Díkes moc .... Kašos
Logfile of random's system information tool 1.08 (written by random/random)
Run by Eva at 2011-06-08 23:53:34
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 690 MB (7%) free of 10 GB
Total RAM: 447 MB (20% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:55:00, on 8.6.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Documents and Settings\Eva\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Eva\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Eva\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Eva\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Eva\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Documents and Settings\Eva\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Eva.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
O4 - HKLM\..\RunOnce: [CleanUp] CleanUp.exe
O4 - HKLM\..\RunOnce: [SpkrCnfg] DSndUp.exe
O4 - HKLM\..\RunOnce: [InstallShieldSetup] C:\PROGRA~1\INSTAL~1\{F0A37~1\Setup.exe -rebootC:\PROGRA~1\INSTAL~1\{F0A37~1\reboot.ini
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Eva\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Policies\Explorer\Run: [services] C:\WINDOWS\services.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunServices: [Window Monitor] winmon32.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunServices: [Window Monitor] winmon32.exe (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} (ICASign Class) - https://ib24.csob.cz/Comp/IcaSignerCZ.cab
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/s ... DEXAXO.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: YKQY - Sysinternals - www.sysinternals.com - C:\DOCUME~1\Eva\LOCALS~1\Temp\YKQY.exe
--
End of file - 5631 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1093940538.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1606980848-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1606980848-725345543-1003UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-17 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-05-17 79648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-01-07 253672]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-05-10 3459712]
"TaskTray"= []
"Smapp"=C:\Program Files\Analog Devices\SoundMAX\Smtray.exe [2003-05-05 143360]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"CleanUp"=C:\WINDOWS\system32\CleanUp.exe [2002-04-17 45056]
"SpkrCnfg"=C:\WINDOWS\system32\DSndUp.exe [2003-06-16 49152]
"InstallShieldSetup"=C:\PROGRA~1\INSTAL~1\{F0A37~1\Setup.exe [2011-06-08 134656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\Eva\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-06-07 136176]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"services"=C:\WINDOWS\services.exe []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2011-06-08 23:53:40 ----D---- C:\Program Files\trend micro
2011-06-08 23:53:34 ----D---- C:\rsit
2011-06-08 23:52:21 ----D---- C:\Program Files\CCleaner
2011-06-08 23:22:40 ----D---- C:\WINDOWS\LastGood
2011-06-08 23:12:52 ----D---- C:\Program Files\Driver-Soft
2011-06-08 21:47:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2011-06-08 21:47:14 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-06-08 21:44:18 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-06-08 21:13:33 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-06-08 21:02:41 ----SHD---- C:\Config.Msi
2011-06-08 18:17:45 ----D---- C:\WINDOWS\system32\XPSViewer
2011-06-08 18:17:36 ----D---- C:\Program Files\MSBuild
2011-06-08 18:17:33 ----D---- C:\WINDOWS\system32\en-US
2011-06-08 18:17:18 ----D---- C:\Program Files\Reference Assemblies
2011-06-08 18:16:13 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2011-06-08 18:16:13 ----N---- C:\WINDOWS\system32\prntvpt.dll
2011-06-08 18:16:12 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2011-06-08 17:29:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2482017$
2011-06-08 17:26:58 ----A---- C:\WINDOWS\system32\drivers\AvgArCln.sys
2011-06-08 17:26:56 ----D---- C:\Program Files\GRISOFT
2011-06-08 09:28:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-06-08 09:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-06-08 09:27:26 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-06-08 09:26:52 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-06-08 09:26:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2011-06-08 09:25:47 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2011-06-08 09:25:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2011-06-08 09:24:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-06-08 09:23:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2011-06-08 09:23:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2011-06-08 09:22:54 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-06-08 09:22:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-06-08 09:21:46 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-06-08 09:21:17 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2011-06-08 09:20:44 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-06-08 09:19:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2011-06-08 09:15:49 ----A---- C:\WINDOWS\system32\MRT.INI
2011-06-08 09:10:56 ----A---- C:\WINDOWS\system32\MRT.exe
2011-06-08 09:10:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-06-08 09:09:19 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-06-08 09:08:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2011-06-08 09:08:17 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-06-08 09:07:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2011-06-08 09:07:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2011-06-08 09:07:07 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2011-06-08 09:06:45 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2011-06-08 09:06:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-06-08 09:05:42 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-06-08 09:05:16 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2011-06-08 09:04:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2011-06-08 09:03:14 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2011-06-08 09:01:30 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-06-08 08:58:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-06-08 08:56:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2506223$
2011-06-08 08:55:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2011-06-08 08:53:56 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2011-06-08 08:51:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-06-08 08:50:37 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2011-06-08 08:49:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2011-06-08 08:49:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2011-06-08 08:48:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2524375$
2011-06-08 08:47:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2011-06-08 08:46:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$
2011-06-08 08:46:12 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-06-08 08:45:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-06-08 08:44:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-06-08 08:43:33 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-06-08 08:42:57 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-06-08 08:41:59 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2011-06-08 08:40:01 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-06-08 08:39:26 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-06-08 08:38:54 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-06-08 08:38:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2011-06-08 08:37:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-06-08 08:37:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2508272$
2011-06-08 08:36:25 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2011-06-08 08:35:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2503658$
2011-06-08 08:35:36 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2011-06-08 08:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-06-08 08:34:56 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-06-08 08:34:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2011-06-08 08:34:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2476687$
2011-06-08 08:33:54 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-06-08 08:32:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2011-06-08 08:31:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-06-08 08:31:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2011-06-08 08:30:34 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-06-08 08:29:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2511455$
2011-06-08 08:28:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-06-08 08:28:31 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2011-06-08 08:28:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2011-06-08 08:27:55 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2011-06-08 08:27:38 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-06-08 08:27:02 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-06-08 08:26:39 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-06-08 08:25:47 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-06-08 08:25:18 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-06-08 08:24:55 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2011-06-08 08:24:18 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-06-08 08:23:05 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2011-06-08 08:19:36 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-06-08 08:19:21 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-06-08 08:19:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-06-08 08:18:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-06-08 08:18:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2447961_WM9L$
2011-06-08 08:18:03 ----D---- C:\Program Files\MSXML 4.0
2011-06-08 08:17:29 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2011-06-08 08:17:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-06-08 08:16:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-06-08 08:15:40 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-06-08 08:15:17 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-06-08 08:14:43 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-06-08 08:13:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2011-06-08 07:48:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2011-06-07 23:32:08 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2011-06-07 23:32:08 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011-06-07 23:32:04 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2011-06-07 23:32:03 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2011-06-07 23:32:03 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2011-06-07 23:32:02 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2011-06-07 23:32:02 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2011-06-07 23:32:01 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2011-06-07 23:30:31 ----A---- C:\WINDOWS\system32\aswBoot.exe
2011-06-07 23:29:54 ----D---- C:\Program Files\AVAST Software
2011-06-07 23:29:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2011-06-07 23:19:34 ----D---- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
2011-06-07 23:14:53 ----D---- C:\WINDOWS\system32\PreInstall
2011-06-07 23:14:51 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2011-06-07 23:14:51 ----HD---- C:\WINDOWS\$hf_mig$
2011-06-07 23:04:25 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2011-06-07 23:02:15 ----A---- C:\WINDOWS\system32\wmpns.dll
2011-06-07 23:00:46 ----D---- C:\WINDOWS\Prefetch
2011-06-07 22:34:34 ----N---- C:\WINDOWS\system32\msxml6r.dll
2011-06-07 22:34:33 ----N---- C:\WINDOWS\system32\msxml6.dll
2011-06-07 22:33:39 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2011-06-07 22:33:39 ----N---- C:\WINDOWS\system32\comsdupd.exe
2011-06-07 22:33:31 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2011-06-07 22:33:31 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2011-06-07 22:33:31 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2011-06-07 22:33:31 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2011-06-07 22:33:31 ----N---- C:\WINDOWS\system32\aaclient.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\credssp.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\cmsetacl.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\btpanui.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\bthserv.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\bthci.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\blastcln.exe
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\azroles.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\auditusr.exe
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2011-06-07 22:33:30 ----N---- C:\WINDOWS\system32\ati3duag.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\eappgnui.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\eappcfg.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\eapolqec.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dot3ui.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dot3svc.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dot3msm.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dot3api.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dimsroam.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2011-06-07 22:33:29 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\fwcfg.dll
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\fsquirt.exe
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\fltmc.exe
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\fltlib.dll
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\extmgr.dll
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\eapsvc.dll
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\eapqec.dll
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\eappprxy.dll
2011-06-07 22:33:28 ----N---- C:\WINDOWS\system32\eapphost.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\kbdmlt47.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\kbdmaori.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\kbdinmal.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\kbdinben.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\kbdinbe1.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\kbdfi1.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\ir50_qcx.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\ir50_qc.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\ir50_32.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\ir41_qcx.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\ir41_qc.dll
2011-06-07 22:33:27 ----N---- C:\WINDOWS\system32\ieencode.dll
2011-06-07 22:33:27 ----A---- C:\WINDOWS\system32\httpapi.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\mmcperf.exe
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\mmcex.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\kmsvc.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\kbdukx.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\kbdsmsno.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\kbdsmsfi.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\kbdpash.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\kbdno1.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2011-06-07 22:33:26 ----N---- C:\WINDOWS\system32\kbdmlt48.dll
2011-06-07 22:33:25 ----N---- C:\WINDOWS\system32\napstat.exe
2011-06-07 22:33:25 ----N---- C:\WINDOWS\system32\napmontr.dll
2011-06-07 22:33:25 ----N---- C:\WINDOWS\system32\napipsec.dll
2011-06-07 22:33:25 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2011-06-07 22:33:25 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2011-06-07 22:33:25 ----N---- C:\WINDOWS\system32\mssha.dll
2011-06-07 22:33:25 ----N---- C:\WINDOWS\system32\msdadiag.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\xpob2res.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\rasqec.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\qutil.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\qcliprov.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\qagentrt.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\qagent.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\powercfg.exe
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\pnrpnsp.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\p2psvc.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\p2pnetsh.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\p2pgraph.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\p2pgasvc.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\p2p.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\onex.dll
2011-06-07 22:33:24 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\xpsp2res.dll
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\smbinst.exe
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\slserv.exe
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\slrundll.exe
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\slgen.dll
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\slextspk.dll
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\slcoinst.dll
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\setupn.exe
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\sdhcinst.dll
2011-06-07 22:33:23 ----N---- C:\WINDOWS\system32\s3gnb.dll
2011-06-07 22:33:22 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2011-06-07 22:33:22 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2011-06-07 22:33:22 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2011-06-07 22:33:22 ----N---- C:\WINDOWS\system32\w3ssl.dll
2011-06-07 22:33:22 ----N---- C:\WINDOWS\system32\verclsid.exe
2011-06-07 22:33:22 ----N---- C:\WINDOWS\system32\tzchange.exe
2011-06-07 22:33:22 ----N---- C:\WINDOWS\system32\twext.dll
2011-06-07 22:33:22 ----N---- C:\WINDOWS\system32\tspkg.dll
2011-06-07 22:33:22 ----N---- C:\WINDOWS\system32\tsgqec.dll
2011-06-07 22:33:22 ----A---- C:\WINDOWS\system32\strmfilt.dll
2011-06-07 22:33:21 ----N---- C:\WINDOWS\system32\wshbth.dll
2011-06-07 22:33:21 ----N---- C:\WINDOWS\system32\wscsvc.dll
2011-06-07 22:33:21 ----N---- C:\WINDOWS\system32\wscntfy.exe
2011-06-07 22:33:21 ----N---- C:\WINDOWS\system32\wmphoto.dll
2011-06-07 22:33:21 ----N---- C:\WINDOWS\system32\wlanapi.dll
2011-06-07 22:33:21 ----N---- C:\WINDOWS\system32\winshfhc.dll
2011-06-07 22:33:19 ----N---- C:\WINDOWS\system32\xmlprovi.dll
2011-06-07 22:33:19 ----N---- C:\WINDOWS\system32\xmlprov.dll
2011-06-07 22:33:19 ----N---- C:\WINDOWS\system32\xmllite.dll
2011-06-07 22:33:19 ----N---- C:\WINDOWS\slrundll.exe
2011-06-07 22:33:19 ----D---- C:\WINDOWS\system32\cs-cz
2011-06-07 22:33:18 ----D---- C:\WINDOWS\provisioning
2011-06-07 22:33:17 ----D---- C:\WINDOWS\system32\cs
2011-06-07 22:33:17 ----D---- C:\WINDOWS\l2schemas
2011-06-07 22:33:16 ----D---- C:\WINDOWS\system32\bits
2011-06-07 22:33:16 ----D---- C:\WINDOWS\peernet
2011-06-07 22:30:16 ----D---- C:\WINDOWS\ServicePackFiles
2011-06-07 22:27:26 ----D---- C:\WINDOWS\network diagnostic
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2011-06-07 22:27:25 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2011-06-07 22:27:24 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\mssmbios.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\ip6fw.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\intelppm.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\http.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2011-06-07 22:27:23 ----N---- C:\WINDOWS\system32\drivers\fltmgr.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\sffdisk.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\sdbus.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2011-06-07 22:27:22 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2011-06-07 22:27:21 ----N---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2011-06-07 22:27:20 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2011-06-07 22:27:20 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2011-06-07 22:25:02 ----A---- C:\WINDOWS\002825_.tmp
2011-06-07 22:24:43 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2011-06-07 22:20:48 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2011-06-07 22:20:44 ----D---- C:\WINDOWS\EHome
2011-06-07 21:39:44 ----A---- C:\WINDOWS\Wininit.ini
2011-06-07 20:59:57 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2011-06-07 19:38:42 ----D---- C:\WINDOWS\CSC
2011-06-07 19:38:36 ----A---- C:\WINDOWS\ntbtlog.txt
2011-05-17 18:17:33 ----D---- C:\WINDOWS\Sun
2011-05-17 18:17:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2011-05-17 18:17:30 ----D---- C:\Program Files\Common Files\Java
2011-05-17 18:16:49 ----A---- C:\WINDOWS\system32\javaws.exe
2011-05-17 18:16:49 ----A---- C:\WINDOWS\system32\javaw.exe
2011-05-17 18:16:49 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-05-17 18:16:48 ----A---- C:\WINDOWS\system32\java.exe
2011-05-17 18:16:07 ----D---- C:\Program Files\Java
2011-05-17 18:15:03 ----D---- C:\Documents and Settings\Eva\Data aplikací\Sun
======List of files/folders modified in the last 1 months======
2011-06-08 23:53:40 ----RD---- C:\Program Files
2011-06-08 23:47:16 ----HD---- C:\WINDOWS\Temp
2011-06-08 23:47:16 ----HD---- C:\WINDOWS\system32\drivers
2011-06-08 23:47:01 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-06-08 23:27:16 ----HD---- C:\WINDOWS\system32\CatRoot
2011-06-08 23:26:02 ----HD---- C:\WINDOWS\inf
2011-06-08 23:25:25 ----HD---- C:\WINDOWS\system32
2011-06-08 23:25:09 ----HD---- C:\WINDOWS
2011-06-08 23:25:06 ----HD---- C:\WINDOWS\VirtualEar
2011-06-08 23:25:06 ----HD---- C:\WINDOWS\system
2011-06-08 23:25:00 ----AH---- C:\WINDOWS\system32\msssc.dll
2011-06-08 23:22:58 ----HD---- C:\WINDOWS\system32\ReinstallBackups
2011-06-08 23:07:38 ----HD---- C:\WINDOWS\system32\CatRoot2
2011-06-08 22:58:50 ----D---- C:\WINDOWS\Microsoft.NET
2011-06-08 22:58:37 ----RSD---- C:\WINDOWS\assembly
2011-06-08 22:44:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.TMP
2011-06-08 21:48:50 ----AH---- C:\WINDOWS\SchedLgU.Txt
2011-06-08 21:47:26 ----A---- C:\WINDOWS\imsins.BAK
2011-06-08 21:44:09 ----SHD---- C:\WINDOWS\Installer
2011-06-08 21:40:10 ----HD---- C:\WINDOWS\WinSxS
2011-06-08 18:17:31 ----RSD---- C:\WINDOWS\Fonts
2011-06-08 18:16:39 ----HD---- C:\WINDOWS\system32\spool
2011-06-08 18:08:38 ----D---- C:\Program Files\Internet Explorer
2011-06-08 17:54:36 ----HD---- C:\WINDOWS\system32\wbem
2011-06-08 17:54:36 ----HD---- C:\WINDOWS\AppPatch
2011-06-08 17:23:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2011-06-08 17:22:26 ----HD---- C:\WINDOWS\system32\drivers\etc
2011-06-08 09:26:55 ----D---- C:\Program Files\Messenger
2011-06-08 09:11:05 ----HD---- C:\WINDOWS\Debug
2011-06-08 08:37:41 ----D---- C:\Program Files\Google
2011-06-08 08:37:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google
2011-06-08 08:37:39 ----SD---- C:\WINDOWS\Tasks
2011-06-08 08:36:20 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-06-08 08:27:11 ----D---- C:\Program Files\Outlook Express
2011-06-08 08:24:57 ----D---- C:\Program Files\Movie Maker
2011-06-08 08:22:05 ----HD---- C:\WINDOWS\Registration
2011-06-08 07:56:20 ----D---- C:\Program Files\Ray Adams
2011-06-08 01:20:05 ----D---- C:\WINDOWS\Minidump
2011-06-07 23:31:24 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-06-07 23:25:58 ----SHD---- C:\System Volume Information
2011-06-07 23:13:48 ----SD---- C:\Documents and Settings\Eva\Data aplikací\Microsoft
2011-06-07 23:13:13 ----AH---- C:\WINDOWS\OEWABLog.txt
2011-06-07 23:04:34 ----D---- C:\WINDOWS\SoftwareDistribution
2011-06-07 23:04:31 ----HD---- C:\WINDOWS\Help
2011-06-07 23:04:12 ----AH---- C:\WINDOWS\setuplog.txt
2011-06-07 23:01:46 ----HD---- C:\WINDOWS\system32\inetsrv
2011-06-07 23:00:15 ----D---- C:\Program Files\Windows Media Player
2011-06-07 23:00:14 ----HD---- C:\WINDOWS\system32\Setup
2011-06-07 22:41:38 ----HD---- C:\WINDOWS\security
2011-06-07 22:39:39 ----RASH---- C:\boot.ini
2011-06-07 22:33:35 ----HD---- C:\WINDOWS\ime
2011-06-07 22:33:19 ----HD---- C:\WINDOWS\system32\usmt
2011-06-07 22:33:19 ----HD---- C:\WINDOWS\system32\oobe
2011-06-07 22:33:15 ----HD---- C:\WINDOWS\Media
2011-06-07 22:29:46 ----HD---- C:\WINDOWS\system32\Restore
2011-06-07 22:29:46 ----HD---- C:\WINDOWS\system32\npp
2011-06-07 22:29:45 ----HD---- C:\WINDOWS\msagent
2011-06-07 22:29:43 ----HD---- C:\WINDOWS\srchasst
2011-06-07 22:29:42 ----D---- C:\Program Files\NetMeeting
2011-06-07 22:29:41 ----HD---- C:\WINDOWS\system32\Com
2011-06-07 22:29:37 ----D---- C:\Program Files\Windows NT
2011-06-07 22:29:33 ----D---- C:\Program Files\Common Files\System
2011-06-07 22:27:25 ----RHD---- C:\WINDOWS\Web
2011-06-07 22:27:04 ----RASH---- C:\NTDETECT.COM
2011-06-07 21:39:44 ----D---- C:\Program Files\ConMet
2011-06-07 21:39:44 ----D---- C:\Documents and Settings\Eva\Data aplikací\ConMet
2011-06-07 21:39:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\ConMet
2011-06-07 20:58:01 ----HD---- C:\WINDOWS\system32\config
2011-05-17 18:17:30 ----D---- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVG Anti-Rootkit;AVG Anti-Rootkit; C:\WINDOWS\System32\DRIVERS\avgarkt.sys [2007-01-31 5632]
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\System32\DRIVERS\uagp35.sys [2008-04-14 44672]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-05-10 30808]
R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2004-08-31 82380]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-05-10 25432]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-05-10 441176]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-05-10 307928]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-05-10 49240]
R1 AvgArCln;Avg Anti-Rootkit Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgArCln.sys [2007-01-18 3968]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aslm75;aslm75; \??\C:\WINDOWS\system32\drivers\aslm75.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-05-10 19544]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-05-10 102616]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2011-06-08 4816]
R3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\System32\DRIVERS\fetnd5b.sys [2003-07-29 41984]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ltmodem5;LT Modem Driver; C:\WINDOWS\System32\DRIVERS\ltmdmnt.sys [2008-04-14 606556]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 viagfx;viagfx; C:\WINDOWS\System32\DRIVERS\vtmini.sys [2004-02-04 134144]
S3 {DEF85C80-216A-43ab-AF70-1665EDBE2780};{DEF85C80-216A-43ab-AF70-1665EDBE2780}; \??\C:\WINDOWS\TEMP\A.tmp []
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 GCR410P;GEMPLUS GCR410P Serial Smart Card Reader; C:\WINDOWS\System32\DRIVERS\grserial.sys [2008-04-14 28416]
S3 GEMSER;GEMSER; C:\WINDOWS\System32\DRIVERS\gemser.sys [2001-09-18 27264]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [2003-04-07 51024]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [2003-04-07 16080]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [2003-04-07 21456]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 NTSIM;NTSIM; \??\C:\WINDOWS\System32\ntsim.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-05-10 42184]
R2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
R2 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-17 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-03-26 292864]
S3 YKQY;YKQY; C:\DOCUME~1\Eva\LOCALS~1\Temp\YKQY.exe [2011-06-08 564096]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivku po čištění zavirovaného PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivku po čištění zavirovaného PC
Dobré ránko 
mrknu na to
mrknu na to
Napiš mi: chodnik74@gmail.com nebo 
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| 
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. 
Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni 
Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivku po čištění zavirovaného PC
Ou,máme v pc havěť ale odstraníme ji
Program nepoužívejte bez doporučení Rádce a pozorně se řiďte následujících pokynu,protože program netoleruje chyby a může dojít k úplnému poškození systému!!
ale odstraníme ji Program nepoužívejte bez doporučení Rádce a pozorně se řiďte následujících pokynu,protože program netoleruje chyby a může dojít k úplnému poškození systému!!
Stáhneme si Combofix 
- Program uložíme nejlépe na Plochu
- Vypneme všechny rezidentní štíty.Jak antiviru,tak antispywaru a firewallu
- Vypneme všechny běžící aplikace (ICQ,prohlížeč,programy) a necháme pouze Combofix
- Spustíme Combofix.exe s administrátorským oprávněním
U Windows XP se přihlásíme pod účtem správce
Ve Windows 7 a Vista klikněte pravým tlačítkem myši na Combofix.exe a dejte ,,Spustit jako správce,,) - Hned po startu programu na vás vyskočí licenční podmínky,tak potvrdíme tlačítkemANO
- Pokud vám Combofix nabídne instalaci Konzoly pro zotavení,tak souhlaste a nechte nainstalovat(zde je potřeba aktivní připojení na internet)
- Pokračujte dle pokynů programu a během skenování na nic neklikejte,na pc nepracujte(ICQ,jiné aplikace,internet..).Nechte počítač v klidu.
- Celý sken tvá mezi 5-15 min,ale pokud je v PC hodně havěti,tak se čas může lišit.
- Po skončení skenování(případném restartu počítače) se vám zobrazí log z Combofixu,který mi vložte sem(Kdyby se log nezobrazil,tak jej najdete zde: C:\ComboFix.txt
- (Pokud si nevíte rady s kterýmkoliv z výše uvedených kroků,tak se ptejte nebo mrkněte na detailnější návod včetně obrázků http://www.bleepingcomputer.com/combofi ... t-combofix )
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Prosím o preventivku po čištění zavirovaného PC
Přikládám Log z Combofixu....předem děkuji za Vaší drahocenou pomoc a posílám nějakou tu kačku ...
Kašos....
ComboFix 11-06-27.01 - Eva 27.06.2011 18:46:44.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1471.990 [GMT 2:00]
Spuštěný z: c:\documents and settings\Eva\Dokumenty\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Eva\Cookies\hpothb07.dat
c:\documents and settings\Eva\Recent\hpothb07.dat
c:\documents and settings\Eva\Recent\hpothb07.tif
c:\documents and settings\Eva\WINDOWS
c:\documents and settings\LocalService\oashdihasidhasuidhiasdhiashdiuasdhasd
c:\windows\Downloaded Program Files\UGDCCZ_0001_N122M1712NetInstaller.exe
c:\windows\IsUn0405.exe
c:\windows\system\BCBSMP35.BPL
c:\windows\system32\msssc.dll
c:\windows\wiaserviv.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-27 do 2011-06-27 )))))))))))))))))))))))))))))))
.
.
2011-06-16 02:50 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-16 02:49 . 2011-04-29 19:07 852480 -c----w- c:\windows\system32\dllcache\vgx.dll
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- c:\program files\trend micro
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- C:\rsit
2011-06-08 21:52 . 2011-06-08 21:52 -------- d-----w- c:\program files\CCleaner
2011-06-08 20:58 . 2011-06-08 21:47 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\eSupport.com
2011-06-08 16:31 . 2011-06-08 16:31 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\PCHealth
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\windows\system32\XPSViewer
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\MSBuild
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\Reference Assemblies
2011-06-08 16:16 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-06-08 16:16 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-06-08 16:16 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-06-08 15:26 . 2007-01-18 12:00 3968 ----a-w- c:\windows\system32\drivers\AvgArCln.sys
2011-06-08 07:15 . 2011-06-08 21:24 -------- d-----r- c:\documents and settings\NetworkService\Dokumenty
2011-06-08 06:22 . 2011-06-08 19:10 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\ApplicationHistory
2011-06-08 06:18 . 2011-06-08 06:18 -------- d-----w- c:\program files\MSXML 4.0
2011-06-07 21:41 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-06-07 21:41 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-06-07 21:40 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-06-07 21:39 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2011-06-07 21:37 . 2011-06-07 21:37 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Google
2011-06-07 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2011-06-07 21:34 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-06-07 21:32 . 2011-06-15 05:15 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Temp
2011-06-07 21:32 . 2011-06-07 21:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Google
2011-06-07 21:32 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2011-06-07 21:32 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2011-06-07 21:32 . 2011-05-10 12:03 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-06-07 21:32 . 2011-05-10 11:59 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-07 21:32 . 2011-05-10 11:59 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-06-07 21:32 . 2011-05-10 12:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-06-07 21:32 . 2011-05-10 12:02 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-06-07 21:32 . 2011-05-10 12:02 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-06-07 21:32 . 2011-05-10 12:02 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-06-07 21:32 . 2011-05-10 11:59 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-06-07 21:31 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2011-06-07 21:31 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2011-06-07 21:31 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2011-06-07 21:31 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2011-06-07 21:31 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2011-06-07 21:31 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2011-06-07 21:31 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2011-06-07 21:31 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2011-06-07 21:30 . 2011-05-10 12:10 40112 ----a-w- c:\windows\avastSS.scr
2011-06-07 21:30 . 2011-05-10 12:10 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\program files\AVAST Software
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-06-07 21:28 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2011-06-07 21:28 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2011-06-07 21:27 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2011-06-07 21:27 . 2011-04-29 16:19 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-06-07 21:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2011-06-07 21:20 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2011-06-07 21:19 . 2011-06-07 21:19 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2011-06-07 21:17 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2011-06-07 21:17 . 2010-12-09 15:14 2194944 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-06-07 21:17 . 2010-12-09 15:14 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2071552 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-06-07 21:16 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2011-06-07 21:15 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-06-07 21:15 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2011-06-07 21:14 . 2011-06-17 01:03 -------- d--h--w- c:\windows\$hf_mig$
2011-06-07 21:02 . 2008-04-14 06:52 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-06-07 21:01 . 2011-06-07 21:01 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-06-07 21:01 . 2011-06-08 16:18 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2011-06-07 20:33 . 2008-04-14 06:49 102912 -c----w- c:\windows\system32\dllcache\dpcdll.dll
2011-06-07 20:30 . 2011-06-07 20:34 -------- d-----w- c:\windows\ServicePackFiles
2011-06-07 20:30 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2011-06-07 20:25 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002825_.tmp
2011-06-07 20:24 . 2007-11-30 11:18 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2011-06-07 20:20 . 2011-06-07 20:33 -------- d-----w- c:\windows\EHome
2011-06-07 19:11 . 2011-06-07 19:11 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Deployment
2011-06-07 18:59 . 2008-04-14 05:59 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2011-06-07 18:57 . 2011-06-07 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-08 21:22 . 2004-08-27 21:52 3744 ----a-w- c:\windows\system32\drivers\smsens.sys
2011-06-08 21:22 . 2004-08-27 21:52 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2011-06-08 20:44 . 2004-09-10 18:19 715642 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2011-05-17 16:16 . 2011-05-17 16:16 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-05-17 16:16 . 2011-05-17 16:16 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-02 15:32 . 2004-08-27 21:31 692736 ---ha-w- c:\windows\system32\inetcomm.dll
2011-04-29 16:19 . 2002-08-28 23:59 456320 ---ha-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 14:47 . 2002-09-20 16:05 668160 ---ha-w- c:\windows\system32\wininet.dll
2011-04-25 14:47 . 2001-10-25 12:00 61952 ---ha-w- c:\windows\system32\tdc.ocx
2011-04-21 13:37 . 2002-08-29 00:12 105472 ---ha-w- c:\windows\system32\drivers\mup.sys
2008-01-14 16:26 . 2008-01-14 16:26 6010880 ----a-w- c:\program files\icq5_1_Atlas.exe
2008-01-12 12:17 . 2008-01-12 12:08 13980016 ----a-w- c:\program files\install_atlas_icq6.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-01-07 253672]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 1744896]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"PcSync"=c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" /background
"ICQ"="c:\program files\ICQ6\ICQ.exe" silent
"Eva"=c:\documents and settings\Eva\Eva.exe /i
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"PCSuiteTrayApplication"=c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
"VTTimer"=VTTimer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices-]
"Microsoft Update Machine"=servicz.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7.6.2011 23:32 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7.6.2011 23:32 307928]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7.6.2011 23:32 19544]
S3 GCR410P;GEMPLUS GCR410P Serial Smart Card Reader;c:\windows\system32\drivers\grserial.sys [31.8.2004 11:09 28416]
S3 GEMSER;GEMSER;c:\windows\system32\drivers\gemser.sys [31.8.2004 11:10 27264]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2005-01-05 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8093940538.job
- c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKU-Default-Run-Window Monitor - winmon32.exe
HKU-Default-RunServices-Window Monitor - winmon32.exe
AddRemove-Mapa Prahy pro PPK - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-06-27 18:58
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{DEF85C80-216A-43ab-AF70-1665EDBE2780}]
"ImagePath"="\??\c:\windows\TEMP\A.tmp"
.
Celkový čas: 2011-06-27 19:03:12
ComboFix-quarantined-files.txt 2011-06-27 17:03
.
Před spuštěním: 6 982 365 184
Po spuštění: 8 291 577 856
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn
.
- - End Of File - - 469373975FD41166AA8A455D19160A6E
Kašos....
ComboFix 11-06-27.01 - Eva 27.06.2011 18:46:44.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1471.990 [GMT 2:00]
Spuštěný z: c:\documents and settings\Eva\Dokumenty\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Eva\Cookies\hpothb07.dat
c:\documents and settings\Eva\Recent\hpothb07.dat
c:\documents and settings\Eva\Recent\hpothb07.tif
c:\documents and settings\Eva\WINDOWS
c:\documents and settings\LocalService\oashdihasidhasuidhiasdhiashdiuasdhasd
c:\windows\Downloaded Program Files\UGDCCZ_0001_N122M1712NetInstaller.exe
c:\windows\IsUn0405.exe
c:\windows\system\BCBSMP35.BPL
c:\windows\system32\msssc.dll
c:\windows\wiaserviv.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-27 do 2011-06-27 )))))))))))))))))))))))))))))))
.
.
2011-06-16 02:50 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-16 02:49 . 2011-04-29 19:07 852480 -c----w- c:\windows\system32\dllcache\vgx.dll
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- c:\program files\trend micro
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- C:\rsit
2011-06-08 21:52 . 2011-06-08 21:52 -------- d-----w- c:\program files\CCleaner
2011-06-08 20:58 . 2011-06-08 21:47 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\eSupport.com
2011-06-08 16:31 . 2011-06-08 16:31 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\PCHealth
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\windows\system32\XPSViewer
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\MSBuild
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\Reference Assemblies
2011-06-08 16:16 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-06-08 16:16 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-06-08 16:16 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-06-08 15:26 . 2007-01-18 12:00 3968 ----a-w- c:\windows\system32\drivers\AvgArCln.sys
2011-06-08 07:15 . 2011-06-08 21:24 -------- d-----r- c:\documents and settings\NetworkService\Dokumenty
2011-06-08 06:22 . 2011-06-08 19:10 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\ApplicationHistory
2011-06-08 06:18 . 2011-06-08 06:18 -------- d-----w- c:\program files\MSXML 4.0
2011-06-07 21:41 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-06-07 21:41 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-06-07 21:40 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-06-07 21:39 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2011-06-07 21:37 . 2011-06-07 21:37 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Google
2011-06-07 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2011-06-07 21:34 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-06-07 21:32 . 2011-06-15 05:15 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Temp
2011-06-07 21:32 . 2011-06-07 21:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Google
2011-06-07 21:32 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2011-06-07 21:32 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2011-06-07 21:32 . 2011-05-10 12:03 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-06-07 21:32 . 2011-05-10 11:59 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-07 21:32 . 2011-05-10 11:59 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-06-07 21:32 . 2011-05-10 12:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-06-07 21:32 . 2011-05-10 12:02 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-06-07 21:32 . 2011-05-10 12:02 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-06-07 21:32 . 2011-05-10 12:02 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-06-07 21:32 . 2011-05-10 11:59 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-06-07 21:31 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2011-06-07 21:31 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2011-06-07 21:31 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2011-06-07 21:31 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2011-06-07 21:31 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2011-06-07 21:31 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2011-06-07 21:31 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2011-06-07 21:31 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2011-06-07 21:30 . 2011-05-10 12:10 40112 ----a-w- c:\windows\avastSS.scr
2011-06-07 21:30 . 2011-05-10 12:10 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\program files\AVAST Software
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-06-07 21:28 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2011-06-07 21:28 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2011-06-07 21:27 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2011-06-07 21:27 . 2011-04-29 16:19 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-06-07 21:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2011-06-07 21:20 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2011-06-07 21:19 . 2011-06-07 21:19 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2011-06-07 21:17 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2011-06-07 21:17 . 2010-12-09 15:14 2194944 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-06-07 21:17 . 2010-12-09 15:14 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2071552 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-06-07 21:16 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2011-06-07 21:15 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-06-07 21:15 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2011-06-07 21:14 . 2011-06-17 01:03 -------- d--h--w- c:\windows\$hf_mig$
2011-06-07 21:02 . 2008-04-14 06:52 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-06-07 21:01 . 2011-06-07 21:01 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-06-07 21:01 . 2011-06-08 16:18 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2011-06-07 20:33 . 2008-04-14 06:49 102912 -c----w- c:\windows\system32\dllcache\dpcdll.dll
2011-06-07 20:30 . 2011-06-07 20:34 -------- d-----w- c:\windows\ServicePackFiles
2011-06-07 20:30 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2011-06-07 20:25 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002825_.tmp
2011-06-07 20:24 . 2007-11-30 11:18 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2011-06-07 20:20 . 2011-06-07 20:33 -------- d-----w- c:\windows\EHome
2011-06-07 19:11 . 2011-06-07 19:11 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Deployment
2011-06-07 18:59 . 2008-04-14 05:59 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2011-06-07 18:57 . 2011-06-07 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-08 21:22 . 2004-08-27 21:52 3744 ----a-w- c:\windows\system32\drivers\smsens.sys
2011-06-08 21:22 . 2004-08-27 21:52 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2011-06-08 20:44 . 2004-09-10 18:19 715642 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2011-05-17 16:16 . 2011-05-17 16:16 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-05-17 16:16 . 2011-05-17 16:16 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-02 15:32 . 2004-08-27 21:31 692736 ---ha-w- c:\windows\system32\inetcomm.dll
2011-04-29 16:19 . 2002-08-28 23:59 456320 ---ha-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 14:47 . 2002-09-20 16:05 668160 ---ha-w- c:\windows\system32\wininet.dll
2011-04-25 14:47 . 2001-10-25 12:00 61952 ---ha-w- c:\windows\system32\tdc.ocx
2011-04-21 13:37 . 2002-08-29 00:12 105472 ---ha-w- c:\windows\system32\drivers\mup.sys
2008-01-14 16:26 . 2008-01-14 16:26 6010880 ----a-w- c:\program files\icq5_1_Atlas.exe
2008-01-12 12:17 . 2008-01-12 12:08 13980016 ----a-w- c:\program files\install_atlas_icq6.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-01-07 253672]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 1744896]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"PcSync"=c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" /background
"ICQ"="c:\program files\ICQ6\ICQ.exe" silent
"Eva"=c:\documents and settings\Eva\Eva.exe /i
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"PCSuiteTrayApplication"=c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
"VTTimer"=VTTimer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices-]
"Microsoft Update Machine"=servicz.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7.6.2011 23:32 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7.6.2011 23:32 307928]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7.6.2011 23:32 19544]
S3 GCR410P;GEMPLUS GCR410P Serial Smart Card Reader;c:\windows\system32\drivers\grserial.sys [31.8.2004 11:09 28416]
S3 GEMSER;GEMSER;c:\windows\system32\drivers\gemser.sys [31.8.2004 11:10 27264]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2005-01-05 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8093940538.job
- c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKU-Default-Run-Window Monitor - winmon32.exe
HKU-Default-RunServices-Window Monitor - winmon32.exe
AddRemove-Mapa Prahy pro PPK - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-06-27 18:58
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{DEF85C80-216A-43ab-AF70-1665EDBE2780}]
"ImagePath"="\??\c:\windows\TEMP\A.tmp"
.
Celkový čas: 2011-06-27 19:03:12
ComboFix-quarantined-files.txt 2011-06-27 17:03
.
Před spuštěním: 6 982 365 184
Po spuštění: 8 291 577 856
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn
.
- - End Of File - - 469373975FD41166AA8A455D19160A6E
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivku po čištění zavirovaného PC
Stáhneme a spustíme SystemLook http://jpshortstuff.247fixes.com/SystemLook.exe
Do okna vložíme následující script a stiskneme tlačítko Look
Kód: Vybrat vše
:filefind
servicz.exe
- (stiskneme klávesovou kombinaci WIN+R a napíšeme ,,notepad,, bez úvozovek a dáme enter)
- Vložíme do něj následující script:
Kód: Vybrat vše
KillAll:: Collect:: C:\WINDOWS\TEMP\A.tmp c:\documents and settings\Eva\Eva.exe Driver:: {DEF85C80-216A-43ab-AF70-1665EDBE2780} JavaQuickStarterService Registry:: [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360] "Nokia.PCSync"=- [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "PcSync"=- "MSMSGS"=- "Eva"=- [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "Adobe ARM"=- "Adobe Reader Speed Launcher"=- "PCSuiteTrayApplication"=- [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices-] "Microsoft Update Machine"=- [-HKEY_LOCAL_MACHINE\System\ControlSet002\Services\{DEF85C80-216A-43ab-AF70-1665EDBE2780}] Reboot:: - Soubor uložíme na Plochu jako CFScript.txt
- Poté tento soubor uchopíme levým tlačítkem myši a přetáhneme na ikonu Combofixu a upustíme
- Poté Combofix provede všechny operace a udělá nový log,který sem vložte
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Prosím o preventivku po čištění zavirovaného PC
Ten první log: asi vypadá dobře
SystemLook 04.09.10 by jpshortstuff
Log created at 19:32 on 30/06/2011 by Eva
Administrator - Elevation successful
========== filefind ==========
Searching for "servicz.exe"
No files found.
-= EOF =-
SystemLook 04.09.10 by jpshortstuff
Log created at 19:32 on 30/06/2011 by Eva
Administrator - Elevation successful
========== filefind ==========
Searching for "servicz.exe"
No files found.
-= EOF =-
Re: Prosím o preventivku po čištění zavirovaného PC
Tady je druhej z CFka...už běží i win firewall a ten předtím nešel...
respekt ořed vaším umem...
Díkes moc a ten log
ComboFix 11-06-30.02 - Eva 30.06.2011 19:43:37.2.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1471.1086 [GMT 2:00]
Spuštěný z: c:\documents and settings\Eva\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Eva\Plocha\CFscript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_JAVAQUICKSTARTERSERVICE
-------\Legacy_{DEF85C80-216A-43AB-AF70-1665EDBE2780}
-------\Service_{DEF85C80-216A-43ab-AF70-1665EDBE2780}
-------\Service_JavaQuickStarterService
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-28 do 2011-06-30 )))))))))))))))))))))))))))))))
.
.
2011-06-16 02:50 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-16 02:49 . 2011-04-29 19:07 852480 -c----w- c:\windows\system32\dllcache\vgx.dll
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- c:\program files\trend micro
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- C:\rsit
2011-06-08 21:52 . 2011-06-08 21:52 -------- d-----w- c:\program files\CCleaner
2011-06-08 20:58 . 2011-06-08 21:47 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\eSupport.com
2011-06-08 16:31 . 2011-06-08 16:31 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\PCHealth
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\windows\system32\XPSViewer
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\MSBuild
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\Reference Assemblies
2011-06-08 16:16 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-06-08 16:16 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-06-08 16:16 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-06-08 15:26 . 2007-01-18 12:00 3968 ----a-w- c:\windows\system32\drivers\AvgArCln.sys
2011-06-08 07:15 . 2011-06-08 21:24 -------- d-----r- c:\documents and settings\NetworkService\Dokumenty
2011-06-08 06:22 . 2011-06-08 19:10 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\ApplicationHistory
2011-06-08 06:18 . 2011-06-08 06:18 -------- d-----w- c:\program files\MSXML 4.0
2011-06-07 21:41 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-06-07 21:41 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-06-07 21:40 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-06-07 21:39 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2011-06-07 21:37 . 2011-06-07 21:37 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Google
2011-06-07 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2011-06-07 21:34 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-06-07 21:32 . 2011-06-15 05:15 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Temp
2011-06-07 21:32 . 2011-06-07 21:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Google
2011-06-07 21:32 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2011-06-07 21:32 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2011-06-07 21:32 . 2011-05-10 12:03 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-06-07 21:32 . 2011-05-10 11:59 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-07 21:32 . 2011-05-10 11:59 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-06-07 21:32 . 2011-05-10 12:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-06-07 21:32 . 2011-05-10 12:02 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-06-07 21:32 . 2011-05-10 12:02 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-06-07 21:32 . 2011-05-10 12:02 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-06-07 21:32 . 2011-05-10 11:59 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-06-07 21:31 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2011-06-07 21:31 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2011-06-07 21:31 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2011-06-07 21:31 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2011-06-07 21:31 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2011-06-07 21:31 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2011-06-07 21:31 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2011-06-07 21:31 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2011-06-07 21:30 . 2011-05-10 12:10 40112 ----a-w- c:\windows\avastSS.scr
2011-06-07 21:30 . 2011-05-10 12:10 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\program files\AVAST Software
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-06-07 21:28 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2011-06-07 21:28 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2011-06-07 21:27 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2011-06-07 21:27 . 2011-04-29 16:19 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-06-07 21:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2011-06-07 21:20 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2011-06-07 21:19 . 2011-06-07 21:19 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2011-06-07 21:17 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2011-06-07 21:17 . 2010-12-09 15:14 2194944 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-06-07 21:17 . 2010-12-09 15:14 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2071552 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-06-07 21:16 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2011-06-07 21:15 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-06-07 21:15 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2011-06-07 21:14 . 2011-06-30 17:24 -------- d--h--w- c:\windows\$hf_mig$
2011-06-07 21:02 . 2008-04-14 06:52 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-06-07 21:01 . 2011-06-07 21:01 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-06-07 21:01 . 2011-06-08 16:18 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2011-06-07 20:33 . 2008-04-14 06:49 102912 -c----w- c:\windows\system32\dllcache\dpcdll.dll
2011-06-07 20:30 . 2011-06-07 20:34 -------- d-----w- c:\windows\ServicePackFiles
2011-06-07 20:30 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2011-06-07 20:25 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002825_.tmp
2011-06-07 20:24 . 2007-11-30 11:18 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2011-06-07 20:20 . 2011-06-07 20:33 -------- d-----w- c:\windows\EHome
2011-06-07 19:11 . 2011-06-07 19:11 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Deployment
2011-06-07 18:59 . 2008-04-14 05:59 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2011-06-07 18:57 . 2011-06-07 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-08 21:22 . 2004-08-27 21:52 3744 ----a-w- c:\windows\system32\drivers\smsens.sys
2011-06-08 21:22 . 2004-08-27 21:52 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2011-06-08 20:44 . 2004-09-10 18:19 715642 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2011-05-17 16:16 . 2011-05-17 16:16 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-05-17 16:16 . 2011-05-17 16:16 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-02 15:32 . 2004-08-27 21:31 692736 ---ha-w- c:\windows\system32\inetcomm.dll
2011-04-29 16:19 . 2002-08-28 23:59 456320 ---ha-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 14:47 . 2002-09-20 16:05 668160 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 14:47 . 2001-10-25 12:00 61952 ---ha-w- c:\windows\system32\tdc.ocx
2011-04-21 13:37 . 2002-08-29 00:12 105472 ---ha-w- c:\windows\system32\drivers\mup.sys
2008-01-14 16:26 . 2008-01-14 16:26 6010880 ----a-w- c:\program files\icq5_1_Atlas.exe
2008-01-12 12:17 . 2008-01-12 12:08 13980016 ----a-w- c:\program files\install_atlas_icq6.exe
.
.
((((((((((((((((((((((((((((( SnapShot@2011-06-27_16.58.11 )))))))))))))))))))))))))))))))))))))))))
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-01-07 253672]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ICQ"="c:\program files\ICQ6\ICQ.exe" silent
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"VTTimer"=VTTimer.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7.6.2011 23:32 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7.6.2011 23:32 307928]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7.6.2011 23:32 19544]
S3 GCR410P;GEMPLUS GCR410P Serial Smart Card Reader;c:\windows\system32\drivers\grserial.sys [31.8.2004 11:09 28416]
S3 GEMSER;GEMSER;c:\windows\system32\drivers\gemser.sys [31.8.2004 11:10 27264]
S3 YKQY;YKQY;c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe --> c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2005-01-05 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8093940538.job
- c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-06-30 19:55
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2011-06-30 20:00:43 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-06-30 18:00
ComboFix2.txt 2011-06-27 17:03
.
Před spuštěním: 8 262 889 472
Po spuštění: 8 152 018 944
.
- - End Of File - - B4470EB2A335892BAD70AC7D0161AFE7
respekt ořed vaším umem...
Díkes moc a ten log
ComboFix 11-06-30.02 - Eva 30.06.2011 19:43:37.2.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1471.1086 [GMT 2:00]
Spuštěný z: c:\documents and settings\Eva\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Eva\Plocha\CFscript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_JAVAQUICKSTARTERSERVICE
-------\Legacy_{DEF85C80-216A-43AB-AF70-1665EDBE2780}
-------\Service_{DEF85C80-216A-43ab-AF70-1665EDBE2780}
-------\Service_JavaQuickStarterService
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-28 do 2011-06-30 )))))))))))))))))))))))))))))))
.
.
2011-06-16 02:50 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-16 02:49 . 2011-04-29 19:07 852480 -c----w- c:\windows\system32\dllcache\vgx.dll
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- c:\program files\trend micro
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- C:\rsit
2011-06-08 21:52 . 2011-06-08 21:52 -------- d-----w- c:\program files\CCleaner
2011-06-08 20:58 . 2011-06-08 21:47 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\eSupport.com
2011-06-08 16:31 . 2011-06-08 16:31 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\PCHealth
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\windows\system32\XPSViewer
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\MSBuild
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\Reference Assemblies
2011-06-08 16:16 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-06-08 16:16 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-06-08 16:16 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-06-08 15:26 . 2007-01-18 12:00 3968 ----a-w- c:\windows\system32\drivers\AvgArCln.sys
2011-06-08 07:15 . 2011-06-08 21:24 -------- d-----r- c:\documents and settings\NetworkService\Dokumenty
2011-06-08 06:22 . 2011-06-08 19:10 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\ApplicationHistory
2011-06-08 06:18 . 2011-06-08 06:18 -------- d-----w- c:\program files\MSXML 4.0
2011-06-07 21:41 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-06-07 21:41 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-06-07 21:40 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-06-07 21:39 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2011-06-07 21:37 . 2011-06-07 21:37 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Google
2011-06-07 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2011-06-07 21:34 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-06-07 21:32 . 2011-06-15 05:15 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Temp
2011-06-07 21:32 . 2011-06-07 21:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Google
2011-06-07 21:32 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2011-06-07 21:32 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2011-06-07 21:32 . 2011-05-10 12:03 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-06-07 21:32 . 2011-05-10 11:59 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-07 21:32 . 2011-05-10 11:59 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-06-07 21:32 . 2011-05-10 12:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-06-07 21:32 . 2011-05-10 12:02 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-06-07 21:32 . 2011-05-10 12:02 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-06-07 21:32 . 2011-05-10 12:02 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-06-07 21:32 . 2011-05-10 11:59 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-06-07 21:31 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2011-06-07 21:31 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2011-06-07 21:31 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2011-06-07 21:31 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2011-06-07 21:31 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2011-06-07 21:31 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2011-06-07 21:31 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2011-06-07 21:31 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2011-06-07 21:30 . 2011-05-10 12:10 40112 ----a-w- c:\windows\avastSS.scr
2011-06-07 21:30 . 2011-05-10 12:10 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\program files\AVAST Software
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-06-07 21:28 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2011-06-07 21:28 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2011-06-07 21:27 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2011-06-07 21:27 . 2011-04-29 16:19 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-06-07 21:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2011-06-07 21:20 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2011-06-07 21:19 . 2011-06-07 21:19 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2011-06-07 21:17 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2011-06-07 21:17 . 2010-12-09 15:14 2194944 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-06-07 21:17 . 2010-12-09 15:14 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2071552 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-06-07 21:16 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2011-06-07 21:15 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-06-07 21:15 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2011-06-07 21:14 . 2011-06-30 17:24 -------- d--h--w- c:\windows\$hf_mig$
2011-06-07 21:02 . 2008-04-14 06:52 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-06-07 21:01 . 2011-06-07 21:01 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-06-07 21:01 . 2011-06-08 16:18 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2011-06-07 20:33 . 2008-04-14 06:49 102912 -c----w- c:\windows\system32\dllcache\dpcdll.dll
2011-06-07 20:30 . 2011-06-07 20:34 -------- d-----w- c:\windows\ServicePackFiles
2011-06-07 20:30 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2011-06-07 20:25 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002825_.tmp
2011-06-07 20:24 . 2007-11-30 11:18 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2011-06-07 20:20 . 2011-06-07 20:33 -------- d-----w- c:\windows\EHome
2011-06-07 19:11 . 2011-06-07 19:11 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Deployment
2011-06-07 18:59 . 2008-04-14 05:59 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2011-06-07 18:57 . 2011-06-07 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-08 21:22 . 2004-08-27 21:52 3744 ----a-w- c:\windows\system32\drivers\smsens.sys
2011-06-08 21:22 . 2004-08-27 21:52 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2011-06-08 20:44 . 2004-09-10 18:19 715642 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2011-05-17 16:16 . 2011-05-17 16:16 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-05-17 16:16 . 2011-05-17 16:16 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-02 15:32 . 2004-08-27 21:31 692736 ---ha-w- c:\windows\system32\inetcomm.dll
2011-04-29 16:19 . 2002-08-28 23:59 456320 ---ha-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 14:47 . 2002-09-20 16:05 668160 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 14:47 . 2001-10-25 12:00 61952 ---ha-w- c:\windows\system32\tdc.ocx
2011-04-21 13:37 . 2002-08-29 00:12 105472 ---ha-w- c:\windows\system32\drivers\mup.sys
2008-01-14 16:26 . 2008-01-14 16:26 6010880 ----a-w- c:\program files\icq5_1_Atlas.exe
2008-01-12 12:17 . 2008-01-12 12:08 13980016 ----a-w- c:\program files\install_atlas_icq6.exe
.
.
((((((((((((((((((((((((((((( SnapShot@2011-06-27_16.58.11 )))))))))))))))))))))))))))))))))))))))))
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-01-07 253672]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ICQ"="c:\program files\ICQ6\ICQ.exe" silent
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"VTTimer"=VTTimer.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7.6.2011 23:32 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7.6.2011 23:32 307928]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7.6.2011 23:32 19544]
S3 GCR410P;GEMPLUS GCR410P Serial Smart Card Reader;c:\windows\system32\drivers\grserial.sys [31.8.2004 11:09 28416]
S3 GEMSER;GEMSER;c:\windows\system32\drivers\gemser.sys [31.8.2004 11:10 27264]
S3 YKQY;YKQY;c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe --> c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2005-01-05 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8093940538.job
- c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-06-30 19:55
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2011-06-30 20:00:43 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-06-30 18:00
ComboFix2.txt 2011-06-27 17:03
.
Před spuštěním: 8 262 889 472
Po spuštění: 8 152 018 944
.
- - End Of File - - B4470EB2A335892BAD70AC7D0161AFE7
Re: Prosím o preventivku po čištění zavirovaného PC
Prdnul jsem tam ještě aktualizece... a tak log po nic pro jistotu...
Díkes Kašos...
ComboFix 11-06-30.03 - Eva 30.06.2011 21:20:29.3.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1471.1005 [GMT 2:00]
Spuštěný z: c:\documents and settings\Eva\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-28 do 2011-06-30 )))))))))))))))))))))))))))))))
.
.
2011-06-30 19:12 . 2011-06-30 19:12 -------- d-sh--w- c:\documents and settings\Eva\IECompatCache
2011-06-30 19:12 . 2011-06-30 19:12 -------- d-sh--w- c:\documents and settings\Eva\PrivacIE
2011-06-30 19:10 . 2011-06-30 19:10 -------- d-sh--w- c:\documents and settings\Eva\IETldCache
2011-06-30 19:10 . 2011-06-30 19:10 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2011-06-30 19:04 . 2011-06-30 19:05 -------- dc-h--w- c:\windows\ie8
2011-06-30 19:00 . 2010-10-18 11:10 7680 -c----w- c:\windows\system32\dllcache\iecompat.dll
2011-06-30 19:00 . 2011-04-25 16:06 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2011-06-30 19:00 . 2011-04-25 16:06 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-06-30 19:00 . 2011-04-25 16:06 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2011-06-30 19:00 . 2011-04-25 16:06 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2011-06-30 19:00 . 2011-04-25 16:06 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2011-06-30 19:00 . 2011-04-25 16:06 1991680 -c----w- c:\windows\system32\dllcache\iertutil.dll
2011-06-30 19:00 . 2011-04-26 08:06 11081728 -c----w- c:\windows\system32\dllcache\ieframe.dll
2011-06-30 18:59 . 2011-06-30 18:59 -------- d-----w- c:\program files\Common Files\Java
2011-06-30 18:59 . 2011-06-30 18:58 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-06-30 18:58 . 2011-06-30 18:58 -------- d-----w- c:\program files\Java
2011-06-30 18:27 . 2008-04-14 06:51 9728 ------w- c:\windows\system32\rwnh.dll
2011-06-30 18:27 . 2008-04-14 06:51 10752 ------w- c:\windows\system32\smtpapi.dll
2011-06-30 18:26 . 2006-12-28 22:31 19569 ----a-w- c:\windows\000001_.tmp
2011-06-16 02:50 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-16 02:49 . 2009-03-08 02:33 759296 -c--a-w- c:\windows\system32\dllcache\VGX.dll
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- c:\program files\trend micro
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- C:\rsit
2011-06-08 21:52 . 2011-06-08 21:52 -------- d-----w- c:\program files\CCleaner
2011-06-08 20:58 . 2011-06-08 21:47 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\eSupport.com
2011-06-08 16:31 . 2011-06-08 16:31 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\PCHealth
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\windows\system32\XPSViewer
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\MSBuild
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\Reference Assemblies
2011-06-08 16:16 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-06-08 16:16 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-06-08 16:16 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-06-08 15:26 . 2007-01-18 12:00 3968 ----a-w- c:\windows\system32\drivers\AvgArCln.sys
2011-06-08 07:15 . 2011-06-08 21:24 -------- d-----r- c:\documents and settings\NetworkService\Dokumenty
2011-06-08 06:22 . 2011-06-08 19:10 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\ApplicationHistory
2011-06-08 06:18 . 2011-06-08 06:18 -------- d-----w- c:\program files\MSXML 4.0
2011-06-07 21:41 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-06-07 21:41 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-06-07 21:40 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-06-07 21:39 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2011-06-07 21:37 . 2011-06-07 21:37 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Google
2011-06-07 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2011-06-07 21:34 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-06-07 21:32 . 2011-06-15 05:15 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Temp
2011-06-07 21:32 . 2011-06-07 21:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Google
2011-06-07 21:32 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2011-06-07 21:32 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2011-06-07 21:32 . 2011-05-10 12:03 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-06-07 21:32 . 2011-05-10 11:59 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-07 21:32 . 2011-05-10 11:59 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-06-07 21:32 . 2011-05-10 12:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-06-07 21:32 . 2011-05-10 12:02 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-06-07 21:32 . 2011-05-10 12:02 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-06-07 21:32 . 2011-05-10 12:02 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-06-07 21:32 . 2011-05-10 11:59 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-06-07 21:31 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2011-06-07 21:31 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2011-06-07 21:31 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2011-06-07 21:31 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2011-06-07 21:31 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2011-06-07 21:31 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2011-06-07 21:31 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2011-06-07 21:31 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2011-06-07 21:30 . 2011-05-10 12:10 40112 ----a-w- c:\windows\avastSS.scr
2011-06-07 21:30 . 2011-05-10 12:10 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\program files\AVAST Software
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-06-07 21:28 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2011-06-07 21:28 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2011-06-07 21:27 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2011-06-07 21:27 . 2011-04-29 16:19 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-06-07 21:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2011-06-07 21:20 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2011-06-07 21:19 . 2011-06-07 21:19 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2011-06-07 21:17 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2011-06-07 21:17 . 2010-12-09 15:14 2194944 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-06-07 21:17 . 2010-12-09 15:14 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2071552 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-06-07 21:16 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2011-06-07 21:15 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-06-07 21:15 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2011-06-07 21:14 . 2011-06-30 19:07 -------- d--h--w- c:\windows\$hf_mig$
2011-06-07 21:02 . 2008-04-14 06:52 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-06-07 21:01 . 2011-06-07 21:01 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-06-07 21:01 . 2011-06-30 18:59 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2011-06-07 20:33 . 2008-04-13 22:15 46592 ------w- c:\windows\system32\drivers\irbus.sys
2011-06-07 20:30 . 2011-06-07 20:34 -------- d-----w- c:\windows\ServicePackFiles
2011-06-07 20:30 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2011-06-07 20:25 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002825_.tmp
2011-06-07 20:24 . 2009-01-07 16:20 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2011-06-07 20:20 . 2011-06-30 18:26 -------- d-----w- c:\windows\EHome
2011-06-07 19:11 . 2011-06-07 19:11 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Deployment
2011-06-07 18:59 . 2008-04-14 05:59 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2011-06-07 18:57 . 2011-06-07 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-30 18:58 . 2011-05-17 16:16 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-06-30 18:52 . 2004-09-10 18:19 715642 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2011-06-08 21:22 . 2004-08-27 21:52 3744 ----a-w- c:\windows\system32\drivers\smsens.sys
2011-06-08 21:22 . 2004-08-27 21:52 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2011-05-02 15:32 . 2004-08-27 21:31 692736 ---ha-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25 . 2002-09-20 16:04 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19 . 2002-08-28 23:59 456320 ---ha-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 16:06 . 2002-09-20 16:05 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 16:06 . 2002-09-20 16:05 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:06 . 2002-09-20 16:04 43520 ------w- c:\windows\system32\licmgr10.dll
2011-04-21 13:37 . 2002-08-29 00:12 105472 ---ha-w- c:\windows\system32\drivers\mup.sys
2008-01-14 16:26 . 2008-01-14 16:26 6010880 ----a-w- c:\program files\icq5_1_Atlas.exe
2008-01-12 12:17 . 2008-01-12 12:08 13980016 ----a-w- c:\program files\install_atlas_icq6.exe
.
.
((((((((((((((((((((((((((((( SnapShot@2011-06-27_16.58.11 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-06-30 19:10 . 2011-06-30 19:10 16384 c:\windows\temp\Perflib_Perfdata_ac.dat
+ 2004-08-27 22:33 . 2009-01-07 16:20 17952 c:\windows\system32\spmsg.dll
+ 2011-06-30 18:26 . 2008-04-14 05:38 41600 c:\windows\system32\ReinstallBackups\0003\DriverFiles\i386\amdk7.sys
+ 2002-09-20 16:04 . 2009-03-08 02:31 46592 c:\windows\system32\pngfilt.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 23552 c:\windows\system32\normaliz.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 24576 c:\windows\system32\nlsdl.dll
+ 2002-09-20 16:01 . 2009-03-08 02:31 48128 c:\windows\system32\mshtmler.dll
+ 2002-09-20 16:04 . 2011-04-25 16:06 66560 c:\windows\system32\mshtmled.dll
+ 2001-10-25 12:00 . 2009-03-08 02:31 45568 c:\windows\system32\mshta.exe
+ 2009-03-08 02:31 . 2009-03-08 02:31 13312 c:\windows\system32\msfeedssync.exe
+ 2009-03-08 02:31 . 2011-04-25 16:06 55296 c:\windows\system32\msfeedsbs.dll
+ 2001-10-25 12:00 . 2011-04-25 16:06 25600 c:\windows\system32\jsproxy.dll
+ 2002-09-20 16:04 . 2009-03-08 02:32 94720 c:\windows\system32\inseng.dll
+ 2002-09-20 16:03 . 2009-03-08 02:31 34816 c:\windows\system32\imgutil.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 36864 c:\windows\system32\ieudinit.exe
+ 2002-09-20 16:03 . 2009-03-08 02:32 71680 c:\windows\system32\iesetup.dll
+ 2001-10-25 12:00 . 2009-03-08 02:32 55808 c:\windows\system32\iernonce.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 26112 c:\windows\system32\idndl.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 59904 c:\windows\system32\icardie.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 46592 c:\windows\system32\dllcache\pngfilt.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2010-12-20 22:14 . 2011-04-25 16:06 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 45568 c:\windows\system32\dllcache\mshta.exe
+ 2009-03-08 02:34 . 2011-04-25 16:06 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2009-03-08 02:33 . 2011-04-25 16:06 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 94720 c:\windows\system32\dllcache\inseng.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 34816 c:\windows\system32\dllcache\imgutil.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 71680 c:\windows\system32\dllcache\iesetup.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 55808 c:\windows\system32\dllcache\iernonce.dll
+ 2009-03-08 02:24 . 2009-03-08 02:24 68608 c:\windows\system32\dllcache\hmmapi.dll
+ 2009-03-08 02:33 . 2009-03-08 02:33 18944 c:\windows\system32\dllcache\corpol.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 72704 c:\windows\system32\dllcache\admparse.dll
+ 2001-10-25 12:00 . 2009-03-08 02:33 18944 c:\windows\system32\corpol.dll
+ 2004-08-27 21:36 . 2011-06-30 18:35 81920 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
- 2004-08-27 21:36 . 2011-06-07 21:00 81920 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2011-06-30 18:35 . 2011-06-30 18:35 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012011063020110701\index.dat
+ 2004-08-27 21:36 . 2011-06-30 18:35 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2004-08-27 21:36 . 2011-06-07 21:00 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2004-08-27 21:36 . 2011-06-07 21:00 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2011-06-30 18:34 . 2011-06-30 18:35 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2001-10-25 12:00 . 2009-03-08 02:32 72704 c:\windows\system32\admparse.dll
+ 2011-06-30 19:06 . 2009-03-08 02:33 12288 c:\windows\ie8updates\KB982381-IE8\xpshims.dll
+ 2011-06-30 19:06 . 2009-03-08 02:31 55296 c:\windows\ie8updates\KB982381-IE8\msfeedsbs.dll
+ 2011-06-30 19:06 . 2009-03-08 02:33 25600 c:\windows\ie8updates\KB982381-IE8\jsproxy.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 12800 c:\windows\ie8updates\KB2530548-IE8\xpshims.dll
+ 2011-06-30 19:08 . 2009-03-08 02:31 66560 c:\windows\ie8updates\KB2530548-IE8\mshtmled.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 55296 c:\windows\ie8updates\KB2530548-IE8\msfeedsbs.dll
+ 2011-06-30 19:08 . 2009-03-08 02:34 43008 c:\windows\ie8updates\KB2530548-IE8\licmgr10.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 25600 c:\windows\ie8updates\KB2530548-IE8\jsproxy.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 37888 c:\windows\ie8\url.dll
+ 2011-06-30 19:05 . 2009-03-08 14:57 58448 c:\windows\ie8\spuninst\iecustom.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 39424 c:\windows\ie8\pngfilt.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 96768 c:\windows\ie8\occache.dll
+ 2011-06-30 19:04 . 2008-04-14 05:42 56832 c:\windows\ie8\mshtmler.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 29184 c:\windows\ie8\mshta.exe
+ 2011-06-30 19:04 . 2008-04-14 06:51 22016 c:\windows\ie8\licmgr10.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 15872 c:\windows\ie8\jsproxy.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 96768 c:\windows\ie8\inseng.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 35840 c:\windows\ie8\imgutil.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 93184 c:\windows\ie8\iexplore.exe
+ 2011-06-30 19:04 . 2008-04-14 06:51 62976 c:\windows\ie8\iesetup.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 48128 c:\windows\ie8\iernonce.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 81920 c:\windows\ie8\ieencode.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 34304 c:\windows\ie8\ie4uinit.exe
+ 2011-06-30 19:04 . 2008-04-14 06:51 38912 c:\windows\ie8\hmmapi.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 35328 c:\windows\ie8\corpol.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 61440 c:\windows\ie8\admparse.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\1492e9393417d6e91b5ddc746b5ef320\UIAutomationProvider.ni.dll
+ 2011-06-30 18:53 . 2011-06-30 18:53 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\e9bb32c656a2f80b629f129d738c392b\PresentationFontCache.ni.exe
+ 2011-06-30 18:52 . 2011-06-30 18:52 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\d54d318ae1eb0667badea576d0534f9d\PresentationCFFRasterizer.ni.dll
+ 2011-06-30 19:23 . 2011-06-30 19:23 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d9228d58804dfd75fd92a4d12ffac8af\Accessibility.ni.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2011-06-30 19:07 . 2009-03-08 02:35 2048 c:\windows\ie8updates\KB2447568-IE8\iecompat.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-06-08 19:40 . 2011-06-08 19:40 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2011-06-07 20:33 . 2008-04-14 06:52 121856 c:\windows\system32\xmllite.dll
+ 2011-06-07 20:33 . 2009-01-07 16:21 121856 c:\windows\system32\xmllite.dll
+ 2009-03-08 02:34 . 2009-03-08 02:34 208384 c:\windows\system32\WinFXDocObj.exe
+ 2002-09-20 16:05 . 2009-03-08 02:34 236544 c:\windows\system32\webcheck.dll
+ 2002-09-20 16:04 . 2009-03-08 02:33 420352 c:\windows\system32\vbscript.dll
+ 2002-09-20 16:04 . 2009-03-08 02:34 105984 c:\windows\system32\url.dll
- 2010-02-26 12:47 . 2008-07-06 12:06 373248 c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
+ 2010-02-26 12:47 . 2008-04-14 06:52 373248 c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
+ 2001-10-25 12:00 . 2011-04-25 16:06 206848 c:\windows\system32\occache.dll
+ 2002-09-20 16:04 . 2011-04-25 16:06 611840 c:\windows\system32\mstime.dll
+ 2002-09-20 16:04 . 2009-03-08 02:34 193536 c:\windows\system32\msrating.dll
+ 2001-10-25 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\msls31.dll
+ 2009-03-08 02:32 . 2011-04-25 16:06 602112 c:\windows\system32\msfeeds.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 265720 c:\windows\system32\msdbg2.dll
+ 2001-10-25 12:00 . 2009-03-08 02:33 726528 c:\windows\system32\jscript.dll
- 2011-05-17 16:16 . 2011-05-17 16:16 157472 c:\windows\system32\javaws.exe
+ 2011-06-30 18:59 . 2011-06-30 18:58 157472 c:\windows\system32\javaws.exe
+ 2011-06-30 18:59 . 2011-06-30 18:58 145184 c:\windows\system32\javaw.exe
- 2011-05-17 16:16 . 2011-05-17 16:16 145184 c:\windows\system32\javaw.exe
- 2011-05-17 16:16 . 2011-05-17 16:16 145184 c:\windows\system32\java.exe
+ 2011-06-30 18:59 . 2011-06-30 18:58 145184 c:\windows\system32\java.exe
+ 2011-06-30 18:27 . 2008-04-14 06:51 189440 c:\windows\system32\inetsrv\smtpadm.dll
+ 2011-06-30 18:27 . 2008-04-14 06:51 221696 c:\windows\system32\inetsrv\seo.dll
+ 2009-03-08 02:22 . 2009-03-08 02:22 164352 c:\windows\system32\ieui.dll
+ 2002-09-20 16:03 . 2011-04-25 16:06 184320 c:\windows\system32\iepeers.dll
+ 2002-09-20 16:03 . 2011-04-25 16:06 387584 c:\windows\system32\iedkcs32.dll
+ 2009-03-08 02:11 . 2009-03-08 02:11 445952 c:\windows\system32\ieapfltr.dll
+ 2001-10-25 12:00 . 2009-03-08 02:32 163840 c:\windows\system32\ieakui.dll
+ 2002-09-20 16:03 . 2009-03-08 02:33 229376 c:\windows\system32\ieaksie.dll
+ 2002-09-20 16:03 . 2009-03-08 02:33 125952 c:\windows\system32\ieakeng.dll
+ 2002-09-20 16:05 . 2011-04-25 12:01 173568 c:\windows\system32\ie4uinit.exe
+ 2002-09-20 16:03 . 2009-03-08 02:31 216064 c:\windows\system32\dxtrans.dll
+ 2002-09-20 16:03 . 2009-03-08 02:31 348160 c:\windows\system32\dxtmsft.dll
+ 2010-12-20 22:14 . 2011-04-25 16:06 916480 c:\windows\system32\dllcache\wininet.dll
+ 2009-03-08 02:34 . 2009-03-08 02:34 236544 c:\windows\system32\dllcache\webcheck.dll
+ 2011-03-04 06:43 . 2009-03-08 02:33 420352 c:\windows\system32\dllcache\vbscript.dll
+ 2009-03-08 02:34 . 2009-03-08 02:34 105984 c:\windows\system32\dllcache\url.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 134144 c:\windows\system32\dllcache\sqmapi.dll
+ 2009-06-25 08:27 . 2011-04-29 17:25 151552 c:\windows\system32\dllcache\schannel.dll
+ 2009-03-08 02:34 . 2011-04-25 16:06 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-12-20 22:14 . 2011-04-25 16:06 611840 c:\windows\system32\dllcache\mstime.dll
+ 2009-03-08 02:34 . 2009-03-08 02:34 193536 c:\windows\system32\dllcache\msrating.dll
+ 2001-10-25 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\dllcache\msls31.dll
+ 2011-03-04 06:43 . 2009-03-08 02:33 726528 c:\windows\system32\dllcache\jscript.dll
+ 2009-03-08 12:09 . 2009-03-08 12:09 638816 c:\windows\system32\dllcache\iexplore.exe
+ 2010-12-20 22:14 . 2011-04-25 16:06 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2009-03-08 12:09 . 2011-04-25 16:06 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2001-10-25 12:00 . 2009-03-08 02:32 163840 c:\windows\system32\dllcache\ieakui.dll
+ 2009-03-08 02:33 . 2009-03-08 02:33 229376 c:\windows\system32\dllcache\ieaksie.dll
+ 2009-03-08 02:33 . 2009-03-08 02:33 125952 c:\windows\system32\dllcache\ieakeng.dll
+ 2009-03-08 02:32 . 2011-04-25 12:01 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-03-08 02:31 . 2009-03-08 02:31 216064 c:\windows\system32\dllcache\dxtrans.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 348160 c:\windows\system32\dllcache\dxtmsft.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 128512 c:\windows\system32\dllcache\advpack.dll
+ 2011-06-30 19:10 . 2011-06-30 19:10 262144 c:\windows\system32\config\systemprofile\IETldCache\index.dat
+ 2002-09-20 16:03 . 2009-03-08 02:32 128512 c:\windows\system32\advpack.dll
- 2011-01-18 02:39 . 2011-01-18 02:39 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
- 2011-01-18 02:39 . 2011-01-18 02:39 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
- 2011-01-18 02:39 . 2011-01-18 02:39 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-06-30 18:59 . 2011-06-30 18:59 203776 c:\windows\Installer\38495.msi
+ 2011-06-30 18:58 . 2011-06-30 18:58 677376 c:\windows\Installer\38485.msi
+ 2011-06-30 19:06 . 2009-03-08 02:34 914944 c:\windows\ie8updates\KB982381-IE8\wininet.dll
+ 2011-06-30 19:06 . 2010-02-22 14:21 391032 c:\windows\ie8updates\KB982381-IE8\spuninst\updspapi.dll
+ 2011-06-30 19:06 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB982381-IE8\spuninst\spuninst.exe
+ 2011-06-30 19:06 . 2009-03-08 02:34 109568 c:\windows\ie8updates\KB982381-IE8\occache.dll
+ 2011-06-30 19:06 . 2009-03-08 02:32 611840 c:\windows\ie8updates\KB982381-IE8\mstime.dll
+ 2011-06-30 19:06 . 2009-03-08 02:32 594432 c:\windows\ie8updates\KB982381-IE8\msfeeds.dll
+ 2011-06-30 19:06 . 2009-03-08 02:33 246784 c:\windows\ie8updates\KB982381-IE8\ieproxy.dll
+ 2011-06-30 19:06 . 2009-03-08 02:31 183808 c:\windows\ie8updates\KB982381-IE8\iepeers.dll
+ 2011-06-30 19:06 . 2009-03-08 02:35 742912 c:\windows\ie8updates\KB982381-IE8\iedvtool.dll
+ 2011-06-30 19:06 . 2009-03-08 12:09 391536 c:\windows\ie8updates\KB982381-IE8\iedkcs32.dll
+ 2011-06-30 19:06 . 2009-03-08 02:32 173056 c:\windows\ie8updates\KB982381-IE8\ie4uinit.exe
+ 2011-06-30 19:08 . 2010-05-06 10:35 916480 c:\windows\ie8updates\KB2530548-IE8\wininet.dll
+ 2011-06-30 19:08 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2530548-IE8\spuninst\updspapi.dll
+ 2011-06-30 19:08 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2530548-IE8\spuninst\spuninst.exe
+ 2011-06-30 19:08 . 2010-05-06 10:35 206848 c:\windows\ie8updates\KB2530548-IE8\occache.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 611840 c:\windows\ie8updates\KB2530548-IE8\mstime.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 599040 c:\windows\ie8updates\KB2530548-IE8\msfeeds.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 247808 c:\windows\ie8updates\KB2530548-IE8\ieproxy.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 184320 c:\windows\ie8updates\KB2530548-IE8\iepeers.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 743424 c:\windows\ie8updates\KB2530548-IE8\iedvtool.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 387584 c:\windows\ie8updates\KB2530548-IE8\iedkcs32.dll
+ 2011-06-30 19:08 . 2010-05-05 13:30 173056 c:\windows\ie8updates\KB2530548-IE8\ie4uinit.exe
+ 2011-06-30 19:07 . 2010-02-22 14:21 391032 c:\windows\ie8updates\KB2447568-IE8\spuninst\updspapi.dll
+ 2011-06-30 19:07 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2447568-IE8\spuninst\spuninst.exe
+ 2011-06-30 19:04 . 2011-04-25 14:47 668160 c:\windows\ie8\wininet.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 278528 c:\windows\ie8\webcheck.dll
+ 2011-06-30 19:04 . 2011-04-29 19:07 852480 c:\windows\ie8\vgx.dll
+ 2011-06-30 19:04 . 2011-03-04 06:43 434176 c:\windows\ie8\vbscript.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 627200 c:\windows\ie8\urlmon.dll
+ 2011-06-30 19:05 . 2009-01-07 16:20 390688 c:\windows\ie8\spuninst\updspapi.dll
+ 2011-06-30 19:05 . 2009-01-07 16:20 234016 c:\windows\ie8\spuninst\spuninst.exe
+ 2011-06-30 19:04 . 2011-04-25 14:47 532480 c:\windows\ie8\mstime.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 146432 c:\windows\ie8\msrating.dll
+ 2011-06-30 19:04 . 2001-10-25 12:00 146432 c:\windows\ie8\msls31.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 449536 c:\windows\ie8\mshtmled.dll
+ 2011-06-30 19:04 . 2011-03-04 06:43 512000 c:\windows\ie8\jscript.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 251904 c:\windows\ie8\iepeers.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 323584 c:\windows\ie8\iedkcs32.dll
+ 2011-06-30 19:04 . 2001-10-25 12:00 225280 c:\windows\ie8\ieakui.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 219136 c:\windows\ie8\ieaksie.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 143360 c:\windows\ie8\ieakeng.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 205312 c:\windows\ie8\dxtrans.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 357888 c:\windows\ie8\dxtmsft.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 100352 c:\windows\ie8\advpack.dll
+ 2011-06-30 18:58 . 2011-06-30 18:58 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\431d5dc1cfcc0c0530e813f370931670\WindowsFormsIntegration.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\3740d6db28af31a6523a79fcdd71fbeb\UIAutomationTypes.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\00dfe5563886a1f69c96b3acb839107b\UIAutomationClient.ni.dll
+ 2011-06-30 19:24 . 2011-06-30 19:24 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\7f5f5bfd5f8d6587c96870751a6eb44d\System.IO.Log.ni.dll
+ 2011-06-30 19:24 . 2011-06-30 19:24 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\de1bf796614ca11afd9fab95edb1b4e2\System.IdentityModel.Selectors.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\1af8683e05c42eb32f46578fe5a8f83f\System.Drawing.Design.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e468e9265c844f74577530e4df71f120\PresentationFramework.Aero.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\959709491c71caef88fb41b0eb159714\PresentationFramework.Classic.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\807b62468c2893ee943dffff63a34d8d\PresentationFramework.Royale.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6cf82f370413a2cd1e6bc54060334753\PresentationFramework.Luna.ni.dll
+ 2011-06-30 19:24 . 2011-06-30 19:24 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\0524928cbd0a686db3960ef688d0d37e\AspNetMMCExt.ni.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2002-09-20 16:04 . 2011-04-25 16:06 1211904 c:\windows\system32\urlmon.dll
+ 2002-09-20 16:04 . 2011-05-30 22:12 5964800 c:\windows\system32\mshtml.dll
+ 2009-03-08 02:32 . 2011-04-25 16:06 1991680 c:\windows\system32\iertutil.dll
+ 2009-02-06 19:07 . 2009-02-06 19:07 3698584 c:\windows\system32\ieapfltr.dat
+ 2010-12-20 22:14 . 2011-04-25 16:06 1211904 c:\windows\system32\dllcache\urlmon.dll
+ 2010-12-20 22:14 . 2011-05-30 22:12 5964800 c:\windows\system32\dllcache\mshtml.dll
- 2008-07-25 09:17 . 2008-07-25 09:17 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-01-18 02:39 . 2011-01-18 02:39 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
- 2010-03-23 03:32 . 2010-03-23 03:32 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 5912400 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
- 2011-01-18 02:39 . 2011-01-18 02:39 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2011-01-18 21:36 . 2011-01-18 21:36 2687488 c:\windows\Installer\6b32c.msp
+ 2011-06-30 19:06 . 2009-03-08 02:34 1206784 c:\windows\ie8updates\KB982381-IE8\urlmon.dll
+ 2011-06-30 19:06 . 2009-03-08 02:41 5937152 c:\windows\ie8updates\KB982381-IE8\mshtml.dll
+ 2011-06-30 19:06 . 2009-03-08 02:32 1985024 c:\windows\ie8updates\KB982381-IE8\iertutil.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 1209344 c:\windows\ie8updates\KB2530548-IE8\urlmon.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 5950976 c:\windows\ie8updates\KB2530548-IE8\mshtml.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 1985536 c:\windows\ie8updates\KB2530548-IE8\iertutil.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 3100672 c:\windows\ie8\mshtml.dll
+ 2011-06-30 18:45 . 2011-06-30 18:45 3182592 c:\windows\assembly\tmp\LSX159DI\System.dll
+ 2011-06-30 18:53 . 2011-06-30 18:53 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\11526c1635b97a7d49e25e72ed6e9662\WindowsBase.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\901c3796073853746fecd8979c679494\UIAutomationClientsideProviders.ni.dll
+ 2011-06-30 18:52 . 2011-06-30 18:52 7950848 c:\windows\assembly\NativeImages_v2.0.50727_32\System\f6a9a002526806f3a5b745cf5c407cae\System.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f354057a5b4fad4c399da28449ba0d92\System.Xml.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\2047e63293e067b351b8f0e038253f33\System.Speech.ni.dll
+ 2011-06-30 19:25 . 2011-06-30 19:25 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\c889a45c82004537f1620dd3b211af66\System.Runtime.Serialization.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\c64aa916251a45206a805ab6488b9255\System.Printing.ni.dll
+ 2011-06-30 19:24 . 2011-06-30 19:24 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\a8039af85f459c19c041313f9fe0d7e8\System.IdentityModel.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\a59b17e6040e3f6286a2227dfdb17096\System.Drawing.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\05d99241bd45cbd96a6053841790a4a2\System.Data.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\283e9bf48e17bdb34acdc93bd5721be0\System.Data.Linq.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\bd2e04dfab2993479ae17ea3fa4f6222\System.Core.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\4f82a0a1b4405ef61dfa088d11161e35\ReachFramework.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\148505f5b0307230de5d355f10d30a20\PresentationUI.ni.dll
+ 2011-06-30 18:52 . 2011-06-30 18:52 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\1fab86af683c04bdb0aaf65ce7fcd9e5\PresentationBuildTasks.ni.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2009-03-08 02:39 . 2011-04-26 08:06 11081728 c:\windows\system32\ieframe.dll
+ 2011-03-28 01:27 . 2011-03-28 01:27 15456256 c:\windows\Installer\6b339.msp
+ 2011-06-30 19:06 . 2009-03-08 02:39 11063808 c:\windows\ie8updates\KB982381-IE8\ieframe.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 11076096 c:\windows\ie8updates\KB2530548-IE8\ieframe.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\29d16d2f164fe2263539789ecd0d9d4f\System.Windows.Forms.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\ee914f59ad8211e0b6734dccffd9986e\System.Design.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 14328320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\999df2b262da53356dda514512bb7bb8\PresentationFramework.ni.dll
+ 2011-06-30 18:53 . 2011-06-30 18:53 12215808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\caafa254739e326b0cf55eed815b4333\PresentationCore.ni.dll
+ 2011-06-30 18:52 . 2011-06-30 18:52 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ICQ"="c:\program files\ICQ6\ICQ.exe" silent
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"VTTimer"=VTTimer.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7.6.2011 23:32 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7.6.2011 23:32 307928]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7.6.2011 23:32 19544]
S3 GCR410P;GEMPLUS GCR410P Serial Smart Card Reader;c:\windows\system32\drivers\grserial.sys [31.8.2004 11:09 28416]
S3 GEMSER;GEMSER;c:\windows\system32\drivers\gemser.sys [31.8.2004 11:10 27264]
S3 YKQY;YKQY;c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe --> c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2005-01-05 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8093940538.job
- c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52]
.
2011-06-30 c:\windows\Tasks\User_Feed_Synchronization-{4FEEA37D-9A96-4FAE-A6C5-AF9AB30842B7}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-06-30 21:31
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2620)
c:\windows\system32\webcheck.dll
.
Celkový čas: 2011-06-30 21:36:35
ComboFix-quarantined-files.txt 2011-06-30 19:36
ComboFix2.txt 2011-06-30 18:00
ComboFix3.txt 2011-06-27 17:03
.
Před spuštěním: 6 814 793 728
Po spuštění: 6 816 849 920
.
Current=2 Default=2 Failed=1 LastKnownGood=3 Sets=1,2,3,4
- - End Of File - - C6F4359796A7E032F0D4E77CF72F1493
Díkes Kašos...
ComboFix 11-06-30.03 - Eva 30.06.2011 21:20:29.3.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1471.1005 [GMT 2:00]
Spuštěný z: c:\documents and settings\Eva\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-28 do 2011-06-30 )))))))))))))))))))))))))))))))
.
.
2011-06-30 19:12 . 2011-06-30 19:12 -------- d-sh--w- c:\documents and settings\Eva\IECompatCache
2011-06-30 19:12 . 2011-06-30 19:12 -------- d-sh--w- c:\documents and settings\Eva\PrivacIE
2011-06-30 19:10 . 2011-06-30 19:10 -------- d-sh--w- c:\documents and settings\Eva\IETldCache
2011-06-30 19:10 . 2011-06-30 19:10 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2011-06-30 19:04 . 2011-06-30 19:05 -------- dc-h--w- c:\windows\ie8
2011-06-30 19:00 . 2010-10-18 11:10 7680 -c----w- c:\windows\system32\dllcache\iecompat.dll
2011-06-30 19:00 . 2011-04-25 16:06 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2011-06-30 19:00 . 2011-04-25 16:06 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-06-30 19:00 . 2011-04-25 16:06 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2011-06-30 19:00 . 2011-04-25 16:06 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2011-06-30 19:00 . 2011-04-25 16:06 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2011-06-30 19:00 . 2011-04-25 16:06 1991680 -c----w- c:\windows\system32\dllcache\iertutil.dll
2011-06-30 19:00 . 2011-04-26 08:06 11081728 -c----w- c:\windows\system32\dllcache\ieframe.dll
2011-06-30 18:59 . 2011-06-30 18:59 -------- d-----w- c:\program files\Common Files\Java
2011-06-30 18:59 . 2011-06-30 18:58 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-06-30 18:58 . 2011-06-30 18:58 -------- d-----w- c:\program files\Java
2011-06-30 18:27 . 2008-04-14 06:51 9728 ------w- c:\windows\system32\rwnh.dll
2011-06-30 18:27 . 2008-04-14 06:51 10752 ------w- c:\windows\system32\smtpapi.dll
2011-06-30 18:26 . 2006-12-28 22:31 19569 ----a-w- c:\windows\000001_.tmp
2011-06-16 02:50 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-16 02:49 . 2009-03-08 02:33 759296 -c--a-w- c:\windows\system32\dllcache\VGX.dll
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- c:\program files\trend micro
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- C:\rsit
2011-06-08 21:52 . 2011-06-08 21:52 -------- d-----w- c:\program files\CCleaner
2011-06-08 20:58 . 2011-06-08 21:47 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\eSupport.com
2011-06-08 16:31 . 2011-06-08 16:31 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\PCHealth
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\windows\system32\XPSViewer
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\MSBuild
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\Reference Assemblies
2011-06-08 16:16 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-06-08 16:16 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-06-08 16:16 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-06-08 15:26 . 2007-01-18 12:00 3968 ----a-w- c:\windows\system32\drivers\AvgArCln.sys
2011-06-08 07:15 . 2011-06-08 21:24 -------- d-----r- c:\documents and settings\NetworkService\Dokumenty
2011-06-08 06:22 . 2011-06-08 19:10 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\ApplicationHistory
2011-06-08 06:18 . 2011-06-08 06:18 -------- d-----w- c:\program files\MSXML 4.0
2011-06-07 21:41 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-06-07 21:41 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-06-07 21:40 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-06-07 21:39 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2011-06-07 21:37 . 2011-06-07 21:37 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Google
2011-06-07 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2011-06-07 21:34 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-06-07 21:32 . 2011-06-15 05:15 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Temp
2011-06-07 21:32 . 2011-06-07 21:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Google
2011-06-07 21:32 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2011-06-07 21:32 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2011-06-07 21:32 . 2011-05-10 12:03 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-06-07 21:32 . 2011-05-10 11:59 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-07 21:32 . 2011-05-10 11:59 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-06-07 21:32 . 2011-05-10 12:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-06-07 21:32 . 2011-05-10 12:02 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-06-07 21:32 . 2011-05-10 12:02 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-06-07 21:32 . 2011-05-10 12:02 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-06-07 21:32 . 2011-05-10 11:59 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-06-07 21:31 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2011-06-07 21:31 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2011-06-07 21:31 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2011-06-07 21:31 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2011-06-07 21:31 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2011-06-07 21:31 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2011-06-07 21:31 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2011-06-07 21:31 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2011-06-07 21:30 . 2011-05-10 12:10 40112 ----a-w- c:\windows\avastSS.scr
2011-06-07 21:30 . 2011-05-10 12:10 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\program files\AVAST Software
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-06-07 21:28 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2011-06-07 21:28 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2011-06-07 21:27 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2011-06-07 21:27 . 2011-04-29 16:19 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-06-07 21:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2011-06-07 21:20 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2011-06-07 21:19 . 2011-06-07 21:19 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2011-06-07 21:17 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2011-06-07 21:17 . 2010-12-09 15:14 2194944 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-06-07 21:17 . 2010-12-09 15:14 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2071552 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-06-07 21:16 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2011-06-07 21:15 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-06-07 21:15 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2011-06-07 21:14 . 2011-06-30 19:07 -------- d--h--w- c:\windows\$hf_mig$
2011-06-07 21:02 . 2008-04-14 06:52 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-06-07 21:01 . 2011-06-07 21:01 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-06-07 21:01 . 2011-06-30 18:59 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2011-06-07 20:33 . 2008-04-13 22:15 46592 ------w- c:\windows\system32\drivers\irbus.sys
2011-06-07 20:30 . 2011-06-07 20:34 -------- d-----w- c:\windows\ServicePackFiles
2011-06-07 20:30 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2011-06-07 20:25 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002825_.tmp
2011-06-07 20:24 . 2009-01-07 16:20 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2011-06-07 20:20 . 2011-06-30 18:26 -------- d-----w- c:\windows\EHome
2011-06-07 19:11 . 2011-06-07 19:11 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Deployment
2011-06-07 18:59 . 2008-04-14 05:59 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2011-06-07 18:57 . 2011-06-07 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-30 18:58 . 2011-05-17 16:16 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-06-30 18:52 . 2004-09-10 18:19 715642 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2011-06-08 21:22 . 2004-08-27 21:52 3744 ----a-w- c:\windows\system32\drivers\smsens.sys
2011-06-08 21:22 . 2004-08-27 21:52 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2011-05-02 15:32 . 2004-08-27 21:31 692736 ---ha-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25 . 2002-09-20 16:04 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19 . 2002-08-28 23:59 456320 ---ha-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 16:06 . 2002-09-20 16:05 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 16:06 . 2002-09-20 16:05 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:06 . 2002-09-20 16:04 43520 ------w- c:\windows\system32\licmgr10.dll
2011-04-21 13:37 . 2002-08-29 00:12 105472 ---ha-w- c:\windows\system32\drivers\mup.sys
2008-01-14 16:26 . 2008-01-14 16:26 6010880 ----a-w- c:\program files\icq5_1_Atlas.exe
2008-01-12 12:17 . 2008-01-12 12:08 13980016 ----a-w- c:\program files\install_atlas_icq6.exe
.
.
((((((((((((((((((((((((((((( SnapShot@2011-06-27_16.58.11 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-06-30 19:10 . 2011-06-30 19:10 16384 c:\windows\temp\Perflib_Perfdata_ac.dat
+ 2004-08-27 22:33 . 2009-01-07 16:20 17952 c:\windows\system32\spmsg.dll
+ 2011-06-30 18:26 . 2008-04-14 05:38 41600 c:\windows\system32\ReinstallBackups\0003\DriverFiles\i386\amdk7.sys
+ 2002-09-20 16:04 . 2009-03-08 02:31 46592 c:\windows\system32\pngfilt.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 23552 c:\windows\system32\normaliz.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 24576 c:\windows\system32\nlsdl.dll
+ 2002-09-20 16:01 . 2009-03-08 02:31 48128 c:\windows\system32\mshtmler.dll
+ 2002-09-20 16:04 . 2011-04-25 16:06 66560 c:\windows\system32\mshtmled.dll
+ 2001-10-25 12:00 . 2009-03-08 02:31 45568 c:\windows\system32\mshta.exe
+ 2009-03-08 02:31 . 2009-03-08 02:31 13312 c:\windows\system32\msfeedssync.exe
+ 2009-03-08 02:31 . 2011-04-25 16:06 55296 c:\windows\system32\msfeedsbs.dll
+ 2001-10-25 12:00 . 2011-04-25 16:06 25600 c:\windows\system32\jsproxy.dll
+ 2002-09-20 16:04 . 2009-03-08 02:32 94720 c:\windows\system32\inseng.dll
+ 2002-09-20 16:03 . 2009-03-08 02:31 34816 c:\windows\system32\imgutil.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 36864 c:\windows\system32\ieudinit.exe
+ 2002-09-20 16:03 . 2009-03-08 02:32 71680 c:\windows\system32\iesetup.dll
+ 2001-10-25 12:00 . 2009-03-08 02:32 55808 c:\windows\system32\iernonce.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 26112 c:\windows\system32\idndl.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 59904 c:\windows\system32\icardie.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 46592 c:\windows\system32\dllcache\pngfilt.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2010-12-20 22:14 . 2011-04-25 16:06 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 45568 c:\windows\system32\dllcache\mshta.exe
+ 2009-03-08 02:34 . 2011-04-25 16:06 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2009-03-08 02:33 . 2011-04-25 16:06 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 94720 c:\windows\system32\dllcache\inseng.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 34816 c:\windows\system32\dllcache\imgutil.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 71680 c:\windows\system32\dllcache\iesetup.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 55808 c:\windows\system32\dllcache\iernonce.dll
+ 2009-03-08 02:24 . 2009-03-08 02:24 68608 c:\windows\system32\dllcache\hmmapi.dll
+ 2009-03-08 02:33 . 2009-03-08 02:33 18944 c:\windows\system32\dllcache\corpol.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 72704 c:\windows\system32\dllcache\admparse.dll
+ 2001-10-25 12:00 . 2009-03-08 02:33 18944 c:\windows\system32\corpol.dll
+ 2004-08-27 21:36 . 2011-06-30 18:35 81920 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
- 2004-08-27 21:36 . 2011-06-07 21:00 81920 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2011-06-30 18:35 . 2011-06-30 18:35 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012011063020110701\index.dat
+ 2004-08-27 21:36 . 2011-06-30 18:35 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2004-08-27 21:36 . 2011-06-07 21:00 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2004-08-27 21:36 . 2011-06-07 21:00 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2011-06-30 18:34 . 2011-06-30 18:35 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2001-10-25 12:00 . 2009-03-08 02:32 72704 c:\windows\system32\admparse.dll
+ 2011-06-30 19:06 . 2009-03-08 02:33 12288 c:\windows\ie8updates\KB982381-IE8\xpshims.dll
+ 2011-06-30 19:06 . 2009-03-08 02:31 55296 c:\windows\ie8updates\KB982381-IE8\msfeedsbs.dll
+ 2011-06-30 19:06 . 2009-03-08 02:33 25600 c:\windows\ie8updates\KB982381-IE8\jsproxy.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 12800 c:\windows\ie8updates\KB2530548-IE8\xpshims.dll
+ 2011-06-30 19:08 . 2009-03-08 02:31 66560 c:\windows\ie8updates\KB2530548-IE8\mshtmled.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 55296 c:\windows\ie8updates\KB2530548-IE8\msfeedsbs.dll
+ 2011-06-30 19:08 . 2009-03-08 02:34 43008 c:\windows\ie8updates\KB2530548-IE8\licmgr10.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 25600 c:\windows\ie8updates\KB2530548-IE8\jsproxy.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 37888 c:\windows\ie8\url.dll
+ 2011-06-30 19:05 . 2009-03-08 14:57 58448 c:\windows\ie8\spuninst\iecustom.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 39424 c:\windows\ie8\pngfilt.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 96768 c:\windows\ie8\occache.dll
+ 2011-06-30 19:04 . 2008-04-14 05:42 56832 c:\windows\ie8\mshtmler.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 29184 c:\windows\ie8\mshta.exe
+ 2011-06-30 19:04 . 2008-04-14 06:51 22016 c:\windows\ie8\licmgr10.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 15872 c:\windows\ie8\jsproxy.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 96768 c:\windows\ie8\inseng.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 35840 c:\windows\ie8\imgutil.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 93184 c:\windows\ie8\iexplore.exe
+ 2011-06-30 19:04 . 2008-04-14 06:51 62976 c:\windows\ie8\iesetup.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 48128 c:\windows\ie8\iernonce.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 81920 c:\windows\ie8\ieencode.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 34304 c:\windows\ie8\ie4uinit.exe
+ 2011-06-30 19:04 . 2008-04-14 06:51 38912 c:\windows\ie8\hmmapi.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 35328 c:\windows\ie8\corpol.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 61440 c:\windows\ie8\admparse.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\1492e9393417d6e91b5ddc746b5ef320\UIAutomationProvider.ni.dll
+ 2011-06-30 18:53 . 2011-06-30 18:53 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\e9bb32c656a2f80b629f129d738c392b\PresentationFontCache.ni.exe
+ 2011-06-30 18:52 . 2011-06-30 18:52 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\d54d318ae1eb0667badea576d0534f9d\PresentationCFFRasterizer.ni.dll
+ 2011-06-30 19:23 . 2011-06-30 19:23 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d9228d58804dfd75fd92a4d12ffac8af\Accessibility.ni.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2011-06-30 19:07 . 2009-03-08 02:35 2048 c:\windows\ie8updates\KB2447568-IE8\iecompat.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-06-08 19:40 . 2011-06-08 19:40 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2011-06-07 20:33 . 2008-04-14 06:52 121856 c:\windows\system32\xmllite.dll
+ 2011-06-07 20:33 . 2009-01-07 16:21 121856 c:\windows\system32\xmllite.dll
+ 2009-03-08 02:34 . 2009-03-08 02:34 208384 c:\windows\system32\WinFXDocObj.exe
+ 2002-09-20 16:05 . 2009-03-08 02:34 236544 c:\windows\system32\webcheck.dll
+ 2002-09-20 16:04 . 2009-03-08 02:33 420352 c:\windows\system32\vbscript.dll
+ 2002-09-20 16:04 . 2009-03-08 02:34 105984 c:\windows\system32\url.dll
- 2010-02-26 12:47 . 2008-07-06 12:06 373248 c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
+ 2010-02-26 12:47 . 2008-04-14 06:52 373248 c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
+ 2001-10-25 12:00 . 2011-04-25 16:06 206848 c:\windows\system32\occache.dll
+ 2002-09-20 16:04 . 2011-04-25 16:06 611840 c:\windows\system32\mstime.dll
+ 2002-09-20 16:04 . 2009-03-08 02:34 193536 c:\windows\system32\msrating.dll
+ 2001-10-25 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\msls31.dll
+ 2009-03-08 02:32 . 2011-04-25 16:06 602112 c:\windows\system32\msfeeds.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 265720 c:\windows\system32\msdbg2.dll
+ 2001-10-25 12:00 . 2009-03-08 02:33 726528 c:\windows\system32\jscript.dll
- 2011-05-17 16:16 . 2011-05-17 16:16 157472 c:\windows\system32\javaws.exe
+ 2011-06-30 18:59 . 2011-06-30 18:58 157472 c:\windows\system32\javaws.exe
+ 2011-06-30 18:59 . 2011-06-30 18:58 145184 c:\windows\system32\javaw.exe
- 2011-05-17 16:16 . 2011-05-17 16:16 145184 c:\windows\system32\javaw.exe
- 2011-05-17 16:16 . 2011-05-17 16:16 145184 c:\windows\system32\java.exe
+ 2011-06-30 18:59 . 2011-06-30 18:58 145184 c:\windows\system32\java.exe
+ 2011-06-30 18:27 . 2008-04-14 06:51 189440 c:\windows\system32\inetsrv\smtpadm.dll
+ 2011-06-30 18:27 . 2008-04-14 06:51 221696 c:\windows\system32\inetsrv\seo.dll
+ 2009-03-08 02:22 . 2009-03-08 02:22 164352 c:\windows\system32\ieui.dll
+ 2002-09-20 16:03 . 2011-04-25 16:06 184320 c:\windows\system32\iepeers.dll
+ 2002-09-20 16:03 . 2011-04-25 16:06 387584 c:\windows\system32\iedkcs32.dll
+ 2009-03-08 02:11 . 2009-03-08 02:11 445952 c:\windows\system32\ieapfltr.dll
+ 2001-10-25 12:00 . 2009-03-08 02:32 163840 c:\windows\system32\ieakui.dll
+ 2002-09-20 16:03 . 2009-03-08 02:33 229376 c:\windows\system32\ieaksie.dll
+ 2002-09-20 16:03 . 2009-03-08 02:33 125952 c:\windows\system32\ieakeng.dll
+ 2002-09-20 16:05 . 2011-04-25 12:01 173568 c:\windows\system32\ie4uinit.exe
+ 2002-09-20 16:03 . 2009-03-08 02:31 216064 c:\windows\system32\dxtrans.dll
+ 2002-09-20 16:03 . 2009-03-08 02:31 348160 c:\windows\system32\dxtmsft.dll
+ 2010-12-20 22:14 . 2011-04-25 16:06 916480 c:\windows\system32\dllcache\wininet.dll
+ 2009-03-08 02:34 . 2009-03-08 02:34 236544 c:\windows\system32\dllcache\webcheck.dll
+ 2011-03-04 06:43 . 2009-03-08 02:33 420352 c:\windows\system32\dllcache\vbscript.dll
+ 2009-03-08 02:34 . 2009-03-08 02:34 105984 c:\windows\system32\dllcache\url.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 134144 c:\windows\system32\dllcache\sqmapi.dll
+ 2009-06-25 08:27 . 2011-04-29 17:25 151552 c:\windows\system32\dllcache\schannel.dll
+ 2009-03-08 02:34 . 2011-04-25 16:06 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-12-20 22:14 . 2011-04-25 16:06 611840 c:\windows\system32\dllcache\mstime.dll
+ 2009-03-08 02:34 . 2009-03-08 02:34 193536 c:\windows\system32\dllcache\msrating.dll
+ 2001-10-25 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\dllcache\msls31.dll
+ 2011-03-04 06:43 . 2009-03-08 02:33 726528 c:\windows\system32\dllcache\jscript.dll
+ 2009-03-08 12:09 . 2009-03-08 12:09 638816 c:\windows\system32\dllcache\iexplore.exe
+ 2010-12-20 22:14 . 2011-04-25 16:06 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2009-03-08 12:09 . 2011-04-25 16:06 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2001-10-25 12:00 . 2009-03-08 02:32 163840 c:\windows\system32\dllcache\ieakui.dll
+ 2009-03-08 02:33 . 2009-03-08 02:33 229376 c:\windows\system32\dllcache\ieaksie.dll
+ 2009-03-08 02:33 . 2009-03-08 02:33 125952 c:\windows\system32\dllcache\ieakeng.dll
+ 2009-03-08 02:32 . 2011-04-25 12:01 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-03-08 02:31 . 2009-03-08 02:31 216064 c:\windows\system32\dllcache\dxtrans.dll
+ 2009-03-08 02:31 . 2009-03-08 02:31 348160 c:\windows\system32\dllcache\dxtmsft.dll
+ 2009-03-08 02:32 . 2009-03-08 02:32 128512 c:\windows\system32\dllcache\advpack.dll
+ 2011-06-30 19:10 . 2011-06-30 19:10 262144 c:\windows\system32\config\systemprofile\IETldCache\index.dat
+ 2002-09-20 16:03 . 2009-03-08 02:32 128512 c:\windows\system32\advpack.dll
- 2011-01-18 02:39 . 2011-01-18 02:39 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
- 2011-01-18 02:39 . 2011-01-18 02:39 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
- 2011-01-18 02:39 . 2011-01-18 02:39 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-06-30 18:59 . 2011-06-30 18:59 203776 c:\windows\Installer\38495.msi
+ 2011-06-30 18:58 . 2011-06-30 18:58 677376 c:\windows\Installer\38485.msi
+ 2011-06-30 19:06 . 2009-03-08 02:34 914944 c:\windows\ie8updates\KB982381-IE8\wininet.dll
+ 2011-06-30 19:06 . 2010-02-22 14:21 391032 c:\windows\ie8updates\KB982381-IE8\spuninst\updspapi.dll
+ 2011-06-30 19:06 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB982381-IE8\spuninst\spuninst.exe
+ 2011-06-30 19:06 . 2009-03-08 02:34 109568 c:\windows\ie8updates\KB982381-IE8\occache.dll
+ 2011-06-30 19:06 . 2009-03-08 02:32 611840 c:\windows\ie8updates\KB982381-IE8\mstime.dll
+ 2011-06-30 19:06 . 2009-03-08 02:32 594432 c:\windows\ie8updates\KB982381-IE8\msfeeds.dll
+ 2011-06-30 19:06 . 2009-03-08 02:33 246784 c:\windows\ie8updates\KB982381-IE8\ieproxy.dll
+ 2011-06-30 19:06 . 2009-03-08 02:31 183808 c:\windows\ie8updates\KB982381-IE8\iepeers.dll
+ 2011-06-30 19:06 . 2009-03-08 02:35 742912 c:\windows\ie8updates\KB982381-IE8\iedvtool.dll
+ 2011-06-30 19:06 . 2009-03-08 12:09 391536 c:\windows\ie8updates\KB982381-IE8\iedkcs32.dll
+ 2011-06-30 19:06 . 2009-03-08 02:32 173056 c:\windows\ie8updates\KB982381-IE8\ie4uinit.exe
+ 2011-06-30 19:08 . 2010-05-06 10:35 916480 c:\windows\ie8updates\KB2530548-IE8\wininet.dll
+ 2011-06-30 19:08 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2530548-IE8\spuninst\updspapi.dll
+ 2011-06-30 19:08 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2530548-IE8\spuninst\spuninst.exe
+ 2011-06-30 19:08 . 2010-05-06 10:35 206848 c:\windows\ie8updates\KB2530548-IE8\occache.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 611840 c:\windows\ie8updates\KB2530548-IE8\mstime.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 599040 c:\windows\ie8updates\KB2530548-IE8\msfeeds.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 247808 c:\windows\ie8updates\KB2530548-IE8\ieproxy.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 184320 c:\windows\ie8updates\KB2530548-IE8\iepeers.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 743424 c:\windows\ie8updates\KB2530548-IE8\iedvtool.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 387584 c:\windows\ie8updates\KB2530548-IE8\iedkcs32.dll
+ 2011-06-30 19:08 . 2010-05-05 13:30 173056 c:\windows\ie8updates\KB2530548-IE8\ie4uinit.exe
+ 2011-06-30 19:07 . 2010-02-22 14:21 391032 c:\windows\ie8updates\KB2447568-IE8\spuninst\updspapi.dll
+ 2011-06-30 19:07 . 2010-02-22 14:20 233848 c:\windows\ie8updates\KB2447568-IE8\spuninst\spuninst.exe
+ 2011-06-30 19:04 . 2011-04-25 14:47 668160 c:\windows\ie8\wininet.dll
+ 2011-06-30 19:04 . 2008-04-14 06:52 278528 c:\windows\ie8\webcheck.dll
+ 2011-06-30 19:04 . 2011-04-29 19:07 852480 c:\windows\ie8\vgx.dll
+ 2011-06-30 19:04 . 2011-03-04 06:43 434176 c:\windows\ie8\vbscript.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 627200 c:\windows\ie8\urlmon.dll
+ 2011-06-30 19:05 . 2009-01-07 16:20 390688 c:\windows\ie8\spuninst\updspapi.dll
+ 2011-06-30 19:05 . 2009-01-07 16:20 234016 c:\windows\ie8\spuninst\spuninst.exe
+ 2011-06-30 19:04 . 2011-04-25 14:47 532480 c:\windows\ie8\mstime.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 146432 c:\windows\ie8\msrating.dll
+ 2011-06-30 19:04 . 2001-10-25 12:00 146432 c:\windows\ie8\msls31.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 449536 c:\windows\ie8\mshtmled.dll
+ 2011-06-30 19:04 . 2011-03-04 06:43 512000 c:\windows\ie8\jscript.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 251904 c:\windows\ie8\iepeers.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 323584 c:\windows\ie8\iedkcs32.dll
+ 2011-06-30 19:04 . 2001-10-25 12:00 225280 c:\windows\ie8\ieakui.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 219136 c:\windows\ie8\ieaksie.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 143360 c:\windows\ie8\ieakeng.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 205312 c:\windows\ie8\dxtrans.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 357888 c:\windows\ie8\dxtmsft.dll
+ 2011-06-30 19:04 . 2008-04-14 06:51 100352 c:\windows\ie8\advpack.dll
+ 2011-06-30 18:58 . 2011-06-30 18:58 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\431d5dc1cfcc0c0530e813f370931670\WindowsFormsIntegration.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\3740d6db28af31a6523a79fcdd71fbeb\UIAutomationTypes.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\00dfe5563886a1f69c96b3acb839107b\UIAutomationClient.ni.dll
+ 2011-06-30 19:24 . 2011-06-30 19:24 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\7f5f5bfd5f8d6587c96870751a6eb44d\System.IO.Log.ni.dll
+ 2011-06-30 19:24 . 2011-06-30 19:24 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\de1bf796614ca11afd9fab95edb1b4e2\System.IdentityModel.Selectors.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\1af8683e05c42eb32f46578fe5a8f83f\System.Drawing.Design.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e468e9265c844f74577530e4df71f120\PresentationFramework.Aero.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\959709491c71caef88fb41b0eb159714\PresentationFramework.Classic.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\807b62468c2893ee943dffff63a34d8d\PresentationFramework.Royale.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6cf82f370413a2cd1e6bc54060334753\PresentationFramework.Luna.ni.dll
+ 2011-06-30 19:24 . 2011-06-30 19:24 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\0524928cbd0a686db3960ef688d0d37e\AspNetMMCExt.ni.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2002-09-20 16:04 . 2011-04-25 16:06 1211904 c:\windows\system32\urlmon.dll
+ 2002-09-20 16:04 . 2011-05-30 22:12 5964800 c:\windows\system32\mshtml.dll
+ 2009-03-08 02:32 . 2011-04-25 16:06 1991680 c:\windows\system32\iertutil.dll
+ 2009-02-06 19:07 . 2009-02-06 19:07 3698584 c:\windows\system32\ieapfltr.dat
+ 2010-12-20 22:14 . 2011-04-25 16:06 1211904 c:\windows\system32\dllcache\urlmon.dll
+ 2010-12-20 22:14 . 2011-05-30 22:12 5964800 c:\windows\system32\dllcache\mshtml.dll
- 2008-07-25 09:17 . 2008-07-25 09:17 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-01-18 02:39 . 2011-01-18 02:39 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
- 2010-03-23 03:32 . 2010-03-23 03:32 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 5912400 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2011-03-25 04:15 . 2011-03-25 04:15 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
- 2011-01-18 02:39 . 2011-01-18 02:39 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2011-01-18 21:36 . 2011-01-18 21:36 2687488 c:\windows\Installer\6b32c.msp
+ 2011-06-30 19:06 . 2009-03-08 02:34 1206784 c:\windows\ie8updates\KB982381-IE8\urlmon.dll
+ 2011-06-30 19:06 . 2009-03-08 02:41 5937152 c:\windows\ie8updates\KB982381-IE8\mshtml.dll
+ 2011-06-30 19:06 . 2009-03-08 02:32 1985024 c:\windows\ie8updates\KB982381-IE8\iertutil.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 1209344 c:\windows\ie8updates\KB2530548-IE8\urlmon.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 5950976 c:\windows\ie8updates\KB2530548-IE8\mshtml.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 1985536 c:\windows\ie8updates\KB2530548-IE8\iertutil.dll
+ 2011-06-30 19:04 . 2011-04-25 14:47 3100672 c:\windows\ie8\mshtml.dll
+ 2011-06-30 18:45 . 2011-06-30 18:45 3182592 c:\windows\assembly\tmp\LSX159DI\System.dll
+ 2011-06-30 18:53 . 2011-06-30 18:53 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\11526c1635b97a7d49e25e72ed6e9662\WindowsBase.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\901c3796073853746fecd8979c679494\UIAutomationClientsideProviders.ni.dll
+ 2011-06-30 18:52 . 2011-06-30 18:52 7950848 c:\windows\assembly\NativeImages_v2.0.50727_32\System\f6a9a002526806f3a5b745cf5c407cae\System.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f354057a5b4fad4c399da28449ba0d92\System.Xml.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\2047e63293e067b351b8f0e038253f33\System.Speech.ni.dll
+ 2011-06-30 19:25 . 2011-06-30 19:25 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\c889a45c82004537f1620dd3b211af66\System.Runtime.Serialization.ni.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\c64aa916251a45206a805ab6488b9255\System.Printing.ni.dll
+ 2011-06-30 19:24 . 2011-06-30 19:24 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\a8039af85f459c19c041313f9fe0d7e8\System.IdentityModel.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\a59b17e6040e3f6286a2227dfdb17096\System.Drawing.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\05d99241bd45cbd96a6053841790a4a2\System.Data.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\283e9bf48e17bdb34acdc93bd5721be0\System.Data.Linq.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\bd2e04dfab2993479ae17ea3fa4f6222\System.Core.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\4f82a0a1b4405ef61dfa088d11161e35\ReachFramework.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\148505f5b0307230de5d355f10d30a20\PresentationUI.ni.dll
+ 2011-06-30 18:52 . 2011-06-30 18:52 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\1fab86af683c04bdb0aaf65ce7fcd9e5\PresentationBuildTasks.ni.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
- 2011-06-08 19:39 . 2011-06-08 19:39 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2011-06-08 19:40 . 2011-06-08 19:40 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-06-30 18:51 . 2011-06-30 18:51 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2009-03-08 02:39 . 2011-04-26 08:06 11081728 c:\windows\system32\ieframe.dll
+ 2011-03-28 01:27 . 2011-03-28 01:27 15456256 c:\windows\Installer\6b339.msp
+ 2011-06-30 19:06 . 2009-03-08 02:39 11063808 c:\windows\ie8updates\KB982381-IE8\ieframe.dll
+ 2011-06-30 19:08 . 2010-05-06 10:35 11076096 c:\windows\ie8updates\KB2530548-IE8\ieframe.dll
+ 2011-06-30 18:57 . 2011-06-30 18:57 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\29d16d2f164fe2263539789ecd0d9d4f\System.Windows.Forms.ni.dll
+ 2011-06-30 18:56 . 2011-06-30 18:56 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\ee914f59ad8211e0b6734dccffd9986e\System.Design.ni.dll
+ 2011-06-30 18:55 . 2011-06-30 18:55 14328320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\999df2b262da53356dda514512bb7bb8\PresentationFramework.ni.dll
+ 2011-06-30 18:53 . 2011-06-30 18:53 12215808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\caafa254739e326b0cf55eed815b4333\PresentationCore.ni.dll
+ 2011-06-30 18:52 . 2011-06-30 18:52 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ICQ"="c:\program files\ICQ6\ICQ.exe" silent
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"VTTimer"=VTTimer.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7.6.2011 23:32 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7.6.2011 23:32 307928]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7.6.2011 23:32 19544]
S3 GCR410P;GEMPLUS GCR410P Serial Smart Card Reader;c:\windows\system32\drivers\grserial.sys [31.8.2004 11:09 28416]
S3 GEMSER;GEMSER;c:\windows\system32\drivers\gemser.sys [31.8.2004 11:10 27264]
S3 YKQY;YKQY;c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe --> c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2005-01-05 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8093940538.job
- c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52]
.
2011-06-30 c:\windows\Tasks\User_Feed_Synchronization-{4FEEA37D-9A96-4FAE-A6C5-AF9AB30842B7}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-06-30 21:31
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2620)
c:\windows\system32\webcheck.dll
.
Celkový čas: 2011-06-30 21:36:35
ComboFix-quarantined-files.txt 2011-06-30 19:36
ComboFix2.txt 2011-06-30 18:00
ComboFix3.txt 2011-06-27 17:03
.
Před spuštěním: 6 814 793 728
Po spuštění: 6 816 849 920
.
Current=2 Default=2 Failed=1 LastKnownGood=3 Sets=1,2,3,4
- - End Of File - - C6F4359796A7E032F0D4E77CF72F1493
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivku po čištění zavirovaného PC
Otevřeme si Poznámkový blok
- (stiskneme klávesovou kombinaci WIN+R a napíšeme ,,notepad,, bez úvozovek a dáme enter)
- Vložíme do něj následující script:
Kód: Vybrat vše
KillAll:: Driver:: YKQY File:: c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe Reboot:: - Soubor uložíme na Plochu jako CFScript.txt
- Poté tento soubor uchopíme levým tlačítkem myši a přetáhneme na ikonu Combofixu a upustíme
- Poté Combofix provede všechny operace a udělá nový log,který sem vložte
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivku po čištění zavirovaného PC
Poté pohledáme další havěť
Malwarebytes' Anti-Malware 
Malwarebytes' Anti-Malware
- Stáhneme,nainstalujeme a spustíme(pokud si nevíte rady jak,klikněte ZDE)
- Vybereme Úplná kontrola a klikneme na tlačítko Prohledat
- Program provede kontrolu počítače a na konci se vám objeví hláska,že bylo skenování dokončeno,tak potvrdíme tlačítkem OK
- Objeví se vám log,který mi sem vložte
- NIC NEMAZAT!!Program mívá občas falešné detekce,takže mazat budeme až po konzultaci
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Prosím o preventivku po čištění zavirovaného PC
A zase log...
ComboFix 11-07-01.02 - Eva 02.07.2011 21:24:17.4.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1471.1094 [GMT 2:00]
Spuštěný z: c:\documents and settings\Eva\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Eva\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
* Vytvořen nový Bod Obnovení
.
FILE ::
"c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_YKQY
-------\Service_YKQY
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-06-02 do 2011-07-02 )))))))))))))))))))))))))))))))
.
.
2011-06-30 19:12 . 2011-06-30 19:12 -------- d-sh--w- c:\documents and settings\Eva\IECompatCache
2011-06-30 19:12 . 2011-06-30 19:12 -------- d-sh--w- c:\documents and settings\Eva\PrivacIE
2011-06-30 19:10 . 2011-06-30 19:10 -------- d-sh--w- c:\documents and settings\Eva\IETldCache
2011-06-30 19:10 . 2011-06-30 19:10 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2011-06-30 19:04 . 2011-06-30 19:05 -------- dc-h--w- c:\windows\ie8
2011-06-30 19:00 . 2010-10-18 11:10 7680 -c----w- c:\windows\system32\dllcache\iecompat.dll
2011-06-30 19:00 . 2011-04-25 16:06 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2011-06-30 19:00 . 2011-04-25 16:06 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-06-30 19:00 . 2011-04-25 16:06 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2011-06-30 19:00 . 2011-04-25 16:06 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2011-06-30 19:00 . 2011-04-25 16:06 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2011-06-30 19:00 . 2011-04-25 16:06 1991680 -c----w- c:\windows\system32\dllcache\iertutil.dll
2011-06-30 19:00 . 2011-04-26 08:06 11081728 -c----w- c:\windows\system32\dllcache\ieframe.dll
2011-06-30 18:59 . 2011-06-30 18:59 -------- d-----w- c:\program files\Common Files\Java
2011-06-30 18:59 . 2011-06-30 18:58 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-06-30 18:58 . 2011-06-30 18:58 -------- d-----w- c:\program files\Java
2011-06-30 18:27 . 2008-04-14 06:51 9728 ------w- c:\windows\system32\rwnh.dll
2011-06-30 18:27 . 2008-04-14 06:51 10752 ------w- c:\windows\system32\smtpapi.dll
2011-06-30 18:26 . 2006-12-28 22:31 19569 ----a-w- c:\windows\000001_.tmp
2011-06-16 02:50 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-16 02:49 . 2009-03-08 02:33 759296 -c--a-w- c:\windows\system32\dllcache\VGX.dll
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- c:\program files\trend micro
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- C:\rsit
2011-06-08 21:52 . 2011-06-08 21:52 -------- d-----w- c:\program files\CCleaner
2011-06-08 20:58 . 2011-06-08 21:47 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\eSupport.com
2011-06-08 16:31 . 2011-06-08 16:31 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\PCHealth
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\windows\system32\XPSViewer
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\MSBuild
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\Reference Assemblies
2011-06-08 16:16 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-06-08 16:16 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-06-08 16:16 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-06-08 15:26 . 2007-01-18 12:00 3968 ----a-w- c:\windows\system32\drivers\AvgArCln.sys
2011-06-08 07:15 . 2011-06-08 21:24 -------- d-----r- c:\documents and settings\NetworkService\Dokumenty
2011-06-08 06:22 . 2011-06-08 19:10 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\ApplicationHistory
2011-06-08 06:18 . 2011-06-08 06:18 -------- d-----w- c:\program files\MSXML 4.0
2011-06-07 21:41 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-06-07 21:41 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-06-07 21:40 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-06-07 21:39 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2011-06-07 21:37 . 2011-06-07 21:37 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Google
2011-06-07 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2011-06-07 21:34 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-06-07 21:32 . 2011-06-15 05:15 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Temp
2011-06-07 21:32 . 2011-06-07 21:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Google
2011-06-07 21:32 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2011-06-07 21:32 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2011-06-07 21:32 . 2011-05-10 12:03 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-06-07 21:32 . 2011-05-10 11:59 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-07 21:32 . 2011-05-10 11:59 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-06-07 21:32 . 2011-05-10 12:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-06-07 21:32 . 2011-05-10 12:02 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-06-07 21:32 . 2011-05-10 12:02 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-06-07 21:32 . 2011-05-10 12:02 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-06-07 21:32 . 2011-05-10 11:59 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-06-07 21:31 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2011-06-07 21:31 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2011-06-07 21:31 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2011-06-07 21:31 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2011-06-07 21:31 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2011-06-07 21:31 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2011-06-07 21:31 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2011-06-07 21:31 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2011-06-07 21:30 . 2011-05-10 12:10 40112 ----a-w- c:\windows\avastSS.scr
2011-06-07 21:30 . 2011-05-10 12:10 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\program files\AVAST Software
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-06-07 21:28 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2011-06-07 21:28 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2011-06-07 21:27 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2011-06-07 21:27 . 2011-04-29 16:19 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-06-07 21:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2011-06-07 21:20 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2011-06-07 21:19 . 2011-06-07 21:19 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2011-06-07 21:17 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2011-06-07 21:17 . 2010-12-09 15:14 2194944 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-06-07 21:17 . 2010-12-09 15:14 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2071552 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-06-07 21:16 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2011-06-07 21:15 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-06-07 21:15 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2011-06-07 21:14 . 2011-06-30 19:07 -------- d--h--w- c:\windows\$hf_mig$
2011-06-07 21:02 . 2008-04-14 06:52 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-06-07 21:01 . 2011-06-07 21:01 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-06-07 21:01 . 2011-06-30 18:59 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2011-06-07 20:33 . 2008-04-13 22:15 46592 ------w- c:\windows\system32\drivers\irbus.sys
2011-06-07 20:30 . 2011-06-07 20:34 -------- d-----w- c:\windows\ServicePackFiles
2011-06-07 20:30 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2011-06-07 20:25 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002825_.tmp
2011-06-07 20:24 . 2009-01-07 16:20 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2011-06-07 20:20 . 2011-06-30 18:26 -------- d-----w- c:\windows\EHome
2011-06-07 19:11 . 2011-06-07 19:11 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Deployment
2011-06-07 18:59 . 2008-04-14 05:59 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2011-06-07 18:57 . 2011-06-07 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-30 18:58 . 2011-05-17 16:16 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-06-30 18:52 . 2004-09-10 18:19 715642 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2011-06-08 21:22 . 2004-08-27 21:52 3744 ----a-w- c:\windows\system32\drivers\smsens.sys
2011-06-08 21:22 . 2004-08-27 21:52 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2011-05-02 15:32 . 2004-08-27 21:31 692736 ---ha-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25 . 2002-09-20 16:04 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19 . 2002-08-28 23:59 456320 ---ha-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 16:06 . 2002-09-20 16:05 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 16:06 . 2002-09-20 16:05 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:06 . 2002-09-20 16:04 43520 ------w- c:\windows\system32\licmgr10.dll
2011-04-21 13:37 . 2002-08-29 00:12 105472 ---ha-w- c:\windows\system32\drivers\mup.sys
2008-01-14 16:26 . 2008-01-14 16:26 6010880 ----a-w- c:\program files\icq5_1_Atlas.exe
2008-01-12 12:17 . 2008-01-12 12:08 13980016 ----a-w- c:\program files\install_atlas_icq6.exe
.
.
((((((((((((((((((((((((((((( SnapShot_2011-06-30_19.31.45 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-07-02 19:37 . 2011-07-02 19:37 16384 c:\windows\temp\Perflib_Perfdata_7a4.dat
+ 2011-07-02 19:47 . 2011-07-02 19:47 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\61c3b1e170de97a8d418b610bd9b0c77\System.Windows.Presentation.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\a4173f12a0fea30f95bc56ab04f64cae\System.Web.DynamicData.Design.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ab5802527ce15dbcc25e301dbbb4d666\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\177a17af98d803ab79006d6785706462\System.AddIn.Contract.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\87fe1d01b568b3bc9c750b7cf7802516\Microsoft.Vsa.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\f5057c30d89ad8d99e38c946a68def9e\Microsoft.Build.Framework.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\623c05a555ac0719a1367f511d4a9270\Microsoft.Build.Framework.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\c40d3caad8bff3c52db7e7562286406a\dfsvc.ni.exe
+ 2011-07-02 19:43 . 2011-07-02 19:43 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\8ba27eaa0f7d987f92319c64aefd2e98\WsatConfig.ni.exe
+ 2011-07-02 19:47 . 2011-07-02 19:47 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\80187a9cfed4fd0ec82746495be76764\System.Xml.Linq.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\58c421c537b1c3f3878458ad306b2a42\System.Web.Routing.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\dc26fff00ce95d24fd190f38904bb2b3\System.Web.RegularExpressions.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\4e3dd4d7f9aeda74a2fcefee036e5070\System.Web.Extensions.Design.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\4fb1c0c07f40248b463f2e33444b9477\System.Web.Entity.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\4dfcffc6e6d02bdcdc185d5527a8097e\System.Web.Entity.Design.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\4b921d1cffcd5e80ea14c51db967edd6\System.Web.DynamicData.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\702b506e56d3a7051aea7822cd915c7f\System.Web.Abstractions.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\7c430c38d71d632c019ae37d5ef12c8e\System.Transactions.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\0f3d321ebd65af974ff0ad424223276d\System.ServiceProcess.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\e4bcb14e8e53c8dcaff3d2c20daf746e\System.Security.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\503ccbb50e9c06c2f0b02ad8c3f2d100\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\ac53723e41898bc0e8a591c2e4f6f39b\System.Net.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\19280e723d215c0d6607d3884f453cdf\System.Management.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\4a3a674008d8102c1aa5b3fc18251ef7\System.Management.Instrumentation.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.Wrapper.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\791a6643b70542b148d977ff42f2f2ef\System.DirectoryServices.Protocols.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\31759ad8be21735f0a369c37514c2efc\System.DirectoryServices.AccountManagement.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\df507a4500e73fa4cfc13f65a1c9055e\System.Data.Services.Client.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\d1778fffc09d783bc90512b65d35be66\System.Data.Services.Design.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\5a47a8bf16370c93b3c6a471e48cc67a\System.Data.Entity.Design.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\50492d147392c238edc5a614beccb91b\System.Data.DataSetExtensions.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\48f8b951a598647dd309ca2031807a5d\System.Configuration.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\fa21b6c9badcf916bb254b4b823c2463\System.Configuration.Install.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\77015cc1e6d9e7d20e63903777afd6df\System.AddIn.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6ca41c7917119c3a9de0bcdca525001d\SMSvcHost.ni.exe
+ 2011-07-02 19:43 . 2011-07-02 19:43 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\8ff6d395f8861384bc9bfbe34cafb64e\SMDiagnostics.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\67dc00c24e551003f6dacb73fe9cf881\ServiceModelReg.ni.exe
+ 2011-07-02 19:43 . 2011-07-02 19:43 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\0add35a0fbe0c381c998b651c5979902\MSBuild.ni.exe
+ 2011-07-02 19:43 . 2011-07-02 19:43 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\667dc256d9eb3577f2514c89c5974aff\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\d5561a4ad04c22f0eb5acf4736c7936e\Microsoft.Build.Utilities.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\1a0623063225521aa43044314cc5e721\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\530f98922474a31636c34fa3db9a63ba\Microsoft.Build.Engine.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\7e75fca3ca1f36df8ac624190d9cd283\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\80bd17388778c90f301746ad88700758\CustomMarshalers.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\c0f5f3c318a92212bbe3b413eeb2b374\ComSvcConfig.ni.exe
+ 2011-07-02 19:47 . 2011-07-02 19:47 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\2877dda3e0f0faeba527b4bf1efe9cb5\System.WorkflowServices.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\d7cb3697989fe6fa3a08d2821d38aa5e\System.Workflow.Runtime.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\4ac04107c35485d415f9e1bebfd155dd\System.Workflow.ComponentModel.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\2169feb8bd57d96e621fa26d9391d463\System.Workflow.Activities.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\f31f1579160d87470cba918f06276e0d\System.Web.Services.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\bdad1c0f4eb846543b234353fd2b926f\System.Web.Mobile.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 2405376 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\647bfe6da40e8160b967c41424901dc8\System.Web.Extensions.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\ead07662976fb7094811461c568643d5\System.ServiceModel.Web.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\55211bc8f4fcff47c05bfc3020d97148\System.DirectoryServices.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\f9ff2fb342cd5102e2d95883b3433a5d\System.Deployment.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\ef31ab37b0d7c3c1a6d72646966c8911\System.Data.SqlXml.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\f945e9c32c775bb604ab83d8933f1b2c\System.Data.Services.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\368c85cccea8a1206be5c849fd6614e3\System.Data.Entity.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\7292ca9d793cb71cf3d41ae663e7139b\Microsoft.VisualBasic.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\abaf7a180354ed5ec099fb69339b538a\Microsoft.Transactions.Bridge.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b41db9f2897f538203911026bb0abd5d\Microsoft.JScript.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\a91940f9033c7910f3f64c061571cec9\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\5195a94327ccef45d202776e932e847b\Microsoft.Build.Tasks.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\3efbca53acdd34586bd7f6f87e71ed62\Microsoft.Build.Engine.ni.dll
+ 2011-06-30 19:45 . 2011-06-30 19:45 16414720 c:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E.tmp\System.ServiceModel.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\1fb5d8788c9a9a7f44e2d0fa19c62729\System.Web.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\23abc8e4b535b9cd9c5560266c655ac2\System.ServiceModel.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ICQ"="c:\program files\ICQ6\ICQ.exe" silent
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"VTTimer"=VTTimer.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7.6.2011 23:32 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7.6.2011 23:32 307928]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7.6.2011 23:32 19544]
S3 GCR410P;GEMPLUS GCR410P Serial Smart Card Reader;c:\windows\system32\drivers\grserial.sys [31.8.2004 11:09 28416]
S3 GEMSER;GEMSER;c:\windows\system32\drivers\gemser.sys [31.8.2004 11:10 27264]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2005-01-05 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8093940538.job
- c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52]
.
2011-07-02 c:\windows\Tasks\User_Feed_Synchronization-{4FEEA37D-9A96-4FAE-A6C5-AF9AB30842B7}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-07-02 22:18
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2332)
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2011-07-02 22:24:43 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-07-02 20:24
ComboFix2.txt 2011-06-30 19:36
ComboFix3.txt 2011-06-30 18:00
ComboFix4.txt 2011-06-27 17:03
.
Před spuštěním: 6 699 778 048
Po spuštění: 6 810 423 296
.
Current=2 Default=2 Failed=1 LastKnownGood=3 Sets=1,2,3,4
- - End Of File - - BA4DDD7CB51A3E77788DF54E4B847A28
ComboFix 11-07-01.02 - Eva 02.07.2011 21:24:17.4.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1471.1094 [GMT 2:00]
Spuštěný z: c:\documents and settings\Eva\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Eva\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
* Vytvořen nový Bod Obnovení
.
FILE ::
"c:\docume~1\Eva\LOCALS~1\Temp\YKQY.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_YKQY
-------\Service_YKQY
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-06-02 do 2011-07-02 )))))))))))))))))))))))))))))))
.
.
2011-06-30 19:12 . 2011-06-30 19:12 -------- d-sh--w- c:\documents and settings\Eva\IECompatCache
2011-06-30 19:12 . 2011-06-30 19:12 -------- d-sh--w- c:\documents and settings\Eva\PrivacIE
2011-06-30 19:10 . 2011-06-30 19:10 -------- d-sh--w- c:\documents and settings\Eva\IETldCache
2011-06-30 19:10 . 2011-06-30 19:10 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2011-06-30 19:04 . 2011-06-30 19:05 -------- dc-h--w- c:\windows\ie8
2011-06-30 19:00 . 2010-10-18 11:10 7680 -c----w- c:\windows\system32\dllcache\iecompat.dll
2011-06-30 19:00 . 2011-04-25 16:06 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2011-06-30 19:00 . 2011-04-25 16:06 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-06-30 19:00 . 2011-04-25 16:06 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2011-06-30 19:00 . 2011-04-25 16:06 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2011-06-30 19:00 . 2011-04-25 16:06 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2011-06-30 19:00 . 2011-04-25 16:06 1991680 -c----w- c:\windows\system32\dllcache\iertutil.dll
2011-06-30 19:00 . 2011-04-26 08:06 11081728 -c----w- c:\windows\system32\dllcache\ieframe.dll
2011-06-30 18:59 . 2011-06-30 18:59 -------- d-----w- c:\program files\Common Files\Java
2011-06-30 18:59 . 2011-06-30 18:58 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-06-30 18:58 . 2011-06-30 18:58 -------- d-----w- c:\program files\Java
2011-06-30 18:27 . 2008-04-14 06:51 9728 ------w- c:\windows\system32\rwnh.dll
2011-06-30 18:27 . 2008-04-14 06:51 10752 ------w- c:\windows\system32\smtpapi.dll
2011-06-30 18:26 . 2006-12-28 22:31 19569 ----a-w- c:\windows\000001_.tmp
2011-06-16 02:50 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-16 02:49 . 2009-03-08 02:33 759296 -c--a-w- c:\windows\system32\dllcache\VGX.dll
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- c:\program files\trend micro
2011-06-08 21:53 . 2011-06-08 21:55 -------- d-----w- C:\rsit
2011-06-08 21:52 . 2011-06-08 21:52 -------- d-----w- c:\program files\CCleaner
2011-06-08 20:58 . 2011-06-08 21:47 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\eSupport.com
2011-06-08 16:31 . 2011-06-08 16:31 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\PCHealth
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\windows\system32\XPSViewer
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\MSBuild
2011-06-08 16:17 . 2011-06-08 16:17 -------- d-----w- c:\program files\Reference Assemblies
2011-06-08 16:16 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2011-06-08 16:16 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2011-06-08 16:16 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-06-08 16:16 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2011-06-08 16:16 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2011-06-08 15:26 . 2007-01-18 12:00 3968 ----a-w- c:\windows\system32\drivers\AvgArCln.sys
2011-06-08 07:15 . 2011-06-08 21:24 -------- d-----r- c:\documents and settings\NetworkService\Dokumenty
2011-06-08 06:22 . 2011-06-08 19:10 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\ApplicationHistory
2011-06-08 06:18 . 2011-06-08 06:18 -------- d-----w- c:\program files\MSXML 4.0
2011-06-07 21:41 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2011-06-07 21:41 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-06-07 21:40 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-06-07 21:39 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2011-06-07 21:37 . 2011-06-07 21:37 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Data aplikací\Google
2011-06-07 21:36 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2011-06-07 21:34 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-06-07 21:32 . 2011-06-15 05:15 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Temp
2011-06-07 21:32 . 2011-06-07 21:32 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Google
2011-06-07 21:32 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2011-06-07 21:32 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2011-06-07 21:32 . 2011-05-10 12:03 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-06-07 21:32 . 2011-05-10 11:59 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-07 21:32 . 2011-05-10 11:59 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-06-07 21:32 . 2011-05-10 12:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-06-07 21:32 . 2011-05-10 12:02 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-06-07 21:32 . 2011-05-10 12:02 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-06-07 21:32 . 2011-05-10 12:02 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-06-07 21:32 . 2011-05-10 11:59 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-06-07 21:31 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2011-06-07 21:31 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2011-06-07 21:31 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2011-06-07 21:31 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2011-06-07 21:31 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2011-06-07 21:31 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2011-06-07 21:31 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2011-06-07 21:31 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2011-06-07 21:30 . 2011-05-10 12:10 40112 ----a-w- c:\windows\avastSS.scr
2011-06-07 21:30 . 2011-05-10 12:10 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\program files\AVAST Software
2011-06-07 21:29 . 2011-06-07 21:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-06-07 21:28 . 2010-06-14 07:43 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2011-06-07 21:28 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2011-06-07 21:27 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2011-06-07 21:27 . 2011-04-29 16:19 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2011-06-07 21:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2011-06-07 21:20 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2011-06-07 21:19 . 2011-06-07 21:19 -------- d-----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2011-06-07 21:17 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2011-06-07 21:17 . 2010-12-09 15:14 2194944 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2011-06-07 21:17 . 2010-12-09 15:14 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2029056 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2011-06-07 21:17 . 2010-12-09 15:14 2071552 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2011-06-07 21:16 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2011-06-07 21:15 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-06-07 21:15 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2011-06-07 21:14 . 2011-06-30 19:07 -------- d--h--w- c:\windows\$hf_mig$
2011-06-07 21:02 . 2008-04-14 06:52 221184 ----a-w- c:\windows\system32\wmpns.dll
2011-06-07 21:01 . 2011-06-07 21:01 -------- d-----w- c:\documents and settings\LocalService\Nabídka Start
2011-06-07 21:01 . 2011-06-30 18:59 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2011-06-07 20:33 . 2008-04-13 22:15 46592 ------w- c:\windows\system32\drivers\irbus.sys
2011-06-07 20:30 . 2011-06-07 20:34 -------- d-----w- c:\windows\ServicePackFiles
2011-06-07 20:30 . 2008-04-14 06:51 33792 -c----w- c:\windows\system32\dllcache\custsat.dll
2011-06-07 20:25 . 2006-12-28 22:31 19569 ----a-w- c:\windows\002825_.tmp
2011-06-07 20:24 . 2009-01-07 16:20 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2011-06-07 20:20 . 2011-06-30 18:26 -------- d-----w- c:\windows\EHome
2011-06-07 19:11 . 2011-06-07 19:11 -------- d-----w- c:\documents and settings\Eva\Local Settings\Data aplikací\Deployment
2011-06-07 18:59 . 2008-04-14 05:59 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2011-06-07 18:57 . 2011-06-07 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-30 18:58 . 2011-05-17 16:16 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-06-30 18:52 . 2004-09-10 18:19 715642 ----a-w- c:\windows\system32\PerfStringBackup.TMP
2011-06-08 21:22 . 2004-08-27 21:52 3744 ----a-w- c:\windows\system32\drivers\smsens.sys
2011-06-08 21:22 . 2004-08-27 21:52 4816 ----a-w- c:\windows\system32\drivers\aeaudio.sys
2011-05-02 15:32 . 2004-08-27 21:31 692736 ---ha-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25 . 2002-09-20 16:04 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19 . 2002-08-28 23:59 456320 ---ha-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 16:06 . 2002-09-20 16:05 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 16:06 . 2002-09-20 16:05 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:06 . 2002-09-20 16:04 43520 ------w- c:\windows\system32\licmgr10.dll
2011-04-21 13:37 . 2002-08-29 00:12 105472 ---ha-w- c:\windows\system32\drivers\mup.sys
2008-01-14 16:26 . 2008-01-14 16:26 6010880 ----a-w- c:\program files\icq5_1_Atlas.exe
2008-01-12 12:17 . 2008-01-12 12:08 13980016 ----a-w- c:\program files\install_atlas_icq6.exe
.
.
((((((((((((((((((((((((((((( SnapShot_2011-06-30_19.31.45 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-07-02 19:37 . 2011-07-02 19:37 16384 c:\windows\temp\Perflib_Perfdata_7a4.dat
+ 2011-07-02 19:47 . 2011-07-02 19:47 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\61c3b1e170de97a8d418b610bd9b0c77\System.Windows.Presentation.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\a4173f12a0fea30f95bc56ab04f64cae\System.Web.DynamicData.Design.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ab5802527ce15dbcc25e301dbbb4d666\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\177a17af98d803ab79006d6785706462\System.AddIn.Contract.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\87fe1d01b568b3bc9c750b7cf7802516\Microsoft.Vsa.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\f5057c30d89ad8d99e38c946a68def9e\Microsoft.Build.Framework.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\623c05a555ac0719a1367f511d4a9270\Microsoft.Build.Framework.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\c40d3caad8bff3c52db7e7562286406a\dfsvc.ni.exe
+ 2011-07-02 19:43 . 2011-07-02 19:43 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\8ba27eaa0f7d987f92319c64aefd2e98\WsatConfig.ni.exe
+ 2011-07-02 19:47 . 2011-07-02 19:47 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\80187a9cfed4fd0ec82746495be76764\System.Xml.Linq.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\58c421c537b1c3f3878458ad306b2a42\System.Web.Routing.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\dc26fff00ce95d24fd190f38904bb2b3\System.Web.RegularExpressions.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\4e3dd4d7f9aeda74a2fcefee036e5070\System.Web.Extensions.Design.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\4fb1c0c07f40248b463f2e33444b9477\System.Web.Entity.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\4dfcffc6e6d02bdcdc185d5527a8097e\System.Web.Entity.Design.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\4b921d1cffcd5e80ea14c51db967edd6\System.Web.DynamicData.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\702b506e56d3a7051aea7822cd915c7f\System.Web.Abstractions.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\7c430c38d71d632c019ae37d5ef12c8e\System.Transactions.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\0f3d321ebd65af974ff0ad424223276d\System.ServiceProcess.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\e4bcb14e8e53c8dcaff3d2c20daf746e\System.Security.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\503ccbb50e9c06c2f0b02ad8c3f2d100\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\ac53723e41898bc0e8a591c2e4f6f39b\System.Net.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\19280e723d215c0d6607d3884f453cdf\System.Management.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\4a3a674008d8102c1aa5b3fc18251ef7\System.Management.Instrumentation.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.Wrapper.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\791a6643b70542b148d977ff42f2f2ef\System.DirectoryServices.Protocols.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\31759ad8be21735f0a369c37514c2efc\System.DirectoryServices.AccountManagement.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\df507a4500e73fa4cfc13f65a1c9055e\System.Data.Services.Client.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\d1778fffc09d783bc90512b65d35be66\System.Data.Services.Design.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\5a47a8bf16370c93b3c6a471e48cc67a\System.Data.Entity.Design.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\50492d147392c238edc5a614beccb91b\System.Data.DataSetExtensions.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\48f8b951a598647dd309ca2031807a5d\System.Configuration.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\fa21b6c9badcf916bb254b4b823c2463\System.Configuration.Install.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\77015cc1e6d9e7d20e63903777afd6df\System.AddIn.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6ca41c7917119c3a9de0bcdca525001d\SMSvcHost.ni.exe
+ 2011-07-02 19:43 . 2011-07-02 19:43 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\8ff6d395f8861384bc9bfbe34cafb64e\SMDiagnostics.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\67dc00c24e551003f6dacb73fe9cf881\ServiceModelReg.ni.exe
+ 2011-07-02 19:43 . 2011-07-02 19:43 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\0add35a0fbe0c381c998b651c5979902\MSBuild.ni.exe
+ 2011-07-02 19:43 . 2011-07-02 19:43 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\667dc256d9eb3577f2514c89c5974aff\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\d5561a4ad04c22f0eb5acf4736c7936e\Microsoft.Build.Utilities.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\1a0623063225521aa43044314cc5e721\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\530f98922474a31636c34fa3db9a63ba\Microsoft.Build.Engine.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\7e75fca3ca1f36df8ac624190d9cd283\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\80bd17388778c90f301746ad88700758\CustomMarshalers.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\c0f5f3c318a92212bbe3b413eeb2b374\ComSvcConfig.ni.exe
+ 2011-07-02 19:47 . 2011-07-02 19:47 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\2877dda3e0f0faeba527b4bf1efe9cb5\System.WorkflowServices.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\d7cb3697989fe6fa3a08d2821d38aa5e\System.Workflow.Runtime.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\4ac04107c35485d415f9e1bebfd155dd\System.Workflow.ComponentModel.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\2169feb8bd57d96e621fa26d9391d463\System.Workflow.Activities.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\f31f1579160d87470cba918f06276e0d\System.Web.Services.ni.dll
+ 2011-07-02 19:47 . 2011-07-02 19:47 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\bdad1c0f4eb846543b234353fd2b926f\System.Web.Mobile.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 2405376 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\647bfe6da40e8160b967c41424901dc8\System.Web.Extensions.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\ead07662976fb7094811461c568643d5\System.ServiceModel.Web.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\55211bc8f4fcff47c05bfc3020d97148\System.DirectoryServices.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\f9ff2fb342cd5102e2d95883b3433a5d\System.Deployment.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\ef31ab37b0d7c3c1a6d72646966c8911\System.Data.SqlXml.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\f945e9c32c775bb604ab83d8933f1b2c\System.Data.Services.ni.dll
+ 2011-07-02 19:45 . 2011-07-02 19:45 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\368c85cccea8a1206be5c849fd6614e3\System.Data.Entity.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\7292ca9d793cb71cf3d41ae663e7139b\Microsoft.VisualBasic.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\abaf7a180354ed5ec099fb69339b538a\Microsoft.Transactions.Bridge.ni.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b41db9f2897f538203911026bb0abd5d\Microsoft.JScript.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\a91940f9033c7910f3f64c061571cec9\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2011-07-02 19:44 . 2011-07-02 19:44 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\5195a94327ccef45d202776e932e847b\Microsoft.Build.Tasks.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\3efbca53acdd34586bd7f6f87e71ed62\Microsoft.Build.Engine.ni.dll
+ 2011-06-30 19:45 . 2011-06-30 19:45 16414720 c:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2E.tmp\System.ServiceModel.dll
+ 2011-07-02 19:46 . 2011-07-02 19:46 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\1fb5d8788c9a9a7f44e2d0fa19c62729\System.Web.ni.dll
+ 2011-07-02 19:43 . 2011-07-02 19:43 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\23abc8e4b535b9cd9c5560266c655ac2\System.ServiceModel.ni.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
"Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ICQ"="c:\program files\ICQ6\ICQ.exe" silent
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"VTTimer"=VTTimer.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [7.6.2011 23:32 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [7.6.2011 23:32 307928]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7.6.2011 23:32 19544]
S3 GCR410P;GEMPLUS GCR410P Serial Smart Card Reader;c:\windows\system32\drivers\grserial.sys [31.8.2004 11:09 28416]
S3 GEMSER;GEMSER;c:\windows\system32\drivers\gemser.sys [31.8.2004 11:10 27264]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2005-01-05 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8093940538.job
- c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52]
.
2011-07-02 c:\windows\Tasks\User_Feed_Synchronization-{4FEEA37D-9A96-4FAE-A6C5-AF9AB30842B7}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-07-02 22:18
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2332)
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2011-07-02 22:24:43 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-07-02 20:24
ComboFix2.txt 2011-06-30 19:36
ComboFix3.txt 2011-06-30 18:00
ComboFix4.txt 2011-06-27 17:03
.
Před spuštěním: 6 699 778 048
Po spuštění: 6 810 423 296
.
Current=2 Default=2 Failed=1 LastKnownGood=3 Sets=1,2,3,4
- - End Of File - - BA4DDD7CB51A3E77788DF54E4B847A28
Re: Prosím o preventivku po čištění zavirovaného PC
a snad poslední z malwarebajtu..
Malwarebytes' Anti-Malware
www.malwarebytes.org
Verze databáze:
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
2.7.2011 23:03:50
mbam-log-2011-07-02 (23-03-35).txt
Typ: Úplná kontrola (C:\|D:\|)
Kontrolované objekty: 202171
Uplynulý čas: 24 minut, 39 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 2
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\documents and settings\Eva\data aplikací\wiaserva.log (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\shell31.dll (Trojan.Agent) -> No action taken.
Malwarebytes' Anti-Malware
www.malwarebytes.org
Verze databáze:
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
2.7.2011 23:03:50
mbam-log-2011-07-02 (23-03-35).txt
Typ: Úplná kontrola (C:\|D:\|)
Kontrolované objekty: 202171
Uplynulý čas: 24 minut, 39 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 2
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\documents and settings\Eva\data aplikací\wiaserva.log (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\shell31.dll (Trojan.Agent) -> No action taken.
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivku po čištění zavirovaného PC
Vše v pořádku Nalezené položky MBAM smazat Jdeme na čištění od použitých aplikací...
Stiskněte klávesovou kombinaci WIN+R( nebo start-spustit ),čímž se vám otevře okno pro zadání příkazu pro spuštění a zkopírujte a vložte sem následujíci text: Combofix /Uninstall a dejte enter
T-Cleaner
TFC
Poté uděláme údržbu pc
Údržba PC:
1)Čištění dočasných složek + neplatné registry
Ccleaner
Defraggler
FileHippo.com Update Checker
Jak se chová PC
Nalezené položky MBAM smazat Jdeme na čištění od použitých aplikací... Stiskněte klávesovou kombinaci WIN+R( nebo start-spustit ),čímž se vám otevře okno pro zadání příkazu pro spuštění a zkopírujte a vložte sem následujíci text: Combofix /Uninstall a dejte enter T-Cleaner
- Spustíme,zmáčkneme klávesu A a potvrdíme ENTER(některé antiviry mohou detekovat utilitu jako vir-jedá se o falešný poplach,proto IGNOROVAT nebo dočasně vypnout antivir )
- po použití T-Cleaner smažte
TFC
- Stáhneme a spustíme program
- Klikneme na Start a potvrdíme OK
- Program začne uklízet,poté restartuje pc
- po použití program smažte
Poté uděláme údržbu pc
Údržba PC:
1)Čištění dočasných složek + neplatné registry
- Stáhneme a nainstalujeme program
- Spustíme program
-
ČISTIČ
Windows zde necháme vše jak je (pokud používáme IE,tak odškrkneme jeho položky) a zaškrkneme položky Start Menu zástupci a Zástupci na ploše
Aplikace - necháme jak je,ale pokud používáme nějaký prohlížeč (Google chrome,Firefox,Opera..) tak odškrkneme jeho položky
>Stiskeneme tlačítko Analyzovat a poté Spustit Cleaner - Registry
>Stiskneme tlačítko Hledej problémy,program začne hledat neplatné registry..podé zvolíme Opravit vybrané problémy..
>Program se zeptá,zda chceme vytvořit zálohu registrů,zvolíme ano a uložíme si někde zálohu(kdyby byli po opravení registru s něčím problémy,tak zálohu
obnovíme tak,že spustíme uloženou zálohu a potvrdíme ano),dále zvolíme Opravit všechny problémy a Zavřít
>opakujte dokud nebude registr bez problémů - Program používáme 1x 14dní (záleží na používání pc,můžeme i jednou týdně)
Defraggler
- Stáhneme a nainstalujeme program
- Spustíme program
- Vybereme disk ( C:,D:..prostě který používáme)
- Pokud je ve sloupci Fragmentace více než 5% dejte Defragmentovat
- Proveďte se všemi používanými disky
- Provádíme 1x za měsíc
FileHippo.com Update Checker
- Stáhneme a nainstalujeme program(Při instalaci odškrkneme volbu Run at Startup )
- Spustíme program
- Program vyhledá nainstalované programy v PC a zjistí dostupné aktualizace
- Poté se vám otevře internetová stránka,kde budou nabídnuté aplikace k aktualizování
>X Updates Detected..to jsou dostupné aktualizace..
> klikneme na zelenou šipečku a stáhneme program,poté nainstalujeme jeho aktuální verzi
> X Beta Updates Detected..tyto aktualizace nestahujte,jedná se o betaverze,které jsou ve vývoji a jsou nestabilní - Provádíme 1x za 14 dní nebo jednou za měsíc
Jak se chová PC Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Re: Prosím o preventivku po čištění zavirovaného PC
Vše uděláno a kompík šlape v cajku...
Ještě jednou moc díkes a mám dotaz co se týče Vaší práce...Lze se tomuto nějak naučiti nebo je to jen otázkou praxe a zkušeností...jde mi hlavně o čtení logů, algoritmus náprav a použití utilit a sw.
díkes moc měj se fajne a hodně úspěchů v této činnosti...
Kašos.... jako proti službu při nějaké příležitosti mohu nabídnout toto www.almasapejama.cz
Ještě jednou moc díkes a mám dotaz co se týče Vaší práce...Lze se tomuto nějak naučiti nebo je to jen otázkou praxe a zkušeností...jde mi hlavně o čtení logů, algoritmus náprav a použití utilit a sw.
díkes moc měj se fajne a hodně úspěchů v této činnosti...
Kašos.... jako proti službu při nějaké příležitosti mohu nabídnout toto www.almasapejama.cz
-
chodnik74
- Přítel fóra
- Příspěvky: 4975
- Registrován: 13 zář 2010 21:30
- Bydliště: Napajedla
- Kontaktovat uživatele:
Re: Prosím o preventivku po čištění zavirovaného PC
Byl jsem vyškolen zde na forum + léta praxe na pc
Info o naší škole:http://www.viry.cz/forum/viewtopic.php?f=12&t=80963
Rád jsem vám pomohl
Info o naší škole:http://www.viry.cz/forum/viewtopic.php?f=12&t=80963
Rád jsem vám pomohl
Napiš mi: chodnik74@gmail.com nebo
>RSIT<>MBAM<>VirusTotal
Doporučuji: |
Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce!
Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce!
Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.
Pravidla fora: č.1 a č.2
>RSIT<>MBAM<>VirusTotal
Doporučuji:
| Postup si raději vícekrát přečtěte a v případě jakýchkoliv nejasností či pochybností se ptejte. Pokud máte infikovaný počítač nebo se nechová jako obvykle, tak si zálohujte všechny data a pozorně postupujte dle pokynů rádce! Nepoužívejte utilitu Combofix bez dohledu a doporučení rádce! Jste s naší pomocí spokojeni Neváhejte a podpořte forum ZDE.Pravidla fora: č.1 a č.2
Přispějete na provoz fóra?