton Internet Security;c:\program files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe [x]
S1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\System32\Drivers\avgldx86.sys [2010-03-19 216200]
S1 AvgTdiX;AVG Free Network Redirector;c:\windows\System32\Drivers\avgtdix.sys [2010-03-19 242696]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-18 12872]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.sys [2010-02-18 66632]
S2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [2010-03-19 308064]
S3 CRFILTER;USB Mass Storage Filter;c:\windows\system32\DRIVERS\CRFILTER.sys [2008-04-07 6656]
S3 DCamUSBET;USB2.0 1.3M UVC WebCam;c:\windows\system32\DRIVERS\etDevice.sys [2007-09-06 474624]
S3 FiltUSBET;ET USB Device Lower Filter;c:\windows\system32\DRIVERS\etFilter.sys [2008-02-05 206464]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2008-06-25 44064]
S3 ScanUSBET;ET USB Still Image Capture Device;c:\windows\system32\DRIVERS\etScan.sys [2008-01-31 6528]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-11-20 13:28 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=ASUS&bmod=ASUS
mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=ASUS&bmod=ASUS
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\programdata\LangSoft\WebIE.dll
FF - ProfilePath - c:\users\Šalis\AppData\Roaming\Mozilla\Firefox\Profiles\6r04et7x.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/webhp?client=firefox-a&rl ... at+Googlem
FF - component: c:\users\Šalis\AppData\Roaming\Mozilla\Firefox\Profiles\6r04et7x.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}\components\nsWebFF15.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-20 18:08
Windows 6.0.6002 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Norton Internet Security]
"ImagePath"="\"c:\program files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\program files\Norton Internet Security\Engine\16.0.0.125\diMaster.dll\" /prefetch:1"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
Celkový čas: 2010-03-20 18:10:08
ComboFix-quarantined-files.txt 2010-03-20 17:10

Před spuštěním: Volných bajtů: 57 889 370 112
Po spuštění: Volných bajtů: 57 833 943 040

- - End Of File - - 797D64708C0B3051CD00E9A1B1CA7A35

Re: Prosím o kontrolu logu.Rootkit,Konficker..Díky

Napsal: 20 bře 2010 19:17
od Rudy
Ano. CF vymazal 2 položky. Zbytek logu vypadá čistý.

Re: Prosím o kontrolu logu.Rootkit,Konficker..Díky

Napsal: 20 bře 2010 20:40
od salis331
Díky moc.

Re: Prosím o kontrolu logu.Rootkit,Konficker..Díky

Napsal: 20 bře 2010 21:08
od Rudy
Nemáte zač!
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz