Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Log z RSIT kontrola PC

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Blein
Návštěvník
Návštěvník
Příspěvky: 208
Registrován: 28 srp 2008 11:18

Log z RSIT kontrola PC

#1 Příspěvek od Blein »

Ahoj., po úspěšném opravení sousedového NTB mi donesl ještě starý PC. Je pomalejší než odpovídá výkon i když je ten PC dávno za vodou, mohl by pracovat rychleji. Nevím proč, má na ploše combofix, nevím co s ním zkoušel zatím jsem udělal očistu pomocí CCleaneru a právě pouštím MBAM, log vložím později. Zatím přikládám log z RSIT. Děkuji za případnou analýzu.





Logfile of random's system information tool 1.09 (written by random/random)
Run by Chiko at 2004-01-01 00:15:18
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 16 GB (31%) free of 50 GB
Total RAM: 511 MB (17% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:15:45, on 1.1.2004
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Chiko\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Chiko\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Chiko\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Chiko\Plocha\installspeedfan.exe
C:\Documents and Settings\Chiko\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Chiko\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Chiko\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Chiko\Plocha\RSIT.exe
C:\Program Files\trend micro\Chiko.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://zonedirector.com/1/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://startsear.ch/?aff=1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Ája\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Ája\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKLM\..\Policies\Explorer\Run: [42339] C:\DOCUME~1\ALLUSE~1\LOCALS~1\Temp\mswdbr.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Unibet - {74E91FCB-22A1-4511-AA52-8D9B3DA17122} - C:\Microgaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - D:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
O23 - Service: WD File Management Shadow Engine (WDSC) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe

--
End of file - 7998 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Documents and Settings\Ája\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll [2011-10-12 142288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - D:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-09-16 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2006-01-02 45056]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2013-04-04 532040]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"42339"=C:\DOCUME~1\ALLUSE~1\LOCALS~1\Temp\mswdbr.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Chiko\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2013-02-05 116648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder]
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-03-18 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^GamePark klient 2.lnk]
D:\PROGRA~1\GAMEPA~1\gpcl.exe [2011-07-29 409088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Chiko^Nabídka Start^Programy^Po spuštění^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~1\MICROS~2\Office12\ONENOTEM.EXE [2009-02-26 97680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-05-04 46080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoInstrumentation"=1
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveTrack"=1
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\uTorrent - portable\utorrent.exe"="D:\Program Files\uTorrent - portable\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\MirandaPack\miranda32.exe"="C:\Program Files\MirandaPack\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"D:\Program Files\NHL 09\nhl2009.exe"="D:\Program Files\NHL 09\nhl2009.exe:*:Enabled:nhl2009"
"C:\Program Files\Winamp\winamp.exe"="C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp"
"C:\Documents and Settings\Chiko\P-7-78-8964-9648-3874\windll.exe"=""
"C:\Documents and Settings\Chiko\Data aplikací\R-344233-5553-2-32\winlogon.exe"="C:\Documents and Settings\Chiko\Data aplikací\R-344233-5553-2-32\winlogon.exe:*:Enabled:Windows Primary Login"
"C:\Documents and Settings\Chiko\P-7-78-8964-9648-3874\winpvc.exe"=""
"D:\Program Files\totalcmd\TOTALCMD.EXE"="D:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Documents and Settings\Chiko\M-15-78493-4571-6736\wincvd.exe"="C:\Documents and Settings\Chiko\M-15-78493-4571-6736\wincvd.exe:*:Enabled:Microsoft Windows Updates"
"C:\Documents and Settings\Chiko\M-15-78493-98764571-97667\wincvfd.exe"="C:\Documents and Settings\Chiko\M-15-78493-98764571-97667\wincvfd.exe:*:Enabled:Microsoft Windows Updates"
"C:\Documents and Settings\Ája\Data aplikací\165441262711866.exe"="C:\Documents and Settings\Ája\Data aplikací\165441262711866.exe:*:Enabled:Windows Messanger"
"C:\Documents and Settings\Ája\Data aplikací\professuhnl.exe"="C:\Documents and Settings\Ája\Data aplikací\professuhnl.exe:*:Enabled:Windows Messanger"
"C:\Documents and Settings\Chiko\Data aplikací\167861203023021.exe"="C:\Documents and Settings\Chiko\Data aplikací\167861203023021.exe:*:Enabled:Windows Messanger"
"C:\Documents and Settings\Chiko\Data aplikací\professuhnl.exe"="C:\Documents and Settings\Chiko\Data aplikací\professuhnl.exe:*:Enabled:Windows Messanger"
"C:\Documents and Settings\Chiko\Data aplikací\1101542123391.exe"="C:\Documents and Settings\Chiko\Data aplikací\1101542123391.exe:*:Enabled:Windows Messanger"
"C:\Documents and Settings\Chiko\Data aplikací\191461683815279.exe"="C:\Documents and Settings\Chiko\Data aplikací\191461683815279.exe:*:Enabled:Windows Messanger"
"C:\Documents and Settings\Chiko\Data aplikací\7202761329112.exe"="C:\Documents and Settings\Chiko\Data aplikací\7202761329112.exe:*:Enabled:Windows Messanger"
"C:\Documents and Settings\Chiko\M-10-8754-3862-7956\winmgr.exe"="C:\Documents and Settings\Chiko\M-10-8754-3862-7956\winmgr.exe:*:Enabled:Microsoft Windows Manager"
"D:\Program Files\SopCast\SopCast.exe"="D:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"D:\Program Files\Skype\Phone\Skype.exe"="D:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\wmpsh64.exe"="C:\WINDOWS\system32\wmpsh64.exe:*:Enabled:Windows Media HelpSvc"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=i420vfw.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=l3codecp.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"msacm.ac3filter"=ac3filter.acm
"msacm.lhacm"=lhacm.acm
"SENTINEL"=snti386.dll
"VIDC.FPS1"=frapsvid.dll
"vidc.asv2"=asusasv2.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.yv12"=yv12vfw.dll

======File associations======

.scr - open - C:\WINDOWS\NOTEPAD.EXE "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 3 months======

2013-12-29 22:26:48 ----SHD---- C:\RECYCLER
2013-12-25 13:24:55 ----D---- C:\WINDOWS\temp
2013-12-25 13:24:51 ----A---- C:\ComboFix.txt
2013-10-01 14:43:10 ----D---- C:\Program Files\Skype
2013-03-24 19:52:48 ----A---- C:\WINDOWS\system32\Access.dat
2013-03-24 19:44:56 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Tunngle
2013-03-24 19:44:41 ----A---- C:\WINDOWS\system32\drivers\tap0901t.sys
2013-03-14 20:05:44 ----D---- C:\Program Files\Common Files\Skype
2013-02-24 16:49:08 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Microgaming
2013-02-24 16:42:51 ----D---- C:\Microgaming
2013-02-24 16:42:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\MGS
2013-02-21 20:28:31 ----D---- C:\Documents and Settings\Chiko\Data aplikací\HellShare Upload Manager
2013-02-19 17:05:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\FarmFrenzy3
2013-02-19 16:30:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\FarmFrenzy_Vikings
2013-02-19 16:28:32 ----D---- C:\Downloads
2013-02-05 21:50:07 ----D---- C:\Config.Msi
2013-02-04 22:40:03 ----D---- C:\Documents and Settings\Chiko\Data aplikací\ExpressFiles
2013-01-02 23:07:53 ----A---- C:\WINDOWS\system32\enixo.exe
2013-01-02 20:18:51 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2013-01-02 20:18:51 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2013-01-02 20:18:49 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2013-01-02 20:18:48 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2013-01-02 20:18:47 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2013-01-02 20:18:44 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2013-01-02 20:18:44 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2013-01-02 20:18:43 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2013-01-02 20:17:38 ----A---- C:\WINDOWS\avastSS.scr
2013-01-02 20:17:34 ----A---- C:\WINDOWS\system32\aswBoot.exe
2013-01-02 20:16:02 ----D---- C:\Program Files\AVAST Software
2013-01-02 20:16:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2012-12-29 23:40:20 ----D---- C:\rsit
2012-12-24 21:54:18 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Sony Creative Software
2012-12-24 17:09:31 ----A---- C:\WINDOWS\system32\wvc1dmod.dll
2012-12-24 17:08:34 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2012-11-10 13:24:00 ----D---- C:\Documents and Settings\Chiko\Data aplikací\wargaming.net
2012-10-16 16:53:06 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2012-10-16 16:53:06 ----A---- C:\WINDOWS\system32\i420vfw.dll
2012-10-16 16:53:06 ----A---- C:\WINDOWS\system32\devil.dll
2012-10-16 16:53:06 ----A---- C:\WINDOWS\system32\AVSredirect.dll
2012-10-16 16:53:06 ----A---- C:\WINDOWS\system32\avisynth.dll
2012-10-16 16:47:03 ----A---- C:\WINDOWS\system32\pncrt.dll
2012-10-16 16:47:03 ----A---- C:\WINDOWS\system32\drvc.dll
2012-10-16 16:46:44 ----D---- C:\Documents and Settings\Chiko\Data aplikací\systweak
2012-10-14 12:24:58 ----A---- C:\WINDOWS\system32\ptpusb.dll
2012-10-14 12:24:57 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2012-10-14 12:24:56 ----A---- C:\WINDOWS\system32\ptpusd.dll
2012-10-03 05:18:34 ----A---- C:\WINDOWS\system32\unrar.dll
2012-08-13 15:47:29 ----AH---- C:\Documents and Settings\Chiko\Data aplikací\wincfg32.sys
2012-08-06 19:36:28 ----D---- C:\Documents and Settings\Chiko\Data aplikací\DAEMON Tools Pro
2012-08-06 19:35:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Pro
2012-07-27 17:37:27 ----A---- C:\Documents and Settings\Chiko\Data aplikací\D9293FD.tmp
2012-07-22 11:32:06 ----D---- C:\Documents and Settings\Chiko\Data aplikací\ESET
2012-07-22 11:31:24 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\3058258402029.exe
2012-07-22 09:36:57 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\302001093122903.exe
2012-07-22 09:33:08 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\7202761329112.exe
2012-07-22 09:33:08 ----A---- C:\Documents and Settings\Chiko\Data aplikací\professuhnl.exe
2012-07-12 21:20:38 ----A---- C:\Documents and Settings\Chiko\Data aplikací\regsrv64.exe
2012-07-06 09:28:10 ----A---- C:\WINDOWS\zip.exe
2012-07-06 09:28:10 ----A---- C:\WINDOWS\SWXCACLS.exe
2012-07-06 09:28:10 ----A---- C:\WINDOWS\SWSC.exe
2012-07-06 09:28:10 ----A---- C:\WINDOWS\SWREG.exe
2012-07-06 09:28:10 ----A---- C:\WINDOWS\sed.exe
2012-07-06 09:28:10 ----A---- C:\WINDOWS\PEV.exe
2012-07-06 09:28:10 ----A---- C:\WINDOWS\NIRCMD.exe
2012-07-06 09:28:10 ----A---- C:\WINDOWS\MBR.exe
2012-07-06 09:28:10 ----A---- C:\WINDOWS\grep.exe
2012-07-06 09:23:25 ----AD---- C:\Qoobox
2012-07-05 20:15:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\Western Digital
2012-07-04 14:26:27 ----AH---- C:\Documents and Settings\Chiko\Data aplikací\Linksys.txt
2012-07-04 14:24:02 ----RSHD---- C:\Documents and Settings\Chiko\Data aplikací\R-344233-5553-2-32
2012-07-03 16:09:58 ----A---- C:\Documents and Settings\Chiko\Data aplikací\wingpu64.exe
2012-07-03 16:09:58 ----A---- C:\Documents and Settings\Chiko\Data aplikací\pthreadGC2.dll
2012-07-03 16:09:57 ----A---- C:\Documents and Settings\Chiko\Data aplikací\OpenCL.dll
2012-07-03 16:09:57 ----A---- C:\Documents and Settings\Chiko\Data aplikací\libpdcurses.dll
2012-07-03 16:09:57 ----A---- C:\Documents and Settings\Chiko\Data aplikací\libcurl-4.dll
2012-07-03 16:09:37 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\explorer.exe
2012-06-27 16:21:59 ----AH---- C:\Documents and Settings\Chiko\Data aplikací\msnsvconfig.txt
2012-06-23 16:33:02 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-06-19 21:44:19 ----D---- C:\Documents and Settings\Chiko\Data aplikací\KC Softwares
2012-05-05 10:06:45 ----D---- C:\Documents and Settings\Chiko\Data aplikací\DraftSight
2012-05-01 20:19:20 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-03-12 21:32:54 ----D---- C:\Program Files\Winamp Detect
2012-03-12 21:32:38 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2012-03-12 21:32:38 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2012-03-12 21:32:37 ----N---- C:\WINDOWS\system32\pxwma.dll
2012-03-12 21:32:30 ----D---- C:\Program Files\Winamp
2012-03-12 21:32:30 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Winamp
2012-03-12 21:19:59 ----D---- C:\Program Files\Common Files\Bitdefender
2012-03-03 18:03:47 ----D---- C:\Documents and Settings\Chiko\Data aplikací\LolClient
2012-02-20 17:13:29 ----N---- C:\WINDOWS\SchedLgU.Txt
2011-11-20 23:46:18 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Solveig Multimedia
2011-11-17 13:43:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\FLEXnet
2011-11-17 12:57:55 ----D---- C:\Program Files\Common Files\Macrovision Shared
2011-11-16 21:06:07 ----D---- C:\Program Files\Adobe Media Player
2011-11-16 20:34:22 ----D---- C:\Program Files\Adobe
2011-11-16 20:00:22 ----D---- C:\Program Files\Microsoft Works
2011-11-16 19:59:00 ----D---- C:\Program Files\Microsoft Visual Studio
2011-11-16 19:58:59 ----D---- C:\Program Files\Common Files\DESIGNER
2011-11-16 19:54:14 ----D---- C:\Program Files\Microsoft Visual Studio 8
2011-11-16 19:53:13 ----D---- C:\WINDOWS\SHELLNEW
2011-11-16 19:50:37 ----RD---- C:\MSOCache
2011-11-16 16:21:17 ----D---- C:\Program Files\Ashampoo
2011-10-25 14:57:52 ----D---- C:\Program Files\OSCAR Editor X7
2011-10-25 14:56:42 ----D---- C:\Program Files\OscarX7
2011-10-25 14:53:26 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2011-10-25 14:53:23 ----A---- C:\WINDOWS\system32\hidserv.dll
2011-10-25 14:53:20 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2011-10-25 14:53:08 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2011-10-13 17:36:59 ----A---- C:\WINDOWS\system32\ChCfg.exe
2011-10-13 17:35:51 ----D---- C:\Program Files\Realtek AC97
2011-08-13 19:16:29 ----HD---- C:\WINDOWS\PIF
2011-08-12 16:04:55 ----D---- C:\Documents and Settings\Chiko\Data aplikací\OpenCandy
2011-05-10 21:52:14 ----D---- C:\Documents and Settings\Chiko\Data aplikací\id Software
2011-03-18 17:08:54 ----A---- C:\WINDOWS\system32\speedfan.sys
2011-03-02 16:45:47 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Need for Speed World
2011-02-23 18:13:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2011-02-13 14:45:58 ----D---- C:\Documents and Settings\Chiko\Data aplikací\TS3Client
2011-01-31 23:02:15 ----D---- C:\Documents and Settings\Chiko\Data aplikací\ICQ
2011-01-27 23:06:35 ----D---- C:\Documents and Settings\Chiko\Data aplikací\BSplayer PRO
2011-01-19 09:57:48 ----A---- C:\WINDOWS\system32\bass.dll
2011-01-15 15:28:59 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2011-01-15 15:28:59 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2011-01-15 15:28:58 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2011-01-15 15:28:58 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-01-15 15:28:57 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2011-01-15 15:28:57 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2011-01-15 15:28:56 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-01-15 15:28:56 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2011-01-15 15:28:55 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-01-15 15:28:55 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-01-15 15:28:54 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-01-15 15:28:54 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-01-15 15:26:28 ----D---- C:\Program Files\OpenAL
2011-01-07 08:46:03 ----D---- C:\WINDOWS\system32\AGEIA
2011-01-07 08:46:02 ----D---- C:\Program Files\AGEIA Technologies
2011-01-07 08:45:33 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-01-07 08:22:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2011-01-07 08:22:25 ----D---- C:\Documents and Settings\Chiko\Data aplikací\DAEMON Tools Lite
2011-01-06 10:12:35 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-01-06 10:08:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2010-12-19 23:34:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
2010-12-15 01:48:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\cLgKd05302
2010-12-09 13:24:05 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-10-18 20:21:01 ----A---- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2010-10-18 20:19:19 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2010-10-18 20:17:07 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2010-10-16 12:08:19 ----D---- C:\Documents and Settings\Chiko\Data aplikací\PropMgrAsync
2010-10-16 12:08:19 ----D---- C:\Documents and Settings\Chiko\Data aplikací\PlayerPlug
2010-10-16 12:08:09 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Toolbar4
2010-09-25 12:41:42 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2010-09-24 20:33:19 ----A---- C:\Documents and Settings\Chiko\Data aplikací\PnkBstrK.sys
2010-08-30 14:01:08 ----A---- C:\WINDOWS\system32\GDIPFONTCACHEV1.DAT
2010-08-02 17:37:28 ----A---- C:\WINDOWS\system32\d3d9caps.dat
2010-05-01 20:29:37 ----A---- C:\WINDOWS\system32\wmv8dmod.dll
2010-05-01 20:29:36 ----A---- C:\WINDOWS\system32\mpg4c32.dll
2010-04-25 19:51:01 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Thinstall
2010-04-17 11:40:21 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2010-04-17 11:40:20 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2010-04-17 11:40:19 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2010-04-17 11:40:18 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2010-04-17 11:40:17 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2010-04-17 11:40:17 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2010-04-17 11:40:16 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2010-03-30 18:18:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-03-18 12:16:28 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2010-03-18 12:16:28 ----A---- C:\WINDOWS\system32\evr.dll
2010-03-18 12:16:28 ----A---- C:\WINDOWS\system32\dxva2.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\vcomp100.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\msvcr100.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\msvcp100.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfcm100u.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfcm100.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100u.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100rus.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100kor.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100jpn.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100ita.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100cht.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100chs.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100fra.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100esn.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100enu.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100deu.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\mfc100.dll
2010-03-18 09:15:26 ----A---- C:\WINDOWS\system32\atl100.dll
2010-03-18 09:09:00 ----A---- C:\WINDOWS\system32\PresentationHostProxy.dll
2010-03-18 09:09:00 ----A---- C:\WINDOWS\system32\PresentationHost.exe
2010-03-18 09:09:00 ----A---- C:\WINDOWS\system32\netfxperf.dll
2010-03-18 09:09:00 ----A---- C:\WINDOWS\system32\mscoree.dll
2010-03-11 15:58:44 ----D---- C:\Documents and Settings\Chiko\Data aplikací\HLSW
2010-02-28 21:40:27 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Skype
2010-01-13 15:21:02 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Crayon Physics Deluxe
2010-01-08 20:57:03 ----RSH---- C:\Documents and Settings\All Users\Data aplikací\72BCF3D287.sys
2010-01-08 20:57:03 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Corel
2010-01-08 20:57:02 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
2009-12-28 14:22:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\Boss Media
2009-12-14 20:57:06 ----D---- C:\Documents and Settings\Chiko\Data aplikací\GrabPro
2009-12-14 20:56:28 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Orbit
2009-12-14 20:52:38 ----D---- C:\Documents and Settings\Chiko\Data aplikací\BITS
2009-12-14 20:19:38 ----D---- C:\Documents and Settings\Chiko\Data aplikací\DMCache
2009-12-13 13:06:36 ----D---- C:\Documents and Settings\Chiko\Data aplikací\VitySoft
2009-12-11 12:25:55 ----A---- C:\WINDOWS\nsreg.dat
2009-12-01 15:49:54 ----A---- C:\WINDOWS\system32\drivers\ScreamingBAudio.sys
2009-11-23 17:21:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe Systems
2009-11-23 17:21:03 ----D---- C:\Program Files\Common Files\Adobe Systems Shared
2009-11-11 19:06:20 ----A---- C:\WINDOWS\system32\dfshim.dll
2009-10-14 15:59:05 ----A---- C:\WINDOWS\wcx_ftp.ini
2009-10-14 15:55:53 ----A---- C:\WINDOWS\WINCMD.INI
2009-09-23 23:30:08 ----A---- C:\WINDOWS\system32\mscorier.dll
2009-09-03 20:47:45 ----AH---- C:\Documents and Settings\Chiko\Data aplikací\swk.ini
2009-08-17 23:33:52 ----A---- C:\WINDOWS\system32\FM20.DLL
2009-08-13 13:59:23 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-08-08 13:47:54 ----D---- C:\WINDOWS\SxsCaPendDel
2009-08-03 13:22:35 ----D---- C:\WINDOWS\Sun
2009-08-03 13:19:48 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Sun
2009-07-18 19:49:06 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2009-07-18 19:49:06 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2009-07-18 19:49:06 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2009-07-18 19:49:05 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2009-07-18 19:49:05 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2009-07-18 19:49:04 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2009-07-18 19:49:04 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2009-07-18 19:44:33 ----D---- C:\WINDOWS\system32\XPSViewer
2009-07-18 19:44:24 ----D---- C:\Program Files\Reference Assemblies
2009-06-18 19:36:48 ----A---- C:\WINDOWS\system32\mfc71.dll
2009-06-18 11:44:39 ----D---- C:\Documents and Settings\Chiko\Data aplikací\URSoft
2009-06-17 20:42:20 ----RASHD---- C:\cmdcons
2009-06-17 20:37:46 ----D---- C:\WINDOWS\ERDNT
2009-06-17 20:31:10 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Malwarebytes
2009-06-17 20:31:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2009-06-17 19:06:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2009-06-17 19:06:02 ----D---- C:\Documents and Settings\Chiko\Data aplikací\SUPERAntiSpyware.com
2009-06-17 18:59:27 ----A---- C:\WINDOWS\system32\NEROINSTAEC43759.DB
2009-06-17 14:37:08 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Uniblue
2009-04-28 09:55:06 ----A---- C:\WINDOWS\system32\PhysXLoader.dll
2009-04-07 10:50:26 ----A---- C:\WINDOWS\system32\PhysXCplUI.exe
2009-04-07 10:50:26 ----A---- C:\WINDOWS\system32\PhysXCompatCplUI.exe
2009-03-18 15:47:12 ----D---- C:\WINDOWS\WBEM
2009-03-17 23:03:24 ----D---- C:\f476242afb5ead956495f10a89
2009-03-17 23:03:20 ----HD---- C:\WINDOWS\ie8
2009-03-17 22:42:34 ----D---- C:\WINDOWS\system32\en-US
2009-03-17 22:42:34 ----A---- C:\WINDOWS\system32\ieencode.dll
2009-03-10 13:46:02 ----AC---- C:\WINDOWS\system32\drivers\msdv.sys
2009-03-10 13:45:59 ----AC---- C:\WINDOWS\system32\dxdllreg.exe
2009-03-03 11:08:02 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Leadertech
2009-03-03 09:15:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\Trymedia
2009-02-24 12:22:32 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Apple Computer
2009-02-22 17:43:27 ----D---- C:\Program Files\Common Files\Real
2009-02-22 17:42:50 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Real
2009-02-21 12:51:43 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Disney Interactive Studios
2009-02-20 16:24:23 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2009-02-20 16:24:23 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2009-02-20 16:24:23 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2009-02-20 16:24:22 ----AC---- C:\WINDOWS\system32\XAudio2_3.dll
2009-02-20 16:24:22 ----AC---- C:\WINDOWS\system32\XAPOFX1_2.dll
2009-02-20 16:24:21 ----AC---- C:\WINDOWS\system32\xactengine3_3.dll
2009-02-20 16:24:21 ----AC---- C:\WINDOWS\system32\X3DAudio1_5.dll
2009-02-20 16:24:20 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2009-02-20 16:24:20 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2009-02-20 16:24:20 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2009-02-20 16:24:19 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2009-02-20 16:24:19 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2009-02-20 16:24:18 ----AC---- C:\WINDOWS\system32\XAudio2_1.dll
2009-02-20 16:24:18 ----AC---- C:\WINDOWS\system32\XAPOFX1_0.dll
2009-02-20 16:24:18 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2009-02-20 16:24:17 ----AC---- C:\WINDOWS\system32\xactengine3_1.dll
2009-02-20 16:24:15 ----AC---- C:\WINDOWS\system32\X3DAudio1_4.dll
2009-02-20 16:24:14 ----AC---- C:\WINDOWS\system32\d3dx10_38.dll
2009-02-20 16:24:14 ----AC---- C:\WINDOWS\system32\D3DCompiler_38.dll
2009-02-20 16:24:12 ----AC---- C:\WINDOWS\system32\D3DX9_38.dll
2009-02-20 16:24:10 ----AC---- C:\WINDOWS\system32\XAudio2_0.dll
2009-02-20 16:24:09 ----AC---- C:\WINDOWS\system32\xactengine3_0.dll
2009-02-20 16:24:05 ----AC---- C:\WINDOWS\system32\X3DAudio1_3.dll
2009-02-20 16:24:00 ----AC---- C:\WINDOWS\system32\d3dx10_37.dll
2009-02-20 16:24:00 ----AC---- C:\WINDOWS\system32\D3DCompiler_37.dll
2009-02-20 16:23:55 ----AC---- C:\WINDOWS\system32\D3DX9_37.dll
2009-02-20 16:22:08 ----D---- C:\WINDOWS\Logs
2009-02-19 16:49:04 ----A---- C:\WINDOWS\system32\msvcr70.dll
2009-02-19 16:49:02 ----A---- C:\WINDOWS\system32\CDDBUI.dll
2009-02-19 16:49:02 ----A---- C:\WINDOWS\system32\CddbLangNL.dll
2009-02-19 16:49:02 ----A---- C:\WINDOWS\system32\CddbLangJA.dll
2009-02-19 16:49:02 ----A---- C:\WINDOWS\system32\CddbLangIT.dll
2009-02-19 16:49:02 ----A---- C:\WINDOWS\system32\CddbLangFR.dll
2009-02-19 16:49:02 ----A---- C:\WINDOWS\system32\CddbLangES.dll
2009-02-19 16:49:02 ----A---- C:\WINDOWS\system32\CddbLangDE.dll
2009-02-19 16:49:02 ----A---- C:\WINDOWS\system32\CDDBControl.dll
2009-02-15 00:41:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
2009-02-15 00:40:29 ----SHD---- C:\Documents and Settings\All Users\Data aplikací\{55A29068-F2CE-456C-9148-C869879E2357}
2009-02-14 22:33:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Symantec
2009-02-14 21:41:05 ----AHC---- C:\WINDOWS\winshell.dat
2009-02-02 18:51:49 ----D---- C:\Program Files\Microsoft.NET
2009-02-01 19:09:24 ----AC---- C:\WINDOWS\system32\msonpmon.dll
2009-02-01 18:50:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2009-01-29 14:53:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\FarmFrenzy2
2009-01-29 14:46:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\AlawarWrapper
2009-01-27 20:17:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2009-01-25 22:19:38 ----AC---- C:\WINDOWS\system32\OcSlider.dll
2009-01-15 15:44:48 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Ventrilo
2009-01-15 02:03:18 ----AC---- C:\WINDOWS\system32\ieudinit.exe
2008-12-18 17:30:45 ----D---- C:\Program Files\Common Files\INCA Shared
2008-12-18 17:30:23 ----AC---- C:\WINDOWS\system32\npptNT2.sys
2008-12-14 00:59:32 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Publish Providers
2008-12-14 00:45:20 ----C---- C:\WINDOWS\system32\dbmsqlgc.dll
2008-12-14 00:45:20 ----C---- C:\WINDOWS\system32\dbmsgnet.dll
2008-12-14 00:45:15 ----A---- C:\WINDOWS\IsUninst.exe
2008-12-14 00:44:09 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Sony
2008-12-10 15:41:20 ----AC---- C:\WINDOWS\system32\atiicdxx.dat
2008-12-10 15:38:43 ----RD---- C:\Program Files\ATI Technologies
2008-12-07 17:37:13 ----AC---- C:\WINDOWS\uninst.exe
2008-12-04 09:28:20 ----A---- C:\WINDOWS\system32\PhysXDevice.dll
2008-12-03 14:31:22 ----HC---- C:\WINDOWS\system32\swk.ini
2008-11-11 17:56:15 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Allstar
2008-10-29 15:03:19 ----AC---- C:\WINDOWS\mauninst.exe
2008-10-29 10:50:51 ----A---- C:\WINDOWS\system32\muweb.dll
2008-10-29 10:50:51 ----A---- C:\WINDOWS\system32\mucltui.dll
2008-10-20 20:15:13 ----D---- C:\WINDOWS\Downloaded Installations
2008-10-16 18:34:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2008-10-16 18:34:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2008-10-16 15:09:57 ----D---- C:\Documents and Settings\Chiko\Data aplikací\sldIM
2008-10-16 15:07:32 ----D---- C:\Documents and Settings\Chiko\Data aplikací\DassaultSystemes
2008-10-16 15:07:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\DassaultSystemes
2008-10-16 15:00:37 ----D---- C:\Documents and Settings\Chiko\Data aplikací\SolidWorksNewsReader
2008-10-16 14:56:30 ----D---- C:\Documents and Settings\Chiko\Data aplikací\SolidWorks
2008-10-16 14:55:00 ----D---- C:\Documents and Settings\Chiko\Data aplikací\DWGeditor
2008-10-16 14:53:45 ----AC---- C:\WINDOWS\eDrawingOfficeAutomator.INI
2008-10-16 14:53:07 ----AC---- C:\WINDOWS\system32\drivers\hardlock.sys
2008-10-16 14:48:55 ----D---- C:\WINDOWS\system32\GroupPolicy
2008-10-16 14:46:48 ----D---- C:\Program Files\Common Files\SolidWorks Shared
2008-10-15 20:33:17 ----AC---- C:\WINDOWS\system32\OcComm.dll
2008-10-13 13:55:22 ----AC---- C:\WINDOWS\system32\normaliz.dll
2008-10-13 13:55:22 ----AC---- C:\WINDOWS\system32\nlsdl.dll
2008-10-13 13:55:22 ----AC---- C:\WINDOWS\system32\idndl.dll
2008-10-10 12:42:06 ----AC---- C:\WINDOWS\system32\msdbg2.dll
2008-10-07 09:13:30 ----A---- C:\WINDOWS\system32\physxcudart_20.dll
2008-10-07 09:13:22 ----A---- C:\WINDOWS\system32\AgCPanelTraditionalChinese.dll
2008-10-07 09:13:20 ----A---- C:\WINDOWS\system32\AgCPanelSwedish.dll
2008-10-07 09:13:20 ----A---- C:\WINDOWS\system32\AgCPanelSpanish.dll
2008-10-07 09:13:20 ----A---- C:\WINDOWS\system32\AgCPanelSimplifiedChinese.dll
2008-10-07 09:13:20 ----A---- C:\WINDOWS\system32\AgCPanelPortugese.dll
2008-10-07 09:13:20 ----A---- C:\WINDOWS\system32\AgCPanelKorean.dll
2008-10-07 09:13:20 ----A---- C:\WINDOWS\system32\AgCPanelJapanese.dll
2008-10-07 09:13:20 ----A---- C:\WINDOWS\system32\AgCPanelGerman.dll
2008-10-07 09:13:20 ----A---- C:\WINDOWS\system32\AgCPanelFrench.dll
2008-09-30 16:43:34 ----AC---- C:\WINDOWS\system32\msxml4.dll
2008-09-24 18:04:08 ----AC---- C:\WINDOWS\PowerReg.dat
2008-09-23 15:54:56 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Help
2008-09-19 15:22:36 ----D---- C:\Program Files\Common Files\DirectX
2008-09-19 15:22:17 ----D---- C:\Documents and Settings\Chiko\Data aplikací\THQ
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\vxblock.dll
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\pxwave.dll
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\pxsfs.dll
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\pxmas.dll
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\pxinsa64.exe
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\pxhpinst.exe
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\pxdrv.dll
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\pxcpya64.exe
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\pxafs.dll
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\px.dll
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\drivers\PxHelp20.sys
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\drivers\cdralw2k.sys
2008-09-15 20:40:40 ----C---- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2008-09-09 21:33:51 ----C---- C:\WINDOWS\system32\SNTI386.DLL
2008-09-09 21:33:51 ----AC---- C:\WINDOWS\system32\RNBOVDD.DLL
2008-09-09 21:33:51 ----AC---- C:\WINDOWS\system32\drivers\SENTINEL.SYS
2008-09-09 21:33:12 ----AC---- C:\WINDOWS\MTSTACK.INI
2008-09-09 21:33:10 ----A---- C:\WINDOWS\system32\ADIMON.DLL
2008-09-09 21:33:07 ----AC---- C:\WINDOWS\system32\REGACAD.DLL
2008-09-07 14:47:06 ----AC---- C:\WINDOWS\system32\dxtmeta2.dll
2008-09-05 17:58:00 ----D---- C:\Documents and Settings\Chiko\Data aplikací\temp
2008-08-30 17:13:15 ----D---- C:\WINDOWS\Prefetch
2008-08-30 16:33:11 ----D---- C:\WINDOWS\system32\cs-cz
2008-08-30 16:32:59 ----D---- C:\WINDOWS\l2schemas
2008-08-30 16:32:56 ----D---- C:\WINDOWS\system32\cs
2008-08-30 16:32:53 ----D---- C:\WINDOWS\system32\bits
2008-08-30 16:22:28 ----D---- C:\WINDOWS\ServicePackFiles
2008-08-30 16:13:30 ----D---- C:\WINDOWS\network diagnostic
2008-08-30 16:01:55 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-08-30 16:01:44 ----D---- C:\WINDOWS\EHome
2008-08-27 13:24:28 ----C---- C:\WINDOWS\system32\drivers\watv10nt.sys
2008-08-27 13:24:28 ----C---- C:\WINDOWS\system32\drivers\watv06nt.sys
2008-08-27 13:24:28 ----C---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2008-08-27 13:24:28 ----C---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2008-08-27 13:24:28 ----C---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2008-08-27 13:24:28 ----C---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2008-08-27 13:24:23 ----C---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2008-08-27 13:24:23 ----C---- C:\WINDOWS\system32\drivers\slnthal.sys
2008-08-27 13:24:23 ----C---- C:\WINDOWS\system32\drivers\slntamr.sys
2008-08-27 13:24:22 ----C---- C:\WINDOWS\system32\drivers\slnt7554.sys
2008-08-27 13:24:22 ----C---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2008-08-27 13:24:22 ----C---- C:\WINDOWS\system32\drivers\recagent.sys
2008-08-27 13:24:20 ----C---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2008-08-27 13:24:20 ----C---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2008-08-27 13:24:19 ----C---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2008-08-27 13:24:19 ----C---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2008-08-27 13:24:19 ----C---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2008-08-27 13:24:17 ----C---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2008-08-27 13:24:11 ----C---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2008-08-27 13:24:10 ----C---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2008-08-27 13:24:10 ----C---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atintuxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atinttxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atinraxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2008-08-27 13:22:37 ----C---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2008-08-27 13:22:36 ----C---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2008-08-27 13:22:36 ----C---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2008-08-27 13:22:36 ----C---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2008-08-27 13:22:36 ----C---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2008-08-27 13:22:36 ----C---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2008-08-27 13:22:36 ----C---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2008-08-27 13:22:36 ----C---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2008-08-27 13:22:36 ----C---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2008-08-18 10:47:32 ----D---- C:\Program Files\CCleaner
2008-08-14 07:57:42 ----A---- C:\WINDOWS\system32\drivers\adfs.sys
2008-08-08 15:12:24 ----AC---- C:\WINDOWS\system32\WNASPINT.DLL
2008-08-04 16:05:55 ----AC---- C:\WINDOWS\mozver.dat
2008-08-04 15:54:28 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Mozilla
2008-08-04 08:40:44 ----D---- C:\WINDOWS\system32\drivers\UMDF
2008-08-02 18:16:18 ----AC---- C:\WINDOWS\eReg.dat
2008-07-31 10:16:54 ----A---- C:\WINDOWS\system32\msjava.dll
2008-07-29 18:59:58 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2008-07-29 18:59:58 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2008-07-29 18:24:50 ----A---- C:\WINDOWS\system32\infocardapi.dll
2008-07-29 18:24:50 ----A---- C:\WINDOWS\system32\icardres.dll
2008-07-29 18:24:50 ----A---- C:\WINDOWS\system32\icardagt.exe
2008-07-28 21:57:34 ----D---- C:\WINDOWS\system32\LogFiles
2008-07-25 19:51:43 ----D---- C:\Program Files\Common Files\Borland Shared
2008-07-25 10:16:58 ----A---- C:\WINDOWS\system32\mscories.dll
2008-07-24 16:43:27 ----SHD---- C:\WINDOWS\ftpcache
2008-07-19 13:26:08 ----AC---- C:\WINDOWS\TrnWord.dll
2008-07-19 13:26:07 ----AC---- C:\WINDOWS\TrnOutl.dll
2008-07-19 13:22:47 ----AC---- C:\WINDOWS\WTRDCTM.INI
2008-07-19 13:19:55 ----AC---- C:\WINDOWS\UN32P.INI
2008-07-19 13:19:55 ----AC---- C:\WINDOWS\UN32.EXE
2008-07-16 14:49:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files
2008-07-16 10:34:57 ----AC---- C:\WINDOWS\NeroDigital.ini
2008-07-15 20:42:54 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Nero
2008-07-15 20:37:43 ----D---- C:\Program Files\Common Files\Nero
2008-07-15 20:37:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2008-07-12 17:20:01 ----AC---- C:\WINDOWS\system32\xactengine2_10.dll
2008-07-12 17:19:59 ----AC---- C:\WINDOWS\system32\d3dx9_36.dll
2008-07-12 17:19:59 ----AC---- C:\WINDOWS\system32\d3dx10_36.dll
2008-07-12 17:19:59 ----AC---- C:\WINDOWS\system32\D3DCompiler_36.dll
2008-07-12 17:19:57 ----AC---- C:\WINDOWS\system32\xactengine2_9.dll
2008-07-12 17:19:57 ----AC---- C:\WINDOWS\system32\d3dx10_35.dll
2008-07-12 17:19:57 ----AC---- C:\WINDOWS\system32\D3DCompiler_35.dll
2008-07-12 17:19:56 ----AC---- C:\WINDOWS\system32\d3dx9_35.dll
2008-07-12 10:32:58 ----D---- C:\WINDOWS\Minidump
2008-07-07 14:23:01 ----D---- C:\Documents and Settings\Chiko\Data aplikací\DAEMON Tools
2008-07-02 14:48:19 ----D---- C:\Documents and Settings\Chiko\Data aplikací\DivX
2008-06-26 14:35:42 ----AC---- C:\WINDOWS\system32\xactengine2_8.dll
2008-06-26 14:35:42 ----AC---- C:\WINDOWS\system32\X3DAudio1_2.dll
2008-06-26 14:35:42 ----AC---- C:\WINDOWS\system32\d3dx10_34.dll
2008-06-26 14:35:42 ----AC---- C:\WINDOWS\system32\D3DCompiler_34.dll
2008-06-26 14:35:41 ----AC---- C:\WINDOWS\system32\d3dx9_34.dll
2008-06-26 14:35:40 ----AC---- C:\WINDOWS\system32\xinput1_3.dll
2008-06-26 14:35:40 ----AC---- C:\WINDOWS\system32\xactengine2_7.dll
2008-06-26 14:35:39 ----AC---- C:\WINDOWS\system32\d3dx10_33.dll
2008-06-26 14:35:39 ----AC---- C:\WINDOWS\system32\D3DCompiler_33.dll
2008-06-26 14:35:37 ----AC---- C:\WINDOWS\system32\xactengine2_6.dll
2008-06-26 14:35:37 ----AC---- C:\WINDOWS\system32\xactengine2_5.dll
2008-06-26 14:35:37 ----AC---- C:\WINDOWS\system32\d3dx9_33.dll
2008-06-26 14:35:36 ----AC---- C:\WINDOWS\system32\xactengine2_4.dll
2008-06-26 14:35:36 ----AC---- C:\WINDOWS\system32\xactengine2_3.dll
2008-06-26 14:35:36 ----AC---- C:\WINDOWS\system32\x3daudio1_1.dll
2008-06-26 14:35:36 ----AC---- C:\WINDOWS\system32\d3dx9_32.dll
2008-06-26 14:35:36 ----AC---- C:\WINDOWS\system32\d3dx9_31.dll
2008-06-26 14:35:35 ----AC---- C:\WINDOWS\system32\xinput1_2.dll
2008-06-26 14:35:35 ----AC---- C:\WINDOWS\system32\xinput1_1.dll
2008-06-26 14:35:35 ----AC---- C:\WINDOWS\system32\xactengine2_2.dll
2008-06-26 14:35:35 ----AC---- C:\WINDOWS\system32\xactengine2_1.dll
2008-06-26 14:35:29 ----AC---- C:\WINDOWS\system32\xactengine2_0.dll
2008-06-26 14:35:29 ----AC---- C:\WINDOWS\system32\x3daudio1_0.dll
2008-06-26 14:35:29 ----AC---- C:\WINDOWS\system32\d3dx9_30.dll
2008-06-26 14:35:28 ----AC---- C:\WINDOWS\system32\xinput9_1_0.dll
2008-06-26 14:35:28 ----AC---- C:\WINDOWS\system32\d3dx9_29.dll
2008-06-26 14:35:28 ----AC---- C:\WINDOWS\system32\d3dx9_28.dll
2008-06-26 14:35:27 ----AC---- C:\WINDOWS\system32\d3dx9_27.dll
2008-06-26 14:35:27 ----AC---- C:\WINDOWS\system32\d3dx9_26.dll
2008-06-26 14:35:26 ----AC---- C:\WINDOWS\system32\d3dx9_24.dll
2008-06-26 14:27:59 ----RD---- C:\Program Files\Alcohol Soft
2008-06-26 14:23:51 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2008-06-16 14:12:45 ----AC---- C:\WINDOWS\mafosav.INI
2008-06-11 09:00:20 ----C---- C:\WINDOWS\system32\drivers\bthport.sys
2008-06-08 22:41:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2008-05-24 10:55:00 ----AC---- C:\WINDOWS\system32\pthreadGC2.dll
2008-05-23 14:39:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2008-05-21 15:48:06 ----D---- C:\Program Files\MirandaPack
2008-05-19 22:33:41 ----D---- C:\Program Files\Common Files\CyberLink
2008-05-19 22:32:24 ----A---- C:\WINDOWS\system32\msxml3a.dll
2008-05-19 21:15:32 ----AC---- C:\WINDOWS\popcinfo.dat
2008-05-19 21:06:35 ----D---- C:\Program Files\Common Files\Oberon Media
2008-05-19 21:02:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\PopCap
2008-05-19 18:57:46 ----RD---- C:\Program Files\WinRAR
2008-05-19 17:38:41 ----D---- C:\Documents and Settings\Chiko\Data aplikací\TuneUp Software
2008-05-19 15:07:25 ----AH---- C:\WINDOWS\system32\drivers\hamachi.sys
2008-05-18 11:18:19 ----D---- C:\Documents and Settings\Chiko\Data aplikací\CyberLink
2008-05-18 11:04:01 ----C---- C:\WINDOWS\system32\drivers\pfc.sys
2008-05-18 10:59:34 ----AC---- C:\WINDOWS\system32\msxml4r.dll
2008-05-18 10:59:34 ----AC---- C:\WINDOWS\system32\msxml4a.dll
2008-05-18 10:59:34 ----AC---- C:\WINDOWS\system32\gdiplus.dll
2008-05-18 10:59:34 ----AC---- C:\WINDOWS\system32\_psisdecd.dll
2008-05-18 10:59:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\CyberLink
2008-05-18 10:57:06 ----AC---- C:\WINDOWS\system32\drivers\mpe.sys
2008-05-18 10:56:51 ----AC---- C:\WINDOWS\system32\drivers\mstee.sys
2008-05-18 10:56:39 ----AC---- C:\WINDOWS\system32\drivers\ndisip.sys
2008-05-18 10:56:31 ----AC---- C:\WINDOWS\system32\drivers\streamip.sys
2008-05-18 10:56:23 ----AC---- C:\WINDOWS\system32\drivers\slip.sys
2008-05-18 10:56:15 ----AC---- C:\WINDOWS\system32\drivers\wstcodec.sys
2008-05-18 10:56:06 ----AC---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2008-05-18 10:55:57 ----AC---- C:\WINDOWS\system32\drivers\ccdecode.sys
2008-05-18 10:55:41 ----RAC---- C:\WINDOWS\system32\34CoInstaller.dll
2008-05-18 10:55:38 ----RAC---- C:\WINDOWS\system32\drivers\3xHybrid.sys
2008-05-18 10:55:30 ----AC---- C:\WINDOWS\system32\vfwwdm32.dll
2008-05-18 10:55:30 ----AC---- C:\WINDOWS\system32\PsisDecd.dll
2008-05-18 10:55:29 ----AC---- C:\WINDOWS\system32\drivers\BdaSup.sys
2008-05-17 22:33:34 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2008-05-17 22:33:15 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Password Generator Professional
2008-05-17 21:21:52 ----D---- C:\Documents and Settings\Chiko\Data aplikací\funkitron
2008-05-17 20:40:38 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Ashampoo
2008-05-17 20:39:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\ashampoo
2008-05-16 20:05:16 ----D---- C:\Documents and Settings\Chiko\Data aplikací\WinRAR
2008-05-12 13:16:56 ----AC---- C:\WINDOWS\system32\CmdLineExt.dll
2008-05-11 22:42:05 ----RAC---- C:\WINDOWS\PlaySnd.INI
2008-05-11 22:42:05 ----RAC---- C:\WINDOWS\fwupgrade.ini
2008-05-11 22:42:05 ----RAC---- C:\WINDOWS\Disktool.INI
2008-05-10 13:41:10 ----AC---- C:\WINDOWS\system32\MRT.exe
2008-05-09 15:17:59 ----D---- C:\WINDOWS\system32\PreInstall
2008-05-09 15:17:58 ----AC---- C:\WINDOWS\system32\spupdsvc.exe
2008-05-09 14:55:22 ----AC---- C:\WINDOWS\system32\wpa.bak
2008-05-09 14:38:40 ----AC---- C:\WINDOWS\ODBC.INI
2008-05-09 14:38:34 ----A---- C:\WINDOWS\system32\mdimon.dll
2008-05-09 14:36:09 ----RD---- C:\Program Files\Microsoft Office
2008-05-09 14:23:23 ----AC---- C:\WINDOWS\system32\drivers\usbstor.sys
2008-05-09 14:18:56 ----RAC---- C:\WINDOWS\apptune1020.exe
2008-05-09 14:18:53 ----A---- C:\WINDOWS\system32\ZTAG32.DLL
2008-05-09 14:18:53 ----A---- C:\WINDOWS\system32\ZSPOOL.DLL
2008-05-09 14:18:53 ----A---- C:\WINDOWS\system32\zlm.dll
2008-05-09 14:18:53 ----A---- C:\WINDOWS\system32\ZLhp1020.dll
2008-05-09 14:18:53 ----A---- C:\WINDOWS\system32\IMF32.DLL
2008-05-09 14:18:52 ----RAC---- C:\WINDOWS\system32\vshp1020.dll
2008-05-09 14:18:52 ----AC---- C:\WINDOWS\system32\zshp1020.exe
2008-05-09 14:18:51 ----RD---- C:\Program Files\Hewlett-Packard
2008-05-09 14:18:50 ----HD---- C:\Program Files\Zenographics
2008-05-09 14:16:54 ----AC---- C:\WINDOWS\system32\drivers\usbprint.sys
2008-05-09 14:08:18 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2008-05-09 10:15:24 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Vso
2008-05-09 10:15:24 ----AC---- C:\WINDOWS\system32\drivers\pcouffin.sys
2008-05-09 10:15:24 ----AC---- C:\Documents and Settings\Chiko\Data aplikací\pcouffin.sys
2008-05-09 10:15:24 ----AC---- C:\Documents and Settings\Chiko\Data aplikací\inst.exe
2008-05-08 19:59:01 ----HD---- C:\WINDOWS\$hf_mig$
2008-05-08 19:24:33 ----D---- C:\Documents and Settings\Chiko\Data aplikací\ATI
2008-05-08 19:13:46 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-05-08 19:08:37 ----RSD---- C:\WINDOWS\assembly
2008-05-08 19:07:59 ----D---- C:\WINDOWS\Microsoft.NET
2008-05-08 18:52:09 ----AHC---- C:\WINDOWS\system32\ezsidmv.dat
2008-05-08 18:52:08 ----D---- C:\Documents and Settings\Chiko\Data aplikací\skypePM
2008-05-08 18:51:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2008-05-08 18:06:34 ----C---- C:\WINDOWS\system32\ati2sgag.exe
2008-05-08 18:06:27 ----RAC---- C:\WINDOWS\system32\atiiiexx.dll
2008-05-08 18:03:58 ----D---- C:\WINDOWS\RegisteredPackages
2008-05-08 15:04:51 ----AC---- C:\WINDOWS\system32\h323log.txt
2008-05-08 15:03:19 ----AC---- C:\WINDOWS\system32\drivers\audstub.sys
2008-05-08 15:02:52 ----AC---- C:\WINDOWS\system32\drivers\redbook.sys
2008-05-08 15:02:30 ----AC---- C:\WINDOWS\system32\drivers\gameenum.sys
2008-05-08 15:02:18 ----AC---- C:\WINDOWS\system32\usbui.dll
2008-05-08 15:01:23 ----SHD---- C:\WINDOWS\Installer
2008-05-08 15:01:23 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-05-08 15:01:22 ----D---- C:\Program Files\Common Files\ODBC
2008-05-08 15:01:22 ----AC---- C:\WINDOWS\ODBCINST.INI
2008-05-08 15:01:19 ----D---- C:\Program Files\Common Files\SpeechEngines
2008-05-08 15:01:18 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-05-08 15:01:18 ----D---- C:\Program Files\Common Files
2008-05-08 15:01:18 ----D---- C:\Program Files
2008-05-08 15:01:15 ----RAC---- C:\WINDOWS\system32\kbdtuq.dll
2008-05-08 15:01:15 ----RAC---- C:\WINDOWS\system32\kbdtuf.dll
2008-05-08 15:01:15 ----RAC---- C:\WINDOWS\system32\kbdazel.dll
2008-05-08 15:01:13 ----RAC---- C:\WINDOWS\system32\kbdtat.dll
2008-05-08 15:01:13 ----RAC---- C:\WINDOWS\system32\kbdmon.dll
2008-05-08 15:01:13 ----RAC---- C:\WINDOWS\system32\kbdkyr.dll
2008-05-08 15:01:12 ----RAC---- C:\WINDOWS\system32\kbdycc.dll
2008-05-08 15:01:12 ----RAC---- C:\WINDOWS\system32\kbduzb.dll
2008-05-08 15:01:12 ----RAC---- C:\WINDOWS\system32\kbdur.dll
2008-05-08 15:01:12 ----RAC---- C:\WINDOWS\system32\kbdru1.dll
2008-05-08 15:01:12 ----RAC---- C:\WINDOWS\system32\kbdru.dll
2008-05-08 15:01:12 ----RAC---- C:\WINDOWS\system32\kbdkaz.dll
2008-05-08 15:01:12 ----RAC---- C:\WINDOWS\system32\kbdbu.dll
2008-05-08 15:01:12 ----RAC---- C:\WINDOWS\system32\kbdblr.dll
2008-05-08 15:01:12 ----RAC---- C:\WINDOWS\system32\kbdaze.dll
2008-05-08 15:01:10 ----RAC---- C:\WINDOWS\system32\kbdhept.dll
2008-05-08 15:01:10 ----RAC---- C:\WINDOWS\system32\kbdhela3.dll
2008-05-08 15:01:10 ----RAC---- C:\WINDOWS\system32\kbdhela2.dll
2008-05-08 15:01:10 ----RAC---- C:\WINDOWS\system32\kbdhe319.dll
2008-05-08 15:01:10 ----RAC---- C:\WINDOWS\system32\kbdhe220.dll
2008-05-08 15:01:10 ----RAC---- C:\WINDOWS\system32\kbdgkl.dll
2008-05-08 15:01:09 ----RAC---- C:\WINDOWS\system32\kbdhe.dll
2008-05-08 15:01:08 ----RAC---- C:\WINDOWS\system32\kbdlv1.dll
2008-05-08 15:01:08 ----RAC---- C:\WINDOWS\system32\kbdlv.dll
2008-05-08 15:01:08 ----RAC---- C:\WINDOWS\system32\kbdlt1.dll
2008-05-08 15:01:08 ----RAC---- C:\WINDOWS\system32\kbdlt.dll
2008-05-08 15:01:08 ----RAC---- C:\WINDOWS\system32\kbdest.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\kbdycl.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\kbdsl1.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\kbdsl.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\kbdro.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\kbdpl1.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\kbdpl.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\kbdhu1.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\kbdhu.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\kbdcr.dll
2008-05-08 15:01:03 ----AC---- C:\WINDOWS\system32\KBDAL.DLL
2008-05-08 15:01:02 ----AC---- C:\WINDOWS\system32\irclass.dll
2008-05-08 15:01:02 ----AC---- C:\WINDOWS\system32\dgsetup.dll
2008-05-08 15:01:02 ----AC---- C:\WINDOWS\system32\dgrpsetu.dll
2008-05-08 15:01:01 ----AC---- C:\WINDOWS\system32\spxcoins.dll
2008-05-08 15:01:01 ----AC---- C:\WINDOWS\system32\EqnClass.Dll
2008-05-08 15:00:59 ----AC---- C:\WINDOWS\TASKMAN.EXE
2008-05-08 15:00:58 ----AC---- C:\WINDOWS\system32\drivers\irenum.sys
2008-05-08 15:00:58 ----AC---- C:\WINDOWS\system32\batt.dll
2008-05-08 15:00:58 ----AC---- C:\WINDOWS\notepad.exe
2008-05-08 15:00:57 ----AC---- C:\WINDOWS\system32\storprop.dll
2008-05-08 15:00:49 ----ASHC---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2008-05-08 15:00:36 ----D---- C:\WINDOWS\system32\CatRoot2
2008-05-08 15:00:36 ----D---- C:\WINDOWS\system32\CatRoot
2008-05-08 15:00:30 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2008-05-08 15:00:07 ----D---- C:\Documents and Settings
2008-05-08 14:59:28 ----RASH---- C:\boot.ini
2008-05-08 14:54:08 ----SHD---- C:\System Volume Information
2008-05-08 14:52:27 ----SHD---- C:\WINDOWS\system32
2008-05-08 14:52:27 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-05-08 14:52:27 ----RSD---- C:\WINDOWS\Fonts
2008-05-08 14:52:27 ----RD---- C:\WINDOWS\Web
2008-05-08 14:52:27 ----HD---- C:\WINDOWS\inf
2008-05-08 14:52:27 ----D---- C:\WINDOWS\WinSxS
2008-05-08 14:52:27 ----D---- C:\WINDOWS\twain_32
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\wins
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\wbem
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\usmt
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\spool
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\ShellExt
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\Setup
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\ras
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\oobe
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\npp
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\mui
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\inetsrv
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\IME
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\icsxml
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\ias
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\export
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\drivers\etc
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\drivers\disdn
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\drivers
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\dhcp
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\config
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\3com_dmi
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\3076
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\2052
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\1054
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\1042
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\1041
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\1037
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\1033
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\1031
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\1029
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\1028
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system32\1025
2008-05-08 14:52:27 ----D---- C:\WINDOWS\system
2008-05-08 14:52:27 ----D---- C:\WINDOWS\security
2008-05-08 14:52:27 ----D---- C:\WINDOWS\Resources
2008-05-08 14:52:27 ----D---- C:\WINDOWS\repair
2008-05-08 14:52:27 ----D---- C:\WINDOWS\Provisioning
2008-05-08 14:52:27 ----D---- C:\WINDOWS\pchealth
2008-05-08 14:52:27 ----D---- C:\WINDOWS\PeerNet
2008-05-08 14:52:27 ----D---- C:\WINDOWS\mui
2008-05-08 14:52:27 ----D---- C:\WINDOWS\msapps
2008-05-08 14:52:27 ----D---- C:\WINDOWS\msagent
2008-05-08 14:52:27 ----D---- C:\WINDOWS\Media
2008-05-08 14:52:27 ----D---- C:\WINDOWS\java
2008-05-08 14:52:27 ----D---- C:\WINDOWS\ime
2008-05-08 14:52:27 ----D---- C:\WINDOWS\Help
2008-05-08 14:52:27 ----D---- C:\WINDOWS\Driver Cache
2008-05-08 14:52:27 ----D---- C:\WINDOWS\Debug
2008-05-08 14:52:27 ----D---- C:\WINDOWS\Cursors
2008-05-08 14:52:27 ----D---- C:\WINDOWS\Connection Wizard
2008-05-08 14:52:27 ----D---- C:\WINDOWS\Config
2008-05-08 14:52:27 ----D---- C:\WINDOWS\AppPatch
2008-05-08 14:52:27 ----D---- C:\WINDOWS\addins
2008-05-08 14:52:27 ----D---- C:\WINDOWS
2008-05-08 14:52:27 ----ASH---- C:\pagefile.sys
2008-05-08 14:00:15 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Macromedia
2008-05-08 14:00:14 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Adobe
2008-05-08 13:55:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2008-05-08 13:54:28 ----A---- C:\WINDOWS\system32\msvcr71.dll
2008-05-08 13:54:28 ----A---- C:\WINDOWS\system32\msvcp71.dll
2008-05-08 13:54:23 ----D---- C:\WINDOWS\system32\Adobe
2008-05-08 13:51:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2008-05-08 13:51:36 ----D---- C:\Program Files\Common Files\Adobe
2008-05-08 13:44:33 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Opera
2008-05-08 13:39:49 ----AC---- C:\WINDOWS\system32\nvuenet.exe
2008-05-08 13:39:45 ----RAC---- C:\WINDOWS\system32\NVCOE.DLL
2008-05-08 13:39:45 ----RAC---- C:\WINDOWS\system32\drivers\NVENET.sys
2008-05-08 13:19:58 ----AC---- C:\WINDOWS\system32\drivers\splitter.sys
2008-05-08 13:19:57 ----AC---- C:\WINDOWS\system32\drivers\wdmaud.sys
2008-05-08 13:19:55 ----AC---- C:\WINDOWS\system32\drivers\dmusic.sys
2008-05-08 13:19:50 ----AC---- C:\WINDOWS\system32\drivers\swmidi.sys
2008-05-08 13:19:49 ----AC---- C:\WINDOWS\system32\drivers\aec.sys
2008-05-08 13:19:48 ----AC---- C:\WINDOWS\system32\drivers\kmixer.sys
2008-05-08 13:19:47 ----AC---- C:\WINDOWS\system32\drivers\drmkaud.sys
2008-05-08 13:19:46 ----AC---- C:\WINDOWS\system32\drivers\sysaudio.sys
2008-05-08 13:19:44 ----AC---- C:\WINDOWS\system32\drivers\mskssrv.sys
2008-05-08 13:19:43 ----AC---- C:\WINDOWS\system32\drivers\mspqm.sys
2008-05-08 13:19:41 ----AC---- C:\WINDOWS\system32\drivers\mspclock.sys
2008-05-08 13:19:36 ----A---- C:\WINDOWS\system32\ksuser.dll
2008-05-08 13:19:36 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2008-05-08 13:19:36 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2008-05-08 13:19:30 ----AC---- C:\WINDOWS\system32\Audio3D.dll
2008-05-08 13:19:30 ----AC---- C:\WINDOWS\system32\a3d.dll
2008-05-08 13:19:29 ----RA---- C:\WINDOWS\system32\drivers\alcxwdm.sys
2008-05-08 13:19:29 ----AC---- C:\WINDOWS\system32\drivers\ALCXSENS.SYS
2008-05-08 13:19:29 ----A---- C:\WINDOWS\system32\RtlCPAPI.dll
2008-05-08 13:19:29 ----A---- C:\WINDOWS\soundman.exe
2008-05-08 13:19:28 ----A---- C:\WINDOWS\system32\RTLCPL.exe
2008-05-08 13:19:25 ----HD---- C:\Program Files\InstallShield Installation Information
2008-05-08 13:19:25 ----A---- C:\WINDOWS\alcupd.exe
2008-05-08 13:19:25 ----A---- C:\WINDOWS\Alcrmv.exe
2008-05-08 13:19:20 ----D---- C:\Program Files\Common Files\InstallShield
2008-05-08 13:15:34 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Identities
2008-05-08 13:15:27 ----ASHC---- C:\Documents and Settings\Chiko\Data aplikací\desktop.ini
2008-05-08 13:15:26 ----SD---- C:\Documents and Settings\Chiko\Data aplikací\Microsoft
2008-05-08 13:13:54 ----D---- C:\WINDOWS\SoftwareDistribution
2008-05-08 13:13:52 ----SD---- C:\WINDOWS\system32\Microsoft
2008-05-08 13:12:31 ----AS---- C:\WINDOWS\bootstat.dat
2008-05-08 13:10:16 ----D---- C:\WINDOWS\system32\xircom
2008-05-08 13:10:16 ----D---- C:\Program Files\xerox
2008-05-08 13:10:16 ----D---- C:\Program Files\microsoft frontpage
2008-05-08 13:10:09 ----RASH---- C:\MSDOS.SYS
2008-05-08 13:10:09 ----RASH---- C:\IO.SYS
2008-05-08 13:10:09 ----AC---- C:\WINDOWS\control.ini
2008-05-08 13:10:09 ----A---- C:\CONFIG.SYS
2008-05-08 13:10:09 ----A---- C:\AUTOEXEC.BAT
2008-05-08 13:09:53 ----AC---- C:\WINDOWS\system32\mapi32.dll
2008-05-08 13:09:10 ----RD---- C:\WINDOWS\Offline Web Pages
2008-05-08 13:09:09 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-05-08 13:08:59 ----HD---- C:\Program Files\WindowsUpdate
2008-05-08 13:08:38 ----D---- C:\WINDOWS\system32\DirectX
2008-05-08 13:08:14 ----AC---- C:\WINDOWS\system32\atrace.dll
2008-05-08 13:08:11 ----AC---- C:\WINDOWS\system32\desktop.ini
2008-05-08 13:08:11 ----AC---- C:\WINDOWS\desktop.ini
2008-05-08 13:08:03 ----AC---- C:\WINDOWS\system32\nmevtmsg.dll
2008-05-08 13:08:01 ----AC---- C:\WINDOWS\system32\acctres.dll
2008-05-08 13:08:00 ----D---- C:\Program Files\Common Files\Services
2008-05-08 13:07:57 ----SD---- C:\WINDOWS\Tasks
2008-05-08 13:07:57 ----AC---- C:\WINDOWS\system32\icfgnt5.dll
2008-05-08 13:07:56 ----D---- C:\Program Files\Common Files\MSSoap
2008-05-08 13:07:52 ----D---- C:\WINDOWS\srchasst
2008-05-08 13:07:51 ----D---- C:\WINDOWS\system32\Macromed
2008-05-08 13:07:47 ----AC---- C:\WINDOWS\system32\wuaueng1.dll
2008-05-08 13:07:47 ----A---- C:\WINDOWS\system32\wuweb.dll
2008-05-08 13:07:47 ----A---- C:\WINDOWS\system32\wucltui.dll
2008-05-08 13:07:47 ----A---- C:\WINDOWS\system32\wuauserv.dll
2008-05-08 13:07:47 ----A---- C:\WINDOWS\system32\wuaueng.dll
2008-05-08 13:07:46 ----AC---- C:\WINDOWS\system32\wuauclt1.exe
2008-05-08 13:07:46 ----AC---- C:\WINDOWS\system32\qmgrprxy.dll
2008-05-08 13:07:46 ----AC---- C:\WINDOWS\system32\bitsprx3.dll
2008-05-08 13:07:46 ----AC---- C:\WINDOWS\system32\bitsprx2.dll
2008-05-08 13:07:46 ----A---- C:\WINDOWS\system32\wups.dll
2008-05-08 13:07:46 ----A---- C:\WINDOWS\system32\wuauclt.exe
2008-05-08 13:07:46 ----A---- C:\WINDOWS\system32\wuapi.dll
2008-05-08 13:07:45 ----AC---- C:\WINDOWS\system32\qmgr.dll
2008-05-08 13:07:41 ----RD---- C:\Program Files\Movie Maker
2008-05-08 13:07:36 ----AC---- C:\WINDOWS\system32\safrslv.dll
2008-05-08 13:07:36 ----AC---- C:\WINDOWS\system32\safrdm.dll
2008-05-08 13:07:36 ----AC---- C:\WINDOWS\system32\safrcdlg.dll
2008-05-08 13:07:36 ----AC---- C:\WINDOWS\system32\racpldlg.dll
2008-05-08 13:07:31 ----AC---- C:\WINDOWS\system32\fltmc.exe
2008-05-08 13:07:31 ----AC---- C:\WINDOWS\system32\fltlib.dll
2008-05-08 13:07:30 ----D---- C:\WINDOWS\system32\Restore
2008-05-08 13:07:30 ----AC---- C:\WINDOWS\system32\srrstr.dll
2008-05-08 13:07:30 ----AC---- C:\WINDOWS\system32\drivers\sr.sys
2008-05-08 13:07:30 ----AC---- C:\WINDOWS\system32\drivers\fltmgr.sys
2008-05-08 13:07:30 ----A---- C:\WINDOWS\system32\srsvc.dll
2008-05-08 13:07:30 ----A---- C:\WINDOWS\system32\srclient.dll
2008-05-08 13:07:29 ----AC---- C:\WINDOWS\system32\mnmdd.dll
2008-05-08 13:07:29 ----AC---- C:\WINDOWS\system32\isrdbg32.dll
2008-05-08 13:07:29 ----AC---- C:\WINDOWS\system32\ils.dll
2008-05-08 13:07:28 ----AC---- C:\WINDOWS\system32\nmmkcert.dll
2008-05-08 13:07:28 ----AC---- C:\WINDOWS\system32\msconf.dll
2008-05-08 13:07:28 ----AC---- C:\WINDOWS\system32\mnmsrvc.exe
2008-05-08 13:07:25 ----RD---- C:\Program Files\NetMeeting
2008-05-08 13:07:25 ----AC---- C:\WINDOWS\system32\msoert2.dll
2008-05-08 13:07:25 ----AC---- C:\WINDOWS\system32\msoeacct.dll
2008-05-08 13:07:24 ----AC---- C:\WINDOWS\system32\inetres.dll
2008-05-08 13:07:23 ----A---- C:\WINDOWS\system32\inetcomm.dll
2008-05-08 13:07:21 ----RD---- C:\Program Files\Outlook Express
2008-05-08 13:07:21 ----AC---- C:\WINDOWS\system32\mstinit.exe
2008-05-08 13:07:21 ----AC---- C:\WINDOWS\system32\mstask.dll
2008-05-08 13:07:21 ----A---- C:\WINDOWS\system32\schedsvc.dll
2008-05-08 13:07:20 ----AC---- C:\WINDOWS\system32\isign32.dll
2008-05-08 13:07:20 ----AC---- C:\WINDOWS\system32\inetcfg.dll
2008-05-08 13:07:20 ----AC---- C:\WINDOWS\system32\icwphbk.dll
2008-05-08 13:07:20 ----AC---- C:\WINDOWS\system32\icwdial.dll
2008-05-08 13:07:13 ----D---- C:\Program Files\Common Files\System
2008-05-08 13:07:12 ----RD---- C:\Program Files\Internet Explorer
2008-05-08 13:07:10 ----AC---- C:\WINDOWS\system32\emptyregdb.dat
2008-05-08 13:07:01 ----AC---- C:\WINDOWS\vbaddin.ini
2008-05-08 13:07:01 ----AC---- C:\WINDOWS\vb.ini
2008-05-08 13:06:57 ----D---- C:\WINDOWS\Registration
2008-05-08 13:06:28 ----RD---- C:\Program Files\Windows Media Player
2008-05-08 13:06:24 ----RD---- C:\Program Files\Messenger
2008-05-08 13:06:19 ----RD---- C:\Program Files\MSN Gaming Zone
2008-05-08 13:06:19 ----AC---- C:\WINDOWS\system32\write.exe
2008-05-08 13:06:08 ----AC---- C:\WINDOWS\system32\sndvol32.exe
2008-05-08 13:06:08 ----AC---- C:\WINDOWS\system32\hticons.dll
2008-05-08 13:06:08 ----AC---- C:\WINDOWS\system32\avwav.dll
2008-05-08 13:06:07 ----AC---- C:\WINDOWS\system32\winchat.exe
2008-05-08 13:06:07 ----AC---- C:\WINDOWS\system32\avtapi.dll
2008-05-08 13:06:07 ----AC---- C:\WINDOWS\system32\avmeter.dll
2008-05-08 13:05:58 ----AC---- C:\WINDOWS\system32\charmap.exe
2008-05-08 13:05:58 ----AC---- C:\WINDOWS\system32\getuname.dll
2008-05-08 13:05:58 ----AC---- C:\WINDOWS\system32\calc.exe
2008-05-08 13:05:57 ----AC---- C:\WINDOWS\system32\winmine.exe
2008-05-08 13:05:57 ----AC---- C:\WINDOWS\system32\sol.exe
2008-05-08 13:05:57 ----AC---- C:\WINDOWS\system32\mshearts.exe
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\usrlogon.cmd
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\tsshutdn.exe
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\tslabels.ini
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\tskill.exe
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\tsdiscon.exe
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\tscon.exe
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\shadow.exe
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\rwinsta.exe
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\reset.exe
2008-05-08 13:05:56 ----AC---- C:\WINDOWS\system32\freecell.exe
2008-05-08 13:05:55 ----AC---- C:\WINDOWS\system32\regini.exe
2008-05-08 13:05:55 ----AC---- C:\WINDOWS\system32\rdpcfgex.dll
2008-05-08 13:05:55 ----AC---- C:\WINDOWS\system32\qwinsta.exe
2008-05-08 13:05:55 ----AC---- C:\WINDOWS\system32\qappsrv.exe
2008-05-08 13:05:55 ----AC---- C:\WINDOWS\system32\msg.exe
2008-05-08 13:05:55 ----AC---- C:\WINDOWS\system32\msdtcprf.ini
2008-05-08 13:05:55 ----AC---- C:\WINDOWS\system32\logoff.exe
2008-05-08 13:05:55 ----AC---- C:\WINDOWS\system32\cdmodem.dll
2008-05-08 13:05:54 ----AC---- C:\WINDOWS\system32\mtxlegih.dll
2008-05-08 13:05:54 ----AC---- C:\WINDOWS\system32\mtxex.dll
2008-05-08 13:05:54 ----AC---- C:\WINDOWS\system32\dcomcnfg.exe
2008-05-08 13:05:53 ----AC---- C:\WINDOWS\system32\stclient.dll
2008-05-08 13:05:53 ----AC---- C:\WINDOWS\system32\mtxdm.dll
2008-05-08 13:05:53 ----AC---- C:\WINDOWS\system32\comsnap.dll
2008-05-08 13:05:53 ----AC---- C:\WINDOWS\system32\comrepl.dll
2008-05-08 13:05:53 ----AC---- C:\WINDOWS\system32\comaddin.dll
2008-05-08 13:05:47 ----AC---- C:\WINDOWS\system32\wmimgmt.msc
2008-05-08 13:05:46 ----AC---- C:\WINDOWS\system32\sndrec32.exe
2008-05-08 13:05:46 ----AC---- C:\WINDOWS\system32\mplay32.exe
2008-05-08 13:05:46 ----AC---- C:\WINDOWS\system32\accwiz.exe
2008-05-08 13:05:45 ----D---- C:\Program Files\Windows NT
2008-05-08 13:05:45 ----AC---- C:\WINDOWS\system32\mspaint.exe
2008-05-08 13:05:45 ----AC---- C:\WINDOWS\system32\hypertrm.dll
2008-05-08 13:05:44 ----AC---- C:\WINDOWS\system32\spider.exe
2008-05-08 13:05:44 ----AC---- C:\WINDOWS\system32\drivers\tdtcp.sys
2008-05-08 13:05:44 ----AC---- C:\WINDOWS\system32\drivers\tdpipe.sys
2008-05-08 13:05:44 ----AC---- C:\WINDOWS\system32\clipbrd.exe
2008-05-08 13:05:44 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2008-05-08 13:05:43 ----AC---- C:\WINDOWS\system32\tscfgwmi.dll
2008-05-08 13:05:43 ----AC---- C:\WINDOWS\system32\sessmgr.exe
2008-05-08 13:05:43 ----AC---- C:\WINDOWS\system32\remotepg.dll
2008-05-08 13:05:43 ----AC---- C:\WINDOWS\system32\rdshost.exe
2008-05-08 13:05:43 ----AC---- C:\WINDOWS\system32\rdsaddin.exe
2008-05-08 13:05:43 ----AC---- C:\WINDOWS\system32\mstsc.exe
2008-05-08 13:05:43 ----A---- C:\WINDOWS\system32\mstscax.dll
2008-05-08 13:05:42 ----AC---- C:\WINDOWS\system32\tscupgrd.exe
2008-05-08 13:05:42 ----AC---- C:\WINDOWS\system32\rdpwsx.dll
2008-05-08 13:05:42 ----AC---- C:\WINDOWS\system32\rdpsnd.dll
2008-05-08 13:05:42 ----AC---- C:\WINDOWS\system32\rdpclip.exe
2008-05-08 13:05:42 ----AC---- C:\WINDOWS\system32\rdchost.dll
2008-05-08 13:05:42 ----AC---- C:\WINDOWS\system32\qprocess.exe
2008-05-08 13:05:42 ----A---- C:\WINDOWS\system32\termsrv.dll
2008-05-08 13:05:42 ----A---- C:\WINDOWS\system32\icaapi.dll
2008-05-08 13:05:41 ----D---- C:\WINDOWS\system32\MsDtc
2008-05-08 13:05:41 ----AC---- C:\WINDOWS\system32\mtxoci.dll
2008-05-08 13:05:41 ----AC---- C:\WINDOWS\system32\msdtcuiu.dll
2008-05-08 13:05:41 ----AC---- C:\WINDOWS\system32\msdtcprx.dll
2008-05-08 13:05:41 ----AC---- C:\WINDOWS\system32\cfgbkend.dll
2008-05-08 13:05:40 ----AC---- C:\WINDOWS\system32\xolehlp.dll
2008-05-08 13:05:40 ----AC---- C:\WINDOWS\system32\msdtctm.dll
2008-05-08 13:05:40 ----AC---- C:\WINDOWS\system32\msdtclog.dll
2008-05-08 13:05:40 ----AC---- C:\WINDOWS\system32\msdtc.exe
2008-05-08 13:05:39 ----D---- C:\WINDOWS\system32\Com
2008-05-08 13:05:39 ----AC---- C:\WINDOWS\system32\clbcatex.dll
2008-05-08 13:05:39 ----AC---- C:\WINDOWS\system32\catsrvps.dll
2008-05-08 13:05:39 ----A---- C:\WINDOWS\system32\colbact.dll
2008-05-08 13:05:38 ----AC---- C:\WINDOWS\system32\catsrvut.dll
2008-05-08 13:05:38 ----AC---- C:\WINDOWS\system32\catsrv.dll
2008-05-08 13:05:38 ----A---- C:\WINDOWS\system32\comsvcs.dll
2008-05-08 13:05:37 ----AC---- C:\WINDOWS\system32\comuid.dll
2008-05-08 13:05:37 ----A---- C:\WINDOWS\system32\clbcatq.dll
2008-05-08 13:05:31 ----AC---- C:\WINDOWS\system32\servdeps.dll
2008-05-08 13:05:31 ----AC---- C:\WINDOWS\system32\mmfutil.dll
2008-05-08 13:05:31 ----AC---- C:\WINDOWS\system32\licwmi.dll
2008-05-08 13:05:31 ----AC---- C:\WINDOWS\system32\cmprops.dll
2008-05-08 13:05:27 ----AC---- C:\WINDOWS\system32\drivers\rdpdr.sys
2008-05-08 13:05:26 ----AC---- C:\WINDOWS\system32\drivers\termdd.sys
2008-05-05 06:25:04 ----C---- C:\WINDOWS\system32\xpsp4res.dll
2008-04-14 04:22:48 ----C---- C:\WINDOWS\system32\spupdwxp.exe
2008-04-14 04:22:47 ----AC---- C:\WINDOWS\system32\spdwnwxp.exe
2008-04-14 04:22:46 ----C---- C:\WINDOWS\system32\slserv.exe
2008-04-14 04:22:46 ----C---- C:\WINDOWS\system32\slrundll.exe
2008-04-14 04:22:46 ----C---- C:\WINDOWS\system32\setupn.exe
2008-04-14 04:22:46 ----C---- C:\WINDOWS\slrundll.exe
2008-04-14 04:22:37 ----C---- C:\WINDOWS\system32\napstat.exe
2008-04-14 04:22:31 ----C---- C:\WINDOWS\system32\mmcperf.exe
2008-04-14 04:22:22 ----C---- C:\WINDOWS\system32\faxpatch.exe
2008-04-14 04:22:08 ----AC---- C:\WINDOWS\system32\xmllite.dll
2008-04-14 04:22:06 ----C---- C:\WINDOWS\system32\wmphoto.dll
2008-04-14 04:22:05 ----C---- C:\WINDOWS\system32\wlanapi.dll
2008-04-14 04:22:05 ----C---- C:\WINDOWS\system32\windowscodecsext.dll
2008-04-14 04:22:05 ----C---- C:\WINDOWS\system32\windowscodecs.dll
2008-04-14 04:22:04 ----C---- C:\WINDOWS\system32\tspkg.dll
2008-04-14 04:22:04 ----C---- C:\WINDOWS\system32\tsgqec.dll
2008-04-14 04:22:04 ----C---- C:\WINDOWS\system32\drivers\vchnt5.dll
2008-04-14 04:21:55 ----C---- C:\WINDOWS\system32\slgen.dll
2008-04-14 04:21:55 ----C---- C:\WINDOWS\system32\slextspk.dll
2008-04-14 04:21:55 ----C---- C:\WINDOWS\system32\slcoinst.dll
2008-04-14 04:21:55 ----C---- C:\WINDOWS\system32\drivers\siint5.dll
2008-04-14 04:21:54 ----N---- C:\WINDOWS\system32\qutil.dll
2008-04-14 04:21:54 ----C---- C:\WINDOWS\system32\s3gnb.dll
2008-04-14 04:21:54 ----C---- C:\WINDOWS\system32\rhttpaa.dll
2008-04-14 04:21:54 ----C---- C:\WINDOWS\system32\rasqec.dll
2008-04-14 04:21:53 ----N---- C:\WINDOWS\system32\onex.dll
2008-04-14 04:21:53 ----C---- C:\WINDOWS\system32\qcliprov.dll
2008-04-14 04:21:53 ----C---- C:\WINDOWS\system32\qagentrt.dll
2008-04-14 04:21:53 ----C---- C:\WINDOWS\system32\qagent.dll
2008-04-14 04:21:53 ----C---- C:\WINDOWS\system32\photometadatahandler.dll
2008-04-14 04:21:51 ----C---- C:\WINDOWS\system32\nv4_disp.dll
2008-04-14 04:21:50 ----C---- C:\WINDOWS\system32\napmontr.dll
2008-04-14 04:21:49 ----C---- C:\WINDOWS\system32\napipsec.dll
2008-04-14 04:21:49 ----C---- C:\WINDOWS\system32\mtxparhd.dll
2008-04-14 04:21:49 ----C---- C:\WINDOWS\system32\msxml6.dll
2008-04-14 04:21:49 ----C---- C:\WINDOWS\system32\mssha.dll
2008-04-14 04:21:45 ----C---- C:\WINDOWS\system32\mmcfxcommon.dll
2008-04-14 04:21:45 ----C---- C:\WINDOWS\system32\mmcex.dll
2008-04-14 04:21:45 ----C---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2008-04-14 04:21:45 ----C---- C:\WINDOWS\system32\mdmxsdk.dll
2008-04-14 04:21:45 ----C---- C:\WINDOWS\system32\l2gpstore.dll
2008-04-14 04:21:45 ----C---- C:\WINDOWS\system32\kmsvc.dll
2008-04-14 04:21:42 ----C---- C:\WINDOWS\system32\hsfcisp2.dll
2008-04-14 04:21:40 ----N---- C:\WINDOWS\system32\eappprxy.dll
2008-04-14 04:21:40 ----N---- C:\WINDOWS\system32\eappcfg.dll
2008-04-14 04:21:40 ----N---- C:\WINDOWS\system32\eapolqec.dll
2008-04-14 04:21:40 ----C---- C:\WINDOWS\system32\eapsvc.dll
2008-04-14 04:21:40 ----C---- C:\WINDOWS\system32\eapqec.dll
2008-04-14 04:21:40 ----C---- C:\WINDOWS\system32\eapphost.dll
2008-04-14 04:21:40 ----C---- C:\WINDOWS\system32\eappgnui.dll
2008-04-14 04:21:40 ----C---- C:\WINDOWS\system32\eapp3hst.dll
2008-04-14 04:21:39 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2008-04-14 04:21:39 ----N---- C:\WINDOWS\system32\dot3api.dll
2008-04-14 04:21:39 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2008-04-14 04:21:39 ----C---- C:\WINDOWS\system32\dot3ui.dll
2008-04-14 04:21:39 ----C---- C:\WINDOWS\system32\dot3svc.dll
2008-04-14 04:21:39 ----C---- C:\WINDOWS\system32\dot3msm.dll
2008-04-14 04:21:39 ----C---- C:\WINDOWS\system32\dot3gpclnt.dll
2008-04-14 04:21:39 ----C---- C:\WINDOWS\system32\dot3cfg.dll
2008-04-14 04:21:39 ----C---- C:\WINDOWS\system32\dimsroam.dll
2008-04-14 04:21:39 ----C---- C:\WINDOWS\system32\dhcpqec.dll
2008-04-14 04:21:38 ----C---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2008-04-14 04:21:38 ----C---- C:\WINDOWS\system32\credssp.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\bitsprx4.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\azroles.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\ativtmxx.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\ati3d1ag.dll
2008-04-14 04:21:37 ----C---- C:\WINDOWS\system32\ati2dvaa.dll
2008-04-14 04:21:36 ----C---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2008-04-14 04:21:36 ----C---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2008-04-14 04:21:36 ----C---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2008-04-14 04:21:36 ----C---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2008-04-14 04:21:36 ----C---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2008-04-14 04:21:36 ----C---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2008-04-14 04:21:36 ----C---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2008-04-14 04:21:35 ----C---- C:\WINDOWS\system32\aaclient.dll
2008-04-14 04:18:10 ----C---- C:\WINDOWS\system32\kbdpash.dll
2008-04-14 04:18:10 ----C---- C:\WINDOWS\system32\kbdnepr.dll
2008-04-14 04:18:10 ----C---- C:\WINDOWS\system32\kbdiultn.dll
2008-04-14 04:18:10 ----C---- C:\WINDOWS\system32\kbdbhc.dll
2008-04-14 03:30:53 ----C---- C:\WINDOWS\system32\msxml6r.dll
2008-04-14 03:28:57 ----C---- C:\WINDOWS\system32\msshavmsg.dll
2008-04-14 03:19:06 ----C---- C:\WINDOWS\system32\drivers\hidbth.sys
2008-04-13 19:56:49 ----C---- C:\WINDOWS\system32\drivers\usb8023x.sys
2008-04-13 19:56:49 ----C---- C:\WINDOWS\system32\drivers\rndismpx.sys
2008-04-13 19:51:34 ----C---- C:\WINDOWS\system32\drivers\bthpan.sys
2008-04-13 19:46:33 ----C---- C:\WINDOWS\system32\drivers\bthmodem.sys
2008-04-13 19:46:33 ----C---- C:\WINDOWS\system32\drivers\bthenum.sys
2008-04-13 19:46:32 ----C---- C:\WINDOWS\system32\drivers\rfcomm.sys
2008-04-13 19:46:31 ----C---- C:\WINDOWS\system32\drivers\bthprint.sys
2008-04-13 19:46:29 ----C---- C:\WINDOWS\system32\drivers\bthusb.sys
2008-04-13 19:46:20 ----C---- C:\WINDOWS\system32\drivers\usbvideo.sys
2008-04-13 19:45:26 ----C---- C:\WINDOWS\system32\drivers\hidir.sys
2008-04-13 19:43:55 ----C---- C:\WINDOWS\system32\drivers\wacompen.sys
2008-04-13 19:43:55 ----C---- C:\WINDOWS\system32\drivers\mutohpen.sys
2008-04-13 19:40:48 ----C---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2008-04-13 19:36:40 ----C---- C:\WINDOWS\system32\drivers\viaagp.sys
2008-04-13 19:36:40 ----C---- C:\WINDOWS\system32\drivers\uagp35.sys
2008-04-13 19:36:40 ----C---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2008-04-13 19:36:39 ----C---- C:\WINDOWS\system32\drivers\sisagp.sys
2008-04-13 19:36:39 ----C---- C:\WINDOWS\system32\drivers\amdagp.sys
2008-04-13 19:36:39 ----C---- C:\WINDOWS\system32\drivers\agpcpq.sys
2008-04-13 19:36:38 ----C---- C:\WINDOWS\system32\drivers\alim1541.sys
2008-04-13 19:36:38 ----C---- C:\WINDOWS\system32\drivers\agp440.sys
2008-04-13 19:36:34 ----C---- C:\WINDOWS\system32\drivers\smbali.sys
2008-04-13 17:36:05 ----C---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2007-11-13 12:31:11 ----N---- C:\WINDOWS\system32\tzchange.exe
2007-10-09 12:03:08 ----A---- C:\WINDOWS\system32\uiautomationcore.dll
2007-10-09 11:58:20 ----A---- C:\WINDOWS\system32\tswpfwrp.exe
2007-07-30 18:19:12 ----AC---- C:\WINDOWS\system32\wups2.dll
2007-03-23 05:07:56 ----A---- C:\WINDOWS\system32\xpssvcs.dll
2007-03-23 05:07:54 ----A---- C:\WINDOWS\system32\xpsshhdr.dll
2007-03-22 19:25:02 ----A---- C:\WINDOWS\system32\prntvpt.dll
2006-10-26 13:45:04 ----A---- C:\WINDOWS\system32\WISPTIS.EXE
2006-10-26 13:45:04 ----A---- C:\WINDOWS\system32\INKED.DLL
2006-10-26 13:10:06 ----AC---- C:\WINDOWS\system32\FM20ENU.DLL
2006-10-16 11:40:48 ----AC---- C:\WINDOWS\system32\xpsp3res.dll
2006-09-28 20:13:26 ----N---- C:\WINDOWS\system32\WUDFCoinstaller.dll
2006-09-28 19:00:34 ----N---- C:\WINDOWS\system32\drivers\WudfRd.sys
2006-09-28 18:56:38 ----N---- C:\WINDOWS\system32\WUDFx.dll
2006-09-28 18:56:38 ----N---- C:\WINDOWS\system32\WudfHost.exe
2006-09-28 18:56:16 ----N---- C:\WINDOWS\system32\WudfPlatform.dll
2006-09-28 18:56:14 ----N---- C:\WINDOWS\system32\WudfSvc.dll
2006-09-28 18:55:50 ----N---- C:\WINDOWS\system32\drivers\WudfPf.sys
2006-08-24 15:15:06 ----A---- C:\WINDOWS\system32\rgb9rast_2.dll
2006-06-13 15:35:32 ----AC---- C:\WINDOWS\system32\zlib.dll
2006-05-24 23:43:38 ----AC---- C:\WINDOWS\system32\unicows.dll
2006-03-17 01:38:01 ----C---- C:\WINDOWS\system32\verclsid.exe
2005-11-03 15:40:07 ----AC---- C:\WINDOWS\system32\drivers\sfvfs02.sys
2005-08-10 13:44:04 ----AC---- C:\WINDOWS\system32\drivers\sfdrv01.sys
2005-05-16 14:20:39 ----AC---- C:\WINDOWS\system32\drivers\sfhlp02.sys
2005-05-04 11:31:57 ----AC---- C:\WINDOWS\system32\ATIDEMGR.dll
2005-05-04 10:52:13 ----AC---- C:\WINDOWS\system32\atioglx1.dll
2005-05-04 09:44:42 ----AC---- C:\WINDOWS\system32\atioglxx.dll
2005-05-04 09:28:54 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2005-05-04 09:28:34 ----AC---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2005-05-04 09:24:26 ----AC---- C:\WINDOWS\system32\atipdlxx.dll
2005-05-04 09:24:15 ----AC---- C:\WINDOWS\system32\Oemdspif.dll
2005-05-04 09:24:09 ----AC---- C:\WINDOWS\system32\Ati2mdxx.exe
2005-05-04 09:24:03 ----A---- C:\WINDOWS\system32\ati2edxx.dll
2005-05-04 09:23:54 ----A---- C:\WINDOWS\system32\ati2evxx.dll
2005-05-04 09:22:46 ----A---- C:\WINDOWS\system32\ati2evxx.exe
2005-05-04 09:22:19 ----AC---- C:\WINDOWS\system32\ATIDDC.DLL
2005-05-04 09:14:57 ----A---- C:\WINDOWS\system32\ati3duag.dll
2005-05-04 09:08:49 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2005-05-04 08:57:50 ----A---- C:\WINDOWS\system32\atikvmag.dll
2005-05-04 08:57:13 ----AC---- C:\WINDOWS\system32\drivers\ati2erec.dll
2005-05-04 08:57:05 ----AC---- C:\WINDOWS\system32\atitvo32.dll
2005-05-04 08:52:05 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2005-03-19 01:19:58 ----AC---- C:\WINDOWS\system32\d3dx9_25.dll
2005-01-28 15:15:24 ----A---- C:\WINDOWS\system32\audiodev.dll
2005-01-28 12:32:56 ----A---- C:\WINDOWS\system32\wmvadvd.dll
2005-01-28 07:53:54 ----A---- C:\WINDOWS\system32\wmdrmnet.dll
2005-01-28 07:53:50 ----A---- C:\WINDOWS\system32\wmdrmdev.dll
2005-01-28 07:53:20 ----A---- C:\WINDOWS\system32\wmvadve.dll
2005-01-28 07:53:18 ----A---- C:\WINDOWS\system32\wmpsrcwp.dll
2005-01-28 07:53:18 ----A---- C:\WINDOWS\system32\wmpencen.dll
2005-01-28 00:36:28 ----A---- C:\WINDOWS\system32\wpdsp.dll
2005-01-28 00:36:28 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2005-01-28 00:36:26 ----AC---- C:\WINDOWS\system32\wpdmtpdr.dll
2005-01-28 00:36:24 ----A---- C:\WINDOWS\system32\wpdmtp.dll
2005-01-28 00:36:24 ----A---- C:\WINDOWS\system32\drivers\wpdusb.sys
2005-01-28 00:36:22 ----A---- C:\WINDOWS\system32\wpdmtpus.dll
2005-01-28 00:36:20 ----A---- C:\WINDOWS\system32\wpdconns.dll
2005-01-28 00:36:16 ----AC---- C:\WINDOWS\system32\wpdtrace.dll
2005-01-28 00:36:04 ----A---- C:\WINDOWS\system32\uwdf.exe
2005-01-28 00:36:00 ----A---- C:\WINDOWS\system32\wdfmgr.exe
2005-01-28 00:35:58 ----A---- C:\WINDOWS\system32\wdfapi.dll
Nahoru
Blein
Návštěvník
Návštěvník
Příspěvky: 208
Registrován: 28 srp 2008 11:18

Re: Log z RSIT kontrola PC

#2 Příspěvek od Blein »

Druhá část :


2004-10-11 12:19:00 ----AC---- C:\WINDOWS\system32\ASUSASV2.DLL
2004-08-18 13:00:00 ----RC---- C:\WINDOWS\system32\perfmon.msc
2004-08-18 13:00:00 ----RASH---- C:\NTDETECT.COM
2004-08-18 13:00:00 ----RAC---- C:\WINDOWS\system32\ctl3dv2.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\webcheck.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\vbscript.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\pngfilt.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\occache.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\mstime.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\msrating.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\mshtmler.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\mshtmled.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\mshta.exe
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\licmgr10.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\jsproxy.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\jscript.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\inseng.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\imgutil.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\iesetup.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\iernonce.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\iepeers.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\ieakui.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\ieaksie.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\ieakeng.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\dxtrans.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\dxtmsft.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\corpol.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\advpack.dll
2004-08-18 13:00:00 ----N---- C:\WINDOWS\system32\admparse.dll
2004-08-18 13:00:00 ----C---- C:\WINDOWS\system32\sqlunirl.dll
2004-08-18 13:00:00 ----C---- C:\WINDOWS\system32\sqlsrv32.dll
2004-08-18 13:00:00 ----C---- C:\WINDOWS\system32\riched20.dll
2004-08-18 13:00:00 ----C---- C:\WINDOWS\system32\odbcbcp.dll
2004-08-18 13:00:00 ----C---- C:\WINDOWS\system32\msls31.dll
2004-08-18 13:00:00 ----C---- C:\WINDOWS\system32\dbnetlib.dll
2004-08-18 13:00:00 ----C---- C:\WINDOWS\regedit.exe
2004-08-18 13:00:00 ----ASHC---- C:\WINDOWS\fonts\desktop.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\winhlp32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\winhelp.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\win.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\vmmreg32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\twunk_32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\twunk_16.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\twain_32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\twain.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\zipfldr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\xpsp1res.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\xpob2res.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\xmlprovi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\xmlprov.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\xenroll.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\xcopy.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\xactsrv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wzcdlg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wupdmgr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wstdecod.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wshrm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wshnetbs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wshisn.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wship6.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wshext.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wshcs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wshcon.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wshbth.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wshatm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wscript.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wscntfy.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wpnpinst.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wpabaln.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wowexec.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wowdeb.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wmstream.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wmsdmoe.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wmpui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wmpcore.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wmpcd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wmiprop.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wmerrCSY.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winver.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winstrm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winspool.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winsock.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winshfhc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winntbbu.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winnls.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winmsd.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wininet(3).dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winhlp32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winfax.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\winbrand.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\win87em.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\win.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wifeman.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wiavusd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wiavideo.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wiashext.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wiaservc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wiascr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wiadss.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wiadefui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wiaacmgr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wextract.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\webvw.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\webhits.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wavemsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\watchdog.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\w3ssl.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\w32topl.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\w32tm.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vssvc.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vssadmin.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vss_ps.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vjoy.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vga64k.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vga256.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vfpodbc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\verifier.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\verifier.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ver.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vdmredir.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vdmdbg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vcdex.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vbscs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\vbajet32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\utilman.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\utildll.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usp10.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\userinit.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\user.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\urlmon(3).dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ureg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ups.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\upnpui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\upnphost.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\upnpcont.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\untfs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\unlodctr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\uniplat.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\unimdmat.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\umdmxfrm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\umandlg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ulib.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ufat.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\udhisapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\typelib.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\txflog.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\twext.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tsddd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tsd32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tsappcmp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tree.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\traffic.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tracert6.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tracert.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tourstart.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\toolhelp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tftp.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\termmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tcpsvcs.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tcpmonui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tcpmon.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tcpmib.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tcmsetup.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\taskmgr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\taskman.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tapiui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tapisrv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tapiperf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tapi3.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\tapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\systray.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\syssetup.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sysocmgr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\syskey.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sysinv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sysedit.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\syncui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\synceng.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\syncapp.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\swprv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\svcpack.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\subst.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\strmfilt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\strmdll.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\storage.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\stimon.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sti_ci.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sti.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sstext3d.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ssstars.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sspipes.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ssmyst.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ssmypics.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ssmarque.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ssflwbox.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ssbezier.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ss3dfo.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sqlwoa.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sqlwid.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sprestrt.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\spnpinst.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sort.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\softpub.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\snmpsnap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\snmpapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\smlogsvc.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\smlogcfg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\smbinst.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\slbrccsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\slbiop.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\slbcsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\slayerxp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\skeys.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\skdll.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sisbkup.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sigverif.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sigtab.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shutdown.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shscrap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shrpubw.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shmgrate.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shmedia.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shimgvw.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shgina.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shfolder.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shellstyle.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\shell.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\share.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sfmapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sfcfiles.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sfc.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\setver.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\setupdll.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\setup.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sethc.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\serwvdrv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\services.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\serialui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\senscfg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sensapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sendmail.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sendcmsg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\security.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\secupd.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sdpblb.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sdhcinst.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sdbinst.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\scrrun.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\scrrncs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\scrobj.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\scrnsave.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\scredir.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\scocs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sclgntfy.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sccsccp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sccbase.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\scardsvr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\scardssp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\scarddlg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sc.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sbeio.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sbe.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\savedump.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\runonce.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rundll32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\runas.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rtm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rtipxmib.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rtcshare.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsvpsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsvpperf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsvpmsg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsvp.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsvp.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsmui.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsmsink.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsmps.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsm.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rshx32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rsh.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rpcns4.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\routetab.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\routemon.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\route.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rnr20.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\riched32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rexec.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\replace.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rend.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\regwizc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\regwiz.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\regsvr32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\regsvc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\regedt32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\reg.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\redir.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\recover.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rdpdd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rcp.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rcimlby.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rcbdyctl.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rastapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasser.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rassapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasrad.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasppp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasphone.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasmxs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasmontr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasmans.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasdial.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasctrs.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasctrs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasautou.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\rasauto.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\query.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\qosname.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\qedwipes.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\qedit.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\qdvd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\qdv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\qcap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pubprn.vbs
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pstorec.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\psnppagn.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pschdprf.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pschdprf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\proxycfg.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\proquota.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\progman.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\prodspec.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\printui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\print.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\prflbmsg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\powercfg.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\polstore.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pnrpnsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pmspl.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\plustab.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ping6.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ping.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pifmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pidgen.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\photowiz.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfwci.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfts.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfproc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfos.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfnet.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfmon.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfi009.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfi005.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfh009.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfh005.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perffilt.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfdisk.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfd009.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfd005.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfctrs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfci.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfc009.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\perfc005.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pentnt.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pdh.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pautoenr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\pathping.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\panmap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\packager.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\p2psvc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\p2pnetsh.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\p2pgraph.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\p2pgasvc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\p2p.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\osuninst.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\osk.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\opengl32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\olesvr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\oleprn.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\olecli.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ole2nls.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ole2disp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ole2.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\offfilt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\oembios.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odtext32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odpdx32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odfox32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odexl32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\oddbse32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbctrac.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbcp32r.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbcjt32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbcji32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbccu32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbccr32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbccp32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbcconf.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbcconf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbcad32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbc32gt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\odbc16gt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ocmanage.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\objsel.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\nwprovau.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntvdmd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntvdm.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntsdexts.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntsd.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntprint.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntmssvc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntmsoprq.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntmsmgr.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntmsmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntmsevt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntmsdba.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntmsapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntlsapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntlanui2.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntlanui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntio804.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntio412.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntio411.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntio404.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntio.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntdos804.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntdos412.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntdos411.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntdos404.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ntdos.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\nslookup.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\npptools.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\notepad.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\noise.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\nlsfunc.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\nlhtml.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\newdev.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netui2.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netstat.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netsh.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netsetup.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netplwiz.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netmsg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netid.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\neth.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netevent.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netdde.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netcfgx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\netapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\net1.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\net.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\nddenb32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\nddeapir.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ncxpnt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\nbtstat.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\narrhook.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\narrator.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mydocs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mycomput.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msxmlr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msxml3r.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msxml2r.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msxml2.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msxml.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msxbde40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mswstr10.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mswdat10.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msw3prt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msvideo.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msvidctl.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msvidc32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msvfw32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msvcrt40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msvcrt20.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msvcp50.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msvbvm60.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msvbvm50.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mstext40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msswchx.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msswch.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mssip32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mssign32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mssap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msrle32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msrepl40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msrecr40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msrd3x40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msrd2x40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msrclr40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msratelc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msr2cenu.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msr2c.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msports.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mspbde40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msorcl32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msorc32r.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msobjs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msnsspc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msltus40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mslbui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msjtes40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msjter40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msjint40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msjetoledb40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msjet40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msisip.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msimtf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msimsg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msihnd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msiexec.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msieftp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msidntld.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msident.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msftedit.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msexch40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msexcl40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msencode.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msdxmlc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msdmo.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msdart.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msdadiag.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msctfp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mscpxl32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mscpx32r.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mscms.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mscdexnt.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mscat32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msaudite.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msapsspc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msafd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msacm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\msaatext.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mrinfo.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mprui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mprmsg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mprdim.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mprddm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mpnotify.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mountvol.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\moricons.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\more.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\modex.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\modemui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mode.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mobsync.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mobsync.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mmutilse.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mmsystem.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mmdrv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mmcshext.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mmcndmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mmcbase.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mmc.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mll_qic.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mll_mtf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mll_hp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mlang.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mimefilt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\migpwd.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\miglibnt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mchgrcoi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mgmtapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mfcsubs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mfc42u.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mfc42loc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mfc42.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mfc40u.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mfc40loc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mfc40.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mf3216.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mem.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mdminst.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mdhcp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mciwave.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mciseq.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mciqtz32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mciole32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mciole16.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mcicda.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mciavi32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mcdsrv32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mcd32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mcastmib.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mapistub.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\makecab.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\magnify.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mag_hook.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lzexpand.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lusrmgr.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lprmonui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lprhelp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lpr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lpq.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lpk.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\logonui.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\logon.scr
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\logman.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\loghours.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lodctr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\locator.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\localui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\localsec.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\loadperf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\loadfix.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lnkstub.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lmrt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\lights.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\licdll.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\langwrbk.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\label.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\krnl386.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\keymgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\keyboard.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\key01.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kdcom.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kd1394.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdusx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdusr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdusl.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdus.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdukx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbduk.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdsw.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdsmsno.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdsmsfi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdsg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdsf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdpo.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdno1.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdno.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdnec.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdne.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdmlt48.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdmlt47.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdmaori.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdmac.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdla.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdit142.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdit.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdir.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdinmal.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdinben.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdinbe1.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdic.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdgr1.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdgae.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdfr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdfo.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdfi1.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdfi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdfc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdes.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbddv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdda.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdcz2.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdcz1.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdcz.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdcan.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdca.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdbr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdbene.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kbdbe.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\kb16.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\jscs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\jobexec.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\jgsh400.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\jgsd400.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\jgpl400.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\jgmd400.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\jgdw400.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\jgaw400.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\jet500.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ixsso.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iuengine.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\itss.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\itircl.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ir50_qcx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ir50_qc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ir50_32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ir41_qcx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ir41_qc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ir32_32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipxwan.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipxsap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipxrtmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipxroute.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipxrip.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipxpromn.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipxmontr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipv6mon.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipv6.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipsmsnap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipsecsnp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipsec6.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iprtrmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iprtprio.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iprop.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ippromon.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipmontr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ipconfig.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iologmsg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\input.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\initpki.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\infosoft.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\inetppui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\inetmib1.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\inetcplc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\imeshare.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\imapi.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\igmpagnt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ifsutil.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ifmon.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iexpress.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\idq.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\icmui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\icmp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\icm32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iccvid.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iassvcs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iassdo.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iassam.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iasrecst.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iasrad.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iaspolcy.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iasnap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iashlpr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iasads.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\iasacct.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\chkntfs.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\chkdsk.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\chcp.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\htui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\httpapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\hotplug.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\hostname.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\hnetwiz.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\hnetmon.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\hlink.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\himem.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\hhsetup.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\help.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\hccoin.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\HAL.DLL
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\h323msp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\grpconv.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\graphics.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\graftabl.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\gpkrsrc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\gpkcsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\glu32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\glmf32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\gdi.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\gcdef.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fwcfg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ftsrch.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ftp.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fsutil.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fsusd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fsquirt.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fsmgmt.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\framebuf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\format.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\forcedos.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fontview.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fontext.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fmifs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fldrclnr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fixmapi.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\finger.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\findstr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\find.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\filemgmt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\feclient.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fc.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\faultrep.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\fastopen.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\exts.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\extrac32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\extmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\expsrv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\expand.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\exe2bin.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\eventvwr.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\eventvwr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\eventcls.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\eula.txt
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\eudcedit.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\esentutl.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\esentprf.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\esentprf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\esent97.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ersvc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\encapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\els.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\edlin.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\edit.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dxmasf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dxdiagn.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dxdiag.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dx8vb.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dx7vb.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dwwin.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dvdupgrd.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\duser.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dumprep.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dswave.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dsuiext.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dssec.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dssec.dat
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dsquery.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dsprpres.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dsprop.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dsound3d.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dsound.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dsdmoprp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dsdmo.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dsauth.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ds32gt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ds16gt.dLL
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drwtsn32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drwatson.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drmstor.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drmclien.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ws2ifsl.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\wmilib.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\wanarp.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\videoprt.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\vga.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\usbohci.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\usbehci.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\usbd.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\usb8023.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\update.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\udfs.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\tdi.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\tcpip6.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\tcpip.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\tape.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\srv.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\smclib.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\sfloppy.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\sffdisk.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\serial.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\serenum.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\secdrv.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\scsiport.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\rootmdm.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\rndismp.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\rmcast.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\rdpcdd.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\rdbss.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\rawwan.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\raspti.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\raspptp.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\raspppoe.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\rasacd.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ptilink.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\psched.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\pcmcia.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\pciidex.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\pciide.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\parvdm.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\partmgr.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\oprghdlr.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\nwlnkspx.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\nwlnknb.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\nwlnkipx.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\nwlnkfwd.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\nwlnkflt.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\null.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ntfs.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\npfs.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\nmnt.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\netbt.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\netbios.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ndproxy.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ndiswan.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ndis.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\msgpc.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\msfs.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\mrxdav.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\mountmgr.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\mnmdd.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\mcd.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\kbdclass.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\isapnp.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ipsec.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ipnat.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ipinip.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ipfltdrv.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ip6fw.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\intelppm.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\imapi.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\i8042prt.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\http.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\hidparse.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\gmreadme.txt
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\ftdisk.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\fs_rec.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\flpydisk.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\fips.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\fdc.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\fastfat.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\dxgthk.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\dxapi.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\dmload.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\dmio.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\dmboot.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\diskdump.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\disk.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\classpnp.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\cdrom.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\cdfs.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\cbidf2k.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\bridge.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\beep.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\atmuni.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\atmlane.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\atmepvc.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\atmarpc.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\atapi.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\asyncmac.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\drivers\acpiec.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpwsockx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpwsock.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpvvox.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpvsetup.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpvoice.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpvacm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpserial.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpnwsock.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpnsvr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpnmodem.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpnlobby.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpnhupnp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpnhpast.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpnet.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpnaddr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpmodemx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dplayx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dplaysvr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dplay.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dpcdll.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dosx.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\doskey.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\docprop2.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\docprop.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmusic.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmsynth.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmstyle.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmserver.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmscript.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmremote.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmocx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmloader.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmintf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmime.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmdskres.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmdskmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmdlgs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmconfig.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmcompos.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmband.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dmadmin.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dllhst3g.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dllhost.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dispex.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\diskperf.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\diskpart.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\diskmgmt.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\diskcopy.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\diskcomp.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dinput8.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dinput.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dimap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\digest.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\diantz.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\diactfrm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dhcpsapi.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dhcpmon.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dgnet.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dfsshlex.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dfrgui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dfrgsnap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dfrgres.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dfrgntfs.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dfrgfat.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dfrg.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\devmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\devmgmt.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\devenum.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\deskperf.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\deskmon.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\deskadp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\defrag.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\debug.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ddrawex.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ddraw.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ddeshare.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ddeml.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dciman32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dbnmpntw.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dbmsrpcn.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dbghelp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dbgeng.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\datime.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\danim.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\d3dxof.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\d3drm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\d3dramp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\d3dpmesh.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\d3dim700.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\d3dim.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\d3d9.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\d3d8thk.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\d3d8.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ctl3d32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ctfmon.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\csseqchk.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cscript.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cryptnet.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cryptext.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cryptdlg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\crtdll.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\country.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\convert.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\control.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\console.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\conime.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\confmsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\compstui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\compobj.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\compmgmt.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\compatui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\compact.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\comp.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\commdlg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\command.com
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\comcat.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cnvfat.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cnetcfg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cmutil.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cmstp.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cmsetacl.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cmpbk32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cmmon32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cmdl32.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cmdial32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cmd.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cmcfg32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\clipsrv.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cliconfg.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cliconfg.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\clb.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ckcnv.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cisvc.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ciodm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cidaemon.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cic.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ciadv.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ciadmin.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\certmgr.msc
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\certmgr.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cdosys.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cdfview.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ccfgnt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cards.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\capesnpn.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\camocx.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cacls.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\cabview.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\btpanui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\bthserv.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\bthci.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\browsewm.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\bootvrfy.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\bootvid.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\bootok.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\blastcln.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\bidispl.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\avifile.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\avicap32.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\avicap.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\autolfn.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\autochk.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\autofmt.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\autodisc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\autoconv.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\auditusr.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\attrib.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\atmpvcno.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\atmlib.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\atmfd.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\atmadm.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\atkctrs.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\at.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\asycfilt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\arp.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\append.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\apcups.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ansi.sys
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\amstream.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\alrsvc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\ahui.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\adsnt.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\adsmsext.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\adsldp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\adptif.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\actxprxy.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\actmovie.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\aclui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\acledit.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\aaaamon.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\6to4svc.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\msdfmap.ini
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\hh.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\_default.pif
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wtsapi32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wsock32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wshtcpip.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wscsvc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ws2help.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ws2_32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wow32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmvdmoe2.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmvdmod.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmvcore.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmspdmoe.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmspdmod.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmsdmoe2.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmsdmod.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmpshell.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmploc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmpasf.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmnetmgr.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmidx.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmerror.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmdmps.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmdmlog.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmasf.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmadmoe.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wmadmod.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wlnotify.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wldap32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wkssvc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wintrust.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\winsta.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\winsrv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\winscard.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\winrnr.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\winmm.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\winlogon.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\winipsec.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wininet.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\winhttp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\win32spl.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\win32k.sys
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\webclnt.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\wdigest.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\w32time.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\vssapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\vga.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\version.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\uxtheme.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\userenv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\user32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\usbmon.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\urlmon.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\url.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\upnp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\trkwks.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\themeui.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\telnet.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\tcpmon.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\tapi32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\t2embed.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\sxs.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\svchost.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\stobject.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\srvsvc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\spoolsv.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\spoolss.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\smss.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\schannel.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\shsvcs.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\shlwapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\shimeng.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\shell32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\shdocvw.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\shdoclc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\sfc_os.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\sfc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\setupapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\services.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\sens.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\secur32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\seclogon.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\scesrv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\scecli.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\samsrv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\samlib.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\rtutils.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\rsaenh.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\rpcss.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\resutils.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\regapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\rastls.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\rasman.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\raschap.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\rasdlg.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\rasapi32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\quartz.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\qasf.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\pstorsvc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\psbase.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\psapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\profmap.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\powrprof.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\osuninst.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\olethk32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\olesvr32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\olepro32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\oledlg.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\olecnv32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\olecli32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\oleaut32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\oleaccrc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\oleacc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ole32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\odbcint.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\odbc32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\oakley.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ntshrui.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ntmarta.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ntlanman.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ntdsapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ntdll.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\netui1.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\netui0.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\netshell.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\netrap.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\netman.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\netapi32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\nddeapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mtxclu.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msxml3.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mswsock.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mswmdm.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msvcrt.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msvcp60.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msvcirt.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msv1_0.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msutb.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mstlsapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msscp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msprivs.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mspmsp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mspmsnsv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mspatcha.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msnetobj.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msimg32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msidle.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mshtml.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msgsvc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msgina.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msctf.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msasn1.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\msacm32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mprapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mpr.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mpg4dmod.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mp4sdmod.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mp43dmod.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\mlang.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\midimap.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\lz32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\lsass.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\lsasrv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\logagent.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\localspl.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\linkinfo.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\laprxy.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\kernel32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\kerberos.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ipsecsvc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\iphlpapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\inetpp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\imm32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\imagehlp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\gdi32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\fontsub.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\eventlog.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\esent.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\es.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\encdec.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\dssenh.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\dskquoui.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\dskquota.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\drprov.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\drmv2clt.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\drivers\dxg.sys
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\dnsapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\diskcopy.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\davclnt.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\dataclen.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\csrss.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\csrsrv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cscui.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cscdll.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cryptui.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cryptdll.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\crypt32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\credui.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\comres.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\comdlg32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\comctl32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\clusapi.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cewmdm.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\certcli.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cdm.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\cabinet.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\browseui.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\browser.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\browselc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\blackbox.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\batmeter.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\basesrv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\avifil32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\authz.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\audiosrv.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\atl.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\asferror.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\apphelp.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\alg.exe
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\advapi32.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\adsldpc.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system32\activeds.dll
2004-08-18 13:00:00 ----A---- C:\WINDOWS\system.ini
2004-08-18 13:00:00 ----A---- C:\WINDOWS\explorer.exe
2004-08-17 16:49:22 ----A---- C:\WINDOWS\system32\wzcsvc.dll
2004-08-17 16:49:22 ----A---- C:\WINDOWS\system32\wzcsapi.dll
2004-08-17 16:49:16 ----AC---- C:\WINDOWS\system32\pid.dll
2004-08-17 16:49:16 ----A---- C:\WINDOWS\system32\pjlmon.dll
2004-08-17 16:49:14 ----AC---- C:\WINDOWS\system32\msyuv.dll
2004-08-17 16:49:10 ----AC---- C:\WINDOWS\system32\iyuv_32.dll
2004-08-17 16:49:08 ----AC---- C:\WINDOWS\system32\hid.dll
2004-08-17 16:49:06 ----AC---- C:\WINDOWS\system32\dmutil.dll
2004-08-17 16:49:04 ----A---- C:\WINDOWS\system32\cnbjmon.dll
2004-08-17 16:45:30 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2004-08-17 16:44:38 ----AC---- C:\WINDOWS\system32\drivers\crusoe.sys
2004-08-17 16:43:34 ----AC---- C:\WINDOWS\system32\drivers\processr.sys
2004-08-17 16:43:28 ----AC---- C:\WINDOWS\system32\drivers\amdk7.sys
2004-08-17 16:43:28 ----AC---- C:\WINDOWS\system32\drivers\amdk6.sys
2004-08-17 16:43:24 ----AC---- C:\WINDOWS\system32\drivers\mouclass.sys
2004-08-17 16:43:22 ----AC---- C:\WINDOWS\system32\drivers\modem.sys
2004-08-17 16:43:10 ----AC---- C:\WINDOWS\system32\drivers\parport.sys
2004-08-17 16:43:08 ----AC---- C:\WINDOWS\system32\drivers\p3.sys
2004-08-09 12:33:26 ----A---- C:\WINDOWS\system32\drivers\prohlp02.sys
2004-08-09 12:29:28 ----A---- C:\WINDOWS\system32\drivers\prodrv06.sys
2004-08-04 00:15:22 ----AC---- C:\WINDOWS\system32\drivers\ks.sys
2004-08-04 00:09:56 ----AC---- C:\WINDOWS\system32\drivers\sonydcam.sys
2004-08-04 00:08:58 ----AC---- C:\WINDOWS\system32\drivers\usbintel.sys
2004-08-04 00:08:04 ----A---- C:\WINDOWS\system32\drivers\stream.sys
2004-08-04 00:07:48 ----AC---- C:\WINDOWS\system32\drivers\mssmbios.sys
2004-08-04 00:07:46 ----AC---- C:\WINDOWS\system32\drivers\mf.sys
2004-08-04 00:03:18 ----AC---- C:\WINDOWS\system32\drivers\tunmp.sys
2004-08-04 00:03:14 ----AC---- C:\WINDOWS\system32\drivers\ndisuio.sys
2004-08-03 23:58:42 ----AC---- C:\WINDOWS\system32\drivers\swenum.sys
2004-08-03 23:58:30 ----AC---- C:\WINDOWS\system32\drivers\nic1394.sys
2004-08-03 23:58:30 ----AC---- C:\WINDOWS\system32\drivers\arp1394.sys
2004-07-19 15:49:54 ----A---- C:\WINDOWS\system32\drivers\prosync1.sys
2004-01-14 21:33:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Real
2004-01-12 05:42:11 ----RHD---- C:\Documents and Settings\Chiko\Data aplikací\SecuROM
2004-01-11 01:57:25 ----A---- C:\WINDOWS\QIII.INI
2004-01-10 05:44:07 ----D---- C:\Documents and Settings\Chiko\Data aplikací\gtk-2.0
2004-01-09 08:10:13 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2004-01-09 08:10:13 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2004-01-08 05:35:19 ----D---- C:\Documents and Settings\Chiko\Data aplikací\dvdcss
2004-01-06 01:36:57 ----D---- C:\WINDOWS\system32\NtmsData
2004-01-02 10:59:39 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Screaming Bee
2004-01-02 01:38:02 ----D---- C:\Documents and Settings\Chiko\Data aplikací\COMODO
2004-01-02 01:36:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\COMODO
2004-01-02 01:23:27 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\2194563779478.exe
2004-01-02 00:16:55 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\280692608516093.exe
2004-01-01 23:56:33 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\1101542123391.exe
2004-01-01 23:29:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\DivX
2004-01-01 23:28:38 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\167861203023021.exe
2004-01-01 23:26:39 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\28780789126385.exe
2004-01-01 23:04:06 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\19765830628406.exe
2004-01-01 22:53:57 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\5459203704292.exe
2004-01-01 22:51:01 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\4646932727418.exe
2004-01-01 22:47:19 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\62281318523649.exe
2004-01-01 20:23:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2004-01-01 17:51:02 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Cool Record Edit Pro
2004-01-01 17:47:07 ----A---- C:\WINDOWS\system32\NCTWMAFile2.dll
2004-01-01 17:47:07 ----A---- C:\WINDOWS\system32\NCTTextToAudio2.dll
2004-01-01 17:47:07 ----A---- C:\WINDOWS\system32\NCTAudioVisualization2.dll
2004-01-01 17:47:06 ----A---- C:\WINDOWS\system32\NCTAudioTransform2.dll
2004-01-01 17:47:06 ----A---- C:\WINDOWS\system32\NCTAudioRecord2.dll
2004-01-01 17:47:06 ----A---- C:\WINDOWS\system32\NCTAudioPlayer2.dll
2004-01-01 17:47:06 ----A---- C:\WINDOWS\system32\NCTAudioInformation2.dll
2004-01-01 17:47:06 ----A---- C:\WINDOWS\system32\NCTAudioFile2.dll
2004-01-01 17:47:06 ----A---- C:\WINDOWS\system32\NCTAudioEditor2.dll
2004-01-01 17:47:05 ----A---- C:\WINDOWS\system32\NCTAudioCDGrabber2.dll
2004-01-01 16:42:17 ----AH---- C:\Documents and Settings\Chiko\Data aplikací\windrvconfig.txt
2004-01-01 15:12:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\6F638BBA00481866004D87E67B07D329
2004-01-01 14:46:14 ----A---- C:\WINDOWS\UC.PIF
2004-01-01 14:46:14 ----A---- C:\WINDOWS\RAR.PIF
2004-01-01 14:46:14 ----A---- C:\WINDOWS\LHA.PIF
2004-01-01 14:46:14 ----A---- C:\WINDOWS\ARJ.PIF
2004-01-01 12:46:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\529C505A000151EC00014088D151FC84
2004-01-01 05:02:21 ----HD---- C:\WINDOWS\msdownld.tmp
2004-01-01 03:18:03 ----A---- C:\WINDOWS\system32\drivers\wdcsam.sys
2004-01-01 03:17:59 ----DC---- C:\WINDOWS\system32\DRVSTORE
2004-01-01 03:12:08 ----D---- C:\Program Files\Western Digital
2004-01-01 01:46:15 ----D---- C:\Documents and Settings\Chiko\Data aplikací\hellomoto
2004-01-01 01:23:47 ----D---- C:\WINDOWS\WinAVI Video Converter 9.0
2004-01-01 01:17:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\DVD Shrink
2004-01-01 01:11:37 ----D---- C:\Documents and Settings\Chiko\Data aplikací\DVDVideoSoft
2004-01-01 00:48:23 ----D---- C:\Documents and Settings\Chiko\Data aplikací\uTorrent
2004-01-01 00:40:29 ----A---- C:\WINDOWS\system32\huffyuv.dll
2004-01-01 00:15:23 ----D---- C:\Program Files\trend micro
2004-01-01 00:09:17 ----A---- C:\user.js
2004-01-01 00:08:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Babylon
2004-01-01 00:08:41 ----D---- C:\Documents and Settings\Chiko\Data aplikací\Babylon
2004-01-01 00:08:21 ----D---- C:\WINDOWS\pss
2004-01-01 00:06:44 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2004-01-01 00:06:25 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2004-01-01 00:06:25 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2004-01-01 00:01:47 ----RSH---- C:\Documents and Settings\Chiko\Data aplikací\191461683815279.exe
2003-12-31 23:09:52 ----A---- C:\WINDOWS\system32\drivers\RTL8139.sys
2003-12-01 16:20:52 ----A---- C:\WINDOWS\system32\drivers\sfhlp01.sys

======List of files/folders modified in the last 3 months======

2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wowfaxui.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\wowfax.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrvpa.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrvoica.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrv80a.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrv42a.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrsvpia.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrshuta.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrsdpia.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrrtosa.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrprbda.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrmlnka.exe
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrlbva.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrfaxa.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrdtea.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrdpa.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrcoina.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\usrcntra.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\streamci.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sprio800.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\sprio600.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\spnike.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\paqsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\mdwmdmsp.dll
2004-08-18 13:00:00 ----AC---- C:\WINDOWS\system32\dvdplay.exe
Nahoru
Blein
Návštěvník
Návštěvník
Příspěvky: 208
Registrován: 28 srp 2008 11:18

Re: Log z RSIT kontrola PC

#3 Příspěvek od Blein »

Omlouvám se, že je to na 3, vešlo by se to do dvou částí, ale rozdělovalo by se mi to nepřehledně podle datumů, díky za pochopení.


Třetí část :


======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINDOWS\System32\drivers\prohlp02.sys [2004-08-09 114016]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINDOWS\System32\drivers\prosync1.sys [2004-07-19 7040]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINDOWS\System32\drivers\sfhlp01.sys [2003-12-01 4832]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINDOWS\System32\drivers\sfvfs02.sys [2005-11-03 63488]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-08-12 443448]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [1997-07-20 64512]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-05-04 1133056]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NVENET;NVIDIA nForce Networking Legacy Driver; C:\WINDOWS\system32\DRIVERS\NVENET.sys [2004-04-02 94276]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2004-02-24 10368]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 3xHybrid;3xHybrid service; C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2005-05-18 2679168]
S3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2003-12-11 391424]
S3 ALSysIO;ALSysIO; \??\C:\DOCUME~1\Chiko\LOCALS~1\Temp\ALSysIO.sys []
S3 ATP;Comodo EasyVPN Miniport Driver; C:\WINDOWS\system32\DRIVERS\cmdatp.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\Chiko\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cpuz130;cpuz130; \??\C:\DOCUME~1\Chiko\LOCALS~1\Temp\cpuz130\cpuz_x32.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NPPTNT2;NPPTNT2; \??\C:\WINDOWS\system32\npptNT2.sys []
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-05-09 47360]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\WINDOWS\system32\drivers\ScreamingBAudio.sys [2009-12-01 34384]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WBHWDOCT;Winbond GPIO Driver1; C:\WINDOWS\System32\drivers\WBHWDOCT.sys []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\WINDOWS\system32\DRIVERS\wdcsam.sys [2011-02-16 11520]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-05-04 364544]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-11-30 75136]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-09-16 3273088]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R2 WDFME;WD File Management Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1060864]
R2 WDSC;WD File Management Shadow Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 484352]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2005-05-03 516096]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; D:\Program Files\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-11-23 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-11-17 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2008-10-16 72704]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Nahoru
Blein
Návštěvník
Návštěvník
Příspěvky: 208
Registrován: 28 srp 2008 11:18

Re: Log z RSIT kontrola PC

#4 Příspěvek od Blein »

Zde přikládám ještě MBAM log :


Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2014.01.12.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Chiko :: MICHAL [administrátor]

1.1.2004 0:28:28
MBAM-log-2004-01-01 (02-14-58).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 353343
Uplynulý čas: 1 hodin, 20 minut, 50 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 2
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\Systweak\RegClean Pro (PUP.Optional.RegCleanerPro.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 2
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0D1Q1F2Z1K1K1RtF0XtH0V -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|42339 (Trojan.Agent) -> Data: C:\DOCUME~1\ALLUSE~1\LOCALS~1\Temp\mswdbr.exe -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 2
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Špatný: (http://zonedirector.com/1/) Dobrý: (http://www.google.com) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Špatný: (http://startsear.ch/?aff=1) Dobrý: (http://www.google.com) -> Nebyla provedena žádná instrukce.

Nalezené složky: 3
C:\Documents and Settings\Chiko\Data aplikací\Babylon (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\OpenCandy\OpenCandy_31D5C58D2D83407DBF1F363ABA353F88 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 36
C:\Documents and Settings\Chiko\Data aplikací\1101542123391.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\167861203023021.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\191461683815279.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\19765830628406.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\2194563779478.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\280692608516093.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\28780789126385.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\302001093122903.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\explorer.exe (Heuristics.Shuriken) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\professuhnl.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\regsrv64.exe (Heuristics.Shuriken) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\3058258402029.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\4646932727418.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\5459203704292.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\62281318523649.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\7202761329112.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\OpenCandy\OpenCandy_31D5C58D2D83407DBF1F363ABA353F88\LatestDLMgr.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\R-344233-5553-2-32\winlogon.exe (Backdoor.Agent.EPGen) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\M-10-8754-3862-7956\winmgr.exe (Worm.AutoRun) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\M-15-78493-4571-6736\wincvd.exe (Worm.AutoRun) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\M-15-78493-98764571-97667\wincvfd.exe (Worm.AutoRun) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ája\Data aplikací\165441262711866.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ája\Data aplikací\professuhnl.exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ája\Data aplikací\web2net.exe (Trojan.Downloader) -> Nebyla provedena žádná instrukce.
C:\Qoobox\Quarantine\C\Documents and Settings\All Users\Data aplikací\6F638BBA00481866004D87E67B07D329\6F638BBA00481866004D87E67B07D329.exe.vir (Trojan.LameShield) -> Nebyla provedena žádná instrukce.
C:\Qoobox\Quarantine\C\Documents and Settings\Chiko\Data aplikací\svchost64.exe.vir (Trojan.BCMiner) -> Nebyla provedena žádná instrukce.
C:\Qoobox\Quarantine\C\Documents and Settings\Chiko\M-10-6897-8685-3464\winmgr.exe.vir (Trojan.Downloader) -> Nebyla provedena žádná instrukce.
C:\Qoobox\Quarantine\C\Documents and Settings\Chiko\M-10-8754-86589h-555h5\winhora.exe.vir (Trojan.Downloader) -> Nebyla provedena žádná instrukce.
C:\Qoobox\Quarantine\C\WINDOWS\system32\wmpsh64.exe.vir (Backdoor.Bot) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\system32\enixo.exe (Spyware.Password.H) -> Nebyla provedena žádná instrukce.
D:\michal\filmy\BsPlayer Pro 2.63 keys+keygen[CORE] by Senzati\BsPlayer Pro 2.63 keys+keygen[CORE] by Senzati\keygen bs player[CORE].exe (Trojan.Agent) -> Nebyla provedena žádná instrukce.
D:\michal\filmy\BsPlayer Pro 2.63 keys+keygen[CORE] by Senzati\BsPlayer Pro 2.63 keys+keygen[CORE] by Senzati\keygen bs player[CORE].rar (Trojan.Agent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\msnsvconfig.txt (Malware.Trace) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\OpenCandy\OpenCandy_31D5C58D2D83407DBF1F363ABA353F88\1193.ico (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Chiko\Data aplikací\OpenCandy\OpenCandy_31D5C58D2D83407DBF1F363ABA353F88\pcspeedup.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

(konec)
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Log z RSIT kontrola PC

#5 Příspěvek od vyosek »

Zdravim :)

:arrow: Nalezy MBAMu smazte

:arrow: Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/
  • Ulozte nejlepe na Plochu a rozbalte
  • Spustte kliknutim na mbar
  • Nyni postupne kliknete na Next a Update
  • Po dokonceni update (aktualizace) databaze kliknete opet na Next
  • Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC
  • Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko
  • Tez zkontrolujte, jetsli je zatrzitko u Create Restore point
  • Nyni kliknete na CleanUp cimz nalezenou infekci odstranime
  • PC bude restartovan
  • Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Blein
Návštěvník
Návštěvník
Příspěvky: 208
Registrován: 28 srp 2008 11:18

Re: Log z RSIT kontrola PC

#6 Příspěvek od Blein »

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.07.0.1008

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 6.0.2900.5512

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 1.002000 GHz
Memory total: 536334336, free: 248586240

Downloaded database version: v2014.01.13.06
Downloaded database version: v2013.12.18.01
=======================================
Initializing...
------------ Kernel report ------------
01/01/2004 00:21:47
------------ Loaded modules -----------
\WINDOWS\system32\ntoskrnl.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ypws.sys
sptd.sys
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
pciide.sys
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
MountMgr.sys
ftdisk.sys
PartMgr.sys
VolSnap.sys
atapi.sys
disk.sys
\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
fltmgr.sys
sr.sys
PxHelp20.sys
KSecDD.sys
Ntfs.sys
NDIS.sys
speedfan.sys
sfvfs02.sys
sfhlp02.sys
sfhlp01.sys
sfdrv01.sys
prosync1.sys
\WINDOWS\System32\drivers\SCSIPORT.SYS
prohlp02.sys
Mup.sys
giveio.sys
\SystemRoot\system32\DRIVERS\amdk7.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\NVENET.sys
\SystemRoot\system32\drivers\ALCXWDM.SYS
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\DRIVERS\imapi.sys
\SystemRoot\system32\drivers\pfc.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\redbook.sys
\SystemRoot\system32\DRIVERS\ati2mtag.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\fdc.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\system32\DRIVERS\parport.sys
\SystemRoot\system32\DRIVERS\gameenum.sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\flpydisk.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\SystemRoot\System32\Drivers\aswTdi.SYS
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\System32\Drivers\AswRdr.SYS
\SystemRoot\System32\drivers\ws2ifsl.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\System32\drivers\prodrv06.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\Drivers\Fips.SYS
\SystemRoot\System32\Drivers\aswSP.SYS
\SystemRoot\System32\Drivers\aswSnx.SYS
\SystemRoot\System32\Drivers\Aavmker4.SYS
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\Cdfs.SYS
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_WMILIB.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\ati2dvag.dll
\SystemRoot\System32\ati2cqag.dll
\SystemRoot\System32\atikvmag.dll
\SystemRoot\System32\ati3duag.dll
\SystemRoot\System32\ativvaxx.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\System32\Drivers\aswFsBlk.SYS
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\System32\Drivers\aswMon2.SYS
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\SystemRoot\system32\DRIVERS\mrxdav.sys
\SystemRoot\System32\Drivers\ParVdm.SYS
\SystemRoot\System32\Drivers\SENTINEL.SYS
\SystemRoot\System32\Drivers\adfs.SYS
\??\C:\WINDOWS\system32\drivers\hardlock.sys
\SystemRoot\System32\Drivers\Fastfat.SYS
\SystemRoot\system32\DRIVERS\srv.sys
\SystemRoot\System32\Drivers\HTTP.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
\WINDOWS\system32\ntdll.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff832e9ab8
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-3\
Lower Device Object: 0xffffffff8337ed98
Lower Device Driver Name: \Driver\atapi\
IRP handler 0 of \Driver\atapi is hooked
IRP handler 2 of \Driver\atapi is hooked
IRP handler 14 of \Driver\atapi is hooked
IRP handler 22 of \Driver\atapi is hooked
IRP handler 23 of \Driver\atapi is hooked
IRP handler 27 of \Driver\atapi is hooked
Unhooking enabled.
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff832e9ab8
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-3\
Lower Device Object: 0xffffffff8337ed98
Lower Device Driver Name: \Driver\atapi\
Driver name found: atapi
Initialization returned 0x0
Load Function returned 0x0
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff832e9ab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff832ea958, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff832e9ab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff832f7ca8, DeviceName: \Device\0000006e\, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff8337ed98, DeviceName: \Device\Ide\IdeDeviceP0T0L0-3\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0xffffffffe1f70290, 0xffffffff832e9ab8, 0xffffffffffb70898
Lower DeviceData: 0xffffffffe18a8150, 0xffffffff8337ed98, 0xffffffff8332e278
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Read File: File "C:\WINDOWS\system32\drivers\3xHybrid.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\3xHybrid.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\acpiec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\acpiec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\adv01nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\adv01nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\adv02nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\adv02nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\adv05nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\adv05nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\adv07nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\adv07nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\adv08nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\adv08nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\adv09nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\adv09nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\adv11nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\adv11nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\aec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\aec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\agp440.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\agp440.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\agpcpq.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\agpcpq.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ALCXSENS.SYS" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ALCXSENS.SYS" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mssmbios.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mssmbios.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mstee.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mstee.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mtlmnt5.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mtlmnt5.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mtlstrm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mtlstrm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mtxparhm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mtxparhm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mutohpen.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mutohpen.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nabtsfec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nabtsfec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ndis.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ndis.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ndisip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ndisip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ndisuio.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ndisuio.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ndiswan.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ndiswan.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ndproxy.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ndproxy.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\netbios.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\netbios.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\netbt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\netbt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\netwlan5.img" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\netwlan5.img" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nic1394.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nic1394.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nikedrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nikedrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nmnt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nmnt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\npfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\npfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ntfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ntfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ntmtlfax.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ntmtlfax.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\null.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\null.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nv4_mini.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nv4_mini.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\NVENET.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\NVENET.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nwlnkflt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nwlnkflt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nwlnkfwd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nwlnkfwd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nwlnkipx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nwlnkipx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nwlnknb.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nwlnknb.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\nwlnkspx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\nwlnkspx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rdbss.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rdbss.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rdpcdd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rdpcdd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rdpdr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rdpdr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\recagent.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\recagent.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\redbook.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\redbook.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rfcomm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rfcomm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rio8drv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rio8drv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\riodrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\riodrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rmcast.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rmcast.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rndismp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rndismp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rndismpx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rndismpx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rootmdm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rootmdm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\s3gnbm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\s3gnbm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\scsiport.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\scsiport.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sdbus.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sdbus.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\secdrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\secdrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\SENTINEL.SYS" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\SENTINEL.SYS" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\fastfat.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\fastfat.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\fdc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\fdc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\fips.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\fips.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\flpydisk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\flpydisk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\fltmgr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\fltmgr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\fsvga.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\fsvga.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\fs_rec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\fs_rec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ftdisk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ftdisk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\gagp30kx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\gagp30kx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\gameenum.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\gameenum.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\gm.dls" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\gm.dls" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\gmreadme.txt" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\gmreadme.txt" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\hardlock.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\hardlock.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\hdaudbus.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\hdaudbus.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\hidbth.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\hidbth.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\hidclass.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\hidclass.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\hidir.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\hidir.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\hidparse.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\hidparse.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\hsfbs2s2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\hsfbs2s2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\hsfcxts2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\hsfcxts2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\hsfdpsp2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\hsfdpsp2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\http.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\http.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\i8042prt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\i8042prt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\imapi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\imapi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\intelppm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\intelppm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ip6fw.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ip6fw.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\srv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\srv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\streamip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\streamip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\swenum.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\swenum.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\swmidi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\swmidi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sysaudio.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sysaudio.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\tape.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\tape.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\tcpip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\tcpip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\tcpip6.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\tcpip6.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\tdi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\tdi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\tdpipe.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\tdpipe.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\tdtcp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\tdtcp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\termdd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\termdd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\tosdvd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\tosdvd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\tsbvcap.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\tsbvcap.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\tunmp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\tunmp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\uagp35.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\uagp35.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\udfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\udfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\update.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\update.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usb8023.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usb8023.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usb8023x.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usb8023x.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbcamd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbcamd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbcamd2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbcamd2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ipinip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ipinip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ipnat.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ipnat.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ipsec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ipsec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\irenum.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\irenum.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\isapnp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\isapnp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\kbdclass.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\kbdclass.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\kmixer.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\kmixer.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ks.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ks.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mcd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mcd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mdmxsdk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mdmxsdk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mf.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mf.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mnmdd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mnmdd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\modem.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\modem.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mouclass.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mouclass.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mountmgr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mountmgr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mpe.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mpe.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mrxdav.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mrxdav.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\msdv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\msdv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\msfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\msfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\msgpc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\msgpc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mskssrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mskssrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mspclock.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mspclock.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\alim1541.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\alim1541.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1xsxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1xsxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atv01nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atv01nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\cdaudio.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\cdaudio.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ipfltdrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ipfltdrv.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\mspqm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\mspqm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\oprghdlr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\oprghdlr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rawwan.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rawwan.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\serenum.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\serenum.sys" is compressed (flags = 1)
File user open failed: C:\WINDOWS\SYSTEM32\drivers\sptd.sys (0x00000020)
Read File: File "C:\WINDOWS\system32\drivers\usbd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\cdfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\cdfs.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\cdr4_xp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\cdr4_xp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\cdralw2k.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\cdralw2k.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\cdrom.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\cdrom.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ch7xxnt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ch7xxnt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\cinemst2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\cinemst2.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\classpnp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\classpnp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\cpqdap01.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\cpqdap01.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\crusoe.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\crusoe.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\cxthsfs2.cty" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\cxthsfs2.cty" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\disk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\disk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\diskdump.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\diskdump.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\dmboot.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\dmboot.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\dmio.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\dmio.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\dmload.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\dmload.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\dmusic.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\dmusic.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\drmkaud.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\drmkaud.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\dxapi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\dxapi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\dxgthk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\dxgthk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\p3.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\p3.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\parport.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\parport.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\partmgr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\partmgr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\parvdm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\parvdm.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\pci.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\pci.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\pciide.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\pciide.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\pciidex.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\pciidex.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\pcmcia.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\pcmcia.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\pcouffin.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\pcouffin.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\pfc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\pfc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\processr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\processr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\psched.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\psched.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ptilink.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ptilink.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\PxHelp20.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\PxHelp20.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rasacd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rasacd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\rasl2tp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\rasl2tp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\raspppoe.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\raspppoe.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\raspptp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\raspptp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\raspti.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\raspti.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbehci.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbehci.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbhub.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbhub.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbintel.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbintel.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbohci.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbohci.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbport.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbport.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbprint.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbprint.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbstor.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbstor.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\usbvideo.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\usbvideo.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\vchnt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\vchnt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\vdmindvd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\vdmindvd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\vga.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\vga.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\viaagp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\viaagp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\videoprt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\videoprt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\volsnap.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\volsnap.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\wacompen.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\wacompen.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\wadv07nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\wadv07nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\wadv08nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\wadv08nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\wadv09nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\wadv09nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\wadv11nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\wadv11nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\wanarp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\wanarp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\watv06nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\watv06nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\watv10nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\watv10nt.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\wdmaud.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\wdmaud.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\wmilib.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\wmilib.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ws2ifsl.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ws2ifsl.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\wstcodec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\wstcodec.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atv02nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atv02nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atv04nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atv04nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atv06nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atv06nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atv10nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atv10nt5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\audstub.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\audstub.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\BdaSup.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\BdaSup.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\beep.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\beep.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\bridge.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\bridge.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\bthenum.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\bthenum.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\bthmodem.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\bthmodem.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\bthpan.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\bthpan.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\bthport.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\bthport.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\bthprint.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\bthprint.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\bthusb.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\bthusb.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\cbidf2k.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\cbidf2k.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ccdecode.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ccdecode.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati2erec.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati2erec.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati2mtaa.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati2mtaa.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati2mtag.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati2mtag.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atinbtxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atinbtxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atinmdxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atinmdxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atinpdxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atinpdxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atinraxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atinraxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atinrvxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atinrvxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atinsnxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atinsnxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atinttxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atinttxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atintuxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atintuxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atinxbxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atinxbxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atinxsxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atinxsxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ativmc20.cod" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ativmc20.cod" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atmarpc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atmarpc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atmepvc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atmepvc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atmlane.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atmlane.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atmuni.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atmuni.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\serial.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\serial.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sfdrv01.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sfdrv01.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sffdisk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sffdisk.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sffp_mmc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sffp_mmc.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sffp_sd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sffp_sd.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sfhlp02.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sfhlp02.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sfloppy.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sfloppy.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sfvfs02.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sfvfs02.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\siint5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\siint5.dll" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sisagp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sisagp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\slip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\slip.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\slnt7554.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\slnt7554.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\slntamr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\slntamr.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\slnthal.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\slnthal.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\slwdmsup.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\slwdmsup.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\smbali.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\smbali.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\smclib.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\smclib.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\sonydcam.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\sonydcam.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\splitter.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\splitter.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\amdagp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\amdagp.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\amdk6.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\amdk6.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\amdk7.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\amdk7.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\arp1394.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\arp1394.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\asyncmac.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\asyncmac.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\atapi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\atapi.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1btxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1btxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1mdxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1mdxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1pdxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1pdxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1raxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1raxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1rvxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1rvxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1snxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1snxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1ttxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1ttxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1tuxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1tuxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\system32\drivers\ati1xbxx.sys" is compressed (flags = 1)
Read File: File "C:\WINDOWS\SYSTEM32\drivers\ati1xbxx.sys" is compressed (flags = 1)
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: F954F954

Partition information:

Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 63 Numsec = 102398247
Partition file system is NTFS
Partition is bootable

Partition 1 type is Extended with LBA (0xf)
Partition is NOT ACTIVE.
Partition starts at LBA: 102398310 Numsec = 210162330

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Disk Size: 160041885696 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-312561808-312581808)...
Done!
Read File: File "C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat" is compressed (flags = 1)
Scan finished
=======================================


Removal queue found; removal started
Removing C:\Documents and Settings\All Users\Data aplikací\Malwarebytes' Anti-Malware (portable)\MBR_0_i.mbam...
Removing C:\Documents and Settings\All Users\Data aplikací\Malwarebytes' Anti-Malware (portable)\Bootstrap_0_0_63_i.mbam...
Removing C:\Documents and Settings\All Users\Data aplikací\Malwarebytes' Anti-Malware (portable)\MBR_0_r.mbam...
Removal finished
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Log z RSIT kontrola PC

#7 Příspěvek od vyosek »

Poprosim o tento log C:\ComboFix.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Blein
Návštěvník
Návštěvník
Příspěvky: 208
Registrován: 28 srp 2008 11:18

Re: Log z RSIT kontrola PC

#8 Příspěvek od Blein »

ComboFix 13-12-24.02 - Chiko 25.12.2013 13:05:32.27.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.511.332 [GMT 1:00]
Spuštěný z: c:\documents and settings\Chiko\Plocha\combofix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\END
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-11-25 do 2013-12-25 )))))))))))))))))))))))))))))))
.
.
2013-12-23 14:41 . 2013-12-24 17:48 -------- d--h--r- c:\documents and settings\Chiko\Recent
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\Currentversion\policies\explorer\Run]
"42339"="c:\docume~1\ALLUSE~1\LOCALS~1\Temp\mswdbr.exe" [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0autocheck lsdelete\0sremcon.exe
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^GamePark klient 2.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\GamePark klient 2.lnk
backup=c:\windows\pss\GamePark klient 2.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^Chiko^Nabídka Start^Programy^Po spuštění^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
path=c:\documents and settings\Chiko\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2013-02-05 21:09 116648 ----atw- c:\documents and settings\Chiko\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder]
2005-03-18 11:18 98304 ----a-r- c:\program files\Hewlett-Packard\OrderReminder\OrderReminder.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2007-04-16 13:28 577536 ----a-w- c:\windows\soundman.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\uTorrent - portable\\utorrent.exe"=
"c:\\Program Files\\MirandaPack\\miranda32.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\Program Files\\NHL 09\\nhl2009.exe"=
"c:\\Program Files\\Winamp\\winamp.exe"=
"c:\documents and settings\Chiko\P-7-78-8964-9648-3874\windll.exe"=
"c:\\Documents and Settings\\Chiko\\Data aplikací\\R-344233-5553-2-32\\winlogon.exe"=
"c:\documents and settings\Chiko\P-7-78-8964-9648-3874\winpvc.exe"=
"d:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"c:\\Documents and Settings\\Chiko\\M-15-78493-4571-6736\\wincvd.exe"=
"c:\\Documents and Settings\\Chiko\\M-15-78493-98764571-97667\\wincvfd.exe"=
"c:\\Documents and Settings\\Ája\\Data aplikací\\165441262711866.exe"=
"c:\\Documents and Settings\\Ája\\Data aplikací\\professuhnl.exe"=
"c:\\Documents and Settings\\Chiko\\Data aplikací\\167861203023021.exe"=
"c:\\Documents and Settings\\Chiko\\Data aplikací\\professuhnl.exe"=
"c:\\Documents and Settings\\Chiko\\Data aplikací\\1101542123391.exe"=
"c:\\Documents and Settings\\Chiko\\Data aplikací\\191461683815279.exe"=
"c:\\Documents and Settings\\Chiko\\Data aplikací\\7202761329112.exe"=
"c:\\Documents and Settings\\Chiko\\M-10-8754-3862-7956\\winmgr.exe"=
"d:\\Program Files\\SopCast\\SopCast.exe"=
"d:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
"56955:TCP"= 56955:TCP:Pando Media Booster
"56955:UDP"= 56955:UDP:Pando Media Booster
.
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2.1.2013 20:18 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2.1.2013 20:18 361032]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2.1.2013 20:18 21256]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [1.1.2004 3:18 11520]
S2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [16.9.2013 11:29 3273088]
S2 SkypeUpdate;Skype Updater;d:\program files\Skype\Updater\Updater.exe [28.2.2013 19:09 161384]
S3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [18.5.2008 10:55 2679168]
S3 ALSysIO;ALSysIO;\??\c:\docume~1\Chiko\LOCALS~1\Temp\ALSysIO.sys --> c:\docume~1\Chiko\LOCALS~1\Temp\ALSysIO.sys [?]
S3 ATP;Comodo EasyVPN Miniport Driver;c:\windows\system32\DRIVERS\cmdatp.sys --> c:\windows\system32\DRIVERS\cmdatp.sys [?]
S3 cpuz130;cpuz130;\??\c:\docume~1\Chiko\LOCALS~1\Temp\cpuz130\cpuz_x32.sys --> c:\docume~1\Chiko\LOCALS~1\Temp\cpuz130\cpuz_x32.sys [?]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [9.5.2008 10:15 47360]
S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [1.12.2009 15:49 34384]
.
Obsah adresáře 'Naplánované úlohy'
.
2013-12-25 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-01-02 22:50]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://zonedirector.com/1/
mStart Page = hxxp://startsear.ch/?aff=1
uInternet Connection Wizard,ShellNext = iexplore
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.30.0.1 8.8.8.8
.
.
------- Asociace souborů -------
.
.scr=AutoCADScript
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-AlcoholAutomount - c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-12-25 13:20
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(772)
c:\windows\system32\Ati2evxx.dll
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
Celkový čas: 2013-12-25 13:24:49
ComboFix-quarantined-files.txt 2013-12-25 12:24
ComboFix2.txt 2013-08-28 11:09
ComboFix3.txt 2013-06-26 17:59
ComboFix4.txt 2013-05-22 18:08
ComboFix5.txt 2013-12-25 11:10
.
Před spuštěním: Volných bajtů: 11 943 804 928
Po spuštění: Volných bajtů: 11 931 279 360
.
- - End Of File - - B1F9A9C5AFA44C1B5FB91C9C015903F4
413FC2A0C716421B3158746D63736515
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Log z RSIT kontrola PC

#9 Příspěvek od vyosek »

:arrow: Pokud nemate, tak presunte Combofix na plochu
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    KillAll::

Registry::
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
"AdobeCS4ServiceManager"=-
"GrooveMonitor"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"42339"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^GamePark klient 2.lnk]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Documents and Settings\Chiko\P-7-78-8964-9648-3874\windll.exe"=-
"C:\Documents and Settings\Chiko\Data aplikací\R-344233-5553-2-32\winlogon.exe"=-
"C:\Documents and Settings\Chiko\P-7-78-8964-9648-3874\winpvc.exe"=-
"C:\Documents and Settings\Chiko\M-15-78493-4571-6736\wincvd.exe"=-
"C:\Documents and Settings\Chiko\M-15-78493-98764571-97667\wincvfd.exe"=-
"C:\Documents and Settings\Ája\Data aplikací\165441262711866.exe"=-
"C:\Documents and Settings\Ája\Data aplikací\professuhnl.exe"=-
"C:\Documents and Settings\Chiko\Data aplikací\167861203023021.exe"="-
"C:\Documents and Settings\Chiko\Data aplikací\professuhnl.exe"=-
"C:\Documents and Settings\Chiko\Data aplikací\1101542123391.exe"=-
"C:\Documents and Settings\Chiko\Data aplikací\191461683815279.exe"=-
"C:\Documents and Settings\Chiko\Data aplikací\7202761329112.exe"=-
"C:\Documents and Settings\Chiko\M-10-8754-3862-7956\winmgr.exe"=-

Folder::
C:\Documents and Settings\Chiko\M-10-8754-3862-7956
C:\Documents and Settings\Chiko\Data aplikací\R-344233-5553-2-32
C:\Documents and Settings\Chiko\P-7-78-8964-9648-3874

Collect::
C:\Documents and Settings\Chiko\Data aplikací\3058258402029.exe
C:\Documents and Settings\Chiko\Data aplikací\302001093122903.exe
C:\Documents and Settings\Chiko\Data aplikací\7202761329112.exe
C:\Documents and Settings\Chiko\Data aplikací\professuhnl.exe
C:\Documents and Settings\Chiko\Data aplikací\regsrv64.exe

ClearJavaCache::

Reboot::
  • Ulozte vytvoreny TXT jako CFScript.txt
  • Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
    Obrázek
  • Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte
:arrow: Pokud vyskoci hlaska "Pokus pouzit neplatnou operaci na klic registru, ktery je oznacen pro odstraneni", tak jen restartujte PC - registr se da do kupy - jedna se o vnitrni chybu, kterou zpusobuje CF a autor ji zatim neumi bohuzel opravit

:arrow: Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Blein
Návštěvník
Návštěvník
Příspěvky: 208
Registrován: 28 srp 2008 11:18

Re: Log z RSIT kontrola PC

#10 Příspěvek od Blein »

ComboFix 14-01-13.01 - Chiko 01.01.2004 3:50.28.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.511.224 [GMT 1:00]
Spuštěný z: c:\documents and settings\Chiko\Plocha\combofix.exe
Použité ovládací přepínače :: c:\documents and settings\Chiko\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Chiko\M-10-8754-3862-7956
.
Nakažená kopie c:\windows\system32\msgsvc.dll byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\ERDNT\cache\msgsvc.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2003-12-01 do 2004-01-01 )))))))))))))))))))))))))))))))
.
.
2013-02-24 15:42 . 2013-02-24 15:42 -------- d-----w- C:\Microgaming
2013-02-19 15:28 . 2013-02-19 15:28 -------- d-----w- C:\Downloads
2012-12-29 22:40 . 2012-12-29 22:40 -------- d-----w- C:\rsit
2011-11-16 18:50 . 2011-11-16 18:50 -------- d-----r- C:\MSOCache
2009-03-17 22:03 . 2010-02-06 18:57 -------- d-----w- C:\f476242afb5ead956495f10a89
2008-05-08 14:01 . 2003-12-31 23:15 -------- d-----w- C:\Program Files
2008-05-08 14:00 . 2011-01-03 11:39 -------- d-----w- C:\Documents and Settings
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-27 16:37 . 2012-07-27 16:37 20 ----a-w- c:\documents and settings\Chiko\Data aplikací\D9293FD.tmp
2012-04-22 21:18 . 2012-07-03 15:09 17920 ----a-w- c:\documents and settings\Chiko\Data aplikací\OpenCL.dll
2012-04-15 07:55 . 2012-07-03 15:09 262144 ----a-w- c:\documents and settings\Chiko\Data aplikací\wingpu64.exe
2012-02-23 20:06 . 2012-07-03 15:09 68096 ----a-w- c:\documents and settings\Chiko\Data aplikací\pthreadGC2.dll
2012-02-23 20:06 . 2012-07-03 15:09 87054 ----a-w- c:\documents and settings\Chiko\Data aplikací\libpdcurses.dll
2012-02-23 20:06 . 2012-07-03 15:09 249344 ----a-w- c:\documents and settings\Chiko\Data aplikací\libcurl-4.dll
2011-11-30 15:50 . 2010-09-24 19:33 138056 ----a-w- c:\documents and settings\Chiko\Data aplikací\PnkBstrK.sys
2010-03-18 08:15 . 2010-03-18 08:15 36176 ----a-w- c:\windows\system32\mfc100cht.dll
2010-03-18 08:15 . 2010-03-18 08:15 36176 ----a-w- c:\windows\system32\mfc100chs.dll
2008-05-09 13:58 . 2008-05-09 09:15 87608 -c--a-w- c:\documents and settings\Chiko\Data aplikací\inst.exe
2008-05-09 13:58 . 2008-05-09 09:15 47360 -c--a-w- c:\documents and settings\Chiko\Data aplikací\pcouffin.sys
2008-04-14 03:22 . 2008-05-08 12:07 150528 -c--a-w- c:\windows\pchealth\UploadLB\Binaries\uploadm.exe
2008-04-14 03:22 . 2004-08-18 12:00 14336 ----a-w- c:\windows\system32\svchost.exe
2008-04-14 03:22 . 2008-05-08 12:07 171008 -c--a-w- c:\windows\pchealth\helpctr\binaries\msconfig.exe
2008-04-14 03:22 . 2008-05-08 12:07 18432 -c--a-w- c:\windows\pchealth\helpctr\binaries\hscupd.exe
2008-04-14 03:22 . 2008-05-08 12:07 769024 -c--a-w- c:\windows\pchealth\helpctr\binaries\helpctr.exe
2008-04-14 03:22 . 2008-05-08 12:07 744448 -c--a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2008-04-14 03:22 . 2004-08-18 12:00 601088 -c--a-w- c:\windows\system32\autochk.exe
2008-04-14 03:22 . 2004-08-18 12:00 278528 ------w- c:\windows\system32\webcheck.dll
2008-04-14 03:22 . 2008-04-14 03:22 11325 -c----w- c:\windows\system32\drivers\vchnt5.dll
2008-04-14 03:22 . 2004-08-18 12:00 279040 -c--a-w- c:\windows\help\tshoot.dll
2008-04-14 03:22 . 2008-05-08 12:07 726590 -c--a-w- c:\windows\srchasst\srchui.dll
2008-04-14 03:22 . 2008-05-08 12:07 58434 -c--a-w- c:\windows\srchasst\srchctls.dll
2008-04-14 03:22 . 2004-08-18 12:00 33280 -c--a-w- c:\windows\help\sstub.dll
2008-04-14 03:21 . 2004-08-18 12:00 34816 -c--a-w- c:\windows\help\sniffpol.dll
2008-04-14 03:21 . 2004-08-18 12:00 79872 ----a-w- c:\windows\system32\raschap.dll
2008-04-14 03:21 . 2008-05-08 12:07 38400 -c--a-w- c:\windows\pchealth\helpctr\binaries\pchsvc.dll
2008-04-14 03:21 . 2008-05-08 12:07 102912 -c--a-w- c:\windows\pchealth\helpctr\binaries\pchshell.dll
2008-04-14 03:21 . 2008-05-08 12:07 3166208 -c--a-w- c:\windows\srchasst\msgr3en.dll
2008-04-14 03:21 . 2008-05-08 12:07 378880 -c--a-w- c:\windows\pchealth\helpctr\binaries\msinfo.dll
2008-04-14 03:21 . 2004-08-18 12:00 451072 -c--a-w- c:\windows\apppatch\aclayers.dll
2008-04-14 03:21 . 2004-08-18 12:00 245248 -c--a-w- c:\windows\apppatch\acspecfc.dll
2008-04-14 03:21 . 2004-08-18 12:00 1852928 ----a-w- c:\windows\apppatch\acgenral.dll
2008-04-14 03:21 . 2004-08-18 12:00 141312 -c--a-w- c:\windows\apppatch\aclua.dll
2008-04-14 03:21 . 2004-08-18 12:00 116224 -c--a-w- c:\windows\apppatch\acxtrnal.dll
2008-04-14 03:21 . 2008-04-14 03:21 39424 ------w- c:\windows\apppatch\acadproc.dll
2008-04-13 18:45 . 2001-08-17 22:03 25728 -c--a-w- c:\windows\system32\drivers\usbcamd2.sys
2008-04-13 18:45 . 2001-08-17 22:03 25600 -c--a-w- c:\windows\system32\drivers\usbcamd.sys
2008-03-25 04:50 . 2004-08-18 12:00 518944 -c--a-w- c:\windows\system32\msexch40.dll
2004-08-18 12:00 . 2008-05-08 12:08 99840 -c--a-w- c:\windows\pchealth\helpctr\binaries\HelpHost.exe
2004-08-18 12:00 . 2008-05-08 12:08 7168 -c--a-w- c:\windows\pchealth\helpctr\binaries\HCAppRes.dll
2004-08-18 12:00 . 2008-05-08 12:08 35328 -c--a-w- c:\windows\pchealth\helpctr\binaries\notiflag.exe
2004-08-18 12:00 . 2008-05-08 12:08 21504 -c--a-w- c:\windows\pchealth\helpctr\binaries\brpinfo.dll
2004-08-18 12:00 . 2008-05-08 12:06 35328 -c--a-w- c:\windows\system32\winchat.exe
2004-08-18 12:00 . 2004-08-18 12:00 3374640 -c--a-w- c:\windows\help\Tours\mmTour\tour.exe
2004-08-18 12:00 . 2004-08-18 12:00 152576 -c--a-w- c:\windows\help\bnts.dll
2004-08-18 12:00 . 2001-10-24 12:25 77891 -c--a-w- c:\windows\system32\usrmlnka.exe
2004-08-18 12:00 . 2001-10-24 12:25 69700 -c--a-w- c:\windows\system32\usrshuta.exe
2004-08-18 12:00 . 2001-10-24 12:25 56320 -c--a-w- c:\windows\system32\dvdplay.exe
2004-08-18 12:00 . 2001-10-24 12:25 13824 -c--a-w- c:\windows\system32\wowfaxui.dll
2004-08-18 12:00 . 2001-10-24 12:25 86073 -c--a-w- c:\windows\system32\usrfaxa.dll
2004-08-18 12:00 . 2001-10-24 12:25 8192 -c--a-w- c:\windows\system32\streamci.dll
2004-08-18 12:00 . 2001-10-24 12:25 77890 -c--a-w- c:\windows\system32\usrdpa.dll
2004-08-18 12:00 . 2001-10-24 12:25 77883 -c--a-w- c:\windows\system32\usrrtosa.dll
2004-08-18 12:00 . 2001-10-24 12:25 72192 -c--a-w- c:\windows\system32\sprio800.dll
2004-08-18 12:00 . 2001-10-24 12:25 70656 -c--a-w- c:\windows\system32\sprio600.dll
2004-08-18 12:00 . 2001-10-24 12:25 69699 -c--a-w- c:\windows\system32\usrcoina.dll
2004-08-18 12:00 . 2001-10-24 12:25 61500 -c--a-w- c:\windows\system32\usrcntra.dll
2004-08-18 12:00 . 2001-10-24 12:25 53305 -c--a-w- c:\windows\system32\usrlbva.dll
2004-08-18 12:00 . 2001-10-24 12:25 49211 -c--a-w- c:\windows\system32\usrvpa.dll
2004-08-18 12:00 . 2001-10-24 12:25 49211 -c--a-w- c:\windows\system32\usrsdpia.dll
2004-08-18 12:00 . 2001-10-24 12:25 49209 -c--a-w- c:\windows\system32\usrv80a.dll
2004-08-18 12:00 . 2001-10-24 12:25 45116 -c--a-w- c:\windows\system32\usrvoica.dll
2004-08-18 12:00 . 2001-10-24 12:25 41019 -c--a-w- c:\windows\system32\usrsvpia.dll
2004-08-18 12:00 . 2001-10-24 12:25 323641 -c--a-w- c:\windows\system32\usrdtea.dll
2004-08-18 12:00 . 2001-10-24 12:25 102457 -c--a-w- c:\windows\system32\usrv42a.dll
2004-08-18 12:00 . 2001-10-24 12:25 69632 -c--a-w- c:\windows\system32\spnike.dll
2004-08-18 12:00 . 2001-10-24 12:25 157696 -c--a-w- c:\windows\system32\paqsp.dll
2004-08-18 12:00 . 2001-10-24 12:24 147968 -c--a-w- c:\windows\system32\mdwmdmsp.dll
2004-08-18 12:00 . 2001-10-24 12:24 3200 -c--a-w- c:\windows\system32\wowfax.dll
2004-08-18 12:00 . 2001-10-24 11:55 12160 -c--a-w- c:\windows\system32\drivers\fsvga.sys
2004-08-18 12:00 . 2001-10-24 11:53 262528 -c--a-w- c:\windows\system32\drivers\cinemst2.sys
2004-08-18 12:00 . 2001-08-18 06:37 61508 -c--a-w- c:\windows\system32\usrprbda.exe
2004-08-18 12:00 . 2001-08-17 22:06 21376 -c--a-w- c:\windows\system32\drivers\tsbvcap.sys
2004-08-18 12:00 . 2001-08-17 22:02 58112 -c--a-w- c:\windows\system32\drivers\vdmindvd.sys
2004-08-18 12:00 . 2001-08-17 22:01 51712 -c--a-w- c:\windows\system32\drivers\tosdvd.sys
2004-08-18 12:00 . 2001-08-17 21:52 18688 -c--a-w- c:\windows\system32\drivers\cdaudio.sys
2004-08-18 12:00 . 2001-08-17 21:24 12032 -c--a-w- c:\windows\system32\drivers\riodrv.sys
2004-08-18 12:00 . 2001-08-17 21:24 12032 -c--a-w- c:\windows\system32\drivers\rio8drv.sys
2004-08-18 12:00 . 2001-08-17 21:24 12032 -c--a-w- c:\windows\system32\drivers\nikedrv.sys
2004-08-18 12:00 . 2001-08-17 21:24 11776 -c--a-w- c:\windows\system32\drivers\cpqdap01.sys
2003-12-31 23:02 . 2012-08-13 14:47 0 ---ha-w- c:\documents and settings\Chiko\Data aplikací\wincfg32.sys
2003-12-01 15:20 . 2003-12-01 15:20 4832 ----a-w- c:\windows\system32\drivers\sfhlp01.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0autocheck lsdelete\0sremcon.exe
.
[HKLM\~\startupfolder\C:^Documents and Settings^Chiko^Nabídka Start^Programy^Po spuštění^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
path=c:\documents and settings\Chiko\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2007-04-16 13:28 577536 ----a-w- c:\windows\soundman.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\uTorrent - portable\\utorrent.exe"=
"c:\\Program Files\\MirandaPack\\miranda32.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\Program Files\\NHL 09\\nhl2009.exe"=
"c:\\Program Files\\Winamp\\winamp.exe"=
"c:\documents and settings\Chiko\P-7-78-8964-9648-3874\windll.exe"=
"c:\documents and settings\Chiko\P-7-78-8964-9648-3874\winpvc.exe"=
"d:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"d:\\Program Files\\SopCast\\SopCast.exe"=
"d:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
"56955:TCP"= 56955:TCP:Pando Media Booster
"56955:UDP"= 56955:UDP:Pando Media Booster
.
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2.1.2013 20:18 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2.1.2013 20:18 361032]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2.1.2013 20:18 21256]
R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [16.9.2013 11:29 3273088]
R2 WDFME;WD File Management Engine;c:\program files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [9.3.2011 11:18 1060864]
R2 WDSC;WD File Management Shadow Engine;c:\program files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [9.3.2011 11:16 484352]
S2 SkypeUpdate;Skype Updater;d:\program files\Skype\Updater\Updater.exe [28.2.2013 19:09 161384]
S3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [18.5.2008 10:55 2679168]
S3 ALSysIO;ALSysIO;\??\c:\docume~1\Chiko\LOCALS~1\Temp\ALSysIO.sys --> c:\docume~1\Chiko\LOCALS~1\Temp\ALSysIO.sys [?]
S3 ATP;Comodo EasyVPN Miniport Driver;c:\windows\system32\DRIVERS\cmdatp.sys --> c:\windows\system32\DRIVERS\cmdatp.sys [?]
S3 cpuz130;cpuz130;\??\c:\docume~1\Chiko\LOCALS~1\Temp\cpuz130\cpuz_x32.sys --> c:\docume~1\Chiko\LOCALS~1\Temp\cpuz130\cpuz_x32.sys [?]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [1.1.2004 0:21 40776]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [9.5.2008 10:15 47360]
S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [1.12.2009 15:49 34384]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [1.1.2004 3:18 11520]
.
Obsah adresáře 'Naplánované úlohy'
.
2004-01-01 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-01-02 22:50]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
uInternet Connection Wizard,ShellNext = iexplore
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2004-01-01 06:15
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(776)
c:\windows\system32\Ati2evxx.dll
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
- - - - - - - > 'explorer.exe'(3920)
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2004-01-01 06:19:35 - počítač byl restartován
ComboFix-quarantined-files.txt 2004-01-01 05:19
ComboFix2.txt 2013-12-25 12:24
ComboFix3.txt 2013-08-28 11:09
ComboFix4.txt 2013-06-26 17:59
ComboFix5.txt 2004-01-01 01:27
.
Před spuštěním: Volných bajtů: 15 543 906 304
Po spuštění: Volných bajtů: 15 543 672 832
.
- - End Of File - - F0DBADA23B9030E4E5FC28B8DE6CCFAB
413FC2A0C716421B3158746D63736515
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Log z RSIT kontrola PC

#11 Příspěvek od vyosek »

Poprosim o log dle tohoto http://forum.viry.cz/viewtopic.php?f=13&t=133100
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Blein
Návštěvník
Návštěvník
Příspěvky: 208
Registrován: 28 srp 2008 11:18

Re: Log z RSIT kontrola PC

#12 Příspěvek od Blein »

Vyjeli mi 3 txt soubory, na ploše byly dva. Zde jsou zabalené v raru.
Přílohy
Plocha.rar
(83.28 KiB) Staženo 55 x
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Log z RSIT kontrola PC

#13 Příspěvek od vyosek »

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKCU\...\Policies\Explorer: [NoInstrumentation] 1
HKU\Administrator\...\RunOnce: [NeroHomeFirstStart] - "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe"
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe"
HKU\Ája\...\Run: [bonez.exe] - "C:\Documents and Settings\Ája\Data aplikací\bonez.exe"
HKU\Ája\...\Run: [none] - "C:\Documents and Settings\Ája\Data aplikací\bonez.exe"
HKU\Ája\...\Run: [owiny] - C:\DOCUME~1\JA5B1C~1\LOCALS~1\Temp\owiny.exe <===== ATTENTION

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM - (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} -  No File
URLSearchHook: HKCU - QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Ája\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
SearchScopes: HKLM - DefaultScope {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL = 
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://startsear.ch/?aff=1&src=sp&cf=04d0a7b0-f726-11e0-adc5-006087000712&q={searchTerms}
SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://startsear.ch/?aff=1&src=sp&cf=04d0a7b0-f726-11e0-adc5-006087000712&q={searchTerms}
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?client=ie&tb=SPC2&o=15000&src=crm&q={searchTerms}&locale=&apn_ptnrs=PV&apn_dtid=YYYYYYYYCZ&apn_uid=df0eb892-a6ee-4469-9be5-f1f1ab35c873&apn_sauid=136BED95-38FD-4E8D-9E61-E6EF1BEF49C0
SearchScopes: HKCU - {8AFC159C-0F4D-4703-8316-56C6BD3F6972} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2304157
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://startsear.ch/?aff=1&src=sp&cf=04d0a7b0-f726-11e0-adc5-006087000712&q={searchTerms}
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File

FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Ask.com
FF Homepage: hxxp://eu.ask.com/?l=dis&o=15003
FF Keyword.URL: hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=SPC2&o=15000&locale=en_EU&apn_uid=df0eb892-a6ee-4469-9be5-f1f1ab35c873&apn_ptnrs=PV&apn_sauid=136BED95-38FD-4E8D-9E61-E6EF1BEF49C0&apn_dtid=YYYYYYYYCZ&&q=
FF Homepage: hxxp://www.premierarticles.info
FF Homepage: hxxp://zonedirector.com/1/
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-1.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-2.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-3.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-4.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-5.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-6.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin.gif
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin.src
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\startsear.xml
FF Extension: Babylon - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\ffxtlbr@babylon.com [2004-01-01]
FF Extension: YouTube mp3 - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\info@youtube-mp3.org [2011-08-11]
FF Extension: NetVideoHunter - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\netvideohunter@netvideohunter.com [2011-08-11]
FF Extension: SpecialSavings - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\specialsavings@superfish.com [2004-01-01]
FF HKCU\...\Firefox\Extensions: [specialsavings@superfish.com] - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles/lwr2j0lq.default\extensions\specialsavings@superfish.com
FF Extension: SpecialSavings - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles/lwr2j0lq.default\extensions\specialsavings@superfish.com [2004-01-01]
FF Extension: ICQ Toolbar - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2011-08-11]

AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:888AFB86
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:B623B5B8
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:DFC5A2B2

Hosts:

End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Blein
Návštěvník
Návštěvník
Příspěvky: 208
Registrován: 28 srp 2008 11:18

Re: Log z RSIT kontrola PC

#14 Příspěvek od Blein »

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 15-01-2014 03
Ran by Chiko at 2004-01-01 00:36:38 Run:1
Running from C:\Documents and Settings\Chiko\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKCU\...\Policies\Explorer: [NoInstrumentation] 1
HKU\Administrator\...\RunOnce: [NeroHomeFirstStart] - "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe"
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - "C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe"
HKU\Ája\...\Run: [bonez.exe] - "C:\Documents and Settings\Ája\Data aplikací\bonez.exe"
HKU\Ája\...\Run: [none] - "C:\Documents and Settings\Ája\Data aplikací\bonez.exe"
HKU\Ája\...\Run: [owiny] - C:\DOCUME~1\JA5B1C~1\LOCALS~1\Temp\owiny.exe <===== ATTENTION

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.ph ... &ch_id=osd
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM - (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - No File
URLSearchHook: HKCU - QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Ája\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
SearchScopes: HKLM - DefaultScope {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} URL =
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://startsear.ch/?aff=1&src=sp&cf=04 ... earchTerms}
SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://startsear.ch/?aff=1&src=sp&cf=04 ... earchTerms}
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... EF1BEF49C0
SearchScopes: HKCU - {8AFC159C-0F4D-4703-8316-56C6BD3F6972} URL = http://search.conduit.com/ResultsExt.as ... =CT2304157
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://startsear.ch/?aff=1&src=sp&cf=04 ... earchTerms}
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No File

FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Ask.com
FF Homepage: hxxp://eu.ask.com/?l=dis&o=15003
FF Keyword.URL: hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=SPC2&o=15000&locale=en_EU&apn_uid=df0eb892-a6ee-4469-9be5-f1f1ab35c873&apn_ptnrs=PV&apn_sauid=136BED95-38FD-4E8D-9E61-E6EF1BEF49C0&apn_dtid=YYYYYYYYCZ&&q=
FF Homepage: hxxp://www.premierarticles.info
FF Homepage: hxxp://zonedirector.com/1/
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-1.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-2.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-3.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-4.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-5.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-6.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin.gif
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin.src
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\startsear.xml
FF Extension: Babylon - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\ffxtlbr@babylon.com [2004-01-01]
FF Extension: YouTube mp3 - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\info@youtube-mp3.org [2011-08-11]
FF Extension: NetVideoHunter - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\netvideohunter@netvideohunter.com [2011-08-11]
FF Extension: SpecialSavings - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\specialsavings@superfish.com [2004-01-01]
FF HKCU\...\Firefox\Extensions: [specialsavings@superfish.com] - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles/lwr2j0lq.default\extensions\specialsavings@superfish.com
FF Extension: SpecialSavings - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles/lwr2j0lq.default\extensions\specialsavings@superfish.com [2004-01-01]
FF Extension: ICQ Toolbar - C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2011-08-11]

AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:888AFB86
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:B3D74A13
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:B623B5B8
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:DFC5A2B2

Hosts:

End
*****************

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoInstrumentation => Value deleted successfully.
HKU\Administrator\Software\Microsoft\Windows\CurrentVersion\RunOnce\\NeroHomeFirstStart => Value deleted successfully.
HKU\Default User\Software\Microsoft\Windows\CurrentVersion\RunOnce\\NeroHomeFirstStart => Value deleted successfully.
HKU\Ája\Software\Microsoft\Windows\CurrentVersion\Run\\bonez.exe => Value deleted successfully.
HKU\Ája\Software\Microsoft\Windows\CurrentVersion\Run\\none => Value deleted successfully.
HKU\Ája\Software\Microsoft\Windows\CurrentVersion\Run\\owiny => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\ICQ Search => Value deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => Value was restored successfully.
HKLM\Software\Microsoft\Internet Explorer\URLSearchHooks\\ => Value deleted successfully.
HKLM\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{95289393-33EA-4F8D-B952-483415B9C955} => Value deleted successfully.
HKCR\CLSID\{95289393-33EA-4F8D-B952-483415B9C955} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8AFC159C-0F4D-4703-8316-56C6BD3F6972} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{8AFC159C-0F4D-4703-8316-56C6BD3F6972} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key not found.
Firefox DefaultSearchEngine deleted successfully.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox homepage deleted successfully.
Firefox Keyword.URL deleted successfully.
Firefox homepage deleted successfully.
Firefox homepage deleted successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\askcom.xml => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\conduit.xml => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-1.xml => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-2.xml => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-3.xml => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-4.xml => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-5.xml => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin-6.xml => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin.gif => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin.src => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\icqplugin.xml => Moved successfully.
Could not move "C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\searchplugins-backup" => Scheduled to move on reboot.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\startsear.xml => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\ffxtlbr@babylon.com => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\info@youtube-mp3.org => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\netvideohunter@netvideohunter.com => Moved successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\specialsavings@superfish.com => Moved successfully.
HKCU\Software\Mozilla\Firefox\Extensions\\specialsavings@superfish.com => Value deleted successfully.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles/lwr2j0lq.default\extensions\specialsavings@superfish.com => not found.
C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07} => Moved successfully.
C:\Documents and Settings\All Users\Data aplikací\TEMP => ":1CE11B51" ADS removed successfully.
C:\Documents and Settings\All Users\Data aplikací\TEMP => ":888AFB86" ADS removed successfully.
C:\Documents and Settings\All Users\Data aplikací\TEMP => ":B3D74A13" ADS removed successfully.
C:\Documents and Settings\All Users\Data aplikací\TEMP => ":B623B5B8" ADS removed successfully.
C:\Documents and Settings\All Users\Data aplikací\TEMP => ":DFC5A2B2" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2004-01-01 00:38:42)<=

C:\Documents and Settings\Chiko\Data aplikací\Mozilla\Firefox\Profiles\lwr2j0lq.default\searchplugins\searchplugins-backup => Is moved successfully.

==== End of Fixlog ====
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Log z RSIT kontrola PC

#15 Příspěvek od vyosek »

Jak se chova PC??
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“