VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosim kontrolu logu-nefunguje IE x32

https://forum.viry.cz:443/viewtopic.php?t=99990

Stránka 1 z 1

Prosim kontrolu logu-nefunguje IE x32

Napsal: 12 dub 2010 10:26
od servac
Mám problím s IE x32. Nejde se přes něj dostat na internet. x64 verze funguje normálně. I ostatní prohlížeče fungují v pořádku.
Ve firewallu problém není. V nouzovém režimu ovšem x32 verze funguje normálně. Nepomohla ani funkce restore v IE. Zkoušel jsem i opravit přes Vista Manager. Bohužel nic nefungovalo. Pro jistotu prosím o kontrolu logu.

Logfile of random's system information tool 1.06 (written by random/random)
Run by Radek at 2010-04-12 11:19:45
Microsoft® Windows Vista x64™ Ultimate Service Pack 2
System drive C: has 25 GB (31%) free of 80 GB
Total RAM: 2047 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:19:46, on 12.4.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe
C:\Program Files (x86)\F-Secure\Common\FSM32.EXE
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Windows\SysWOW64\conime.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Radek\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\Radek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: LitmusBHO - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program Files (x86)\F-Secure\NRS\iescript\baselitmus.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O3 - Toolbar: Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files (x86)\F-Secure\NRS\iescript\baselitmus.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files (x86)\F-Secure\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O9 - Extra button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O13 - Gopher Prefix:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\ORSP Client\fsorsp.exe
O23 - Service: Google Update Service (gupdate1c9a89832689fb9) (gupdate1c9a89832689fb9) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 8973 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\User_Feed_Synchronization-{8D0674B1-A157-4726-BA31-CA2139A3B70F}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2009-07-29 520192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\Real\RealPlayer\rpbrowserrecordplugin.dll [2010-02-09 329312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C6867EB7-8350-4856-877F-93CF8AE3DC9C}]
Browsing Protection Class - C:\Program Files (x86)\F-Secure\NRS\iescript\baselitmus.dll [2010-04-08 535288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2009-07-29 520192]
{265EEE8E-3228-44D3-AEA5-F7FDF5860049} - Browsing Protection Toolbar - C:\Program Files (x86)\F-Secure\NRS\iescript\baselitmus.dll [2010-04-08 535288]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"F-Secure Manager"=C:\Program Files (x86)\F-Secure\Common\FSM32.EXE [2009-07-09 199264]
"F-Secure TNB"=C:\Program Files (x86)\F-Secure\FSGUI\TNBUtil.exe [2009-07-09 2349664]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe [2008-12-29 687560]
"WEBTRAN"= []
""= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"ShutdownWithoutLogon"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDesktopCleanupWizard"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"NoActiveDesktopChanges"=
"ForceActiveDesktopOn"=
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\SysWOW64\Notepad.exe %1
.js - open - C:\Windows\SysWOW64\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-04-12 11:16:45 ----D---- C:\Program Files (x86)\trend micro
2010-04-12 11:16:44 ----D---- C:\rsit
2010-04-12 11:12:52 ----D---- C:\Program Files (x86)\TrendMicro
2010-04-12 11:04:15 ----D---- C:\32788R22FWJFW
2010-04-12 11:03:10 ----D---- C:\ComboFix
2010-04-12 11:03:09 ----A---- C:\Windows\system32\CF1573.exe
2010-04-12 11:01:15 ----A---- C:\Windows\system32\CF1171.exe
2010-04-12 11:01:07 ----A---- C:\Windows\system32\swsc.exe
2010-04-12 11:01:00 ----D---- C:\Qoobox
2010-04-12 11:00:58 ----A---- C:\Bug.txt
2010-04-12 11:00:56 ----A---- C:\Windows\system32\cmd.execf
2010-04-08 13:38:42 ----D---- C:\Windows\LastGood.Tmp
2010-04-08 13:38:06 ----D---- C:\Program Files (x86)\Garmin
2010-04-08 12:50:12 ----D---- C:\Program Files (x86)\Windows Portable Devices
2010-04-08 12:50:04 ----D---- C:\Windows\system32\WindowsPowerShell
2010-04-08 12:47:32 ----A---- C:\Windows\system32\WMPhoto.dll
2010-04-08 12:47:28 ----A---- C:\Windows\system32\d3d10warp.dll
2010-04-08 12:47:27 ----A---- C:\Windows\system32\XpsRasterService.dll
2010-04-08 12:47:27 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2010-04-08 12:47:27 ----A---- C:\Windows\system32\WindowsCodecs.dll
2010-04-08 12:47:27 ----A---- C:\Windows\system32\d2d1.dll
2010-04-08 12:47:26 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2010-04-08 12:47:26 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2010-04-08 12:47:26 ----A---- C:\Windows\system32\dxgi.dll
2010-04-08 12:47:26 ----A---- C:\Windows\system32\dxdiagn.dll
2010-04-08 12:47:26 ----A---- C:\Windows\system32\dxdiag.exe
2010-04-08 12:47:26 ----A---- C:\Windows\system32\d3d11.dll
2010-04-08 12:47:26 ----A---- C:\Windows\system32\d3d10level9.dll
2010-04-08 12:47:26 ----A---- C:\Windows\system32\d3d10core.dll
2010-04-08 12:47:26 ----A---- C:\Windows\system32\d3d10_1core.dll
2010-04-08 12:47:25 ----A---- C:\Windows\system32\xpsservices.dll
2010-04-08 12:47:25 ----A---- C:\Windows\system32\XpsPrint.dll
2010-04-08 12:47:25 ----A---- C:\Windows\system32\OpcServices.dll
2010-04-08 12:47:25 ----A---- C:\Windows\system32\DWrite.dll
2010-04-08 12:47:24 ----A---- C:\Windows\system32\d3d10_1.dll
2010-04-08 12:47:24 ----A---- C:\Windows\system32\d3d10.dll
2010-04-08 12:46:56 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2010-04-08 12:46:49 ----A---- C:\Windows\system32\wpdshext.dll
2010-04-08 12:46:48 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2010-04-08 12:46:48 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2010-04-08 12:46:48 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2010-04-08 12:46:47 ----A---- C:\Windows\system32\WPDSp.dll
2010-04-08 12:46:47 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2010-04-08 12:46:47 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2010-04-08 12:46:47 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2010-04-08 12:45:58 ----A---- C:\Windows\system32\oleaccrc.dll
2010-04-08 12:45:57 ----A---- C:\Windows\system32\UIAutomationCore.dll
2010-04-08 12:45:57 ----A---- C:\Windows\system32\oleacc.dll
2010-04-08 12:44:07 ----A---- C:\Windows\system32\gpprefcl.dll
2010-04-08 12:42:45 ----A---- C:\Windows\system32\UIAnimation.dll
2010-04-08 12:42:40 ----A---- C:\Windows\system32\UIRibbonRes.dll
2010-04-08 12:42:40 ----A---- C:\Windows\system32\UIRibbon.dll
2010-04-08 12:39:54 ----A---- C:\Windows\system32\wmp.dll
2010-04-08 12:39:52 ----A---- C:\Windows\system32\unregmp2.exe
2010-04-08 12:39:43 ----A---- C:\Windows\system32\wmploc.DLL
2010-04-08 12:37:58 ----A---- C:\Windows\system32\gameux.dll
2010-04-08 12:37:56 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2010-04-08 12:37:56 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-04-07 21:48:02 ----D---- C:\ProgramData\ICQ
2010-04-07 21:47:23 ----D---- C:\Program Files (x86)\ICQ7.1
2010-04-07 13:28:15 ----D---- C:\Users\Radek\AppData\Roaming\Unity
2010-03-31 20:45:08 ----A---- C:\Windows\system32\mshtml.dll
2010-03-31 20:45:06 ----A---- C:\Windows\system32\ieframe.dll
2010-03-31 20:45:05 ----A---- C:\Windows\system32\wininet.dll
2010-03-31 20:45:05 ----A---- C:\Windows\system32\urlmon.dll
2010-03-31 20:45:05 ----A---- C:\Windows\system32\iertutil.dll
2010-03-31 20:45:04 ----A---- C:\Windows\system32\occache.dll
2010-03-31 20:45:04 ----A---- C:\Windows\system32\msfeeds.dll
2010-03-31 20:45:03 ----A---- C:\Windows\system32\mstime.dll
2010-03-31 20:45:03 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-31 20:45:02 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-31 20:45:02 ----A---- C:\Windows\system32\ieUnatt.exe
2010-03-31 20:45:02 ----A---- C:\Windows\system32\ieui.dll
2010-03-31 20:45:02 ----A---- C:\Windows\system32\iesysprep.dll
2010-03-31 20:45:02 ----A---- C:\Windows\system32\iepeers.dll
2010-03-31 20:45:01 ----A---- C:\Windows\system32\msfeedssync.exe
2010-03-31 20:45:01 ----A---- C:\Windows\system32\jsproxy.dll
2010-03-31 20:45:01 ----A---- C:\Windows\system32\iesetup.dll
2010-03-31 20:45:01 ----A---- C:\Windows\system32\iernonce.dll
2010-03-31 20:45:01 ----A---- C:\Windows\system32\ie4uinit.exe
2010-03-31 08:29:42 ----D---- C:\Users\Radek\AppData\Roaming\Canneverbe Limited
2010-03-21 18:17:58 ----D---- C:\Users\Radek\AppData\Roaming\PLANStudio Setup
2010-03-18 19:23:47 ----D---- C:\Windows\system32\vi-VN
2010-03-18 19:23:47 ----D---- C:\Windows\system32\eu-ES
2010-03-18 19:23:47 ----D---- C:\Windows\system32\ca-ES
2010-03-18 08:44:09 ----A---- C:\Windows\system32\TsWpfWrp.exe
2010-03-18 08:44:09 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2010-03-18 08:44:09 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-03-18 08:44:09 ----A---- C:\Windows\system32\PresentationHost.exe
2010-03-18 08:44:08 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2010-03-18 08:44:08 ----A---- C:\Windows\system32\msshsq.dll
2010-03-18 08:44:07 ----A---- C:\Windows\system32\infocardapi.dll
2010-03-18 08:44:07 ----A---- C:\Windows\system32\icardres.dll
2010-03-18 08:44:07 ----A---- C:\Windows\system32\icardagt.exe
2010-03-18 08:44:03 ----A---- C:\Windows\system32\mscories.dll
2010-03-18 08:44:03 ----A---- C:\Windows\system32\mscorier.dll
2010-03-18 08:44:03 ----A---- C:\Windows\system32\mscoree.dll
2010-03-18 08:44:03 ----A---- C:\Windows\system32\dfshim.dll
2010-03-18 08:44:00 ----A---- C:\Windows\system32\wusa.exe
2010-03-18 08:44:00 ----A---- C:\Windows\system32\CertEnrollUI.dll
2010-03-18 08:44:00 ----A---- C:\Windows\system32\CertEnroll.dll
2010-03-18 08:43:59 ----A---- C:\Windows\system32\wsdchngr.dll
2010-03-18 08:43:59 ----A---- C:\Windows\system32\WMVXENCD.DLL
2010-03-18 08:43:58 ----A---- C:\Windows\system32\WMVSDECD.DLL
2010-03-18 08:43:58 ----A---- C:\Windows\system32\WMVENCOD.DLL
2010-03-18 08:43:58 ----A---- C:\Windows\system32\WMVDECOD.DLL
2010-03-18 08:43:57 ----A---- C:\Windows\system32\WMADMOD.DLL
2010-03-18 08:43:57 ----A---- C:\Windows\system32\wlgpclnt.dll
2010-03-18 08:43:57 ----A---- C:\Windows\system32\wlanui.dll
2010-03-18 08:43:57 ----A---- C:\Windows\system32\wlanpref.dll
2010-03-18 08:43:57 ----A---- C:\Windows\system32\winlogon.exe
2010-03-18 08:43:57 ----A---- C:\Windows\system32\wiaaut.dll
2010-03-18 08:43:57 ----A---- C:\Windows\system32\whealogr.dll
2010-03-18 08:43:57 ----A---- C:\Windows\system32\WebClnt.dll
2010-03-18 08:43:57 ----A---- C:\Windows\system32\WcnNetsh.dll
2010-03-18 08:43:57 ----A---- C:\Windows\system32\davclnt.dll
2010-03-18 08:43:55 ----A---- C:\Windows\system32\WscEapPr.dll
2010-03-18 08:43:55 ----A---- C:\Windows\system32\wpdwcn.dll
2010-03-18 08:43:55 ----A---- C:\Windows\system32\wmpmde.dll
2010-03-18 08:43:55 ----A---- C:\Windows\system32\chsbrkr.dll
2010-03-18 08:43:54 ----A---- C:\Windows\system32\wcnwiz2.dll
2010-03-18 08:43:54 ----A---- C:\Windows\system32\wcnwiz.dll
2010-03-18 08:43:54 ----A---- C:\Windows\system32\thawbrkr.dll
2010-03-18 08:43:54 ----A---- C:\Windows\system32\mswsock.dll
2010-03-18 08:43:54 ----A---- C:\Windows\system32\korwbrkr.dll
2010-03-18 08:43:53 ----A---- C:\Windows\system32\vssapi.dll
2010-03-18 08:43:53 ----A---- C:\Windows\system32\version.dll
2010-03-18 08:43:53 ----A---- C:\Windows\system32\MSVidCtl.dll
2010-03-18 08:43:53 ----A---- C:\Windows\system32\chtbrkr.dll
2010-03-18 08:43:52 ----A---- C:\Windows\system32\vdsdyn.dll
2010-03-18 08:43:52 ----A---- C:\Windows\system32\Utilman.exe
2010-03-18 08:43:52 ----A---- C:\Windows\system32\usp10.dll
2010-03-18 08:43:52 ----A---- C:\Windows\system32\userenv.dll
2010-03-18 08:43:52 ----A---- C:\Windows\system32\usercpl.dll
2010-03-18 08:43:52 ----A---- C:\Windows\system32\psisdecd.dll
2010-03-18 08:43:52 ----A---- C:\Windows\system32\powrprof.dll
2010-03-18 08:43:52 ----A---- C:\Windows\system32\modemui.dll
2010-03-18 08:43:52 ----A---- C:\Windows\system32\EncDec.dll
2010-03-18 08:43:51 ----A---- C:\Windows\system32\TSTheme.exe
2010-03-18 08:43:51 ----A---- C:\Windows\system32\themeui.dll
2010-03-18 08:43:51 ----A---- C:\Windows\system32\themecpl.dll
2010-03-18 08:43:51 ----A---- C:\Windows\system32\taskeng.exe
2010-03-18 08:43:51 ----A---- C:\Windows\system32\tapisrv.dll
2010-03-18 08:43:51 ----A---- C:\Windows\system32\regapi.dll
2010-03-18 08:43:51 ----A---- C:\Windows\system32\rdpencom.dll
2010-03-18 08:43:51 ----A---- C:\Windows\system32\mscandui.dll
2010-03-18 08:43:51 ----A---- C:\Windows\system32\input.dll
2010-03-18 08:43:50 ----A---- C:\Windows\system32\tscupgrd.exe
2010-03-18 08:43:50 ----A---- C:\Windows\system32\mstsc.exe
2010-03-18 08:43:50 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2010-03-18 08:43:50 ----A---- C:\Windows\system32\InkEd.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\taskcomp.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\systemcpl.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\sud.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\Storprop.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\stobject.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\spwinsat.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\spp.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\softkbd.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\msutb.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\mstlsapi.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\msimtf.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\msctfui.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\msctfp.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\msctf.dll
2010-03-18 08:43:49 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2010-03-18 08:43:49 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2010-03-18 08:43:48 ----A---- C:\Windows\system32\wsnmp32.dll
2010-03-18 08:43:48 ----A---- C:\Windows\system32\SMBHelperClass.dll
2010-03-18 08:43:48 ----A---- C:\Windows\system32\shwebsvc.dll
2010-03-18 08:43:48 ----A---- C:\Windows\system32\shsvcs.dll
2010-03-18 08:43:48 ----A---- C:\Windows\system32\shlwapi.dll
2010-03-18 08:43:48 ----A---- C:\Windows\system32\scksp.dll
2010-03-18 08:43:48 ----A---- C:\Windows\system32\basecsp.dll
2010-03-18 08:43:47 ----A---- C:\Windows\system32\spwizui.dll
2010-03-18 08:43:47 ----A---- C:\Windows\system32\spreview.exe
2010-03-18 08:43:47 ----A---- C:\Windows\system32\spinstall.exe
2010-03-18 08:43:47 ----A---- C:\Windows\system32\sperror.dll
2010-03-18 08:43:47 ----A---- C:\Windows\system32\spcmsg.dll
2010-03-18 08:43:47 ----A---- C:\Windows\system32\shsetup.dll
2010-03-18 08:43:47 ----A---- C:\Windows\system32\shdocvw.dll
2010-03-18 08:43:47 ----A---- C:\Windows\system32\setupapi.dll
2010-03-18 08:43:47 ----A---- C:\Windows\system32\sethc.exe
2010-03-18 08:43:46 ----A---- C:\Windows\system32\wscript.exe
2010-03-18 08:43:46 ----A---- C:\Windows\system32\wscntfy.dll
2010-03-18 08:43:46 ----A---- C:\Windows\system32\slwga.dll
2010-03-18 08:43:46 ----A---- C:\Windows\system32\slcc.dll
2010-03-18 08:43:46 ----A---- C:\Windows\system32\services.exe
2010-03-18 08:43:46 ----A---- C:\Windows\system32\secproc.dll
2010-03-18 08:43:46 ----A---- C:\Windows\system32\scrrun.dll
2010-03-18 08:43:46 ----A---- C:\Windows\system32\scrobj.dll
2010-03-18 08:43:46 ----A---- C:\Windows\system32\scansetting.dll
2010-03-18 08:43:46 ----A---- C:\Windows\system32\RMActivate.exe
2010-03-18 08:43:46 ----A---- C:\Windows\system32\pidgenx.dll
2010-03-18 08:43:46 ----A---- C:\Windows\system32\cscript.exe
2010-03-18 08:43:44 ----A---- C:\Windows\system32\SLCExt.dll
2010-03-18 08:43:44 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-03-18 08:43:44 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-03-18 08:43:43 ----A---- C:\Windows\system32\wshext.dll
2010-03-18 08:43:43 ----A---- C:\Windows\system32\slmgr.vbs
2010-03-18 08:43:43 ----A---- C:\Windows\system32\SLC.dll
2010-03-18 08:43:43 ----A---- C:\Windows\system32\secproc_isv.dll
2010-03-18 08:43:43 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-03-18 08:43:42 ----A---- C:\Windows\system32\WinSCard.dll
2010-03-18 08:43:42 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-03-18 08:43:42 ----A---- C:\Windows\system32\scesrv.dll
2010-03-18 08:43:42 ----A---- C:\Windows\system32\rsaenh.dll
2010-03-18 08:43:42 ----A---- C:\Windows\system32\rpchttp.dll
2010-03-18 08:43:42 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-03-18 08:43:42 ----A---- C:\Windows\system32\ntmarta.dll
2010-03-18 08:43:42 ----A---- C:\Windows\system32\authz.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\rtutils.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\riched20.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\RelMon.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\rastapi.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\rasppp.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\rasplap.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\rasmontr.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\raschap.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\rasgcw.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\rasdlg.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\rasdial.exe
2010-03-18 08:43:41 ----A---- C:\Windows\system32\rasapi32.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\RacEngn.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\ifmon.dll
2010-03-18 08:43:41 ----A---- C:\Windows\system32\cmmon32.exe
2010-03-18 08:43:41 ----A---- C:\Windows\system32\cmdial32.dll
2010-03-18 08:43:40 ----A---- C:\Windows\system32\reg.exe
2010-03-18 08:43:40 ----A---- C:\Windows\system32\qedit.dll
2010-03-18 08:43:40 ----A---- C:\Windows\system32\propsys.dll
2010-03-18 08:43:40 ----A---- C:\Windows\system32\powercpl.dll
2010-03-18 08:43:40 ----A---- C:\Windows\system32\pnpsetup.dll
2010-03-18 08:43:40 ----A---- C:\Windows\system32\oleprn.dll
2010-03-18 08:43:40 ----A---- C:\Windows\system32\msdrm.dll
2010-03-18 08:43:40 ----A---- C:\Windows\system32\devmgr.dll
2010-03-18 08:43:39 ----A---- C:\Windows\system32\wdc.dll
2010-03-18 08:43:39 ----A---- C:\Windows\system32\photowiz.dll
2010-03-18 08:43:39 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2010-03-18 08:43:39 ----A---- C:\Windows\system32\p2psvc.dll
2010-03-18 08:43:39 ----A---- C:\Windows\system32\P2PGraph.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\WSDMon.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\wdscore.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\tcpmon.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\spoolss.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\prnntfy.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\printui.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\perfdisk.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\osk.exe
2010-03-18 08:43:38 ----A---- C:\Windows\system32\olepro32.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\ntprint.dll
2010-03-18 08:43:38 ----A---- C:\Windows\system32\logman.exe
2010-03-18 08:43:37 ----A---- C:\Windows\system32\vdmdbg.dll
2010-03-18 08:43:37 ----A---- C:\Windows\system32\ocsetup.exe
2010-03-18 08:43:37 ----A---- C:\Windows\system32\nslookup.exe
2010-03-18 08:43:37 ----A---- C:\Windows\system32\newdev.exe
2010-03-18 08:43:37 ----A---- C:\Windows\system32\newdev.dll
2010-03-18 08:43:37 ----A---- C:\Windows\system32\networkmap.dll
2010-03-18 08:43:37 ----A---- C:\Windows\system32\networkitemfactory.dll
2010-03-18 08:43:37 ----A---- C:\Windows\system32\cscdll.dll
2010-03-18 08:43:37 ----A---- C:\Windows\system32\cscapi.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\pnidui.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\networkexplorer.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\netshell.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\netplwiz.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\netcenter.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\netapi32.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\ncryptui.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\ncrypt.dll
2010-03-18 08:43:36 ----A---- C:\Windows\system32\NcdProp.dll
2010-03-18 08:43:34 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2010-03-18 08:43:33 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2010-03-18 08:43:33 ----A---- C:\Windows\system32\iashlpr.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\sdohlp.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\ipsmsnap.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\ipsecsnp.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\iassdo.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\iassam.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\iasrecst.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\iasnap.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\IasMigReader.exe
2010-03-18 08:43:31 ----A---- C:\Windows\system32\IasMigPlugin.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\iasdatastore.dll
2010-03-18 08:43:31 ----A---- C:\Windows\system32\iasads.dll
2010-03-18 08:43:30 ----A---- C:\Windows\system32\msvcrt.dll
2010-03-18 08:43:30 ----A---- C:\Windows\system32\msvcp60.dll
2010-03-18 08:43:30 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2010-03-18 08:43:30 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2010-03-18 08:43:30 ----A---- C:\Windows\system32\msinfo32.exe
2010-03-18 08:43:30 ----A---- C:\Windows\system32\iassvcs.dll
2010-03-18 08:43:30 ----A---- C:\Windows\system32\iasrad.dll
2010-03-18 08:43:30 ----A---- C:\Windows\system32\iaspolcy.dll
2010-03-18 08:43:30 ----A---- C:\Windows\system32\iasacct.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\wmpps.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\SyncCenter.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\msftedit.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2010-03-18 08:43:29 ----A---- C:\Windows\system32\mprapi.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\mpr.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\MMDevAPI.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\mfplat.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\mfc42u.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\mfc42.dll
2010-03-18 08:43:29 ----A---- C:\Windows\system32\adtschema.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\WMPEncEn.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\wmpeffects.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\WMNetMgr.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\wmdrmsdk.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\msscp.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\msnetobj.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\Magnify.exe
2010-03-18 08:43:28 ----A---- C:\Windows\system32\logagent.exe
2010-03-18 08:43:28 ----A---- C:\Windows\system32\inetcomm.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\drmv2clt.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\drmmgrtn.dll
2010-03-18 08:43:28 ----A---- C:\Windows\system32\blackbox.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\sqlsrv32.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\odbcconf.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\msxbde40.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\mswstr10.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\mswdat10.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\mspbde40.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\msltus40.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\msjtes40.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\msjter40.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\msjint40.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\msjetoledb40.dll
2010-03-18 08:43:27 ----A---- C:\Windows\system32\msexch40.dll
2010-03-18 08:43:26 ----A---- C:\Windows\system32\odbccp32.dll
2010-03-18 08:43:26 ----A---- C:\Windows\system32\odbc32.dll
2010-03-18 08:43:26 ----A---- C:\Windows\system32\msexcl40.dll
2010-03-18 08:43:26 ----A---- C:\Windows\system32\mmcndmgr.dll
2010-03-18 08:43:26 ----A---- C:\Windows\system32\mmc.exe
2010-03-18 08:43:25 ----A---- C:\Windows\system32\Wldap32.dll
2010-03-18 08:43:25 ----A---- C:\Windows\system32\mstext40.dll
2010-03-18 08:43:25 ----A---- C:\Windows\system32\msrepl40.dll
2010-03-18 08:43:25 ----A---- C:\Windows\system32\msrd3x40.dll
2010-03-18 08:43:25 ----A---- C:\Windows\system32\msrd2x40.dll
2010-03-18 08:43:25 ----A---- C:\Windows\system32\msjet40.dll
2010-03-18 08:43:25 ----A---- C:\Windows\system32\l2nacp.dll
2010-03-18 08:43:25 ----A---- C:\Windows\system32\hdwwiz.exe
2010-03-18 08:43:13 ----A---- C:\Windows\system32\msisip.dll
2010-03-18 08:43:13 ----A---- C:\Windows\system32\msimsg.dll
2010-03-18 08:43:13 ----A---- C:\Windows\system32\msihnd.dll
2010-03-18 08:43:13 ----A---- C:\Windows\system32\msiexec.exe
2010-03-18 08:43:13 ----A---- C:\Windows\system32\msi.dll
2010-03-18 08:43:13 ----A---- C:\Windows\system32\ipconfig.exe
2010-03-18 08:43:12 ----A---- C:\Windows\system32\imapi2.dll
2010-03-18 08:43:12 ----A---- C:\Windows\system32\imapi.dll
2010-03-18 08:43:12 ----A---- C:\Windows\system32\dbgeng.dll
2010-03-18 08:43:07 ----A---- C:\Windows\system32\scrptadm.dll
2010-03-18 08:43:07 ----A---- C:\Windows\system32\imapi2fs.dll
2010-03-18 08:43:07 ----A---- C:\Windows\system32\gpupdate.exe
2010-03-18 08:43:07 ----A---- C:\Windows\system32\gpscript.exe
2010-03-18 08:43:07 ----A---- C:\Windows\system32\gpscript.dll
2010-03-18 08:43:07 ----A---- C:\Windows\system32\gpresult.exe
2010-03-18 08:43:07 ----A---- C:\Windows\system32\gpedit.dll
2010-03-18 08:43:07 ----A---- C:\Windows\system32\connect.dll
2010-03-18 08:43:07 ----A---- C:\Windows\system32\apds.dll
2010-03-18 08:43:06 ----A---- C:\Windows\system32\untfs.dll
2010-03-18 08:43:06 ----A---- C:\Windows\system32\ulib.dll
2010-03-18 08:43:06 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2010-03-18 08:43:06 ----A---- C:\Windows\system32\ftp.exe
2010-03-18 08:43:06 ----A---- C:\Windows\system32\findstr.exe
2010-03-18 08:43:06 ----A---- C:\Windows\system32\feclient.dll
2010-03-18 08:43:06 ----A---- C:\Windows\system32\fdeploy.dll
2010-03-18 08:43:06 ----A---- C:\Windows\system32\fdBthProxy.dll
2010-03-18 08:43:06 ----A---- C:\Windows\system32\fdBth.dll
2010-03-18 08:43:06 ----A---- C:\Windows\system32\fc.exe
2010-03-18 08:43:05 ----A---- C:\Windows\system32\wevtutil.exe
2010-03-18 08:43:05 ----A---- C:\Windows\system32\wevtapi.dll
2010-03-18 08:43:05 ----A---- C:\Windows\system32\WerFaultSecure.exe
2010-03-18 08:43:05 ----A---- C:\Windows\system32\WerFault.exe
2010-03-18 08:43:05 ----A---- C:\Windows\system32\wer.dll
2010-03-18 08:43:05 ----A---- C:\Windows\system32\rekeywiz.exe
2010-03-18 08:43:05 ----A---- C:\Windows\system32\Faultrep.dll
2010-03-18 08:43:05 ----A---- C:\Windows\system32\ExplorerFrame.dll
2010-03-18 08:43:05 ----A---- C:\Windows\system32\evr.dll
2010-03-18 08:43:05 ----A---- C:\Windows\system32\eudcedit.exe
2010-03-18 08:43:05 ----A---- C:\Windows\system32\EhStorShell.dll
2010-03-18 08:43:05 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2010-03-18 08:43:05 ----A---- C:\Windows\system32\EhStorAuthn.dll
2010-03-18 08:43:05 ----A---- C:\Windows\system32\EhStorAPI.dll
2010-03-18 08:43:04 ----A---- C:\Windows\system32\winrnr.dll
2010-03-18 08:43:04 ----A---- C:\Windows\system32\esent.dll
2010-03-18 08:43:04 ----A---- C:\Windows\system32\drvstore.dll
2010-03-18 08:43:04 ----A---- C:\Windows\system32\dpapimig.exe
2010-03-18 08:43:04 ----A---- C:\Windows\system32\dot3cfg.dll
2010-03-18 08:43:04 ----A---- C:\Windows\system32\diskraid.exe
2010-03-18 08:43:04 ----A---- C:\Windows\system32\diskpart.exe
2010-03-18 08:43:04 ----A---- C:\Windows\system32\d3d9.dll
2010-03-18 08:43:03 ----A---- C:\Windows\system32\qdvd.dll
2010-03-18 08:43:03 ----A---- C:\Windows\system32\milcore.dll
2010-03-18 08:43:03 ----A---- C:\Windows\system32\dimsroam.dll
2010-03-18 08:43:03 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2010-03-18 08:43:03 ----A---- C:\Windows\system32\dhcpcsvc.dll
2010-03-18 08:43:03 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2010-03-18 08:43:03 ----A---- C:\Windows\system32\DevicePairing.dll
2010-03-18 08:43:03 ----A---- C:\Windows\system32\dataclen.dll
2010-03-18 08:43:02 ----A---- C:\Windows\system32\rtffilt.dll
2010-03-18 08:43:02 ----A---- C:\Windows\system32\cryptui.dll
2010-03-18 08:43:02 ----A---- C:\Windows\system32\cryptsvc.dll
2010-03-18 08:43:02 ----A---- C:\Windows\system32\crypt32.dll
2010-03-18 08:43:02 ----A---- C:\Windows\system32\credui.dll
2010-03-18 08:43:02 ----A---- C:\Windows\system32\autoconv.exe
2010-03-18 08:43:01 ----A---- C:\Windows\system32\xmlfilter.dll
2010-03-18 08:43:01 ----A---- C:\Windows\system32\ole32.dll
2010-03-18 08:43:01 ----A---- C:\Windows\system32\offfilt.dll
2010-03-18 08:43:01 ----A---- C:\Windows\system32\nlhtml.dll
2010-03-18 08:43:01 ----A---- C:\Windows\system32\mimefilt.dll
2010-03-18 08:43:01 ----A---- C:\Windows\system32\conime.exe
2010-03-18 08:43:01 ----A---- C:\Windows\system32\comuid.dll
2010-03-18 08:43:01 ----A---- C:\Windows\system32\comdlg32.dll
2010-03-18 08:43:01 ----A---- C:\Windows\system32\cipher.exe
2010-03-18 08:43:01 ----A---- C:\Windows\system32\certutil.exe
2010-03-18 08:43:01 ----A---- C:\Windows\system32\certreq.exe
2010-03-18 08:43:01 ----A---- C:\Windows\system32\certcli.dll
2010-03-18 08:43:00 ----A---- C:\Windows\system32\wshbth.dll
2010-03-18 08:43:00 ----A---- C:\Windows\system32\Query.dll
2010-03-18 08:43:00 ----A---- C:\Windows\system32\mtxclu.dll
2010-03-18 08:43:00 ----A---- C:\Windows\system32\comsvcs.dll
2010-03-18 08:43:00 ----A---- C:\Windows\system32\certmgr.dll
2010-03-18 08:43:00 ----A---- C:\Windows\system32\bthudtask.exe
2010-03-18 08:43:00 ----A---- C:\Windows\system32\browseui.dll
2010-03-18 08:43:00 ----A---- C:\Windows\system32\azroles.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\winmm.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\SndVol.exe
2010-03-18 08:42:59 ----A---- C:\Windows\system32\pcaui.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\mmcico.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\mmci.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\midimap.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\dsound.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\dmusic.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\dmsynth.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\autoplay.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\autochk.exe
2010-03-18 08:42:59 ----A---- C:\Windows\system32\autofmt.exe
2010-03-18 08:42:59 ----A---- C:\Windows\system32\authui.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\advapi32.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\adsldpc.dll
2010-03-18 08:42:59 ----A---- C:\Windows\system32\accessibilitycpl.dll
2010-03-18 08:42:58 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2010-03-18 08:42:58 ----A---- C:\Windows\system32\fundisc.dll
2010-03-18 08:42:58 ----A---- C:\Windows\system32\fdWSD.dll
2010-03-18 08:42:58 ----A---- C:\Windows\system32\fdSSDP.dll
2010-03-18 08:42:58 ----A---- C:\Windows\system32\fdProxy.dll
2010-03-18 08:42:58 ----A---- C:\Windows\system32\dsprop.dll
2010-03-18 08:42:58 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2010-03-18 08:42:58 ----A---- C:\Windows\system32\adsmsext.dll
2010-03-18 08:42:57 ----A---- C:\Windows\system32\tquery.dll
2010-03-18 08:42:57 ----A---- C:\Windows\system32\srchadmin.dll
2010-03-18 08:42:57 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2010-03-18 08:42:57 ----A---- C:\Windows\system32\SearchIndexer.exe
2010-03-18 08:42:57 ----A---- C:\Windows\system32\SearchFilterHost.exe
2010-03-18 08:42:57 ----A---- C:\Windows\system32\propdefs.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\mssvp.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\msstrc.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\mssrch.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\mssprxy.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\mssphtb.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\mssph.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\mssitlb.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\msshooks.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\msscntrs.dll
2010-03-18 08:42:56 ----A---- C:\Windows\system32\msscb.dll
2010-03-18 08:42:52 ----A---- C:\Windows\system32\zipfldr.dll
2010-03-18 08:42:49 ----A---- C:\Windows\system32\WsmSvc.dll
2010-03-18 08:42:49 ----A---- C:\Windows\system32\wlangpui.dll
2010-03-18 08:42:49 ----A---- C:\Windows\system32\wcncsvc.dll
2010-03-18 08:42:49 ----A---- C:\Windows\system32\vdsutil.dll
2010-03-18 08:42:49 ----A---- C:\Windows\system32\user32.dll
2010-03-18 08:42:49 ----A---- C:\Windows\system32\tcpipcfg.dll
2010-03-18 08:42:49 ----A---- C:\Windows\system32\SCardSvr.dll
2010-03-18 08:42:49 ----A---- C:\Windows\system32\fdWCN.dll
2010-03-18 08:42:47 ----A---- C:\Windows\system32\shell32.dll
2010-03-18 08:42:46 ----A---- C:\Windows\system32\wscisvif.dll
2010-03-18 08:42:46 ----A---- C:\Windows\system32\wscapi.dll
2010-03-18 08:42:46 ----A---- C:\Windows\system32\slwmi.dll
2010-03-18 08:42:46 ----A---- C:\Windows\system32\slcinst.dll
2010-03-18 08:42:46 ----A---- C:\Windows\system32\sendmail.dll
2010-03-18 08:42:46 ----A---- C:\Windows\system32\scecli.dll
2010-03-18 08:42:46 ----A---- C:\Windows\system32\netlogon.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\wpcsvc.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\wpcao.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\win32spl.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\SLCommDlg.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\rasdiag.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\puiapi.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\pdh.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\onex.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\oleaut32.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\ntdll.dll
2010-03-18 08:42:45 ----A---- C:\Windows\system32\cscobj.dll
2010-03-18 08:42:44 ----A---- C:\Windows\system32\wmdrmnet.dll
2010-03-18 08:42:44 ----A---- C:\Windows\system32\wmdrmdev.dll
2010-03-18 08:42:44 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2010-03-18 08:42:44 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2010-03-18 08:42:40 ----A---- C:\Windows\system32\kernel32.dll
2010-03-18 08:42:40 ----A---- C:\Windows\system32\imm32.dll
2010-03-18 08:42:40 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2010-03-18 08:42:38 ----A---- C:\Windows\system32\mscms.dll
2010-03-18 08:42:36 ----A---- C:\Windows\system32\hidserv.dll
2010-03-18 08:42:36 ----A---- C:\Windows\system32\hbaapi.dll
2010-03-18 08:42:36 ----A---- C:\Windows\system32\gpapi.dll
2010-03-18 08:42:36 ----A---- C:\Windows\system32\gdi32.dll
2010-03-18 08:42:36 ----A---- C:\Windows\system32\f3ahvoas.dll
2010-03-18 08:42:35 ----A---- C:\Windows\system32\samlib.dll
2010-03-18 08:42:35 ----A---- C:\Windows\system32\IMJP10K.DLL
2010-03-18 08:42:35 ----A---- C:\Windows\system32\fontext.dll
2010-03-18 08:42:35 ----A---- C:\Windows\system32\explorer.exe
2010-03-18 08:42:35 ----A---- C:\Windows\system32\eapphost.dll
2010-03-18 08:42:35 ----A---- C:\Windows\system32\eappgnui.dll
2010-03-18 08:42:35 ----A---- C:\Windows\system32\eappcfg.dll
2010-03-18 08:42:35 ----A---- C:\Windows\system32\eapp3hst.dll
2010-03-18 08:42:35 ----A---- C:\Windows\system32\dot3msm.dll
2010-03-18 08:42:35 ----A---- C:\Windows\system32\dnsapi.dll
2010-03-18 08:42:35 ----A---- C:\Windows\system32\appmgmts.dll
2010-03-18 08:42:34 ----A---- C:\Windows\system32\msdtcprx.dll
2010-03-18 08:42:34 ----A---- C:\Windows\system32\es.dll
2010-03-18 08:42:34 ----A---- C:\Windows\system32\drvinst.exe
2010-03-18 08:42:34 ----A---- C:\Windows\system32\bcrypt.dll
2010-03-18 08:42:34 ----A---- C:\Windows\system32\AudioSes.dll
2010-03-18 08:42:34 ----A---- C:\Windows\system32\AUDIOKSE.dll
2010-03-18 08:42:34 ----A---- C:\Windows\system32\AudioEng.dll
2010-03-18 08:42:34 ----A---- C:\Windows\system32\audiodg.exe
2010-03-18 08:42:33 ----A---- C:\Windows\system32\oobefldr.dll
2010-03-18 08:42:33 ----A---- C:\Windows\system32\apphelp.dll
2010-03-18 08:38:26 ----A---- C:\Windows\explorer.exe
2010-03-18 08:20:35 ----D---- C:\RemoteAgent
2010-03-16 16:43:32 ----A---- C:\Windows\MapaCR.INI

======List of files/folders modified in the last 1 months======

2010-04-12 11:19:43 ----D---- C:\Windows\Temp
2010-04-12 11:16:45 ----RD---- C:\Program Files (x86)
2010-04-12 11:12:53 ----SHD---- C:\Windows\Installer
2010-04-12 11:12:40 ----SHD---- C:\System Volume Information
2010-04-12 11:03:09 ----D---- C:\Windows\SysWOW64
2010-04-12 11:01:21 ----D---- C:\Windows\Prefetch
2010-04-12 10:59:00 ----D---- C:\Windows\System32
2010-04-12 10:59:00 ----D---- C:\Windows\inf
2010-04-12 10:43:17 ----D---- C:\Windows\Tasks
2010-04-12 10:22:52 ----SD---- C:\Users\Radek\AppData\Roaming\Microsoft
2010-04-12 10:22:47 ----D---- C:\Windows
2010-04-12 10:17:36 ----D---- C:\Program Files (x86)\DivX
2010-04-12 10:16:46 ----D---- C:\Users\Radek\AppData\Roaming\ICQ
2010-04-12 10:13:51 ----D---- C:\ProgramData\Electronic Arts
2010-04-12 10:11:29 ----D---- C:\Windows\Minidump
2010-04-12 10:11:24 ----SD---- C:\Windows\Downloaded Program Files
2010-04-12 10:07:57 ----D---- C:\Program Files (x86)\Common Files
2010-04-12 10:04:53 ----A---- C:\Windows\ntbtlog.txt
2010-04-12 08:48:03 ----D---- C:\Users\Radek\AppData\Roaming\uTorrent
2010-04-12 08:20:08 ----D---- C:\Program Files (x86)\Nokia
2010-04-12 08:19:55 ----D---- C:\ProgramData\Nokia
2010-04-12 08:19:09 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-04-10 07:19:41 ----HD---- C:\ProgramData
2010-04-08 14:59:36 ----D---- C:\Windows\Microsoft.NET
2010-04-08 14:59:16 ----RSD---- C:\Windows\assembly
2010-04-08 13:11:38 ----D---- C:\Windows\rescache
2010-04-08 13:04:02 ----D---- C:\Windows\winsxs
2010-04-08 13:03:31 ----D---- C:\Users\Radek\AppData\Roaming\Skype
2010-04-08 12:50:15 ----D---- C:\Windows\system32\en-US
2010-04-08 12:50:15 ----D---- C:\Windows\system32\cs-CZ
2010-04-08 12:50:15 ----D---- C:\Program Files (x86)\Windows Media Player
2010-04-08 12:50:12 ----RD---- C:\Program Files
2010-04-08 12:50:12 ----D---- C:\Windows\system32\wbem
2010-04-08 12:50:08 ----D---- C:\Windows\system32\zh-TW
2010-04-08 12:50:08 ----D---- C:\Windows\system32\zh-HK
2010-04-08 12:50:08 ----D---- C:\Windows\system32\zh-CN
2010-04-08 12:50:08 ----D---- C:\Windows\system32\uk-UA
2010-04-08 12:50:08 ----D---- C:\Windows\system32\tr-TR
2010-04-08 12:50:08 ----D---- C:\Windows\system32\th-TH
2010-04-08 12:50:08 ----D---- C:\Windows\system32\sv-SE
2010-04-08 12:50:08 ----D---- C:\Windows\system32\sr-Latn-CS
2010-04-08 12:50:08 ----D---- C:\Windows\system32\sl-SI
2010-04-08 12:50:08 ----D---- C:\Windows\system32\sk-SK
2010-04-08 12:50:08 ----D---- C:\Windows\system32\ru-RU
2010-04-08 12:50:08 ----D---- C:\Windows\system32\ro-RO
2010-04-08 12:50:08 ----D---- C:\Windows\system32\pt-PT
2010-04-08 12:50:08 ----D---- C:\Windows\system32\pt-BR
2010-04-08 12:50:08 ----D---- C:\Windows\system32\pl-PL
2010-04-08 12:50:08 ----D---- C:\Windows\system32\nl-NL
2010-04-08 12:50:08 ----D---- C:\Windows\system32\nb-NO
2010-04-08 12:50:08 ----D---- C:\Windows\system32\lv-LV
2010-04-08 12:50:08 ----D---- C:\Windows\system32\lt-LT
2010-04-08 12:50:08 ----D---- C:\Windows\system32\ko-KR
2010-04-08 12:50:08 ----D---- C:\Windows\system32\ja-JP
2010-04-08 12:50:08 ----D---- C:\Windows\system32\it-IT
2010-04-08 12:50:08 ----D---- C:\Windows\system32\hu-HU
2010-04-08 12:50:08 ----D---- C:\Windows\system32\hr-HR
2010-04-08 12:50:08 ----D---- C:\Windows\system32\he-IL
2010-04-08 12:50:08 ----D---- C:\Windows\system32\fr-FR
2010-04-08 12:50:08 ----D---- C:\Windows\system32\fi-FI
2010-04-08 12:50:08 ----D---- C:\Windows\system32\et-EE
2010-04-08 12:50:08 ----D---- C:\Windows\system32\es-ES
2010-04-08 12:50:08 ----D---- C:\Windows\system32\el-GR
2010-04-08 12:50:08 ----D---- C:\Windows\system32\de-DE
2010-04-08 12:50:08 ----D---- C:\Windows\system32\da-DK
2010-04-08 12:50:08 ----D---- C:\Windows\system32\bg-BG
2010-04-08 12:50:08 ----D---- C:\Windows\system32\ar-SA
2010-04-08 12:50:07 ----D---- C:\Windows\ehome
2010-04-08 12:50:06 ----D---- C:\Program Files (x86)\Internet Explorer
2010-04-08 12:50:00 ----RSD---- C:\Windows\Fonts
2010-04-08 12:49:53 ----D---- C:\Windows\AppPatch
2010-04-07 21:47:41 ----D---- C:\Program Files (x86)\ICQ6.5
2010-04-07 11:02:58 ----D---- C:\Program Files (x86)\Realtek
2010-04-05 18:00:35 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-04-01 11:23:49 ----D---- C:\Windows\system32\migration
2010-03-31 09:01:32 ----D---- C:\Windows\system32\drivers
2010-03-18 19:32:57 ----SHD---- C:\Boot
2010-03-18 19:25:43 ----D---- C:\Program Files (x86)\Windows Mail
2010-03-18 19:25:43 ----D---- C:\Program Files (x86)\Windows Calendar
2010-03-18 19:25:42 ----D---- C:\Program Files (x86)\Windows Sidebar
2010-03-18 19:25:40 ----D---- C:\Program Files (x86)\Windows Photo Gallery
2010-03-18 19:25:40 ----D---- C:\Program Files (x86)\Common Files\System
2010-03-18 19:25:35 ----D---- C:\Windows\servicing
2010-03-18 19:25:21 ----D---- C:\Windows\system32\XPSViewer
2010-03-18 19:25:18 ----D---- C:\Windows\system32\oobe
2010-03-18 19:25:17 ----D---- C:\Windows\system32\AdvancedInstallers
2010-03-18 19:25:16 ----D---- C:\Windows\system32\setup
2010-03-18 19:25:16 ----D---- C:\Windows\system32\cs
2010-03-18 19:25:13 ----D---- C:\Windows\system32\SLUI
2010-03-18 19:25:13 ----D---- C:\Windows\system32\manifeststore
2010-03-18 19:25:13 ----D---- C:\Windows\system32\en
2010-03-18 19:25:11 ----D---- C:\Windows\system32\migwiz
2010-03-18 19:24:39 ----D---- C:\Windows\IME
2010-03-18 19:24:38 ----D---- C:\Windows\PolicyDefinitions
2010-03-18 19:22:36 ----D---- C:\Windows\system32\RTCOM
2010-03-18 19:06:55 ----D---- C:\Program Files (x86)\Common Files\InstallShield
2010-03-17 18:03:01 ----D---- C:\Program Files (x86)\Common Files\Nokia
2010-03-17 18:02:58 ----D---- C:\Windows\Globalization

Re: Prosim kontrolu logu-nefunguje IE x32

Napsal: 12 dub 2010 10:28
od servac
pokračování..... (nevešlo se kvůli počtu povolených znaků)

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys []
R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; C:\Windows\System32\Drivers\dfsc.sys []
R1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files (x86)\F-Secure\HIPS\drivers\fshs.sys [2009-07-09 57920]
R1 FSES;F-Secure Email Scanning Driver; C:\Windows\System32\drivers\fses.sys []
R1 FSFW;F-Secure Firewall Driver; C:\Windows\System32\drivers\fsdfw.sys []
R1 fsvista;F-Secure Vista Support Driver; \??\C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsvista.sys [2009-07-09 14904]
R1 kbdhid;Keyboard HID Driver; C:\Windows\system32\DRIVERS\kbdhid.sys []
R1 nsiproxy;NSI proxy service; C:\Windows\system32\drivers\nsiproxy.sys []
R1 RDPENCDD;RDP Encoder Mirror Driver; C:\Windows\system32\drivers\rdpencdd.sys []
R1 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; C:\Windows\system32\DRIVERS\smb.sys []
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys []
R1 Wanarpv6;Remote Access IPv6 ARP Driver; C:\Windows\system32\DRIVERS\wanarp.sys []
R1 ws2ifsl;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\Windows\system32\drivers\ws2ifsl.sys []
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys []
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys []
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; C:\Windows\system32\DRIVERS\lltdio.sys []
R2 luafv;UAC File Virtualization; C:\Windows\system32\drivers\luafv.sys []
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys []
R2 rspndr;Link-Layer Topology Discovery Responder; C:\Windows\system32\DRIVERS\rspndr.sys []
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys []
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys []
R3 bowser;Bowser; C:\Windows\system32\DRIVERS\bowser.sys []
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys []
R3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsgk.sys [2010-03-29 167104]
R3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys []
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\Windows\system32\DRIVERS\HDAudBus.sys []
R3 HidUsb;Microsoft HID Class Driver; C:\Windows\system32\DRIVERS\hidusb.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 intelppm;Intel Processor Driver; C:\Windows\system32\DRIVERS\intelppm.sys []
R3 iScsiPrt;iScsiPort Driver; C:\Windows\system32\DRIVERS\msiscsi.sys []
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []
R3 monitor;Microsoft Monitor Class Function Driver Service; C:\Windows\system32\DRIVERS\monitor.sys []
R3 mouhid;Mouse HID Driver; C:\Windows\system32\DRIVERS\mouhid.sys []
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys []
R3 mrxsmb10;SMB 1.x MiniRedirector; C:\Windows\system32\DRIVERS\mrxsmb10.sys []
R3 mrxsmb20;SMB 2.0 MiniRedirector; C:\Windows\system32\DRIVERS\mrxsmb20.sys []
R3 ohci1394;NEC FireWarden OHCI Compliant IEEE 1394 Host Controller; C:\Windows\system32\DRIVERS\ohci1394.sys []
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys []
R3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver; C:\Windows\system32\DRIVERS\Rtnic64.sys []
R3 srv2;srv2; C:\Windows\System32\DRIVERS\srv2.sys []
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys []
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunmp.sys []
R3 tunnel;Microsoft IPv6 Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys []
R3 umbus;UMBus Enumerator Driver; C:\Windows\system32\DRIVERS\umbus.sys []
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\Windows\system32\DRIVERS\usbccgp.sys []
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\system32\DRIVERS\usbehci.sys []
R3 usbhub;USB2 Enabled Hub; C:\Windows\system32\DRIVERS\usbhub.sys []
R3 USBSTOR;USB Mass Storage Driver; C:\Windows\system32\DRIVERS\USBSTOR.SYS []
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\system32\DRIVERS\usbuhci.sys []
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []
S1 VD_FileDisk;VD_FileDisk; C:\Windows\system32\drivers\VD_FileDisk.sys [2006-01-13 15872]
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys []
S3 agp440;Intel AGP Bus Filter; C:\Windows\system32\drivers\agp440.sys []
S3 arbmytcz;arbmytcz; C:\Windows\system32\drivers\arbmytcz.sys []
S3 Avc;AVC Device; C:\Windows\system32\DRIVERS\avc.sys []
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver; C:\Windows\system32\drivers\brfiltlo.sys []
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver; C:\Windows\system32\drivers\brfiltup.sys []
S3 BrUsbSer;Brother MFC USB Serial WDM Driver; C:\Windows\system32\drivers\brusbser.sys []
S3 DualCoreCenter;DualCoreCenter; \??\C:\Users\Radek\AppData\Local\MSI\DualCoreCenterSideBar\NTGLM7X64.sys []
S3 E1G60;Intel(R) PRO/1000 NDIS 6 Adapter Driver; C:\Windows\system32\DRIVERS\E1G6032E.sys []
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys []
S3 Filetrace;FileTrace; C:\Windows\system32\drivers\filetrace.sys []
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\system32\drivers\gagp30kx.sys []
S3 GMSIPCI;GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS []
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys []
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys []
S3 NativeWifiP;NativeWiFi Filter; C:\Windows\system32\DRIVERS\nwifi.sys []
S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys []
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsucx64.sys []
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys []
S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys []
S3 nv_agp;NVIDIA nForce AGP Bus Filter; C:\Windows\system32\drivers\nv_agp.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys []
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys []
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys []
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh64.sys []
S3 RushTopDevice2;RushTopDevice2; \??\C:\Users\Radek\AppData\Local\MSI\DualCoreCenterSideBar\RushTop64.sys []
S3 sffp_mmc;SFF Storage Protocol Driver for MMC; C:\Windows\system32\drivers\sffp_mmc.sys []
S3 sffp_sd;SFF Storage Protocol Driver for SDBus; C:\Windows\system32\drivers\sffp_sd.sys []
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys []
S3 Tcpip6;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys []
S3 tssecsrv;Terminal Services Security Filter Driver; C:\Windows\System32\DRIVERS\tssecsrv.sys []
S3 uagp35;Microsoft AGPv3.5 Filter; C:\Windows\system32\drivers\uagp35.sys []
S3 uliagpkx;Uli AGP Bus Filter; C:\Windows\system32\drivers\uliagpkx.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys []
S3 usbprint;Microsoft USB PRINTER Class; C:\Windows\system32\DRIVERS\usbprint.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys []
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys []
S3 vga;vga; C:\Windows\system32\DRIVERS\vgapnp.sys []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys []
S4 adp94xx;adp94xx; C:\Windows\system32\drivers\adp94xx.sys []
S4 adpahci;adpahci; C:\Windows\system32\drivers\adpahci.sys []
S4 adpu320;adpu320; C:\Windows\system32\drivers\adpu320.sys []
S4 amdide;amdide; C:\Windows\system32\drivers\amdide.sys []
S4 AmdK8;AMD K8 Processor Driver; C:\Windows\system32\drivers\amdk8.sys []
S4 arc;arc; C:\Windows\system32\drivers\arc.sys []
S4 arcsas;arcsas; C:\Windows\system32\drivers\arcsas.sys []
S4 blbdrive;blbdrive; C:\Windows\system32\drivers\blbdrive.sys []
S4 Brserid;Brother MFC Serial Port Interface Driver (WDM); C:\Windows\system32\drivers\brserid.sys []
S4 BrSerWdm;Brother WDM Serial driver; C:\Windows\system32\drivers\brserwdm.sys []
S4 BrUsbMdm;Brother MFC USB Fax Only Modem; C:\Windows\system32\drivers\brusbmdm.sys []
S4 BTHMODEM;Bluetooth Serial Communications Driver; C:\Windows\system32\drivers\bthmodem.sys []
S4 circlass;Consumer IR Devices; C:\Windows\system32\drivers\circlass.sys []
S4 Compbatt;Microsoft Composite Battery Driver; C:\Windows\system32\drivers\compbatt.sys []
S4 elxstor;elxstor; C:\Windows\system32\drivers\elxstor.sys []
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys []
S4 F-Secure Filter;F-Secure File System Filter; \??\C:\Program Files (x86)\F-Secure\Anti-Virus\Win2K\FSfilter.sys [2009-07-09 39776]
S4 F-Secure Recognizer;F-Secure File System Recognizer; \??\C:\Program Files (x86)\F-Secure\Anti-Virus\Win2K\FSrec.sys [2009-07-09 25184]
S4 HidBth;Microsoft Bluetooth HID Miniport; C:\Windows\system32\drivers\hidbth.sys []
S4 HidIr;Microsoft Infrared HID Driver; C:\Windows\system32\drivers\hidir.sys []
S4 HpCISSs;HpCISSs; C:\Windows\system32\drivers\hpcisss.sys []
S4 iaStorV;Intel RAID Controller Vista; C:\Windows\system32\drivers\iastorv.sys []
S4 iirsp;iirsp; C:\Windows\system32\drivers\iirsp.sys []
S4 intelide;intelide; C:\Windows\system32\drivers\intelide.sys []
S4 IPMIDRV;IPMIDRV; C:\Windows\system32\drivers\ipmidrv.sys []
S4 isapnp;PnP ISA/EISA Bus Driver; C:\Windows\system32\drivers\isapnp.sys []
S4 iteatapi;ITEATAPI_Service_Install; C:\Windows\system32\drivers\iteatapi.sys []
S4 iteraid;ITERAID_Service_Install; C:\Windows\system32\drivers\iteraid.sys []
S4 LSI_FC;LSI_FC; C:\Windows\system32\drivers\lsi_fc.sys []
S4 LSI_SAS;LSI_SAS; C:\Windows\system32\drivers\lsi_sas.sys []
S4 LSI_SCSI;LSI_SCSI; C:\Windows\system32\drivers\lsi_scsi.sys []
S4 megasas;megasas; C:\Windows\system32\drivers\megasas.sys []
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys []
S4 mpio;Microsoft Multi-Path Bus Driver; C:\Windows\system32\drivers\mpio.sys []
S4 msahci;msahci; C:\Windows\system32\drivers\msahci.sys []
S4 msdsm;Microsoft Multi-Path Device Specific Module; C:\Windows\system32\drivers\msdsm.sys []
S4 nfrd960;nfrd960; C:\Windows\system32\drivers\nfrd960.sys []
S4 nvraid;NVIDIA nForce RAID Driver ; C:\Windows\system32\drivers\nvraid.sys []
S4 nvstor;nvstor; C:\Windows\system32\drivers\nvstor.sys []
S4 ql2300;QLogic Fibre Channel Miniport Driver; C:\Windows\system32\drivers\ql2300.sys []
S4 ql40xx;QLogic iSCSI Miniport Driver; C:\Windows\system32\drivers\ql40xx.sys []
S4 sbp2port;SBP-2 Transport/Protocol Bus Driver; C:\Windows\system32\drivers\sbp2port.sys []
S4 sermouse;Serial Mouse Driver; C:\Windows\system32\drivers\sermouse.sys []
S4 sffdisk;SFF Storage Class Driver; C:\Windows\system32\drivers\sffdisk.sys []
S4 SiSRaid2;SiSRaid2; C:\Windows\system32\drivers\sisraid2.sys []
S4 SiSRaid4;SiSRaid4; C:\Windows\system32\drivers\sisraid4.sys []
S4 uliahci;uliahci; C:\Windows\system32\drivers\uliahci.sys []
S4 UlSata;UlSata; C:\Windows\system32\drivers\ulsata.sys []
S4 ulsata2;ulsata2; C:\Windows\system32\drivers\ulsata2.sys []
S4 usbcir;eHome Infrared Receiver (USBCIR); C:\Windows\system32\drivers\usbcir.sys []
S4 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\system32\drivers\usbohci.sys []
S4 vsmraid;vsmraid; C:\Windows\system32\drivers\vsmraid.sys []
S4 WacomPen;Wacom Serial Pen HID Driver; C:\Windows\system32\drivers\wacompen.sys []
S4 Wd;Microsoft Watchdog Timer Driver; C:\Windows\system32\drivers\wd.sys []
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 EMDMgmt;@%SystemRoot%\system32\emdmgmt.dll,-1000; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 F-Secure Gatekeeper Handler Starter;FSGKHS; C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe [2009-07-09 215648]
R2 FSMA;F-Secure Management Agent; C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE [2009-07-09 186976]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-12-05 935208]
R2 netprofm;@%SystemRoot%\system32\netprof.dll,-246; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 slsvc;@%SystemRoot%\system32\SLsvc.exe,-101; C:\Windows\system32\SLsvc.exe []
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 UxSms;Desktop Window Manager Session Manager; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 WinDefend;@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 WSearch;Windows Search; C:\Windows\system32\SearchIndexer.exe [2009-04-11 441344]
R2 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R3 FSDFWD;F-Secure Anti-Virus Firewall Daemon; C:\Program Files (x86)\F-Secure\FWES\Program\fsdfwd.exe [2009-12-27 844384]
R3 FSORSPClient;F-Secure ORSP Client; C:\Program Files (x86)\F-Secure\ORSP Client\fsorsp.exe [2010-03-01 55992]
R3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S2 ehstart;@%SystemRoot%\ehome\ehstart.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S2 gupdate1c9a89832689fb9;Google Update Service (gupdate1c9a89832689fb9); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2009-03-19 133104]
S2 TBS;@%SystemRoot%\system32\tbssvc.dll,-100; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-03-30 66368]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-03-30 89920]
S3 DFSR;@dfsrres.dll,-101; C:\Windows\system32\DFSR.exe []
S3 ehRecvr;@%SystemRoot%\ehome\ehrecvr.exe,-101; C:\Windows\ehome\ehRecvr.exe [2008-01-21 344064]
S3 ehSched;@%SystemRoot%\ehome\ehsched.exe,-101; C:\Windows\ehome\ehsched.exe [2008-01-21 153600]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe []
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2009-02-18 42840]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-20 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [2009-02-18 857432]
S3 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe []
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 p2pimsvc;@%SystemRoot%\system32\p2psvc.dll,-8004; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2008-01-21 19968]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 PNRPAutoReg;@%SystemRoot%\system32\p2psvc.dll,-8002; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 PNRPsvc;@%SystemRoot%\system32\p2psvc.dll,-8000; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 SLUINotify;@%SystemRoot%\system32\SLUINotify.dll,-103; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe []
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2009-04-11 42496]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe []
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe []
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe []
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 Wlansvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S4 Mcx2Svc;@%SystemRoot%\ehome\ehres.dll,-15501; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-02-18 117592]
S4 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe []

-----------------EOF-----------------

Re: Prosim kontrolu logu-nefunguje IE x32

Napsal: 12 dub 2010 22:57
od motji
Dobrý večer :)

:arrow: Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT :!:
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Re: Prosim kontrolu logu-nefunguje IE x32

Napsal: 13 dub 2010 19:52
od servac
dobře provedu ! ale na tom PC budu až za 4 dny tak pak to provedu. kolega, kterému to patří by to jaksi nezvládl.

Re: Prosim kontrolu logu-nefunguje IE x32

Napsal: 13 dub 2010 20:04
od motji
Dobře, pak se ozvěte :)

Re: Prosim kontrolu logu-nefunguje IE x32

Napsal: 27 dub 2010 11:18
od servac
Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Verze databáze: 3930

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18904

27.4.2010 12:14:49
mbam-log-2010-04-27 (12-14-49).txt

Typ skenu: Úplný sken (C:\|)
Skenované objekty: 271255
Uplynulý čas: 42 minuta(y), 39 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 1
Infikované hodnoty registru: 0
Infikované datové položky registru: 1
Infikované složky: 0
Infikované soubory: 2

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gdpnfaj (Rootkit.Agent) -> No action taken.

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowSearch (Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
C:\Windows\System32\drivers\odxbu.sys (Rootkit.Agent) -> No action taken.
C:\Windows\SysWOW64\drivers\odxbu.sys (Rootkit.Agent) -> No action taken.

Re: Prosim kontrolu logu-nefunguje IE x32

Napsal: 27 dub 2010 17:04
od motji
Vše smažte :)

:arrow: Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
/md5stop
%systemroot%\*. /mp /s
CREATERESTOREPOINT
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde :)

Re: Prosim kontrolu logu-nefunguje IE x32

Napsal: 27 dub 2010 20:11
od servac
opět to provedu jak se k tomu PC dostanu. ale hlavní problém jsem již vyřešil. nechal jsem nabootovat OS v nouzovém režimu a vyskenoval systém Clamantivirem portable z usb. Ten našel infekci přímo v adresáři F-secure Internet security. Tak jsem tedy FSIS odinstaloval a infikovaný adresář smazal. Po restartu vše fungovalo jak má. ale pro jistotu to tedy nechám zkontrolovat dle návodu. Pak se znovu ozvu. Ted je v systému Trustport antivirus 2010 a po kompletním skenu zatím nic nenašel. Prozatím děkuji. :)

Re: Prosim kontrolu logu-nefunguje IE x32

Napsal: 27 dub 2010 20:13
od motji
Dobře, zatím není zač :) .
Pro jistotu ten sken ale udělejte, měl jste v pc rootkita.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz